Pushing image to docker registry #9
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Production CI/CD Pipeline | |
on: | |
push: | |
branches: | |
- main | |
pull_request: | |
branches: | |
- stagging | |
env: | |
IMAGE_NAME: daoudhussaindev/next-js-app | |
NODE_VERSION: 18.x | |
AWS_REGION: ap-south-1 | |
DOCKER_USERNAME: ${{ secrets.DOCKER_USERNAME_DEV }} | |
DOCKER_PASSWORD: ${{ secrets.DOCKER_PASSWORD_DEV }} | |
jobs: | |
build: | |
runs-on: ubuntu-latest | |
steps: | |
- name: Checkout repository | |
uses: actions/checkout@v4 | |
- name: Set up Node.js ${{ env.NODE_VERSION }} | |
uses: actions/setup-node@v3 | |
with: | |
node-version: ${{ env.NODE_VERSION }} | |
cache: 'npm' | |
- name: Install dependencies | |
run: npm ci | |
- name: Build Next.js application | |
run: npm run build | |
- name: Cache build output | |
uses: actions/cache@v3 | |
with: | |
path: | | |
.next | |
node_modules | |
key: ${{ runner.os }}-nextjs-${{ hashFiles('**/package-lock.json') }}-${{ hashFiles('**.[jt]s', '**.[jt]sx') }} | |
restore-keys: | | |
${{ runner.os }}-nextjs-${{ hashFiles('**/package-lock.json') }}- | |
test: | |
needs: build | |
runs-on: ubuntu-latest | |
steps: | |
- name: Checkout repository | |
uses: actions/checkout@v4 | |
- name: Set up Node.js ${{ env.NODE_VERSION }} | |
uses: actions/setup-node@v3 | |
with: | |
node-version: ${{ env.NODE_VERSION }} | |
cache: 'npm' | |
- name: Restore cache | |
uses: actions/cache@v3 | |
with: | |
path: | | |
.next | |
node_modules | |
key: ${{ runner.os }}-nextjs-${{ hashFiles('**/package-lock.json') }}-${{ hashFiles('**.[jt]s', '**.[jt]sx') }} | |
- name: Install dependencies | |
run: npm ci | |
- name: Run tests | |
run: npm run test | |
deploy: | |
needs: [build, test] | |
runs-on: ubuntu-latest | |
steps: | |
- name: Configure AWS credentials | |
uses: aws-actions/configure-aws-credentials@v1 | |
with: | |
aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} | |
aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} | |
aws-region: ${{ env.AWS_REGION }} | |
- name: Set up SSH | |
run: | | |
mkdir -p ~/.ssh | |
echo "${{ secrets.EC2_SSH_PRIVATE_KEY }}" > ~/.ssh/deploy_key | |
chmod 600 ~/.ssh/deploy_key | |
ssh-keyscan -H ${{ secrets.EC2_HOST }} >> ~/.ssh/known_hosts | |
echo "Testing SSH connection..." | |
ssh -i ~/.ssh/deploy_key -o StrictHostKeyChecking=no ${{ secrets.EC2_USER }}@${{ secrets.EC2_HOST }} 'echo "SSH connection successful"' | |
- name: Deploy to EC2 | |
run: | | |
echo "Starting deployment..." | |
ssh -i ~/.ssh/deploy_key -o StrictHostKeyChecking=no ${{ secrets.EC2_USER }}@${{ secrets.EC2_HOST }} "\ | |
set -e | |
echo 'Connected to EC2 instance' | |
echo 'Checking Docker status...' | |
docker ps | |
echo 'Stopping existing container...' | |
docker ps -q --filter 'name=next-js-app' | grep -q . && docker stop next-js-app && docker rm next-js-app || true | |
echo 'Pulling new image...' | |
docker pull ${{ env.IMAGE_NAME }}:dev | |
echo 'Starting new container...' | |
docker run -d \ | |
--name next-js-app-prod \ | |
-p 3000:3000 \ | |
--restart unless-stopped \ | |
${{ env.IMAGE_NAME }}:dev | |
echo 'Deployment completed successfully' | |
" | |
- name: Log in to DockerHub | |
run: | | |
echo $DOCKER_PASSWORD | docker login --username $DOCKER_USERNAME --password-stdin | |
- name: Build Docker image | |
run: | | |
docker build -t ${{ env.IMAGE_NAME }}:latest . | |
- name: Push Docker image to Docker Hub | |
run: | | |
docker push ${{ env.IMAGE_NAME }}:latest |