teamterning · jsoonworld · Jul 1, 2025 · Jun 30, 2025 · Jun 30, 2025 · Jun 30, 2025
diff --git a/.github/workflows/DEV-CI.yml b/.github/workflows/DEV-CI.yml
@@ -5,24 +5,22 @@ on:
     branches: [ "develop" ]
 
 jobs:
-  build:
+  build-and-test:
     runs-on: ubuntu-24.04
-    env:
-      working-directory: .
 
-    # Checkout - 가상 머신에 체크아웃
     steps:
-      - name: 체크아웃
+      # 1. 코드 체크아웃
+      - name: Checkout
         uses: actions/checkout@v3
 
-      # JDK setting - JDK 21 설정
+      # 2. JDK 21 설정
       - name: Set up JDK 21
         uses: actions/setup-java@v3
         with:
           distribution: 'temurin'
           java-version: '21'
 
-      # Gradle caching - 빌드 시간 향상
+      # 3. Gradle 캐싱 (빌드 속도 향상)
       - name: Gradle Caching
         uses: actions/cache@v3
         with:
@@ -33,10 +31,9 @@ jobs:
           restore-keys: |
             ${{ runner.os }}-gradle-
 
-      # Gradle build - 테스트 없이 gradle 빌드
-      - name: 빌드
+      # 4. Gradle 빌드 및 테스트 실행
+      - name: Build and Test with Gradle
         run: |
           chmod +x gradlew
-          ./gradlew build -x test
-        working-directory: ${{ env.working-directory }}
-        shell: bash
+          ./gradlew build
+        shell: bash
diff --git a/.github/workflows/DOCKER-CD-PRODUCTION.yml b/.github/workflows/DOCKER-CD-PRODUCTION.yml
@@ -0,0 +1,132 @@
+name: DOCKER-CD-PRODUCTION
+
+on:
+  push:
+    branches: [ "main" ]
+
+jobs:
+  ci:
+    runs-on: ubuntu-24.04
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v3
+
+      - name: Set up JDK 21
+        uses: actions/setup-java@v3
+        with:
+          distribution: 'temurin'
+          java-version: '21'
+
+      - name: Gradle Caching
+        uses: actions/cache@v3
+        with:
+          path: |
+            ~/.gradle/caches
+            ~/.gradle/wrapper
+          key: ${{ runner.os }}-gradle-${{ hashFiles('**/*.gradle*', '**/gradle-wrapper.properties') }}
+          restore-keys: |
+            ${{ runner.os }}-gradle-
+
+      - name: Build and Test with Gradle
+        run: |
+          chmod +x gradlew
+          ./gradlew build
+        shell: bash
+
+      - name: Login to Docker Hub
+        uses: docker/login-action@v2.2.0
+        with:
+          username: ${{ secrets.DOCKER_LOGIN_USERNAME }}
+          password: ${{ secrets.DOCKER_LOGIN_ACCESSTOKEN }}
+
+      - name: Build and push Docker image for Production
+        run: |
+          docker build --platform linux/amd64 -t terningpoint/terning2025 .
+          docker push terningpoint/terning2025
+
+  cd:
+    needs: ci
+    runs-on: ubuntu-24.04
+    environment: production
+
+    steps:
+      - name: Deploy to Production Server
+        uses: appleboy/ssh-action@master
+        with:
+          host: ${{ secrets.SERVER_IP }}
+          username: ${{ secrets.SERVER_USER }}
+          key: ${{ secrets.SERVER_KEY }}
+          script: |
+            # -- 변수 설정 --
+            APP_NAME="terning2025-prod"
+            IMAGE_NAME="terningpoint/terning2025"
+            NGINX_CONFIG_PATH="/etc/nginx"
+            SERVICE_URL_INC_PATH="${NGINX_CONFIG_PATH}/conf.d/service-url.inc"
+
+            echo "### 1. 최신 Docker 이미지를 pull합니다."
+            docker pull ${IMAGE_NAME}:latest
+
+            echo "### 2. 현재 실행 중인 포트(Blue)와 새로 실행할 포트(Green)를 결정합니다."
+            RUNNING_PORT=$(docker ps --filter "name=${APP_NAME}" --format "{{.Ports}}" | grep -o '[0-9]\{4\}->8080' | awk -F'->' '{print $1}')
+
+            if [ "${RUNNING_PORT}" == "8080" ]; then
+              NEW_PORT=8081
+            else
+              NEW_PORT=8080
+            fi
+
+            echo "   > 현재 서비스 포트(Blue): ${RUNNING_PORT:-없음}"
+            echo "   > 새로 실행할 포트(Green): ${NEW_PORT}"
+
+            echo "### 3. 새로운 버전의 애플리케이션(Green)을 실행합니다."
+            docker run -d --name ${APP_NAME}-${NEW_PORT} --restart always \
+              -p ${NEW_PORT}:8080 \
+              -e SPRING_PROFILES_ACTIVE=prod \
+              -e SPRING_DATASOURCE_URL='${{ secrets.DB_URL }}' \
+              -e SPRING_DATASOURCE_USERNAME=${{ secrets.DB_USERNAME }} \
+              -e SPRING_DATASOURCE_PASSWORD=${{ secrets.DB_PASSWORD }} \
+              -e SPRING_JPA_DEFAULT_SCHEMA=${{ secrets.SPRING_JPA_DEFAULT_SCHEMA }} \
+              -e JWT_SECRET_KEY='${{ secrets.JWT_SECRET_KEY }}' \
+              -e JWT_ACCESS_TOKEN_EXPIRED=${{ secrets.JWT_ACCESS_TOKEN_EXPIRED }} \
+              -e JWT_REFRESH_TOKEN_EXPIRED=${{ secrets.JWT_REFRESH_TOKEN_EXPIRED }} \
+              -e OPERATION_BASE_URL='${{ secrets.OPERATION_BASE_URL }}' \
+              -e DISCORD_WEBHOOK_URL='${{ secrets.DISCORD_WEBHOOK_URL }}' \
+              -e FIREBASE_SERVICE_KEY_JSON='${{ secrets.FIREBASE_SERVICE_KEY_JSON }}' \
+              -e LOGGING_LOCATION=${{ secrets.LOGGING_LOCATION }} \
+              -e TZ=Asia/Seoul \
+              -v /home/ubuntu:/home/ubuntu/prod-logs \
+              ${IMAGE_NAME}:latest
+
+            echo "### 4. 헬스 체크를 시작합니다."
+            sleep 10
+            for retry_count in {1..10}; do
+                echo "   > [${retry_count}/10] 서버 상태 체크 중..."
+                response=$(curl -s http://localhost:${NEW_PORT}/actuator/health)
+                up_count=$(echo "$response" | grep -c 'UP')
+
+                if [ $up_count -ge 1 ]; then
+                    echo "   > ✅ 서버 실행 성공 (포트: ${NEW_PORT})"
+                    break
+                fi
+                if [ $retry_count -eq 10 ]; then
+                    echo "   > ❌ 서버 헬스체크 실패. 배포를 중단하고 새 컨테이너를 종료합니다."
+                    docker rm -f ${APP_NAME}-${NEW_PORT}
+                    exit 1
+                fi
+                sleep 5
+            done
+
+            echo "### 5. Nginx 설정을 변경하여 트래픽을 새 포트(Green)로 전환합니다."
+            echo "set \$service_url http://127.0.0.1:${NEW_PORT};" | sudo tee ${SERVICE_URL_INC_PATH}
+            sudo nginx -s reload
+
+            echo "### 6. 이전 버전의 컨테이너(Blue)를 종료 및 삭제합니다."
+            if [ -n "${RUNNING_PORT}" ]; then
+                docker rm -f ${APP_NAME}-${RUNNING_PORT}
+            fi
+
+            echo "### 7. 사용하지 않는 Docker 이미지를 정리합니다."
+            docker image prune -af
+
+            echo "✅ Production 배포가 성공적으로 완료되었습니다. 현재 서비스 포트: ${NEW_PORT}"
diff --git a/.github/workflows/DOCKER-CD-STAGING.yml b/.github/workflows/DOCKER-CD-STAGING.yml
@@ -6,25 +6,21 @@ on:
 
 jobs:
   ci:
-    # Using Environment - Staging 환경 사용
-#    environment: staging..
     runs-on: ubuntu-24.04
-    env:
-      working-directory: .
 
-    # Checkout - 가상 머신에 체크아웃
     steps:
-      - name: 체크아웃
+      # 1. 소스 코드 체크아웃
+      - name: Checkout
         uses: actions/checkout@v3
 
-      # JDK setting - JDK 21 설정
+      # 2. JDK 21 설정
       - name: Set up JDK 21
         uses: actions/setup-java@v3
         with:
           distribution: 'temurin'
           java-version: '21'
 
-      # Gradle caching - 빌드 시간 향상
+      # 3. Gradle 캐싱 (빌드 속도 향상)
       - name: Gradle Caching
         uses: actions/cache@v3
         with:
@@ -35,59 +31,108 @@ jobs:
           restore-keys: |
             ${{ runner.os }}-gradle-
 
-      # create .yml - yml 파일 생성
-      - name: application.yml 생성
-        run: |
-          mkdir -p ./src/main/resources && cd $_
-          touch ./application.yml
-          echo "${{ secrets.YML }}" > ./application.yml
-          cat ./application.yml
-        working-directory: ${{ env.working-directory }}
-
-      - name: application-staging.yml 생성
-        run: |
-          cd ./src/main/resources
-          touch ./application-staging.yml
-          echo "${{ secrets.YML_STAGING }}" > ./application-staging.yml
-        working-directory: ${{ env.working-directory }}
-
-      # Gradle build - 테스트 없이 gradle 빌드
-      - name: 빌드
+      # 4. Gradle 빌드 및 테스트 실행
+      - name: Build and Test with Gradle
         run: |
           chmod +x gradlew
-          ./gradlew build -x test
-        working-directory: ${{ env.working-directory }}
+          ./gradlew build
         shell: bash
 
-      - name: docker 로그인
-        uses: docker/setup-buildx-action@v2.9.1
-
-      - name: login docker hub
+      # 5. Docker Hub 로그인 (Repository Secrets 사용)
+      - name: Login to Docker Hub
         uses: docker/login-action@v2.2.0
         with:
           username: ${{ secrets.DOCKER_LOGIN_USERNAME }}
           password: ${{ secrets.DOCKER_LOGIN_ACCESSTOKEN }}
 
-      - name: docker image 빌드 및 푸시
+      # 6. Docker 이미지 빌드 및 푸시
+      - name: Build and push Docker image for Staging
         run: |
           docker build -f Dockerfile-staging --platform linux/amd64 -t terningpoint/terning2025-staging .
           docker push terningpoint/terning2025-staging
-        working-directory: ${{ env.working-directory }}
 
   cd:
     needs: ci
     runs-on: ubuntu-24.04
+    environment: staging
 
     steps:
-      - name: Debugging - Echo Host
-        run: echo "${{ secrets.STAGING_SERVER_IP }}"
-
-      - name: docker 컨테이너 실행
+      - name: Deploy to Staging Server
         uses: appleboy/ssh-action@master
         with:
           host: ${{ secrets.STAGING_SERVER_IP }}
           username: ${{ secrets.STAGING_SERVER_USER }}
           key: ${{ secrets.STAGING_SERVER_KEY }}
           script: |
-            cd ~
-            ./deploy-staging.sh
+            # -- 변수 설정 --
+            APP_NAME="terning2025-staging"
+            IMAGE_NAME="terningpoint/terning2025-staging"
+            NGINX_CONFIG_PATH="/etc/nginx"
+            SERVICE_URL_INC_PATH="${NGINX_CONFIG_PATH}/conf.d/service-url-staging.inc"
+
+            echo "### 1. 최신 Docker 이미지를 pull합니다."
+            docker pull ${IMAGE_NAME}:latest
+
+            echo "### 2. 현재 실행 중인 포트(Blue)와 새로 실행할 포트(Green)를 결정합니다."
+            RUNNING_PORT=$(docker ps --filter "name=${APP_NAME}" --format "{{.Ports}}" | grep -o '[0-9]\{4\}->8080' | awk -F'->' '{print $1}')
+
+            if [ "${RUNNING_PORT}" == "8080" ]; then
+              NEW_PORT=8081
+            else
+              NEW_PORT=8080
+            fi
+
+            echo "   > 현재 서비스 포트(Blue): ${RUNNING_PORT:-없음}"
+            echo "   > 새로 실행할 포트(Green): ${NEW_PORT}"
+
+            echo "### 3. 새로운 버전의 애플리케이션(Green)을 실행합니다."
+            docker run -d --name ${APP_NAME}-${NEW_PORT} --restart always \
+              -p ${NEW_PORT}:8080 \
+              -e SPRING_PROFILES_ACTIVE=staging \
+              -e SPRING_DATASOURCE_URL='${{ secrets.DB_URL }}' \
+              -e SPRING_DATASOURCE_USERNAME=${{ secrets.DB_USERNAME }} \
+              -e SPRING_DATASOURCE_PASSWORD=${{ secrets.DB_PASSWORD }} \
+              -e SPRING_JPA_DEFAULT_SCHEMA=${{ secrets.SPRING_JPA_DEFAULT_SCHEMA }} \
+              -e JWT_SECRET_KEY='${{ secrets.JWT_SECRET_KEY }}' \
+              -e JWT_ACCESS_TOKEN_EXPIRED=${{ secrets.JWT_ACCESS_TOKEN_EXPIRED }} \
+              -e JWT_REFRESH_TOKEN_EXPIRED=${{ secrets.JWT_REFRESH_TOKEN_EXPIRED }} \
+              -e OPERATION_BASE_URL='${{ secrets.OPERATION_BASE_URL }}' \
+              -e DISCORD_WEBHOOK_URL='${{ secrets.DISCORD_WEBHOOK_URL }}' \
+              -e FIREBASE_SERVICE_KEY_JSON='${{ secrets.FIREBASE_SERVICE_KEY_JSON }}' \
+              -e LOGGING_LOCATION=${{ secrets.LOGGING_LOCATION }} \
+              -e TZ=Asia/Seoul \
+              -v /home/ubuntu:/home/ubuntu/dev-logs \
+              ${IMAGE_NAME}:latest
+
+            echo "### 4. 헬스 체크를 시작합니다."
+            sleep 10
+            for retry_count in {1..10}; do
+                echo "   > [${retry_count}/10] 서버 상태 체크 중..."
+                response=$(curl -s http://localhost:${NEW_PORT}/actuator/health)
+                up_count=$(echo "$response" | grep -c 'UP')
+
+                if [ $up_count -ge 1 ]; then
+                    echo "   > ✅ 서버 실행 성공 (포트: ${NEW_PORT})"
+                    break
+                fi
+                if [ $retry_count -eq 10 ]; then
+                    echo "   > ❌ 서버 헬스체크 실패. 배포를 중단하고 새 컨테이너를 종료합니다."
+                    docker rm -f ${APP_NAME}-${NEW_PORT}
+                    exit 1
+                fi
+                sleep 5
+            done
+
+            echo "### 5. Nginx 설정을 변경하여 트래픽을 새 포트(Green)로 전환합니다."
+            echo "set \$service_url http://127.0.0.1:${NEW_PORT};" | sudo tee ${SERVICE_URL_INC_PATH}
+            sudo nginx -s reload
+
+            echo "### 6. 이전 버전의 컨테이너(Blue)를 종료 및 삭제합니다."
+            if [ -n "${RUNNING_PORT}" ]; then
+                docker rm -f ${APP_NAME}-${RUNNING_PORT}
+            fi
+
+            echo "### 7. 사용하지 않는 Docker 이미지를 정리합니다."
+            docker image prune -af
+
+            echo "✅ Staging 배포가 성공적으로 완료되었습니다. 현재 서비스 포트: ${NEW_PORT}"
diff --git a/.gitignore b/.gitignore
@@ -187,10 +187,5 @@ Network Trash Folder
 Temporary Items
 .apdisk
 
-# application.yml
-src/main/resources/application.yml
-src/main/resources/application-dev.yml
-src/test/resources/application-test.yml
-
 # Q-Class
 src/main/generated