From a33e470e4d4df853003ff65b3ef90803d35d9c34 Mon Sep 17 00:00:00 2001 From: sky121113 Date: Mon, 23 Feb 2026 15:32:42 +0800 Subject: [PATCH] =?UTF-8?q?=E6=8B=86=E5=88=86=20CI/CD=20=E6=B5=81=E7=A8=8B?= =?UTF-8?q?=EF=BC=9A=E5=B0=87=20demo=20=E8=88=87=E6=AD=A3=E5=BC=8F?= =?UTF-8?q?=E7=92=B0=E5=A2=83=E7=9A=84=E9=83=A8=E7=BD=B2=E6=8B=86=E5=88=86?= =?UTF-8?q?=E8=87=B3=E7=8D=A8=E7=AB=8B=E6=AA=94=E6=A1=88?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- .gitea/workflows/deploy-demo.yaml | 99 ++++++++++++++ .gitea/workflows/deploy-prod.yaml | 95 ++++++++++++++ .gitea/workflows/deploy.yaml | 209 ------------------------------ 3 files changed, 194 insertions(+), 209 deletions(-) create mode 100644 .gitea/workflows/deploy-demo.yaml create mode 100644 .gitea/workflows/deploy-prod.yaml delete mode 100644 .gitea/workflows/deploy.yaml diff --git a/.gitea/workflows/deploy-demo.yaml b/.gitea/workflows/deploy-demo.yaml new file mode 100644 index 0000000..92de78f --- /dev/null +++ b/.gitea/workflows/deploy-demo.yaml @@ -0,0 +1,99 @@ +name: Koori-ERP-Deploy-Demo + +on: + push: + branches: + - demo + +jobs: + deploy-demo: + runs-on: ubuntu-latest + steps: + - name: Checkout Code + uses: actions/checkout@v3 + with: + github-server-url: https://gitea.taiwan-star.com.tw + repository: ${{ github.repository }} + + - name: Step 1 - Push Code to Demo + run: | + apt-get update && apt-get install -y rsync openssh-client + mkdir -p ~/.ssh + echo "${{ secrets.DEMO_SSH_KEY }}" > ~/.ssh/id_rsa_demo + chmod 600 ~/.ssh/id_rsa_demo + rsync -avz --delete \ + --exclude='.git' \ + --exclude='node_modules' \ + --exclude='vendor' \ + --exclude='storage' \ + --exclude='.env' \ + --exclude='public/build' \ + -e "ssh -p 2227 -i ~/.ssh/id_rsa_demo -o StrictHostKeyChecking=no" \ + ./ root@220.132.7.82:/var/www/star-erp-demo/ + rm ~/.ssh/id_rsa_demo + + - name: Step 2 - Check if Rebuild Needed + id: check_rebuild + uses: appleboy/ssh-action@master + with: + host: 220.132.7.82 + port: 2227 + username: root + key: ${{ secrets.DEMO_SSH_KEY }} + script: | + cd /var/www/star-erp-demo + if git diff --name-only HEAD~1 HEAD 2>/dev/null | grep -qE '(Dockerfile|compose\.yaml|docker-compose\.yaml)'; then + echo "REBUILD_NEEDED=true" + else + echo "REBUILD_NEEDED=false" + fi + + - name: Step 3 - Container Up & Health Check + uses: appleboy/ssh-action@master + with: + host: 220.132.7.82 + port: 2227 + username: root + key: ${{ secrets.DEMO_SSH_KEY }} + script: | + cd /var/www/star-erp-demo + chown -R 1000:1000 . + + if git diff --name-only HEAD~1 HEAD 2>/dev/null | grep -qE '(Dockerfile|compose\.yaml|docker-compose\.yaml)'; then + echo "🔄 偵測到 Docker 相關檔案變更,執行完整重建..." + WWWGROUP=1000 WWWUSER=1000 docker compose up -d --build --wait + else + echo "⚡ 無 Docker 檔案變更,僅重載服務..." + if ! docker ps --format '{{.Names}}' | grep -q 'star-erp-laravel'; then + echo "容器未運行,正在啟動..." + WWWGROUP=1000 WWWUSER=1000 docker compose up -d --wait + else + echo "容器已運行,跳過 docker compose,直接進行程式碼部署..." + fi + fi + + echo "容器狀態:" && docker ps --filter "name=star-erp-laravel" + + - name: Step 4 - Composer & NPM Build + uses: appleboy/ssh-action@master + with: + host: 220.132.7.82 + port: 2227 + username: root + key: ${{ secrets.DEMO_SSH_KEY }} + script: | + docker exec -u 1000:1000 -w /var/www/html star-erp-laravel sh -c " + composer install --no-dev --optimize-autoloader --no-interaction && + npm install && + npm run build && + php artisan storage:link && + php artisan migrate --force && + php artisan tenants:migrate --force && + php artisan db:seed --force && + php artisan tenants:run db:seed --option=\"class=PermissionSeeder\" --option=\"force=true\" && + php artisan permission:cache-reset && + php artisan optimize:clear && + php artisan optimize && + php artisan view:cache + " + docker exec star-erp-laravel chmod -R 775 /var/www/html/storage /var/www/html/bootstrap/cache diff --git a/.gitea/workflows/deploy-prod.yaml b/.gitea/workflows/deploy-prod.yaml new file mode 100644 index 0000000..cd828eb --- /dev/null +++ b/.gitea/workflows/deploy-prod.yaml @@ -0,0 +1,95 @@ +name: Koori-ERP-Deploy-Production + +on: + push: + branches: + - main + +jobs: + deploy-production: + runs-on: ubuntu-latest + steps: + - name: Checkout Code + uses: actions/checkout@v3 + with: + repository: ${{ github.repository }} + + - name: Step 1 - Push Code to Production + run: | + apt-get update && apt-get install -y rsync openssh-client + mkdir -p ~/.ssh + echo "${{ secrets.PROD_SSH_KEY }}" > ~/.ssh/id_rsa_prod + chmod 600 ~/.ssh/id_rsa_prod + rsync -avz --delete \ + --exclude='.git' \ + --exclude='.env' \ + --exclude='node_modules' \ + --exclude='vendor' \ + --exclude='storage' \ + --exclude='public/build' \ + -e "ssh -p 2224 -i ~/.ssh/id_rsa_prod -o StrictHostKeyChecking=no" \ + ./ root@220.132.7.82:/var/www/star-erp/ + rm ~/.ssh/id_rsa_prod + + - name: Step 2 - Check if Rebuild Needed + id: check_rebuild_prod + uses: appleboy/ssh-action@master + with: + host: 220.132.7.82 + port: 2224 + username: root + key: ${{ secrets.PROD_SSH_KEY }} + script: | + cd /var/www/star-erp + # [Patch] 修正正式機 Nginx Proxy 配置 (對應外部 SSL/OpenResty) + sed -i "s/- '8080:8080'/- '80:80'\n - '8080:8080'/" compose.yaml + sed -i "s/demo-proxy.conf/prod-proxy.conf/" compose.yaml + + if git diff --name-only HEAD~1 HEAD 2>/dev/null | grep -qE '(Dockerfile|compose\.yaml|docker-compose\.yaml)'; then + echo "REBUILD_NEEDED=true" + else + echo "REBUILD_NEEDED=false" + fi + + - name: Step 3 - Container Up & Health Check + uses: appleboy/ssh-action@master + with: + host: 220.132.7.82 + port: 2224 + username: root + key: ${{ secrets.PROD_SSH_KEY }} + script: | + cd /var/www/star-erp + chown -R 1000:1000 . + + if git diff --name-only HEAD~1 HEAD 2>/dev/null | grep -qE '(Dockerfile|compose\.yaml|docker-compose\.yaml)'; then + echo "🔄 偵測到 Docker 相關檔案變更,執行完整重建..." + WWWGROUP=1000 WWWUSER=1000 docker compose up -d --build --wait + else + echo "⚡ 無 Docker 檔案變更,僅重載服務..." + if ! docker ps --format '{{.Names}}' | grep -q 'star-erp-laravel'; then + echo "容器未運行,正在啟動..." + WWWGROUP=1000 WWWUSER=1000 docker compose up -d --wait + else + echo "容器已運行,跳過 docker compose,直接進行程式碼部署..." + fi + fi + + echo "容器狀態:" && docker ps --filter "name=star-erp-laravel" + + docker exec -u 1000:1000 -w /var/www/html star-erp-laravel sh -c " + composer install --no-dev --optimize-autoloader && + npm install && + npm run build + + php artisan storage:link && + php artisan migrate --force && + php artisan tenants:migrate --force && + php artisan db:seed --force && + php artisan tenants:run db:seed --option=\"class=PermissionSeeder\" --option=\"force=true\" && + php artisan permission:cache-reset && + php artisan optimize:clear && + php artisan optimize && + php artisan view:cache + " + docker exec star-erp-laravel chmod -R 775 /var/www/html/storage /var/www/html/bootstrap/cache diff --git a/.gitea/workflows/deploy.yaml b/.gitea/workflows/deploy.yaml deleted file mode 100644 index 2dd79a7..0000000 --- a/.gitea/workflows/deploy.yaml +++ /dev/null @@ -1,209 +0,0 @@ -name: Koori-ERP-Deploy-System - -on: - push: - branches: - - demo - - main - -jobs: - # --- 1. Demo 環境部署 (gitea_work) --- - deploy-demo: - if: github.ref == 'refs/heads/demo' - runs-on: ubuntu-latest - steps: - - name: Checkout Code - uses: actions/checkout@v3 - with: - github-server-url: https://gitea.taiwan-star.com.tw - repository: ${{ github.repository }} - - - name: Step 1 - Push Code to Demo - run: | - apt-get update && apt-get install -y rsync openssh-client - mkdir -p ~/.ssh - echo "${{ secrets.DEMO_SSH_KEY }}" > ~/.ssh/id_rsa_demo - chmod 600 ~/.ssh/id_rsa_demo - rsync -avz --delete \ - --exclude='.git' \ - --exclude='node_modules' \ - --exclude='vendor' \ - --exclude='storage' \ - --exclude='.env' \ - --exclude='public/build' \ - -e "ssh -p 2227 -i ~/.ssh/id_rsa_demo -o StrictHostKeyChecking=no" \ - ./ root@220.132.7.82:/var/www/star-erp-demo/ - rm ~/.ssh/id_rsa_demo - - # 2. 檢查是否需要重建容器(只有 Dockerfile 或 compose.yaml 變動時才重建) - - name: Step 2 - Check if Rebuild Needed - id: check_rebuild - uses: appleboy/ssh-action@master - with: - host: 220.132.7.82 - port: 2227 - username: root - key: ${{ secrets.DEMO_SSH_KEY }} - script: | - cd /var/www/star-erp-demo - # 檢查最近的 commit 是否包含 Dockerfile 或 compose.yaml 的變更 - if git diff --name-only HEAD~1 HEAD 2>/dev/null | grep -qE '(Dockerfile|compose\.yaml|docker-compose\.yaml)'; then - echo "REBUILD_NEEDED=true" - else - echo "REBUILD_NEEDED=false" - fi - - # 3. 啟動或重建容器(根據檢查結果決定是否加 --build) - - name: Step 3 - Container Up & Health Check - uses: appleboy/ssh-action@master - with: - host: 220.132.7.82 - port: 2227 - username: root - key: ${{ secrets.DEMO_SSH_KEY }} - script: | - cd /var/www/star-erp-demo - chown -R 1000:1000 . - - # 檢查是否需要重建 - if git diff --name-only HEAD~1 HEAD 2>/dev/null | grep -qE '(Dockerfile|compose\.yaml|docker-compose\.yaml)'; then - echo "🔄 偵測到 Docker 相關檔案變更,執行完整重建..." - WWWGROUP=1000 WWWUSER=1000 docker compose up -d --build --wait - else - echo "⚡ 無 Docker 檔案變更,僅重載服務..." - # 確保容器正在運行(若未運行則啟動) - if ! docker ps --format '{{.Names}}' | grep -q 'star-erp-laravel'; then - echo "容器未運行,正在啟動..." - WWWGROUP=1000 WWWUSER=1000 docker compose up -d --wait - else - echo "容器已運行,跳過 docker compose,直接進行程式碼部署..." - fi - fi - - echo "容器狀態:" && docker ps --filter "name=star-erp-laravel" - - - - - name: Step 4 - Composer & NPM Build - uses: appleboy/ssh-action@master - with: - host: 220.132.7.82 - port: 2227 - username: root - key: ${{ secrets.DEMO_SSH_KEY }} - script: | - docker exec -u 1000:1000 -w /var/www/html star-erp-laravel sh -c " - # 1. 後端依賴 (Demo 環境建議加上 --no-interaction 避免卡住) - composer install --no-dev --optimize-autoloader --no-interaction && - - # 2. 前端編譯 - npm install && - npm run build && - - # 3. Laravel 初始化與優化 - php artisan storage:link && - php artisan migrate --force && - php artisan tenants:migrate --force && - php artisan db:seed --force && - php artisan tenants:run db:seed --option="class=PermissionSeeder" --option="force=true" && - php artisan permission:cache-reset && - php artisan optimize:clear && - php artisan optimize && - php artisan view:cache - " - docker exec star-erp-laravel chmod -R 775 /var/www/html/storage /var/www/html/bootstrap/cache - - # --- 2. 正式環境部署 (220.132.7.82:2224) --- - deploy-production: - if: github.ref == 'refs/heads/main' - runs-on: ubuntu-latest - steps: - - name: Checkout Code - uses: actions/checkout@v3 - with: - repository: ${{ github.repository }} - - - name: Step 1 - Push Code to Production - run: | - apt-get update && apt-get install -y rsync openssh-client - mkdir -p ~/.ssh - echo "${{ secrets.PROD_SSH_KEY }}" > ~/.ssh/id_rsa_prod - chmod 600 ~/.ssh/id_rsa_prod - rsync -avz --delete \ - --exclude='.git' \ - --exclude='.env' \ - --exclude='node_modules' \ - --exclude='vendor' \ - --exclude='storage' \ - --exclude='public/build' \ - -e "ssh -p 2224 -i ~/.ssh/id_rsa_prod -o StrictHostKeyChecking=no" \ - ./ root@220.132.7.82:/var/www/star-erp/ - rm ~/.ssh/id_rsa_prod - - - # 2. 檢查是否需要重建容器(只有 Dockerfile 或 compose.yaml 變動時才重建) - - name: Step 2 - Check if Rebuild Needed - id: check_rebuild_prod - uses: appleboy/ssh-action@master - with: - host: 220.132.7.82 - port: 2224 - username: root - key: ${{ secrets.PROD_SSH_KEY }} - script: | - cd /var/www/star-erp - # [Patch] 修正正式機 Nginx Proxy 配置 (對應外部 SSL/OpenResty) - sed -i "s/- '8080:8080'/- '80:80'\n - '8080:8080'/" compose.yaml - sed -i "s/demo-proxy.conf/prod-proxy.conf/" compose.yaml - - # 檢查最近的 commit 是否包含 Dockerfile 或 compose.yaml 的變更 - if git diff --name-only HEAD~1 HEAD 2>/dev/null | grep -qE '(Dockerfile|compose\.yaml|docker-compose\.yaml)'; then - echo "REBUILD_NEEDED=true" - else - echo "REBUILD_NEEDED=false" - fi - - # 3. 啟動或重建容器(根據檢查結果決定是否加 --build) - - name: Step 3 - Container Up & Health Check - uses: appleboy/ssh-action@master - with: - host: 220.132.7.82 - port: 2224 - username: root - key: ${{ secrets.PROD_SSH_KEY }} - script: | - cd /var/www/star-erp - chown -R 1000:1000 . - # 檢查是否需要重建 - if git diff --name-only HEAD~1 HEAD 2>/dev/null | grep -qE '(Dockerfile|compose\.yaml|docker-compose\.yaml)'; then - echo "🔄 偵測到 Docker 相關檔案變更,執行完整重建..." - WWWGROUP=1000 WWWUSER=1000 docker compose up -d --build --wait - else - echo "⚡ 無 Docker 檔案變更,僅重載服務..." - # 確保容器正在運行(若未運行則啟動) - if ! docker ps --format '{{.Names}}' | grep -q 'star-erp-laravel'; then - echo "容器未運行,正在啟動..." - WWWGROUP=1000 WWWUSER=1000 docker compose up -d --wait - else - echo "容器已運行,跳過 docker compose,直接進行程式碼部署..." - fi - fi - - echo "容器狀態:" && docker ps --filter "name=star-erp-laravel" - - docker exec -u 1000:1000 -w /var/www/html star-erp-laravel sh -c " - composer install --no-dev --optimize-autoloader && - npm install && - npm run build - - php artisan storage:link && - php artisan migrate --force && - php artisan tenants:migrate --force && - php artisan db:seed --force && - php artisan tenants:run db:seed --option="class=PermissionSeeder" --option="force=true" && - php artisan permission:cache-reset && - php artisan optimize:clear && - php artisan optimize && - php artisan view:cache - " - docker exec star-erp-laravel chmod -R 775 /var/www/html/storage /var/www/html/bootstrap/cache \ No newline at end of file