SpringBoot 웹 서비스 - Github 작업 부분
- DDD원래의
- 2025-01-06 06:40:40393검색
GitHub Actions는 CI/CD를 저장소에 통합하는 원활한 방법을 제공하여 테스트 실행, 아티팩트 빌드, 프로젝트 배포와 같은 다양한 작업을 자동화합니다.
SNAPSHOT 워크플로
이 워크플로는 기본이 아닌 브랜치에서 또는 워크플로 발송 이벤트를 통해 수동으로 트리거됩니다. 여기에는 다음 단계가 포함됩니다.
- 테스트 실행: 코드가 모든 테스트를 통과하는지 확인합니다.
- JAR 파일 빌드: Spring Boot 애플리케이션을 컴파일합니다.
- Docker 이미지 빌드 및 GitHub Docker 레지스트리에 푸시: 생성된 아티팩트에서 Docker 이미지를 생성하여 GitHub Container Registry에 푸시합니다.
name: Test and Build Snapshot
on:
push:
branches-ignore:
- main
workflow_dispatch:
permissions:
contents: read
packages: write
jobs:
maven-verify:
if: "!contains(github.event.head_commit.message, '[skip ci]')"
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Set up JDK 21
uses: actions/setup-java@v4
with:
java-version: '21'
distribution: 'temurin'
cache: maven
cache-dependency-path: '**/pom.xml'
- name: Verify
run: mvn -B clean verify --file pom.xml
maven-build:
needs: maven-verify
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Set up JDK 21
uses: actions/setup-java@v4
with:
java-version: '21'
distribution: 'temurin'
cache: maven
cache-dependency-path: '**/pom.xml'
- name: Build
run: mvn -B package --file pom.xml
- name: Upload artifact
uses: actions/upload-artifact@v4
with:
name: app.jar
path: target/*.jar
docker-build-push:
needs: maven-build
runs-on: ubuntu-latest
env:
CURRENT_VERSION: ''
steps:
- uses: actions/checkout@v4
- name: Download artifact
uses: actions/download-artifact@v4
with:
name: app.jar
path: target
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3
- name: Log in to GitHub Container Registry
uses: docker/login-action@v3
with:
registry: ghcr.io
username: ${{ github.repository_owner }}
password: ${{ secrets.GHCR_PAT }}
- name: Get Version
run: echo "CURRENT_VERSION=$(mvn help:evaluate -Dexpression=project.version -q -DforceStdout)" >> $GITHUB_ENV
- name: Build Docker image
uses: docker/build-push-action@v6
with:
context: .
push: true
tags: ghcr.io/${{ github.repository_owner }}/${{ github.event.repository.name }}:${{ env.CURRENT_VERSION }}-${{ github.run_id }}
RELEASE 작업 흐름
이 워크플로는 변경 사항이 기본 분기에 푸시될 때 실행되며 다음 단계를 포함합니다.
- 릴리스 버전 빌드: 프로젝트의 릴리스 버전을 컴파일합니다.
- Docker 이미지를 빌드하여 GitHub Docker 레지스트리에 푸시: Docker 이미지를 생성하여 GitHub Container Registry에 푸시합니다.
- SNAPSHOT 버전 증가: 향후 스냅샷 버전을 위해 pom.xml의 버전을 업데이트합니다.
name: Build Release
on:
push:
branches:
- main
workflow_dispatch:
permissions:
contents: read
packages: write
jobs:
maven-build-release:
if: "!contains(github.event.head_commit.message, '[skip ci]')"
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Set up JDK 21
uses: actions/setup-java@v4
with:
java-version: '21'
distribution: 'temurin'
cache: maven
cache-dependency-path: '**/pom.xml'
- name: Prepare Release Version
run: mvn versions:set -DremoveSnapshot
- name: Build
run: mvn -B clean package --file pom.xml -DskipTests
- name: Upload artifact
uses: actions/upload-artifact@v4
with:
name: app.jar
path: target/*.jar
docker-build-push:
needs: maven-build-release
runs-on: ubuntu-latest
env:
CURRENT_VERSION: ''
steps:
- uses: actions/checkout@v4
- name: Download artifact
uses: actions/download-artifact@v4
with:
name: app.jar
path: target
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3
- name: Log in to GitHub Container Registry
uses: docker/login-action@v3
with:
registry: ghcr.io
username: ${{ github.repository_owner }}
password: ${{ secrets.GHCR_PAT }}
- name: Get Version
run: |
mvn versions:set -DremoveSnapshot
echo "CURRENT_VERSION=$(mvn help:evaluate -Dexpression=project.version -q -DforceStdout)" >> $GITHUB_ENV
- name: Build Docker image
uses: docker/build-push-action@v6
with:
context: .
push: true
tags: ghcr.io/${{ github.repository_owner }}/${{ github.event.repository.name }}:${{ env.CURRENT_VERSION }}-${{ github.run_id }}
increment-version:
needs: docker-build-push
runs-on: ubuntu-latest
permissions:
contents: write
steps:
- uses: actions/checkout@v4
with:
token: ${{ secrets.GIT_PAT }}
- name: Configure Git
run: |
git config --global user.name "github-actions[bot]"
git config --global user.email "github-actions[bot]@users.noreply.github.com"
- name: Increment Snapshot Version
run: |
# Extract current version and increment patch version
CURRENT_VERSION=$(mvn help:evaluate -Dexpression=project.version -q -DforceStdout)
MAJOR=$(echo $CURRENT_VERSION | cut -d. -f1)
MINOR=$(echo $CURRENT_VERSION | cut -d. -f2)
PATCH=$(echo $CURRENT_VERSION | cut -d. -f3 | cut -d- -f1)
NEW_PATCH=$((PATCH + 1))
NEW_VERSION="$MAJOR.$MINOR.$NEW_PATCH-SNAPSHOT"
# Update version in pom.xml
mvn versions:set -DnewVersion=$NEW_VERSION
mvn versions:commit
# Commit and push the new snapshot version
git add pom.xml
git commit -m "Increment version to $NEW_VERSION [skip ci]"
git push origin $(git rev-parse --abbrev-ref HEAD)
보너스 워크플로
CodeQL 워크플로는 Java 코드를 분석하여 잠재적인 취약점과 문제를 식별합니다.
name: CodeQL
on:
pull_request:
branches: [ "main" ]
workflow_dispatch:
jobs:
analyze:
name: Analyze
runs-on: ubuntu-latest
permissions:
actions: read
contents: read
security-events: write
strategy:
fail-fast: false
matrix:
language: [ 'java' ]
steps:
- name: Checkout repository
uses: actions/checkout@v4
- name: Setup Java
uses: actions/setup-java@v4
with:
java-version: '21'
distribution: 'temurin'
cache: maven
cache-dependency-path: '**/pom.xml'
- name: Initialize CodeQL
uses: github/codeql-action/init@v3
with:
languages: ${{ matrix.language }}
- name: Autobuild
uses: github/codeql-action/autobuild@v3
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v3
with:
category: "/language:${{matrix.language}}"
업데이트된 Dockerfile
### Build stage FROM eclipse-temurin:21-jre-alpine AS builder # Set the working directory inside the container WORKDIR /tmp # Copy the source code into the container COPY target/*.jar app.jar # Extract the layers RUN java -Djarmode=layertools -jar app.jar extract ### Run stage # Create a minimal production image FROM eclipse-temurin:21-jre-alpine # Set the working directory inside the container WORKDIR /app # Set the working directory inside the container COPY --from=builder /tmp/dependencies/ ./ COPY --from=builder /tmp/snapshot-dependencies/ ./ COPY --from=builder /tmp/spring-boot-loader/ ./ COPY --from=builder /tmp/application/ ./ # Run the binary when the container starts ENTRYPOINT ["java", "org.springframework.boot.loader.launch.JarLauncher"]
위 내용은 SpringBoot 웹 서비스 - Github 작업 부분의 상세 내용입니다. 자세한 내용은 PHP 중국어 웹사이트의 기타 관련 기사를 참조하세요!
성명:
본 글의 내용은 네티즌들의 자발적인 기여로 작성되었으며, 저작권은 원저작자에게 있습니다. 본 사이트는 이에 상응하는 법적 책임을 지지 않습니다. 표절이나 침해가 의심되는 콘텐츠를 발견한 경우 admin@php.cn으로 문의하세요.