�mod::파일생성방법 변경

jjjh02 · web-flow · commit 781b96c8b6ae · 2025-02-23T05:10:26.000+09:00
diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml
@@ -37,7 +37,7 @@ jobs:
            source: ./project.jar
            target: "/home/ubuntu/OnTime-back"
            debug: true
-  deploy-to-ec2:
+  create-config-files:
     needs: build-and-docker
     runs-on: ubuntu-latest
     steps:
@@ -49,67 +49,7 @@ jobs:
         key: ${{ secrets.EC2_SSH_KEY }}
         debug: true
         script: |
-          CONTAINER_ID=$(sudo docker ps -aq --filter "name=ontime-container")
-          if [ ! -z "$CONTAINER_ID" ]; then
-          sudo docker stop $CONTAINER_ID
-          sudo docker rm $CONTAINER_ID
-          fi
-          # 기존 컨테이너 중지 및 제거
-          sudo docker-compose down
-          # 용량 정리
-          sudo docker container prune
-          sudo docker image prune -a
-          sudo docker volume prune
-          sudo docker network prune
-          # 보안이 필요한 파일 생성
-          sudo mkdir -p /home/ubuntu/OnTime-back/ontime-back/src/main/resources
           sudo mkdir -p /home/ubuntu/OnTime-back/ontime-back/src/main/resources/key
-          cho "spring.application.name=${{ secrets.SPRING_APPLICATION_NAME }}" > /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.datasource.url=${{ secrets.SPRING_DATASOURCE_URL }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.datasource.username=${{ secrets.SPRING_DATASOURCE_USERNAME }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.datasource.password=${{ secrets.SPRING_DATASOURCE_PASSWORD }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.datasource.driver-class-name=${{ secrets.SPRING_DATASOURCE_DRIVER_CLASS_NAME }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.jpa.hibernate.ddl-auto=create" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "jwt.secret.key=${{ secrets.JWT_SECRETKEY }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "jwt.access.expiration=${{ secrets.JWT_ACCESS_EXPIRATION }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "jwt.refresh.expiration=${{ secrets.JWT_REFRESH_EXPIRATION }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "jwt.access.header=${{ secrets.JWT_ACCESS_HEADER }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "jwt.refresh.header=${{ secrets.JWT_REFRESH_HEADER }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.security.oauth2.client.registration.google.client-id=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_GOOGLE_CLIENT_ID }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.security.oauth2.client.registration.google.client-secret=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_GOOGLE_CLIENT_SECRET }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.security.oauth2.client.registration.google.scope=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_GOOGLE_SCOPE }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.security.oauth2.client.registration.google.redirect-uri=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_GOOGLE_REDIRECT_URI }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.security.oauth2.client.registration.google.authorization-grant-type=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_GOOGLE_AUTHORIZATION_GRANT_TYPE }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.security.oauth2.client.registration.google.client-name=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_GOOGLE_CLIENT_NAME }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.security.oauth2.client.provider.google.authorization-uri=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_PROVIDER_GOOGLE_AUTHORIZATION_URI }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.security.oauth2.client.provider.google.token-uri=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_PROVIDER_GOOGLE_TOKEN_URI }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.security.oauth2.client.provider.google.user-info-uri=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_PROVIDER_GOOGLE_USER_INFO_URI }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.security.oauth2.client.provider.google.user-name-attribute=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_PROVIDER_GOOGLE_USER_NAME_ATTRIBUTE }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.security.oauth2.client.registration.kakao.client-id=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_KAKAO_CLIENT_ID }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.security.oauth2.client.registration.kakao.scope=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_KAKAO_SCOPE }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.security.oauth2.client.registration.kakao.redirect-uri=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_KAKAO_REDIRECT_URI }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.security.oauth2.client.registration.kakao.authorization-grant-type=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_KAKAO_AUTHORIZATION_GRANT_TYPE }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.security.oauth2.client.registration.kakao.client-name=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_KAKAO_CLIENT_NAME }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.security.oauth2.client.provider.kakao.authorization-uri=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_PROVIDER_KAKAO_AUTHORIZATION_URI }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.security.oauth2.client.provider.kakao.token-uri=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_PROVIDER_KAKAO_TOKEN_URI }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.security.oauth2.client.provider.kakao.user-info-uri=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_PROVIDER_KAKAO_USER_INFO_URI }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "spring.security.oauth2.client.provider.kakao.user-name-attribute=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_PROVIDER_KAKAO_USER_NAME_ATTRIBUTE }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "apple.client.id=${{ secrets.APPLE_CLIENT_ID }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "apple.client.secret=${{ secrets.APPLE_CLIENT_SECRET }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "apple.login.key=${{ secrets.APPLE_LOGIN_KEY }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "apple.team.id=${{ secrets.APPLE_TEAM_ID }}" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "management.endpoints.web.exposure.include=health" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          echo "management.endpoint.health.show-details=always" >> /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
-          
-          echo "${{ secrets.ONTIME_PUSH_FIREBASE_ADMINSDK }}" > /home/ubuntu/OnTime-back/ontime-back/src/main/resources/ontime-push-firebase-adminsdk-gnpxs-7d098872ff.json
-          
-          echo "${{ secrets.AUTHKEY_743M7R5W3W_1 }}" > /home/ubuntu/OnTime-back/ontime-back/src/main/resources/key/AuthKey_743M7R5W3W.p8
-          echo "${{ secrets.AUTHKEY_743M7R5W3W_2 }}" > /home/ubuntu/OnTime-back/ontime-back/src/main/resources/key/AuthKey_743M7R5W3W.p8  
-          echo "${{ secrets.AUTHKEY_743M7R5W3W_3 }}" > /home/ubuntu/OnTime-back/ontime-back/src/main/resources/key/AuthKey_743M7R5W3W.p8
-          echo "${{ secrets.AUTHKEY_743M7R5W3W_4 }}" > /home/ubuntu/OnTime-back/ontime-back/src/main/resources/key/AuthKey_743M7R5W3W.p8
-          echo "${{ secrets.AUTHKEY_743M7R5W3W_5 }}" > /home/ubuntu/OnTime-back/ontime-back/src/main/resources/key/AuthKey_743M7R5W3W.p8
-          echo "${{ secrets.AUTHKEY_743M7R5W3W_6 }}" > /home/ubuntu/OnTime-back/ontime-back/src/main/resources/key/AuthKey_743M7R5W3W.p8
-          
           # .env 파일 생성
           cat <<EOT > .env
           MYSQL_DATABASE=${{ secrets.MYSQL_DATABASE }}
@@ -153,5 +93,87 @@ jobs:
           APPLE_LOGIN_KEY=${{ secrets.APPLE_LOGIN_KEY }}
           APPLE_TEAM_ID=${{ secrets.APPLE_TEAM_ID }}
           EOT
+
+          # json 파일 생성
+          cat <<EOT > /home/ubuntu/OnTime-back/ontime-back/src/main/resources/ontime-push-firebase-adminsdk-gnpxs-7d098872ff.json
+          ${{ secrets.ONTIME_PUSH_FIREBASE_ADMINSDK }}
+          EOT          
+          
+          # authkey 생성
+          cat <<EOT > /home/ubuntu/OnTime-back/ontime-back/src/main/resources/key/AuthKey_743M7R5W3W.p8
+          ${{ secrets.AUTHKEY_743M7R5W3W_1 }}
+          ${{ secrets.AUTHKEY_743M7R5W3W_2 }}
+          ${{ secrets.AUTHKEY_743M7R5W3W_3 }}
+          ${{ secrets.AUTHKEY_743M7R5W3W_4 }}
+          ${{ secrets.AUTHKEY_743M7R5W3W_5 }}
+          ${{ secrets.AUTHKEY_743M7R5W3W_6 }}
+          EOT
+
+          # application.properties 생성
+          cat <<EOT > /home/ubuntu/OnTime-back/ontime-back/src/main/resources/application.properties
+          spring.application.name=${{ secrets.SPRING_APPLICATION_NAME }}
+          spring.datasource.url=${{ secrets.SPRING_DATASOURCE_URL }}
+          spring.datasource.username=${{ secrets.SPRING_DATASOURCE_USERNAME }}
+          spring.datasource.password=${{ secrets.SPRING_DATASOURCE_PASSWORD }}
+          spring.datasource.driver-class-name=${{ secrets.SPRING_DATASOURCE_DRIVER_CLASS_NAME }}
+          spring.jpa.hibernate.ddl-auto=create
+          jwt.secret.key=${{ secrets.JWT_SECRETKEY }} 
+          jwt.access.expiration=${{ secrets.JWT_ACCESS_EXPIRATION }} 
+          jwt.refresh.expiration=${{ secrets.JWT_REFRESH_EXPIRATION }} 
+          jwt.access.header=${{ secrets.JWT_ACCESS_HEADER }}
+          jwt.refresh.header=${{ secrets.JWT_REFRESH_HEADER }}
+          spring.security.oauth2.client.registration.google.client-id=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_GOOGLE_CLIENT_ID }}
+          spring.security.oauth2.client.registration.google.client-secret=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_GOOGLE_CLIENT_SECRET }}
+          spring.security.oauth2.client.registration.google.scope=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_GOOGLE_SCOPE }}
+          spring.security.oauth2.client.registration.google.redirect-uri=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_GOOGLE_REDIRECT_URI }}
+          spring.security.oauth2.client.registration.google.authorization-grant-type=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_GOOGLE_AUTHORIZATION_GRANT_TYPE }}
+          spring.security.oauth2.client.registration.google.client-name=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_GOOGLE_CLIENT_NAME }}
+          spring.security.oauth2.client.provider.google.authorization-uri=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_PROVIDER_GOOGLE_AUTHORIZATION_URI }}
+          spring.security.oauth2.client.provider.google.token-uri=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_PROVIDER_GOOGLE_TOKEN_URI }}
+          spring.security.oauth2.client.provider.google.user-info-uri=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_PROVIDER_GOOGLE_USER_INFO_URI }}
+          spring.security.oauth2.client.provider.google.user-name-attribute=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_PROVIDER_GOOGLE_USER_NAME_ATTRIBUTE }}
+          spring.security.oauth2.client.registration.kakao.client-id=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_KAKAO_CLIENT_ID }}
+          spring.security.oauth2.client.registration.kakao.scope=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_KAKAO_SCOPE }}
+          spring.security.oauth2.client.registration.kakao.redirect-uri=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_KAKAO_REDIRECT_URI }}
+          spring.security.oauth2.client.registration.kakao.authorization-grant-type=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_KAKAO_AUTHORIZATION_GRANT_TYPE }}
+          spring.security.oauth2.client.registration.kakao.client-name=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_KAKAO_CLIENT_NAME }}
+          spring.security.oauth2.client.provider.kakao.authorization-uri=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_PROVIDER_KAKAO_AUTHORIZATION_URI }}
+          spring.security.oauth2.client.provider.kakao.token-uri=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_PROVIDER_KAKAO_TOKEN_URI }}
+          spring.security.oauth2.client.provider.kakao.user-info-uri=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_PROVIDER_KAKAO_USER_INFO_URI }}
+          spring.security.oauth2.client.provider.kakao.user-name-attribute=${{ secrets.SPRING_SECURITY_OAUTH2_CLIENT_PROVIDER_KAKAO_USER_NAME_ATTRIBUTE }}
+          apple.client.id=${{ secrets.APPLE_CLIENT_ID }}
+          apple.client.secret=${{ secrets.APPLE_CLIENT_SECRET }}
+          apple.login.key=${{ secrets.APPLE_LOGIN_KEY }}
+          apple.team.id=${{ secrets.APPLE_TEAM_ID }}
+          management.endpoints.web.exposure.include=health
+          management.endpoint.health.show-details=always
+
+  deploy-to-ec2:
+    needs: create-config-files
+    runs-on: ubuntu-latest
+    steps:
+    - name: SSH to EC2 & Deploy Docker Containers
+      uses: appleboy/ssh-action@master
+      with:
+        host: ${{ secrets.EC2_HOST }}
+        username: ${{ secrets.EC2_USER }}
+        key: ${{ secrets.EC2_SSH_KEY }}
+        script: |
+          # 기존 컨테이너 종료 및 삭제
+          CONTAINER_ID=$(sudo docker ps -aq --filter "name=ontime-container")
+          if [ ! -z "$CONTAINER_ID" ]; then
+            sudo docker stop $CONTAINER_ID
+            sudo docker rm $CONTAINER_ID
+          fi
+          
+          # 기존 컨테이너 및 볼륨 정리
+          sudo docker-compose down
+          sudo docker container prune -f
+          sudo docker image prune -a -f
+          sudo docker volume prune -f
+          sudo docker network prune -f
+          
           # Docker Compose 실행
+          cd /home/ubuntu/OnTime-back/ontime-back
           docker-compose up --build -d
+      
