chore: Dockerfile, README, LICENSE, .env.example, CI workflows (lint/test/deploy)

2026-05-14 15:15:18 +02:00
parent ed744046f4
commit 057f10cb69
7 changed files with 328 additions and 33 deletions
--- a/.gitea/workflows/deploy.yml
+++ b/.gitea/workflows/deploy.yml
@@ -1,41 +1,59 @@
-name: Build and Deploy Thoughts
+name: deploy

 on:
  push:
-    branches:
-      - master
-  workflow_dispatch:
+    branches: [master]
+    tags: ["v*"]
+
+env:
+  REGISTRY: git.gabrielkaszewski.dev
+  IMAGE: git.gabrielkaszewski.dev/gkaszewski/thoughts

 jobs:
-  build-and-deploy-local:
+  build-and-push:
    runs-on: ubuntu-latest
-    
    steps:
-      - name: Checkout Code
-        uses: actions/checkout@v3
+      - uses: actions/checkout@v4

-      - name: Create .env file
-        run: |
-          echo "POSTGRES_USER=${{ secrets.POSTGRES_USER }}" >> .env
-          echo "POSTGRES_PASSWORD=${{ secrets.POSTGRES_PASSWORD }}" >> .env
-          echo "POSTGRES_DB=${{ secrets.POSTGRES_DB }}" >> .env
-          echo "AUTH_SECRET=${{ secrets.AUTH_SECRET }}" >> .env
-          echo "NEXT_PUBLIC_API_URL=${{ secrets.NEXT_PUBLIC_API_URL }}" >> .env
+      - name: Log in to registry
+        uses: docker/login-action@v3
+        with:
+          registry: ${{ env.REGISTRY }}
+          username: ${{ secrets.REGISTRY_USER }}
+          password: ${{ secrets.REGISTRY_TOKEN }}

-      - name: Build Docker Images Manually
-        run: |
-          docker build --target runtime -t thoughts-backend:latest ./thoughts-backend
-          docker build --target release -t thoughts-frontend:latest --build-arg NEXT_PUBLIC_API_URL=${{ secrets.NEXT_PUBLIC_API_URL }} ./thoughts-frontend
-          docker build -t custom-proxy:latest ./nginx
+      - name: Docker metadata
+        id: meta
+        uses: docker/metadata-action@v5
+        with:
+          images: ${{ env.IMAGE }}
+          tags: |
+            type=ref,event=branch
+            type=semver,pattern={{version}}
+            type=semver,pattern={{major}}.{{minor}}
+            type=raw,value=latest,enable={{is_default_branch}}

-      - name: Deploy with Docker Compose
-        run: |
-          docker compose -f compose.prod.yml down
+      - name: Build and push
+        uses: docker/build-push-action@v6
+        with:
+          context: .
+          push: true
+          tags: ${{ steps.meta.outputs.tags }}
+          labels: ${{ steps.meta.outputs.labels }}
+          cache-from: type=registry,ref=${{ env.IMAGE }}:buildcache
+          cache-to: type=registry,ref=${{ env.IMAGE }}:buildcache,mode=max

-          POSTGRES_USER=${{ secrets.POSTGRES_USER }} \
-          POSTGRES_PASSWORD=${{ secrets.POSTGRES_PASSWORD }} \
-          POSTGRES_DB=${{ secrets.POSTGRES_DB }} \
-          AUTH_SECRET=${{ secrets.AUTH_SECRET }} \
-          docker compose -f compose.prod.yml up -d
-
-          docker image prune -f
+  deploy:
+    needs: build-and-push
+    runs-on: ubuntu-latest
+    if: github.ref == 'refs/heads/master'
+    steps:
+      - name: Deploy via SSH
+        uses: appleboy/ssh-action@v1
+        with:
+          host: ${{ secrets.DEPLOY_HOST }}
+          username: ${{ secrets.DEPLOY_USER }}
+          key: ${{ secrets.DEPLOY_KEY }}
+          script: |
+            docker pull ${{ env.IMAGE }}:latest
+            docker compose -f /opt/thoughts/docker-compose.yml up -d