Automate deploying websites and more with this GitHub action.
Place the following in /.github/workflows/main.yml
on: push
name: π Deploy website on push
jobs:
web-deploy:
name: π Deploy
runs-on: ubuntu-latest
steps:
- name: π Get latest code
uses: actions/checkout@v6
- name: π Sync files
uses: step-security/ftp-deploy-action@v4
with:
server: ftp.stepsecurity.com
username: myFtpUserName
password: ${{ secrets.ftp_password }}- You must have ftp access to your server. If your host allows or requires ssh please use this web-deploy action
- Some web hosts change the default port (21), check with your host for your port number
- Select the repository you want to add the action to
- Select the
Actionstab - Select
Blank workflow fileorSet up a workflow yourself, if you don't see these options manually create a yaml fileYour_Project/.github/workflows/main.yml - Paste the example above into your yaml file and save
- Now you need to add a key to the
secretssection in your project. To add asecretgo to theSettingstab in your project then selectSecrets. Add a newSecretforpassword - Update your yaml file settings
Keys can be added directly to your .yml config file or referenced from your project Secrets storage.
To add a secret go to the Settings tab in your project then select Secrets.
I strongly recommend you store your password as a secret.
| Key Name | Required | Example | Default Value | Description |
|---|---|---|---|---|
server |
Yes | ftp.stepsecurity.com |
Deployment destination server | |
username |
Yes | username@stepsecurity.com |
FTP user name | |
password |
Yes | CrazyUniquePassword&%123 |
FTP password, be sure to escape quotes and spaces | |
port |
No | 990 |
21 |
Server port to connect to (read your web hosts docs) |
protocol |
No | ftps |
ftp |
ftp: provides no encryption, ftps: full encryption newest standard (aka "explicit" ftps), ftps-legacy: full encryption legacy standard (aka "implicit" ftps) |
local-dir |
No | ./myFolderToPublish/ |
./ |
Folder to upload from, must end with trailing slash / |
server-dir |
No | public_html/www/ |
./ |
Folder to upload to (on the server), must end with trailing slash / |
state-name |
No | folder/.sync-state.json |
.ftp-deploy-sync-state.json |
Path and name of the state file - this file is used to track which files have been deployed |
dry-run |
No | true |
false |
Prints which modifications will be made with current config options, but doesn't actually make any changes |
dangerous-clean-slate |
No | true |
false |
Deletes ALL contents of server-dir, even items in excluded with 'exclude' argument |
exclude |
No | See Example | See Example | An array of glob patterns, these files will not be included in the publish/delete process. List MUST be in this format. You can use a glob tester to test your pattern(s). |
log-level |
No | minimal |
standard |
minimal: only important info, standard: important info and basic file changes, verbose: print everything the script is doing |
security |
No | strict |
loose |
strict: Reject any connection which is not authorized with the list of supplied CAs. loose: Allow connection even when the domain is not certificate |
timeout |
No | 60000 |
30000 |
Timeout in milliseconds for FTP operations |
Make sure you have an npm script named 'build'. This config should work for most node built websites.
on: push
name: π Deploy website on push
jobs:
web-deploy:
name: π Deploy
runs-on: ubuntu-latest
steps:
- name: π Get latest code
uses: actions/checkout@v6
- name: Use Node.js 24
uses: actions/setup-node@v6
with:
node-version: '16'
- name: π¨ Build Project
run: |
npm install
npm run build
- name: π Sync files
uses: step-security/ftp-deploy-action@v4
with:
server: ftp.stepsecurity.com
username: myFtpUserName
password: ${{ secrets.password }}on: push
name: π Deploy website on push
jobs:
web-deploy:
name: π Deploy
runs-on: ubuntu-latest
steps:
- name: π Get latest code
uses: actions/checkout@v6
- name: π Sync files
uses: step-security/ftp-deploy-action@v4
with:
server: ftp.stepsecurity.com
username: myFtpUserName
password: ${{ secrets.password }}
protocol: ftps
port: 1234 # todo replace with your web hosts ftps portOuputs a list of files that will be created/modified to sync your source without making any actual changes
on: push
name: π Deploy website on push
jobs:
web-deploy:
name: π Deploy
runs-on: ubuntu-latest
steps:
- name: π Get latest code
uses: actions/checkout@v6
- name: π Sync files
uses: step-security/ftp-deploy-action@v4
with:
server: ftp.stepsecurity.com
username: myFtpUserName
password: ${{ secrets.password }}
dry-run: trueExcludes files
on: push
name: π Deploy website on push
jobs:
web-deploy:
name: π Deploy
runs-on: ubuntu-latest
steps:
- name: π Get latest code
uses: actions/checkout@v6
- name: π Sync files
uses: step-security/ftp-deploy-action@v4
with:
server: ftp.stepsecurity.com
username: myFtpUserName
password: ${{ secrets.password }}
exclude: |
**/.git*
**/.git*/**
**/node_modules/**
fileToExclude.txtexclude has the following default value
exclude: |
**/.git*
**/.git*/**
**/node_modules/**if you overwrite the default value you will probably want to respecify them
How to exclude .git files from the publish
Git files are excluded by default! If you customize the exclude option make sure you re-add the default options.
How to exclude a specific file or folder
You can use the exclude option to ignore specific files/folders from the publish. Keep in mind you will need to re-add the default exclude options if you want to keep them. For example the below option excludes all .txt files.
exclude:
- *.txtHow do I set a upload timeout?
github has a built-in timeout-minutes option, see customized example below
on: push
name: Publish Website
jobs:
web-deploy:
name: web-deploy
runs-on: ubuntu-latest
timeout-minutes: 15 # time out after 15 minutes (default is 360 minutes)
steps:
....