Dev

.github/workflows/deploy.yml

@@ -0,0 +1,86 @@
+name: 'deploy'
+on:
+  push:
+    paths:
+      - '.github/workflows/**'
+      - 'src/**'
+      - 'build.gradle'
+      - 'Dockerfile'
+      - 'readme.md'
+      - 'infraScript/**'
+    branches:
+      - 'main'
+jobs:
+  makeTagAndRelease:
+    runs-on: ubuntu-latest
+    outputs:
+      tag_name: ${{ steps.create_tag.outputs.new_tag }}
+    steps:
+      - uses: actions/checkout@v4
+      - name: Create Tag
+        id: create_tag
+        uses: mathieudutour/github-tag-action@v6.1
+        with:
+          github_token: ${{ secrets.GITHUB_TOKEN }}
+      - name: Create Release
+        id: create_release
+        uses: actions/create-release@v1
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        with:
+          tag_name: ${{ steps.create_tag.outputs.new_tag }}
+          release_name: Release ${{ steps.create_tag.outputs.new_tag }}
+          body: ${{ steps.create_tag.outputs.changelog }}
+          draft: false
+          prerelease: false
+  buildImageAndPush:
+    name: 도커 이미지 빌드와 푸시
+    needs: makeTagAndRelease
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - name: Docker Buildx 설치
+        uses: docker/setup-buildx-action@v2
+      - name: 레지스트리 로그인
+        uses: docker/login-action@v2
+        with:
+          registry: ghcr.io
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+      - name: set lower case owner name
+        run: |
+          echo "OWNER_LC=${OWNER,,}" >> ${GITHUB_ENV}
+        env:
+          OWNER: "${{ github.repository_owner }}"
+      - name: application-secret.yml 생성
+        env:
+          ACTIONS_STEP_DEBUG: true
+          APPLICATION_SECRET: ${{ secrets.APPLICATION_SECRET_YML }}
+        run: echo "$APPLICATION_SECRET" > src/main/resources/application-secret.yml
+      - name: 빌드 앤 푸시
+        uses: docker/build-push-action@v3
+        with:
+          context: .
+          push: true
+          tags: |
+            ghcr.io/${{ env.OWNER_LC }}/commitfield:${{ needs.makeTagAndRelease.outputs.tag_name }},
+            ghcr.io/${{ env.OWNER_LC }}/commitfield:latest
+  deploy:
+    runs-on: ubuntu-latest
+    needs: [ buildImageAndPush ]
+    steps:
+      - name: AWS SSM Send-Command
+        uses: peterkimzz/aws-ssm-send-command@master
+        id: ssm
+        with:
+          aws-region: ${{ secrets.AWS_REGION }}
+          aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+          instance-ids: "i-00847119db824184b"
+          working-directory: /
+          comment: Deploy
+          command: |
+            mkdir -p /dockerProjects/cmf
+            curl -o /dockerProjects/cmf/zero_downtime_deploy.py https://raw.githubusercontent.com/CommitField/commitfield/main/infraScript/zero_downtime_deploy.py
+            chmod +x /dockerProjects/cmf/zero_downtime_deploy.py
+            /dockerProjects/cmf/zero_downtime_deploy.py

Dockerfile

@@ -0,0 +1,35 @@
+# 첫 번째 스테이지: 빌드 스테이지
+FROM gradle:jdk21-graal-jammy as builder
+
+# 작업 디렉토리 설정
+WORKDIR /app
+
+# 소스 코드와 Gradle 래퍼 복사
+COPY gradlew .
+COPY gradle gradle
+COPY build.gradle.kts .
+COPY settings.gradle.kts .
+
+# Gradle 래퍼에 실행 권한 부여
+RUN chmod +x ./gradlew
+
+# 종속성 설치
+RUN ./gradlew dependencies --no-daemon
+
+# 소스 코드 복사
+COPY src src
+
+# 애플리케이션 빌드 (테스트 스킵)
+RUN ./gradlew clean build -x test --no-daemon
+
+# 두 번째 스테이지: 실행 스테이지
+FROM ghcr.io/graalvm/jdk-community:21
+
+# 작업 디렉토리 설정
+WORKDIR /app
+
+# 첫 번째 스테이지에서 빌드된 JAR 파일 복사
+COPY --from=builder /app/build/libs/*.jar app.jar
+
+# 실행할 JAR 파일 지정
+ENTRYPOINT ["java", "-jar", "-Dspring.profiles.active=prod", "app.jar"]

infraScript/zero_downtime_deploy.py

@@ -0,0 +1,99 @@
+#!/usr/bin/env python3
+
+import os
+import requests  # HTTP 요청을 위한 모듈 추가
+import subprocess
+import time
+from typing import Dict, Optional
+
+
+class ServiceManager:
+    # 초기화 함수
+    def __init__(self, socat_port: int = 8081, sleep_duration: int = 3) -> None:
+        self.socat_port: int = socat_port
+        self.sleep_duration: int = sleep_duration
+        self.services: Dict[str, int] = {
+            'cmf_1': 8082,
+            'cmf_2': 8083
+        }
+        self.current_name: Optional[str] = None
+        self.current_port: Optional[int] = None
+        self.next_name: Optional[str] = None
+        self.next_port: Optional[int] = None
+
+    # 현재 실행 중인 서비스를 찾는 함수
+    def _find_current_service(self) -> None:
+        cmd: str = f"ps aux | grep 'socat -t0 TCP-LISTEN:{self.socat_port}' | grep -v grep | awk '{{print $NF}}'"
+        current_service: str = subprocess.getoutput(cmd)
+        if not current_service:
+            self.current_name, self.current_port = 'cmf_2', self.services['cmf_2']
+        else:
+            self.current_port = int(current_service.split(':')[-1])
+            self.current_name = next((name for name, port in self.services.items() if port == self.current_port), None)
+
+    # 다음에 실행할 서비스를 찾는 함수
+    def _find_next_service(self) -> None:
+        self.next_name, self.next_port = next(
+            ((name, port) for name, port in self.services.items() if name != self.current_name),
+            (None, None)
+        )
+
+    # Docker 컨테이너를 제거하는 함수
+    def _remove_container(self, name: str) -> None:
+        os.system(f"docker stop {name} 2> /dev/null")
+        os.system(f"docker rm -f {name} 2> /dev/null")
+
+    # Docker 컨테이너를 실행하는 함수
+    def _run_container(self, name: str, port: int) -> None:
+        os.system(
+            f"docker run -d --name={name} --restart unless-stopped -p {port}:8090 -e TZ=Asia/Seoul -v /dockerProjects/cmf/volumes/gen:/gen --pull always ghcr.io/commitfield/commitfield")
+
+    def _switch_port(self) -> None:
+        # Socat 포트를 전환하는 함수
+        cmd: str = f"ps aux | grep 'socat -t0 TCP-LISTEN:{self.socat_port}' | grep -v grep | awk '{{print $2}}'"
+        pid: str = subprocess.getoutput(cmd)
+
+        if pid:
+            os.system(f"kill -9 {pid} 2>/dev/null")
+
+        time.sleep(5)
+
+        os.system(
+            f"nohup socat -t0 TCP-LISTEN:{self.socat_port},fork,reuseaddr TCP:localhost:{self.next_port} &>/dev/null &")
+
+        # 서비스 상태를 확인하는 함수
+
+    def _is_service_up(self, port: int) -> bool:
+        url = f"http://127.0.0.1:{port}/actuator/health"
+        try:
+            response = requests.get(url, timeout=5)  # 5초 이내 응답 없으면 예외 발생
+            if response.status_code == 200 and response.json().get('status') == 'UP':
+                return True
+        except requests.RequestException:
+            pass
+        return False
+
+    # 서비스를 업데이트하는 함수
+    def update_service(self) -> None:
+        self._find_current_service()
+        self._find_next_service()
+
+        self._remove_container(self.next_name)
+        self._run_container(self.next_name, self.next_port)
+
+        # 새 서비스가 'UP' 상태가 될 때까지 기다림
+        while not self._is_service_up(self.next_port):
+            print(f"Waiting for {self.next_name} to be 'UP'...")
+            time.sleep(self.sleep_duration)
+
+        self._switch_port()
+
+        if self.current_name is not None:
+            self._remove_container(self.current_name)
+
+        print("Switched service successfully!")
+
+
+if __name__ == "__main__":
+    manager = ServiceManager()
+    manager.update_service()