buildfor_life_repair/.gitea/workflows/deploy.yml at f6f31341ea32e09d9c8b215ad3eb993fff62502a

B4L/buildfor_life_repair

Fork 0

Files

T

grabowski c12f727734

Deploy to LXC / deploy (push) Successful in 19s

Details

Update deploy workflow for private repo with deploy keys

Two SSH keys needed:
- DEPLOY_KEY: CI runner → LXC server (SSH access)
- REPO_DEPLOY_KEY: LXC server → Gitea repo (git pull access)

Workflow writes the repo deploy key to ~/.ssh on the server and
configures SSH to use it for git.b4l.co.th. Handles first deploy
(clone) and subsequent deploys (pull) automatically.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-04-07 16:26:04 +07:00

65 lines

2.0 KiB

YAML

Raw Blame History

 name: Deploy to LXC
 on:
   push:
     branches: [main]
 jobs:
   deploy:
     runs-on: ubuntu-latest
     steps:
       - name: Deploy via SSH
         uses: appleboy/ssh-action@v1
         with:
           host: ${{ secrets.DEPLOY_HOST }}
           username: ${{ secrets.DEPLOY_USER }}
           key: ${{ secrets.DEPLOY_KEY }}
           port: ${{ secrets.DEPLOY_PORT || 22 }}
           script: |
             set -e
             APP_DIR="${{ secrets.DEPLOY_PATH || '/home/bflr/buildfor_life_repair' }}"
             # Set up deploy key for private repo access
             mkdir -p ~/.ssh
             echo "${{ secrets.REPO_DEPLOY_KEY }}" > ~/.ssh/repo_deploy_key
             chmod 600 ~/.ssh/repo_deploy_key
             # Configure SSH to use deploy key for git.b4l.co.th
             if ! grep -q "git.b4l.co.th" ~/.ssh/config 2>/dev/null; then
               cat >> ~/.ssh/config <<EOF
             Host git.b4l.co.th
               HostName git.b4l.co.th
               IdentityFile ~/.ssh/repo_deploy_key
               StrictHostKeyChecking accept-new
             EOF
               chmod 600 ~/.ssh/config
             fi
             # Clone if first deploy, otherwise pull
             if [ ! -d "$APP_DIR" ]; then
               echo "==> First deploy, cloning..."
               git clone git@git.b4l.co.th:B4L/buildfor_life_repair.git "$APP_DIR"
               cd "$APP_DIR"
             else
               cd "$APP_DIR"
               echo "==> Pulling latest code..."
               git pull origin main
             fi
             echo "==> Installing dependencies..."
             npm ci --production=false
             echo "==> Building..."
             npm run build
             echo "==> Running migrations..."
             npm run db:push
             echo "==> Restarting service..."
             sudo systemctl restart bflr
             echo "==> Waiting for startup..."
             sleep 2
             systemctl is-active --quiet bflr && echo "Deploy successful!" || (echo "Service failed to start!" && exit 1)

65 lines 2.0 KiB YAML Raw Blame History

65 lines

2.0 KiB

YAML

Raw Blame History