|
|
|
@@ -0,0 +1,49 @@ |
|
|
|
name: Docker |
|
|
|
|
|
|
|
on: |
|
|
|
push: |
|
|
|
branches: [ "master" ] |
|
|
|
tags: [ 'v*.*.*' ] |
|
|
|
pull_request: |
|
|
|
branches: [ "master" ] |
|
|
|
workflow_dispatch: # 允许手动触发 |
|
|
|
|
|
|
|
env: |
|
|
|
REGISTRY: registry.cn-hangzhou.aliyuncs.com # 修改为你的阿里云镜像仓库地址 |
|
|
|
IMAGE_NAME: jcce/pcm-core-api # 修改为你的阿里云镜像仓库名称 |
|
|
|
|
|
|
|
jobs: |
|
|
|
build: |
|
|
|
runs-on: ubuntu-latest |
|
|
|
permissions: |
|
|
|
contents: read |
|
|
|
packages: write |
|
|
|
id-token: write |
|
|
|
|
|
|
|
steps: |
|
|
|
- name: Checkout repository |
|
|
|
uses: actions/checkout@v4 |
|
|
|
|
|
|
|
- name: Log into Alibaba Cloud Container Registry |
|
|
|
if: github.event_name != 'pull_request' |
|
|
|
uses: aliyun/acr-login@v1 |
|
|
|
with: |
|
|
|
username: ${{ secrets.ALIYUN_USERNAME }} |
|
|
|
password: ${{ secrets.ALIYUN_PASSWORD }} |
|
|
|
login-server: ${{ env.REGISTRY }} |
|
|
|
- name: Build and push image |
|
|
|
env: |
|
|
|
IMAGE_TAG: latest |
|
|
|
run: | |
|
|
|
docker build -t ${{env.REGISTRY}}/${{env.IMAGE_NAME}}:${{env.IMAGE_TAG}} . |
|
|
|
docker push ${{env.REGISTRY}}/${{env.IMAGE_NAME}}:${{env.IMAGE_TAG}} |
|
|
|
|
|
|
|
- name: Set up SSH key |
|
|
|
run: | |
|
|
|
mkdir -p ~/.ssh |
|
|
|
echo "${{ secrets.SSH_PRIVATE_KEY }}" > ~/.ssh/id_rsa |
|
|
|
chmod 600 ~/.ssh/id_rsa |
|
|
|
echo -e "Host *\n\tStrictHostKeyChecking no\n\n" > ~/.ssh/config |
|
|
|
|
|
|
|
- name: SSH to remote server and restart deployment |
|
|
|
run: ssh ${{ secrets.SSH_USER }}@${{ secrets.SSH_HOST }} "kubectl rollout restart deployment ${{ secrets.SSH_DEPLOYMENT }} -n ${{ secrets.SSH_NAMESPACE }}" |
devad