generated from vincent/template-projet
Compare commits
11 Commits
feature/ph
...
c535d00947
| Author | SHA1 | Date | |
|---|---|---|---|
| c535d00947 | |||
| 12cfb49c87 | |||
| 046f542f6a | |||
| f733cd7d5b | |||
| 9ac18ecc8d | |||
| b2b1a3a0a0 | |||
| 03b5022016 | |||
| 87ea0515ad | |||
| b967a0d69b | |||
| d25bc84373 | |||
| a0004796ed |
@@ -11,7 +11,7 @@ DEBUG=false
|
|||||||
# --- Base de données PostgreSQL ---
|
# --- Base de données PostgreSQL ---
|
||||||
POSTGRES_DB=auditshield
|
POSTGRES_DB=auditshield
|
||||||
POSTGRES_USER=auditshield
|
POSTGRES_USER=auditshield
|
||||||
POSTGRES_PASSWORD=changeme-strong-password
|
POSTGRES_PASSWORD=AuditShield!
|
||||||
|
|
||||||
# Construit automatiquement par docker-compose, à définir manuellement en dev local :
|
# Construit automatiquement par docker-compose, à définir manuellement en dev local :
|
||||||
DATABASE_URL=postgresql://auditshield:changeme-strong-password@localhost:5432/auditshield
|
DATABASE_URL=postgresql://auditshield:changeme-strong-password@localhost:5432/auditshield
|
||||||
|
|||||||
@@ -17,15 +17,36 @@ jobs:
|
|||||||
id: env
|
id: env
|
||||||
run: |
|
run: |
|
||||||
if [ "${{ github.ref_name }}" = "main" ]; then
|
if [ "${{ github.ref_name }}" = "main" ]; then
|
||||||
echo "ENV=prod" >> $GITHUB_OUTPUT
|
|
||||||
echo "COMPOSE_FILE=docker/docker-compose.prod.yml" >> $GITHUB_OUTPUT
|
echo "COMPOSE_FILE=docker/docker-compose.prod.yml" >> $GITHUB_OUTPUT
|
||||||
|
echo "PROJECT_PATH=/volume1/docker/auditshield-prod" >> $GITHUB_OUTPUT
|
||||||
else
|
else
|
||||||
echo "ENV=dev" >> $GITHUB_OUTPUT
|
|
||||||
echo "COMPOSE_FILE=docker/docker-compose.yml" >> $GITHUB_OUTPUT
|
echo "COMPOSE_FILE=docker/docker-compose.yml" >> $GITHUB_OUTPUT
|
||||||
|
echo "PROJECT_PATH=/volume1/docker/auditshield-dev" >> $GITHUB_OUTPUT
|
||||||
fi
|
fi
|
||||||
|
|
||||||
|
- name: Setup SSH key
|
||||||
|
run: |
|
||||||
|
mkdir -p ~/.ssh
|
||||||
|
echo "${{ secrets.NAS_SSH_KEY }}" > ~/.ssh/nas_key
|
||||||
|
chmod 600 ~/.ssh/nas_key
|
||||||
|
ssh-keyscan -p 22 ${{ secrets.NAS_HOST }} >> ~/.ssh/known_hosts
|
||||||
|
|
||||||
|
- name: Copy files to NAS
|
||||||
|
run: |
|
||||||
|
ssh -i ~/.ssh/nas_key root@${{ secrets.NAS_HOST }} "mkdir -p ${{ steps.env.outputs.PROJECT_PATH }}"
|
||||||
|
rsync -avz --exclude='.git' --exclude='node_modules' --exclude='.env' \
|
||||||
|
-e "ssh -i ~/.ssh/nas_key" \
|
||||||
|
./ root@${{ secrets.NAS_HOST }}:${{ steps.env.outputs.PROJECT_PATH }}/
|
||||||
|
|
||||||
|
- name: Copy env file
|
||||||
|
run: |
|
||||||
|
ssh -i ~/.ssh/nas_key root@${{ secrets.NAS_HOST }} \
|
||||||
|
"cd ${{ steps.env.outputs.PROJECT_PATH }} && cp .env.example .env 2>/dev/null || true"
|
||||||
|
|
||||||
- name: Deploy
|
- name: Deploy
|
||||||
run: |
|
run: |
|
||||||
docker compose -f ${{ steps.env.outputs.COMPOSE_FILE }} pull
|
ssh -i ~/.ssh/nas_key root@${{ secrets.NAS_HOST }} << 'ENDSSH'
|
||||||
docker compose -f ${{ steps.env.outputs.COMPOSE_FILE }} up -d --remove-orphans
|
cd ${{ steps.env.outputs.PROJECT_PATH }}
|
||||||
docker image prune -f
|
/usr/local/bin/docker compose -f ${{ steps.env.outputs.COMPOSE_FILE }} up -d --build --remove-orphans
|
||||||
|
/usr/local/bin/docker image prune -f
|
||||||
|
ENDSSH
|
||||||
|
|||||||
Reference in New Issue
Block a user