-
Notifications
You must be signed in to change notification settings - Fork 1
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
4 changed files
with
71 additions
and
40 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,33 @@ | ||
| version: "3.9" | ||
| services: | ||
| app: | ||
| image: ghcr.io/${IMAGE_REPO}:${RELEASE_VERSION} | ||
| restart: always | ||
| ports: | ||
| - "8080" | ||
| container_name: ${APP_NAME}_app | ||
| environment: | ||
| VIRTUAL_HOST: ${HOST_DOMAIN} | ||
| VIRTUAL_PORT: 8080 # New default ASP.NET port -> https://learn.microsoft.com/en-us/dotnet/core/compatibility/containers/8.0/aspnet-port | ||
| LETSENCRYPT_HOST: ${HOST_DOMAIN} | ||
| LETSENCRYPT_EMAIL: ${LETSENCRYPT_EMAIL} | ||
| volumes: | ||
| - app-mydb:/app/App_Data | ||
|
|
||
| app-migration: | ||
| image: ghcr.io/${IMAGE_REPO}:${RELEASE_VERSION} | ||
| restart: "no" | ||
| container_name: ${APP_NAME}_app_migration | ||
| profiles: | ||
| - migration | ||
| command: --AppTasks=migrate | ||
| volumes: | ||
| - app-mydb:/app/App_Data | ||
|
|
||
| networks: | ||
| default: | ||
| external: true | ||
| name: nginx | ||
|
|
||
| volumes: | ||
| app-mydb: |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,8 +1,8 @@ | ||
| # ServiceStack mix GitHub Actions | ||
| `release.yml` generated from `x mix release-ghr-vanilla`, this template in designed to help with CI deployment to a dedicated server with SSH access. | ||
| The `release.yml` in designed to help with CI deployment to a dedicated server with SSH access, Docker and Docker Compose. | ||
|
|
||
| ## Overview | ||
| `release.yml` is designed to work with a ServiceStack app deploying directly to a single server via SSH. A docker image is built and stored on GitHub's `ghcr.io` docker registry when a GitHub Release is created. | ||
| A docker image is built and stored on GitHub's `ghcr.io` docker registry when a GitHub Release is created. | ||
|
|
||
| GitHub Actions specified in `release.yml` then copy files remotely via scp and use `docker-compose` to run the app remotely via SSH. | ||
|
|
||
|
|
@@ -36,14 +36,7 @@ The `release.yml` uses the following secrets. | |
| - DEPLOY_KEY - SSH private key used to remotely access deploy server/app host. | ||
| - LETSENCRYPT_EMAIL - Email address, required for Let's Encrypt automated TLS certificates. | ||
|
|
||
| These secrets can use the [GitHub CLI](https://cli.github.com/manual/gh_secret_set) for ease of creation. Eg, using the GitHub CLI the following can be set. | ||
|
|
||
| ```bash | ||
| gh secret set DEPLOY_HOST -b"<DEPLOY_HOST, domain or subdomain for your application and server host.>" | ||
| gh secret set DEPLOY_USERNAME -b"<DEPLOY_USERNAME, the username being logged into via SSH. Eg, `ubuntu`, `ec2-user`, `root` etc.>" | ||
| gh secret set DEPLOY_KEY -b"<DEPLOY_KEY, SSH private key used to remotely access deploy server/app host.>" | ||
| gh secret set LETSENCRYPT_EMAIL -b"<LETSENCRYPT_EMAIL, Email address for your TLS certificate generation, eg [email protected]>" | ||
| ``` | ||
| These secrets can use the [GitHub CLI](https://cli.github.com/manual/gh_secret_set) for ease of creation. | ||
|
|
||
| These secrets are used to populate variables within GitHub Actions and other configuration files. | ||
|
|
||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -34,7 +34,7 @@ jobs: | |
| uses: actions/checkout@v3 | ||
| with: | ||
| ref: refs/tags/${{ github.event.inputs.version }} | ||
|
|
||
| # Assign environment variables used in subsequent steps | ||
| - name: Env variable assignment | ||
| run: echo "image_repository_name=$(echo ${{ github.repository }} | tr '[:upper:]' '[:lower:]')" >> $GITHUB_ENV | ||
|
|
@@ -48,24 +48,26 @@ jobs: | |
| if [ "${{ github.event.inputs.version }}" != "" ]; then | ||
| echo "TAG_NAME=${{ github.event.inputs.version }}" >> $GITHUB_ENV | ||
| fi; | ||
| - name: Login to GitHub Container Registry | ||
| uses: docker/login-action@v2 | ||
| with: | ||
| registry: ghcr.io | ||
| username: ${{ github.actor }} | ||
| password: ${{ secrets.GITHUB_TOKEN }} | ||
|
|
||
|
|
||
| - name: setup .net core | ||
| uses: actions/setup-dotnet@v3 | ||
| with: | ||
| dotnet-version: '8.*' | ||
| dotnet-quality: 'preview' | ||
|
|
||
| # Build and push new docker image, skip for manual redeploy other than 'latest' | ||
| - name: Build and push Docker images | ||
| uses: docker/build-push-action@v3 | ||
| if: ${{ github.event.inputs.version == '' || github.event.inputs.version == 'latest' }} | ||
| with: | ||
| file: Dockerfile | ||
| context: . | ||
| push: true | ||
| tags: ghcr.io/${{ env.image_repository_name }}:${{ env.TAG_NAME }} | ||
|
|
||
| - name: Build and push Docker image | ||
| run: | | ||
| dotnet publish --os linux --arch x64 -c Release -p:ContainerRepository=${{ env.image_repository_name }} -p:ContainerRegistry=ghcr.io -p:ContainerImageTags=${{ env.TAG_NAME }} -p:ContainerPort=80 | ||
| deploy_via_ssh: | ||
| needs: push_to_registry | ||
| runs-on: ubuntu-22.04 | ||
|
|
@@ -84,8 +86,6 @@ jobs: | |
| - name: repository name fix and env | ||
| run: | | ||
| echo "image_repository_name=$(echo ${{ github.repository }} | tr '[:upper:]' '[:lower:]')" >> $GITHUB_ENV | ||
| echo "domain=${{ secrets.DEPLOY_HOST }}" >> $GITHUB_ENV | ||
| echo "letsencrypt_email=${{ secrets.LETSENCRYPT_EMAIL }}" >> $GITHUB_ENV | ||
| echo "TAG_NAME=latest" >> $GITHUB_ENV | ||
| if [ "${{ github.event.release.tag_name }}" != "" ]; then | ||
| echo "TAG_NAME=${{ github.event.release.tag_name }}" >> $GITHUB_ENV | ||
|
|
@@ -97,14 +97,14 @@ jobs: | |
| - name: Create .env file | ||
| run: | | ||
| echo "Generating .env file" | ||
| echo "# Autogenerated .env file" > .env | ||
| echo "HOST_DOMAIN=${{ secrets.DEPLOY_HOST }}" >> .env | ||
| echo "LETSENCRYPT_EMAIL=${{ secrets.LETSENCRYPT_EMAIL }}" >> .env | ||
| echo "APP_NAME=${{ github.event.repository.name }}" >> .env | ||
| echo "IMAGE_REPO=${{ env.image_repository_name }}" >> .env | ||
| echo "RELEASE_VERSION=${{ env.TAG_NAME }}" >> .env | ||
| echo "# Autogenerated .env file" > .deploy/.env | ||
| echo "HOST_DOMAIN=${{ secrets.DEPLOY_HOST }}" >> .deploy/.env | ||
| echo "LETSENCRYPT_EMAIL=${{ secrets.LETSENCRYPT_EMAIL }}" >> .deploy/.env | ||
| echo "APP_NAME=${{ github.event.repository.name }}" >> .deploy/.env | ||
| echo "IMAGE_REPO=${{ env.image_repository_name }}" >> .deploy/.env | ||
| echo "RELEASE_VERSION=${{ env.TAG_NAME }}" >> .deploy/.env | ||
| # Copy only the docker-compose.yml to remote server home folder | ||
| - name: copy files to target server via scp | ||
| uses: appleboy/[email protected] | ||
|
|
@@ -113,9 +113,10 @@ jobs: | |
| username: ${{ secrets.DEPLOY_USERNAME }} | ||
| port: 22 | ||
| key: ${{ secrets.DEPLOY_KEY }} | ||
| source: "./docker-compose.yml,./docker-compose.prod.yml,./.env" | ||
| strip_components: 2 | ||
| source: "./.deploy/docker-compose.yml,./.deploy/.env" | ||
| target: "~/.deploy/${{ github.event.repository.name }}/" | ||
|
|
||
| - name: Run remote db migrations | ||
| uses: appleboy/[email protected] | ||
| env: | ||
|
|
@@ -128,10 +129,13 @@ jobs: | |
| port: 22 | ||
| envs: APPTOKEN,USERNAME | ||
| script: | | ||
| set -e | ||
| echo $APPTOKEN | docker login ghcr.io -u $USERNAME --password-stdin | ||
| cd ~/.deploy/${{ github.event.repository.name }} | ||
| docker compose -f ./docker-compose.yml -f ./docker-compose.prod.yml pull | ||
| docker compose -f ./docker-compose.yml -f ./docker-compose.prod.yml up app-migration | ||
| docker compose pull | ||
| export APP_ID=$(docker compose run --entrypoint "id -u" --rm app) | ||
| docker compose run --entrypoint "chown $APP_ID:$APP_ID /app/App_Data" --user root --rm app | ||
| docker compose up app-migration | ||
| # Deploy Docker image with your application using `docker compose up` remotely | ||
| - name: remote docker-compose up via ssh | ||
|
|
@@ -148,5 +152,5 @@ jobs: | |
| script: | | ||
| echo $APPTOKEN | docker login ghcr.io -u $USERNAME --password-stdin | ||
| cd ~/.deploy/${{ github.event.repository.name }} | ||
| docker compose -f ./docker-compose.yml -f ./docker-compose.prod.yml pull | ||
| docker compose -f ./docker-compose.yml -f ./docker-compose.prod.yml up app -d | ||
| docker compose pull | ||
| docker compose up app -d | ||