cccdba65a8
All checks were successful
Build and Deploy / build-and-deploy (push) Successful in 49s
The cp approach failed when sibling repos were mid-update from their own CI runs. git archive reads directly from git objects, and git fetch ensures origin/decoupling is available even if the sibling working tree is on a different branch. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
79 lines
2.6 KiB
YAML
79 lines
2.6 KiB
YAML
name: Build and Deploy
|
|
|
|
on:
|
|
push:
|
|
branches: [main, decoupling]
|
|
|
|
env:
|
|
REGISTRY: registry.rose-ash.com:5000
|
|
IMAGE: market
|
|
REPO_DIR: /root/rose-ash/market
|
|
COOP_DIR: /root/coop
|
|
|
|
jobs:
|
|
build-and-deploy:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@v4
|
|
|
|
- name: Install tools
|
|
run: |
|
|
apt-get update && apt-get install -y --no-install-recommends openssh-client
|
|
|
|
- name: Set up SSH
|
|
env:
|
|
SSH_KEY: ${{ secrets.DEPLOY_SSH_KEY }}
|
|
DEPLOY_HOST: ${{ secrets.DEPLOY_HOST }}
|
|
run: |
|
|
mkdir -p ~/.ssh
|
|
echo "$SSH_KEY" > ~/.ssh/id_rsa
|
|
chmod 600 ~/.ssh/id_rsa
|
|
ssh-keyscan -H "$DEPLOY_HOST" >> ~/.ssh/known_hosts 2>/dev/null || true
|
|
|
|
- name: Pull latest code on server
|
|
env:
|
|
DEPLOY_HOST: ${{ secrets.DEPLOY_HOST }}
|
|
run: |
|
|
ssh "root@$DEPLOY_HOST" "
|
|
cd ${{ env.REPO_DIR }}
|
|
git fetch origin ${{ github.ref_name }}
|
|
git reset --hard origin/${{ github.ref_name }}
|
|
git submodule update --init --recursive
|
|
# Copy sibling app models for cross-domain imports (read from git objects to avoid race conditions)
|
|
for sibling in blog market cart events; do
|
|
rm -rf \$sibling/__init__.py \$sibling/models
|
|
repo=/root/rose-ash/\$sibling
|
|
if [ -d \$repo/.git ]; then
|
|
git -C \$repo fetch origin ${{ github.ref_name }} 2>/dev/null || true
|
|
mkdir -p \$sibling
|
|
git -C \$repo archive origin/${{ github.ref_name }} -- __init__.py models/ 2>/dev/null | tar -x -C \$sibling/ || true
|
|
fi
|
|
done
|
|
"
|
|
|
|
- name: Build and push image
|
|
env:
|
|
DEPLOY_HOST: ${{ secrets.DEPLOY_HOST }}
|
|
run: |
|
|
ssh "root@$DEPLOY_HOST" "
|
|
cd ${{ env.REPO_DIR }}
|
|
docker build --build-arg CACHEBUST=\$(date +%s) \
|
|
-t ${{ env.REGISTRY }}/${{ env.IMAGE }}:latest \
|
|
-t ${{ env.REGISTRY }}/${{ env.IMAGE }}:${{ github.sha }} .
|
|
docker push ${{ env.REGISTRY }}/${{ env.IMAGE }}:latest
|
|
docker push ${{ env.REGISTRY }}/${{ env.IMAGE }}:${{ github.sha }}
|
|
"
|
|
|
|
- name: Deploy stack
|
|
env:
|
|
DEPLOY_HOST: ${{ secrets.DEPLOY_HOST }}
|
|
run: |
|
|
ssh "root@$DEPLOY_HOST" "
|
|
cd ${{ env.COOP_DIR }}
|
|
source .env
|
|
docker stack deploy -c docker-compose.yml coop
|
|
echo 'Waiting for services to update...'
|
|
sleep 10
|
|
docker stack services coop
|
|
"
|