chore: build ci/cd pipeline

Author: tape4

.github/workflows/CICD_DEVELOP.yml

@@ -0,0 +1,172 @@
+name: CI/CD FOR DEVELOP
+
+on:
+  push:
+    branches:
+      - develop
+
+env:
+  DOCKERHUB_REPOSITORY: fontory-server
+
+jobs:
+  CI:
+    name: Continuous Integration
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+
+    steps:
+      - name: Get short SHA
+        id: slug
+        run: echo "sha7=$(echo ${GITHUB_SHA} | cut -c1-7)" >> $GITHUB_OUTPUT
+
+      - name: Discord Webhook Action
+        uses: tsickert/[email protected]
+        with:
+          webhook-url: ${{ secrets.DISCORD_WEBHOOK_URL }}
+          content: |
+            New Commit[${{ steps.slug.outputs.sha7 }}] detected on branch ${{ github.ref_name }}
+            Commit Link: https://github.com/${{ github.repository }}/commit/${{ github.sha }}
+            GitHub Action Link: https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}
+
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Set up JDK 17
+        uses: actions/setup-java@v4
+        with:
+          java-version: '17'
+          distribution: 'temurin'
+
+      - name: Setup MySQL
+        uses: mirromutth/[email protected]
+        with:
+          host port: 3308
+          mysql database: 'TESTDB'
+          mysql user: 'fontory'
+          mysql password: 'fontoryPW'
+
+      - name: Setup Redis
+        uses: supercharge/[email protected]
+        with:
+          redis-version: 6
+
+      - name: Setup Gradle
+        uses: gradle/actions/setup-gradle@417ae3ccd767c252f5661f1ace9f835f9654f2b5 # v3.1.0
+
+      - name: Generate application.properties
+        run: |
+          echo "commit.hash=${{ steps.slug.outputs.sha7 }}" >> ./src/main/resources/application-prod.properties
+          echo "spring.datasource.url=jdbc:mariadb://${{ secrets.DATASOURCE_DB_URL }}:3306/FONTORY?characterEncoding=UTF-8&serverTimezone=Asia/Seoul" >> ./src/main/resources/application-prod.properties
+          echo "spring.datasource.username=${{ secrets.DATASOURCE_DB_USERNAME }}" >> ./src/main/resources/application-prod.properties
+          echo "spring.datasource.password=${{ secrets.DATASOURCE_DB_PASSWORD }}" >> ./src/main/resources/application-prod.properties
+          echo "spring.data.redis.host=${{ secrets.REDIS_URL }}" >> ./src/main/resources/application-prod.properties
+
+      - name: Build with Gradle Wrapper
+#        run: ./gradlew test -i
+        run: ./gradlew build
+
+      - name: Upload jar file to Artifact
+        uses: actions/upload-artifact@v4
+        with:
+          name: jar_files
+          path: build/libs/*.jar
+
+      - name: Upload Dockerfile to Artifact
+        uses: actions/upload-artifact@v4
+        with:
+          name: Dockerfile
+          path: ./Dockerfile
+
+  CD_Delivery:
+    name: Delivery
+    needs: CI
+    runs-on: ubuntu-latest
+
+    permissions:
+      contents: read
+
+    steps:
+      - name: Download jar file from Artifact
+        uses: actions/download-artifact@v4
+        with:
+          name: jar_files
+          path: build/libs
+
+      - name: Download Dockerfile file from Artifact
+        uses: actions/download-artifact@v4
+        with:
+          name: Dockerfile
+          path: ./
+
+      - name: Log in to Docker Hub
+        uses: docker/login-action@v3
+        with:
+          username: ${{ secrets.DOCKER_USERNAME }}
+          password: ${{ secrets.DOCKER_PASSWORD }}
+
+      - name: Get short SHA
+        id: slug
+        run: echo "sha7=$(echo ${GITHUB_SHA} | cut -c1-7)" >> $GITHUB_OUTPUT
+
+      - name: Build, tag, and push image to DockerHub
+        id: build-image
+        env:
+          USERNAME: ${{ secrets.DOCKER_USERNAME }}
+          IMAGE_TAG: ${{ steps.slug.outputs.sha7 }}
+
+        run: |
+          docker build -t $USERNAME/$DOCKERHUB_REPOSITORY:$IMAGE_TAG -t $USERNAME/$DOCKERHUB_REPOSITORY:latest .
+          docker push $USERNAME/$DOCKERHUB_REPOSITORY --all-tags
+          echo "image=$USERNAME/$DOCKERHUB_REPOSITORY:$IMAGE_TAG&latest" >> $GITHUB_OUTPUT
+
+  CD_Deploy:
+    name: Deploy
+    needs: CD_Delivery
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Get short SHA
+        id: slug
+        run: echo "sha7=$(echo ${GITHUB_SHA} | cut -c1-7)" >> $GITHUB_OUTPUT
+
+      - name: Executing remote ssh commands
+        uses: appleboy/[email protected] # ssh 접속하는 오픈소스
+        with:
+          host: ${{ secrets.REMOTE_IP }} # 인스턴스 IP
+          username: ${{ secrets.REMOTE_USER }} # 우분투 아이디
+          key: ${{ secrets.REMOTE_PRIVATE_KEY }} # ec2 instance pem key
+          port: ${{ secrets.REMOTE_SSH_PORT }} # 접속포트
+          script: | # 실행할 스크립트
+            cd /home/ubuntu/cicd/scripts
+            ./rolling-update.sh
+
+      - name: Discord Webhook Action
+        uses: tsickert/[email protected]
+        with:
+          webhook-url: ${{ secrets.DISCORD_WEBHOOK_URL }}
+          content: |
+            :o: Server successfully updated!
+            Commit: [${{ github.sha }}]
+            Branch: ${{ github.ref_name }}
+            Commit Link: https://github.com/${{ github.repository }}/commit/${{ github.sha }}
+            GitHub Action Link: https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}
+
+  failure_notification:
+    name: Failure Notification
+    runs-on: ubuntu-latest
+    needs: [CI, CD_Delivery, CD_Deploy]
+    if: failure()
+
+    steps:
+      - name: Discord Webhook Action on Failure
+        uses: tsickert/[email protected]
+        with:
+          webhook-url: ${{ secrets.DISCORD_WEBHOOK_URL }}
+          content: |
+            :x: A job failed in the CI/CD pipeline!
+            Commit: [${{ github.sha }}]
+            Branch: ${{ github.ref_name }}
+            Commit Link: https://github.com/${{ github.repository }}/commit/${{ github.sha }}
+            GitHub Action Link: https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}
+            Please check the logs for more details.

.github/workflows/CI_TEST.yml

@@ -0,0 +1,52 @@
+name: CI TEST
+
+on:
+  push:
+    branches-ignore:
+      - main
+      - develop
+
+jobs:
+  CI:
+    name: Continuous Integration
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Set up JDK 17
+        uses: actions/setup-java@v4
+        with:
+          java-version: '17'
+          distribution: 'temurin'
+
+      - name: Setup MySQL
+        uses: mirromutth/[email protected]
+        with:
+          host port: 3308
+          mysql database: 'TESTDB'
+          mysql user: 'fontory'
+          mysql password: 'fontoryPW'
+
+      - name: Setup Redis
+        uses: supercharge/[email protected]
+        with:
+          redis-version: 6
+
+      - name: Setup Gradle
+        uses: gradle/actions/setup-gradle@417ae3ccd767c252f5661f1ace9f835f9654f2b5 # v3.1.0
+
+      - name: Get short SHA
+        id: slug
+        run: echo "sha7=$(echo ${GITHUB_SHA} | cut -c1-7)" >> $GITHUB_OUTPUT
+
+      - name: Generate application.properties
+        run: |
+          # add properties
+
+      - name: Build with Gradle Wrapper
+        run: ./gradlew build
+

Dockerfile

@@ -0,0 +1,4 @@
+FROM openjdk:17-alpine
+ARG JAR_FILE=build/libs/*.jar
+COPY ${JAR_FILE} app.jar
+ENTRYPOINT ["java", "-jar", "-Dspring.profiles.active=prod", "/app.jar"]

build.gradle

@@ -29,16 +29,16 @@ test {
 
 dependencies {
     implementation 'org.springframework.boot:spring-boot-starter-data-redis'
-    implementation 'org.springframework.boot:spring-boot-starter-oauth2-client'
-    implementation 'org.springframework.boot:spring-boot-starter-security'
+//    implementation 'org.springframework.boot:spring-boot-starter-oauth2-client'
+//    implementation 'org.springframework.boot:spring-boot-starter-security'
     implementation 'org.springframework.boot:spring-boot-starter-web'
     implementation 'org.springframework.boot:spring-boot-starter-data-jpa'
     compileOnly 'org.projectlombok:lombok'
     developmentOnly 'org.springframework.boot:spring-boot-devtools'
     runtimeOnly 'org.mariadb.jdbc:mariadb-java-client'
     annotationProcessor 'org.projectlombok:lombok'
     testImplementation 'org.springframework.boot:spring-boot-starter-test'
-    testImplementation 'org.springframework.security:spring-security-test'
+//    testImplementation 'org.springframework.security:spring-security-test'
     testRuntimeOnly 'org.junit.platform:junit-platform-launcher'
 }
 

src/main/java/org/fontory/fontorybe/common/controller/HealthCheck.java

@@ -0,0 +1,17 @@
+package org.fontory.fontorybe.common.controller;
+
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.ResponseBody;
+
+@Controller
+public class HealthCheck {
+
+    @Value("${commit.hash}")
+    public String commitHash;
+
+    @ResponseBody
+    @GetMapping("/health-check")
+    public String healthCheck() { return commitHash; }
+}

src/main/resources/application-prod.properties

@@ -1 +1,2 @@
-spring.jpa.hibernate.ddl-auto=create
+spring.jpa.hibernate.ddl-auto=create
+

src/main/resources/application-test.properties

@@ -1,4 +1,4 @@
-spring.datasource.url=jdbc:mariadb://localhost:3308/TESTDB?characterEncoding=UTF-8&serverTimezone=Asia/Seoul
+spring.datasource.url=jdbc:mariadb://localhost:3308/TESTDB?characterEncoding=UTF-8&serverTimezone=Asia/Seoul&allowPublicKeyRetrieval=true&useSSL=false
 spring.datasource.username=fontory
 spring.datasource.password=fontoryPW
 

src/main/resources/application.properties

@@ -6,4 +6,6 @@ spring.jpa.show-sql=true
 spring.jpa.properties.hibernate.format_sql=true
 
 spring.data.redis.host=localhost
-spring.data.redis.port=6379
+spring.data.redis.port=6379
+
+commit.hash=local

src/test/java/org/fontory/fontorybe/port/DBConnectivityTest.java

@@ -0,0 +1,28 @@
+package org.fontory.fontorybe.port;
+
+import org.junit.jupiter.api.Test;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.test.context.SpringBootTest;
+
+import javax.sql.DataSource;
+import java.sql.Connection;
+import java.sql.SQLException;
+
+import static org.assertj.core.api.Assertions.assertThat;
+import static org.assertj.core.api.Fail.fail;
+
+@SpringBootTest
+public class DBConnectivityTest {
+
+    @Autowired
+    private DataSource dataSource;
+
+    @Test
+    void testDatabaseConnectivity() {
+        try (Connection conn = dataSource.getConnection()) {
+            assertThat(conn).isNotNull();
+        } catch (SQLException e) {
+            fail("DB 연결 실패: " + e.getMessage());
+        }
+    }
+}

src/test/java/org/fontory/fontorybe/port/RedisConnectivityTest.java

@@ -0,0 +1,27 @@
+package org.fontory.fontorybe.port;
+
+import org.junit.jupiter.api.Test;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.test.context.SpringBootTest;
+import org.springframework.data.redis.core.RedisTemplate;
+
+import static org.assertj.core.api.Assertions.assertThat;
+
+@SpringBootTest
+public class RedisConnectivityTest {
+
+    @Autowired
+    private RedisTemplate<String, String> redisTemplate;
+
+    @Test
+    void testRedisConnectivity() {
+        final String key = "key";
+        final String value = "value";
+
+        redisTemplate.opsForValue().set(key, value);
+
+        String storedValue = redisTemplate.opsForValue().get(key);
+
+        assertThat(storedValue).isEqualTo(value);
+    }
+}