277 lines
12 KiB
YAML
277 lines
12 KiB
YAML
name: Deploy to Production
|
||
|
||
on:
|
||
push:
|
||
branches: [ main ]
|
||
workflow_dispatch:
|
||
inputs:
|
||
action:
|
||
description: 'Action to perform'
|
||
required: true
|
||
type: choice
|
||
options:
|
||
- deploy
|
||
- rollback
|
||
rollback_commit:
|
||
description: 'Commit hash to rollback to (optional, uses last successful if empty)'
|
||
required: false
|
||
type: string
|
||
|
||
jobs:
|
||
deploy:
|
||
runs-on: ubuntu-latest
|
||
name: Deploy to Production
|
||
if: |
|
||
github.event_name == 'push' ||
|
||
(github.event_name == 'workflow_dispatch' && github.event.inputs.action == 'deploy')
|
||
concurrency:
|
||
group: production-deploy
|
||
cancel-in-progress: false
|
||
environment:
|
||
name: production
|
||
|
||
steps:
|
||
- name: Checkout code
|
||
uses: actions/checkout@v4
|
||
with:
|
||
ref: main
|
||
|
||
- name: Deploy to server
|
||
uses: appleboy/ssh-action@v1.0.0
|
||
with:
|
||
host: ${{ vars.SERVER_HOST || secrets.SERVER_HOST }}
|
||
username: ${{ vars.SERVER_USER || secrets.SERVER_USER }}
|
||
key: ${{ secrets.SSH_PRIVATE_KEY }}
|
||
port: ${{ vars.SSH_PORT || secrets.SSH_PORT || 22 }}
|
||
script: |
|
||
set -e
|
||
export TELEGRAM_BOT_TOKEN="${{ secrets.TELEGRAM_BOT_TOKEN }}"
|
||
export TELEGRAM_TEST_BOT_TOKEN="${{ secrets.TELEGRAM_TEST_BOT_TOKEN }}"
|
||
export ANON_BOT_TOKEN="${{ secrets.ANON_BOT_TOKEN }}"
|
||
|
||
echo "🚀 Starting deployment to production..."
|
||
|
||
cd /home/prod
|
||
|
||
# Сохраняем информацию о коммите
|
||
CURRENT_COMMIT=$(git rev-parse HEAD)
|
||
COMMIT_MESSAGE=$(git log -1 --pretty=format:"%s" || echo "Unknown")
|
||
COMMIT_AUTHOR=$(git log -1 --pretty=format:"%an" || echo "Unknown")
|
||
TIMESTAMP=$(date +"%Y-%m-%d %H:%M:%S")
|
||
|
||
echo "📝 Current commit: $CURRENT_COMMIT"
|
||
echo "📝 Commit message: $COMMIT_MESSAGE"
|
||
echo "📝 Author: $COMMIT_AUTHOR"
|
||
|
||
# Записываем в историю деплоев
|
||
HISTORY_FILE="/home/prod/.deploy_history.txt"
|
||
HISTORY_SIZE="${DEPLOY_HISTORY_SIZE:-10}"
|
||
echo "${TIMESTAMP}|${CURRENT_COMMIT}|${COMMIT_MESSAGE}|${COMMIT_AUTHOR}|deploying" >> "$HISTORY_FILE"
|
||
tail -n "$HISTORY_SIZE" "$HISTORY_FILE" > "${HISTORY_FILE}.tmp" && mv "${HISTORY_FILE}.tmp" "$HISTORY_FILE"
|
||
|
||
# Обновляем код
|
||
echo "📥 Pulling latest changes from main..."
|
||
sudo chown -R deploy:deploy /home/prod/bots || true
|
||
git fetch origin main
|
||
git reset --hard origin/main
|
||
sudo chown -R deploy:deploy /home/prod/bots || true
|
||
|
||
NEW_COMMIT=$(git rev-parse HEAD)
|
||
echo "✅ Code updated: $CURRENT_COMMIT → $NEW_COMMIT"
|
||
|
||
# Валидация docker-compose
|
||
echo "🔍 Validating docker-compose configuration..."
|
||
docker-compose config > /dev/null || exit 1
|
||
echo "✅ docker-compose.yml is valid"
|
||
|
||
# Проверка дискового пространства
|
||
MIN_FREE_GB=5
|
||
AVAILABLE_SPACE=$(df -BG /home/prod 2>/dev/null | tail -1 | awk '{print $4}' | sed 's/G//' || echo "0")
|
||
echo "💾 Available disk space: ${AVAILABLE_SPACE}GB"
|
||
|
||
if [ "$AVAILABLE_SPACE" -lt "$MIN_FREE_GB" ]; then
|
||
echo "⚠️ Insufficient disk space! Cleaning up Docker resources..."
|
||
docker system prune -f --volumes || true
|
||
fi
|
||
|
||
# Сборка и запуск контейнеров (кроме ботов для ускорения деплоя)
|
||
echo "🔨 Rebuilding infrastructure containers (excluding bots)..."
|
||
docker-compose stop prometheus grafana uptime-kuma alertmanager || true
|
||
|
||
export TELEGRAM_BOT_TOKEN TELEGRAM_TEST_BOT_TOKEN ANON_BOT_TOKEN
|
||
docker-compose build --pull prometheus grafana uptime-kuma alertmanager
|
||
docker-compose up -d prometheus grafana uptime-kuma alertmanager
|
||
|
||
echo "✅ Infrastructure containers rebuilt and started (bots remain running)"
|
||
|
||
- name: Update deploy history
|
||
if: always()
|
||
uses: appleboy/ssh-action@v1.0.0
|
||
with:
|
||
host: ${{ vars.SERVER_HOST || secrets.SERVER_HOST }}
|
||
username: ${{ vars.SERVER_USER || secrets.SERVER_USER }}
|
||
key: ${{ secrets.SSH_PRIVATE_KEY }}
|
||
port: ${{ vars.SSH_PORT || secrets.SSH_PORT || 22 }}
|
||
script: |
|
||
HISTORY_FILE="/home/prod/.deploy_history.txt"
|
||
|
||
if [ -f "$HISTORY_FILE" ]; then
|
||
DEPLOY_STATUS="failed"
|
||
if [ "${{ job.status }}" = "success" ]; then
|
||
DEPLOY_STATUS="success"
|
||
fi
|
||
|
||
sed -i '$s/|deploying$/|'"$DEPLOY_STATUS"'/' "$HISTORY_FILE"
|
||
echo "✅ Deploy history updated: $DEPLOY_STATUS"
|
||
fi
|
||
|
||
- name: Send deployment notification
|
||
if: always()
|
||
uses: appleboy/telegram-action@v1.0.0
|
||
with:
|
||
to: ${{ secrets.TELEGRAM_CHAT_ID }}
|
||
token: ${{ secrets.TELEGRAM_BOT_TOKEN }}
|
||
message: |
|
||
${{ job.status == 'success' && '✅' || '❌' }} Deployment: ${{ job.status }}
|
||
|
||
📦 Repository: prod
|
||
🌿 Branch: main
|
||
📝 Commit: ${{ github.event.pull_request.merge_commit_sha || github.sha }}
|
||
👤 Author: ${{ github.event.pull_request.user.login || github.actor }}
|
||
${{ github.event.pull_request.number && format('🔀 PR: #{0}', github.event.pull_request.number) || '' }}
|
||
|
||
${{ job.status == 'success' && '✅ Deployment successful! Containers started.' || '❌ Deployment failed! Check logs for details.' }}
|
||
|
||
🔗 View details: ${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}
|
||
continue-on-error: true
|
||
|
||
rollback:
|
||
runs-on: ubuntu-latest
|
||
name: Rollback to Previous Version
|
||
if: |
|
||
github.event_name == 'workflow_dispatch' &&
|
||
github.event.inputs.action == 'rollback'
|
||
environment:
|
||
name: production
|
||
|
||
steps:
|
||
- name: Checkout code
|
||
uses: actions/checkout@v4
|
||
with:
|
||
ref: main
|
||
|
||
- name: Rollback on server
|
||
uses: appleboy/ssh-action@v1.0.0
|
||
with:
|
||
host: ${{ vars.SERVER_HOST || secrets.SERVER_HOST }}
|
||
username: ${{ vars.SERVER_USER || secrets.SERVER_USER }}
|
||
key: ${{ secrets.SSH_PRIVATE_KEY }}
|
||
port: ${{ vars.SSH_PORT || secrets.SSH_PORT || 22 }}
|
||
script: |
|
||
set -e
|
||
export TELEGRAM_BOT_TOKEN="${{ secrets.TELEGRAM_BOT_TOKEN }}"
|
||
export TELEGRAM_TEST_BOT_TOKEN="${{ secrets.TELEGRAM_TEST_BOT_TOKEN }}"
|
||
export ANON_BOT_TOKEN="${{ secrets.ANON_BOT_TOKEN }}"
|
||
|
||
echo "🔄 Starting rollback..."
|
||
|
||
cd /home/prod
|
||
|
||
# Определяем коммит для отката
|
||
ROLLBACK_COMMIT="${{ github.event.inputs.rollback_commit }}"
|
||
HISTORY_FILE="/home/prod/.deploy_history.txt"
|
||
|
||
if [ -z "$ROLLBACK_COMMIT" ]; then
|
||
echo "📝 No commit specified, finding last successful deploy..."
|
||
if [ -f "$HISTORY_FILE" ]; then
|
||
ROLLBACK_COMMIT=$(grep "|success$" "$HISTORY_FILE" | tail -1 | cut -d'|' -f2 || echo "")
|
||
fi
|
||
|
||
if [ -z "$ROLLBACK_COMMIT" ]; then
|
||
echo "❌ No successful deploy found in history!"
|
||
echo "💡 Please specify commit hash manually or check deploy history"
|
||
exit 1
|
||
fi
|
||
fi
|
||
|
||
echo "📝 Rolling back to commit: $ROLLBACK_COMMIT"
|
||
|
||
# Проверяем, что коммит существует
|
||
if ! git cat-file -e "$ROLLBACK_COMMIT" 2>/dev/null; then
|
||
echo "❌ Commit $ROLLBACK_COMMIT not found!"
|
||
exit 1
|
||
fi
|
||
|
||
# Сохраняем текущий коммит
|
||
CURRENT_COMMIT=$(git rev-parse HEAD)
|
||
COMMIT_MESSAGE=$(git log -1 --pretty=format:"%s" "$ROLLBACK_COMMIT" || echo "Rollback")
|
||
TIMESTAMP=$(date +"%Y-%m-%d %H:%M:%S")
|
||
|
||
echo "📝 Current commit: $CURRENT_COMMIT"
|
||
echo "📝 Target commit: $ROLLBACK_COMMIT"
|
||
echo "📝 Commit message: $COMMIT_MESSAGE"
|
||
|
||
# Исправляем права перед откатом
|
||
sudo chown -R deploy:deploy /home/prod/bots || true
|
||
|
||
# Откатываем код
|
||
echo "🔄 Rolling back code..."
|
||
git fetch origin main
|
||
git reset --hard "$ROLLBACK_COMMIT"
|
||
|
||
# Исправляем права после отката
|
||
sudo chown -R deploy:deploy /home/prod/bots || true
|
||
|
||
echo "✅ Code rolled back: $CURRENT_COMMIT → $ROLLBACK_COMMIT"
|
||
|
||
# Валидация docker-compose
|
||
echo "🔍 Validating docker-compose configuration..."
|
||
docker-compose config > /dev/null || exit 1
|
||
echo "✅ docker-compose.yml is valid"
|
||
|
||
# Проверка дискового пространства
|
||
MIN_FREE_GB=5
|
||
AVAILABLE_SPACE=$(df -BG /home/prod 2>/dev/null | tail -1 | awk '{print $4}' | sed 's/G//' || echo "0")
|
||
echo "💾 Available disk space: ${AVAILABLE_SPACE}GB"
|
||
|
||
if [ "$AVAILABLE_SPACE" -lt "$MIN_FREE_GB" ]; then
|
||
echo "⚠️ Insufficient disk space! Cleaning up Docker resources..."
|
||
docker system prune -f --volumes || true
|
||
fi
|
||
|
||
# Пересобираем и запускаем контейнеры (кроме ботов для ускорения отката)
|
||
echo "🔨 Rebuilding infrastructure containers (excluding bots)..."
|
||
docker-compose stop prometheus grafana uptime-kuma alertmanager || true
|
||
|
||
export TELEGRAM_BOT_TOKEN TELEGRAM_TEST_BOT_TOKEN ANON_BOT_TOKEN
|
||
docker-compose build --pull prometheus grafana uptime-kuma alertmanager
|
||
docker-compose up -d prometheus grafana uptime-kuma alertmanager
|
||
|
||
echo "✅ Infrastructure containers rebuilt and started (bots remain running)"
|
||
|
||
# Записываем в историю
|
||
echo "${TIMESTAMP}|${ROLLBACK_COMMIT}|Rollback to: ${COMMIT_MESSAGE}|github-actions|rolled_back" >> "$HISTORY_FILE"
|
||
HISTORY_SIZE="${DEPLOY_HISTORY_SIZE:-10}"
|
||
tail -n "$HISTORY_SIZE" "$HISTORY_FILE" > "${HISTORY_FILE}.tmp" && mv "${HISTORY_FILE}.tmp" "$HISTORY_FILE"
|
||
|
||
echo "✅ Rollback completed successfully"
|
||
|
||
- name: Send rollback notification
|
||
if: always()
|
||
uses: appleboy/telegram-action@v1.0.0
|
||
with:
|
||
to: ${{ secrets.TELEGRAM_CHAT_ID }}
|
||
token: ${{ secrets.TELEGRAM_BOT_TOKEN }}
|
||
message: |
|
||
${{ job.status == 'success' && '🔄' || '❌' }} Rollback: ${{ job.status }}
|
||
|
||
📦 Repository: prod
|
||
🌿 Branch: main
|
||
📝 Rolled back to: ${{ github.event.inputs.rollback_commit || 'Last successful commit' }}
|
||
👤 Triggered by: ${{ github.actor }}
|
||
|
||
${{ job.status == 'success' && '✅ Rollback completed successfully! Services restored to previous version.' || '❌ Rollback failed! Check logs for details.' }}
|
||
|
||
🔗 View details: ${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}
|
||
continue-on-error: true
|