txeo/cv-site
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

from mac

Browse Source
This commit is contained in:
juanatsap
2025-10-31 11:06:38 +00:00
parent 5d2f763d2e
commit a5804936ba
16 changed files with 3096 additions and 283 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.github/workflows/README.md
+26
View File
@@ -0,0 +1,26 @@
# GitHub Actions Workflows
## deploy.yml - Automated Deployment
**Trigger:** Push to `main` branch or manual dispatch
**What it does:**
1. SSH into your server
2. `git pull origin main`
3. `sudo systemctl restart cv-server`
4. Verify deployment via health check
**Required GitHub Secrets:**
- `SSH_PRIVATE_KEY` - SSH private key for server access
- `SSH_HOST` - Server IP or domain
- `SSH_USER` - SSH username
**Optional GitHub Secrets:**
- `SSH_PORT` (default: `22`)
- `SERVICE_NAME` (default: `cv-server`)
- `REPO_PATH` (default: `/opt/cv-server`)
**Manual deployment:**
Go to Actions → Deploy CV Server → Run workflow
**Setup guide:** See [GITHUB-ACTION-SETUP.md](../../GITHUB-ACTION-SETUP.md)
.github/workflows/deploy.yml
+65 -182
View File
@@ -1,207 +1,90 @@
name: Deploy CV Site to Production
name: Deploy CV Server
on:
push:
branches:
- main
workflow_dispatch:
inputs:
skip_tests:
description: 'Skip tests'
required: false
default: false
type: boolean
env:
GO_VERSION: '1.25'
APP_NAME: 'cv-server'
SERVICE_NAME: 'cv'
DEPLOY_PATH: '/home/txeo/Git/yo/cv'
HEALTH_URL: 'https://juan.andres.morenorub.io/health'
workflow_dispatch: # Allow manual deployment from GitHub UI
jobs:
test:
name: Run Tests
runs-on: ubuntu-latest
if: ${{ !inputs.skip_tests }}
steps:
- name: Checkout code
uses: actions/checkout@v4
with:
fetch-depth: 0
- name: Setup Go
uses: actions/setup-go@v5
with:
go-version: ${{ env.GO_VERSION }}
cache: true
- name: Download dependencies
run: go mod download
- name: Run tests
run: |
go test -v -race -coverprofile=coverage.txt -covermode=atomic ./...
- name: Upload coverage
uses: codecov/codecov-action@v3
with:
file: ./coverage.txt
fail_ci_if_error: false
build:
name: Build Application
runs-on: ubuntu-latest
needs: test
if: always() && (needs.test.result == 'success' || needs.test.result == 'skipped')
steps:
- name: Checkout code
uses: actions/checkout@v4
- name: Setup Go
uses: actions/setup-go@v5
with:
go-version: ${{ env.GO_VERSION }}
cache: true
- name: Build binary
run: |
mkdir -p build
CGO_ENABLED=0 GOOS=linux GOARCH=amd64 go build \
-ldflags="-w -s -X main.version=${{ github.sha }}" \
-o build/${{ env.APP_NAME }} \
.
- name: Compress binary
run: |
cd build
tar -czf ${{ env.APP_NAME }}-${{ github.sha }}.tar.gz ${{ env.APP_NAME }}
- name: Upload artifact
uses: actions/upload-artifact@v4
with:
name: cv-server-binary
path: build/${{ env.APP_NAME }}-${{ github.sha }}.tar.gz
retention-days: 30
deploy:
name: Deploy to Production
name: Pull and Restart
runs-on: ubuntu-latest
needs: build
environment:
name: production
url: ${{ env.HEALTH_URL }}
steps:
- name: Checkout code
uses: actions/checkout@v4
- name: Download artifact
uses: actions/download-artifact@v4
with:
name: cv-server-binary
path: ./build
- name: Setup SSH
run: |
mkdir -p ~/.ssh
echo "${{ secrets.SSH_PRIVATE_KEY }}" > ~/.ssh/deploy_key
chmod 600 ~/.ssh/deploy_key
ssh-keyscan -p ${{ secrets.SSH_PORT || 22 }} ${{ secrets.SSH_HOST }} >> ~/.ssh/known_hosts
- name: Deploy to Server
- name: Deploy to server
env:
SSH_KEY: ~/.ssh/deploy_key
SSH_USER: ${{ secrets.SSH_USER }}
SSH_PRIVATE_KEY: ${{ secrets.SSH_PRIVATE_KEY }}
SSH_HOST: ${{ secrets.SSH_HOST }}
SSH_PORT: ${{ secrets.SSH_PORT || 22 }}
SSH_USER: ${{ secrets.SSH_USER }}
SSH_PORT: ${{ secrets.SSH_PORT || '22' }}
SERVICE_NAME: ${{ secrets.SERVICE_NAME || 'cv-server' }}
REPO_PATH: ${{ secrets.REPO_PATH || '/opt/cv-server' }}
run: |
# Extract artifact
cd build
tar -xzf ${{ env.APP_NAME }}-${{ github.sha }}.tar.gz
echo "🚀 Deploying to server..."
# Upload binary to server
scp -i $SSH_KEY -P $SSH_PORT ${{ env.APP_NAME }} \
$SSH_USER@$SSH_HOST:${{ env.DEPLOY_PATH }}/${{ env.APP_NAME }}.new
# Setup SSH
mkdir -p ~/.ssh
echo "$SSH_PRIVATE_KEY" > ~/.ssh/deploy_key
chmod 600 ~/.ssh/deploy_key
ssh-keyscan -p $SSH_PORT -H $SSH_HOST >> ~/.ssh/known_hosts
# Upload deployment script
scp -i $SSH_KEY -P $SSH_PORT ../scripts/deploy.sh \
$SSH_USER@$SSH_HOST:${{ env.DEPLOY_PATH }}/
# Pull latest code and restart service
echo "🔄 Pulling latest code and restarting service..."
ssh -i ~/.ssh/deploy_key -p $SSH_PORT $SSH_USER@$SSH_HOST << 'ENDSSH'
set -e
# Sync static assets, templates, and data
echo "📦 Syncing assets..."
rsync -avz -e "ssh -i $SSH_KEY -p $SSH_PORT" \
--exclude '.git' \
--exclude 'build' \
--exclude 'node_modules' \
--exclude '.env' \
../static/ ../templates/ ../data/ \
$SSH_USER@$SSH_HOST:${{ env.DEPLOY_PATH }}/ 2>/dev/null || echo "Note: Some directories may not exist"
echo "📥 Pulling latest changes..."
cd ${{ env.REPO_PATH }}
git pull origin main
# Execute deployment on server
ssh -i $SSH_KEY -p $SSH_PORT $SSH_USER@$SSH_HOST << 'ENDSSH'
cd ${{ env.DEPLOY_PATH }}
echo "🔄 Restarting service..."
sudo systemctl restart ${{ env.SERVICE_NAME }}
# Make scripts executable
chmod +x deploy.sh 2>/dev/null || true
chmod +x ${{ env.APP_NAME }}.new
echo "⏳ Waiting for service to start..."
sleep 3
# Export environment for deploy script
export DEPLOY_PATH="${{ env.DEPLOY_PATH }}"
# Run deployment
./deploy.sh ${{ env.APP_NAME }} ${{ env.SERVICE_NAME }}
# Check service status
if sudo systemctl is-active --quiet ${{ env.SERVICE_NAME }}; then
echo "✅ Service restarted successfully"
sudo systemctl status ${{ env.SERVICE_NAME }} --no-pager -l
else
echo "❌ Service failed to start"
sudo journalctl -u ${{ env.SERVICE_NAME }} -n 50 --no-pager
exit 1
fi
ENDSSH
- name: Health check
# Cleanup
rm ~/.ssh/deploy_key
echo "✅ Deployment completed successfully!"
- name: Verify deployment
env:
SSH_PRIVATE_KEY: ${{ secrets.SSH_PRIVATE_KEY }}
SSH_HOST: ${{ secrets.SSH_HOST }}
SSH_USER: ${{ secrets.SSH_USER }}
SSH_PORT: ${{ secrets.SSH_PORT || '22' }}
run: |
echo "Waiting for application to start..."
sleep 10
echo "🔍 Verifying deployment..."
# Check service status
ssh -i ~/.ssh/deploy_key -p ${{ secrets.SSH_PORT || 22 }} \
${{ secrets.SSH_USER }}@${{ secrets.SSH_HOST }} \
"systemctl is-active ${{ env.SERVICE_NAME }}"
# Setup SSH for verification
echo "$SSH_PRIVATE_KEY" > ~/.ssh/deploy_key
chmod 600 ~/.ssh/deploy_key
# HTTP health check
RESPONSE=$(curl -s -o /dev/null -w "%{http_code}" ${{ env.HEALTH_URL }})
# Test health endpoint
ssh -i ~/.ssh/deploy_key -p $SSH_PORT $SSH_USER@$SSH_HOST << 'ENDSSH'
echo "Testing health endpoint..."
sleep 2
if curl -f http://localhost:1999/health > /dev/null 2>&1; then
echo "✅ Health check passed"
curl http://localhost:1999/health
else
echo "❌ Health check failed"
exit 1
fi
ENDSSH
if [ "$RESPONSE" = "200" ]; then
echo "✅ Health check passed (HTTP $RESPONSE)"
else
echo "❌ Health check failed (HTTP $RESPONSE)"
exit 1
fi
- name: Send notification
if: always()
run: |
if [ -z "${{ secrets.SLACK_WEBHOOK }}" ]; then
echo "No Slack webhook configured, skipping notification"
exit 0
fi
STATUS="${{ job.status }}"
COLOR="good"
if [ "$STATUS" != "success" ]; then
COLOR="danger"
fi
curl -X POST "${{ secrets.SLACK_WEBHOOK }}" \
-H "Content-Type: application/json" \
-d "{
\"attachments\": [{
\"color\": \"$COLOR\",
\"title\": \"CV Site Deployment $STATUS\",
\"text\": \"Deployment to production completed\",
\"fields\": [
{\"title\": \"Branch\", \"value\": \"${{ github.ref_name }}\", \"short\": true},
{\"title\": \"Commit\", \"value\": \"${{ github.sha }}\", \"short\": true},
{\"title\": \"Environment\", \"value\": \"production\", \"short\": true}
]
}]
}" || true
- name: Cleanup SSH keys
if: always()
run: |
rm -f ~/.ssh/deploy_key
rm ~/.ssh/deploy_key
echo "✅ Deployment verification complete!"