name: CI/CD Pipeline on: push: branches: [main] jobs: docs: runs-on: ubuntu-latest if: "!contains(github.event.head_commit.message, '[skip ci]')" outputs: version: ${{ steps.version.outputs.version }} steps: - name: Checkout uses: actions/checkout@v4 with: fetch-depth: 0 - name: Setup Node.js uses: actions/setup-node@v4 with: node-version: 24 - name: Версия из package.json id: version run: | VERSION="v$(node -p "require('./package.json').version")" echo "version=$VERSION" >> $GITHUB_OUTPUT echo "Версия: $VERSION" - name: Генерация docs run: | npm ci npm run docs - name: Коммит generated/ run: | git config user.name "CI Bot" git config user.email "ci@gromlab.ru" git add generated/ README_RU.md if git diff --cached --quiet; then echo "Нет изменений, пропуск" else git commit -m "docs: обновить generated (${{ steps.version.outputs.version }}) [skip ci]" git push origin main fi - name: Создать тег run: | VERSION=${{ steps.version.outputs.version }} if git tag -l "$VERSION" | grep -q "$VERSION"; then echo "Тег $VERSION уже существует, пропуск" else git tag "$VERSION" git push origin "$VERSION" echo "Создан тег: $VERSION" fi docker: runs-on: ubuntu-latest needs: docs if: "!contains(github.event.head_commit.message, '[skip ci]')" steps: - name: Checkout uses: actions/checkout@v4 with: ref: main - name: Setup Docker Buildx uses: docker/setup-buildx-action@v3 - name: Setup variables run: | DOCKER_REGISTRY=$(echo "${{ gitea.server_url }}" | sed 's|https://||') echo "DOCKER_REGISTRY=$DOCKER_REGISTRY" >> $GITHUB_ENV REGISTRY_IMAGE="$DOCKER_REGISTRY/$(echo "${{ github.repository }}" | tr '[:upper:]' '[:lower:]')" echo "REGISTRY_IMAGE=$REGISTRY_IMAGE" >> $GITHUB_ENV - name: Login to Container Registry uses: docker/login-action@v3 with: registry: ${{ env.DOCKER_REGISTRY }} username: ${{ secrets.CR_USER }} password: ${{ secrets.CR_TOKEN }} - name: Extract metadata id: meta uses: docker/metadata-action@v5 with: images: ${{ env.REGISTRY_IMAGE }} tags: | type=ref,event=branch type=sha,prefix= type=raw,value=latest,enable={{is_default_branch}} type=raw,value=${{ needs.docs.outputs.version }} - name: Build and push uses: docker/build-push-action@v5 with: context: . file: ./Dockerfile platforms: linux/amd64 push: true tags: ${{ steps.meta.outputs.tags }} labels: ${{ steps.meta.outputs.labels }} build-args: | VERSION_TAG=${{ needs.docs.outputs.version }} provenance: false sbom: false deploy: runs-on: ubuntu-latest needs: docker steps: - name: Setup variables run: | DOCKER_REGISTRY=$(echo "${{ gitea.server_url }}" | sed 's|https://||') echo "DOCKER_REGISTRY=$DOCKER_REGISTRY" >> $GITHUB_ENV REGISTRY_IMAGE="$DOCKER_REGISTRY/$(echo "${{ github.repository }}" | tr '[:upper:]' '[:lower:]')" echo "REGISTRY_IMAGE=$REGISTRY_IMAGE" >> $GITHUB_ENV - name: Настройка SSH run: | mkdir -p ~/.ssh echo "${{ secrets.SSH_PRIVATE_KEY }}" > ~/.ssh/deploy_key chmod 600 ~/.ssh/deploy_key ssh-keyscan -H 188.225.47.78 >> ~/.ssh/known_hosts - name: Деплой run: | ssh -i ~/.ssh/deploy_key root@188.225.47.78 bash -s <<'SCRIPT' set -e IMAGE="${{ env.REGISTRY_IMAGE }}:latest" CONTAINER="slm-design" echo '${{ secrets.CR_TOKEN }}' | docker login ${{ env.DOCKER_REGISTRY }} -u '${{ secrets.CR_USER }}' --password-stdin OLD_IMAGE_ID=$(docker images -q "$IMAGE" 2>/dev/null || true) docker pull "$IMAGE" docker stop "$CONTAINER" 2>/dev/null || true docker rm "$CONTAINER" 2>/dev/null || true docker run -d --name "$CONTAINER" --network web --restart unless-stopped "$IMAGE" NEW_IMAGE_ID=$(docker images -q "$IMAGE") if [ -n "$OLD_IMAGE_ID" ] && [ "$OLD_IMAGE_ID" != "$NEW_IMAGE_ID" ]; then docker rmi "$OLD_IMAGE_ID" 2>/dev/null || true fi docker image prune -af --filter "label=org.opencontainers.image.title=$CONTAINER" docker image prune -f docker builder prune -f 2>/dev/null || true docker ps --filter "name=$CONTAINER" SCRIPT