name: Deploy Backend and Backoffice Dev on: workflow_dispatch: push: branches: - dev env: REGISTRY: pipe.gohorsejobs.com IMAGE_NAMESPACE: bohessefm DOCKER_MTU: 1200 jobs: build-and-push: runs-on: - self-hosted - ubuntu-latest container: image: docker:24.0.7-dind options: --privileged env: # Forçamos o uso do localhost para evitar erros de DNS/Lookup DOCKER_HOST: tcp://localhost:2375 DOCKER_TLS_CERTDIR: "" steps: - name: Prepare Environment (MTU & Git & Docker Daemon) run: | # 1. Ajuste de Rede ip link set dev eth0 mtu ${{ env.DOCKER_MTU }} || true apk add --no-cache git # 2. Inicia o Docker Daemon em background dentro do próprio container # Isso garante que 'localhost:2375' funcione sem depender de DNS externo nohup dockerd --host=tcp://localhost:2375 --host=unix:///var/run/docker.sock --mtu=${{ env.DOCKER_MTU }} & # 3. Espera o Docker subir (retry loop) timeout 30s sh -c 'until docker info >/dev/null 2>&1; do echo "Aguardando Docker..."; sleep 2; done' - name: Checkout code run: | git config --global core.compression 0 git clone --depth 1 --branch dev https://${{ secrets.FORGEJO_TOKEN }}@pipe.gohorsejobs.com/${{ github.repository }}.git . - name: Docker Login (Forgejo) run: | # Autenticação usando o Token do Forgejo echo "${{ secrets.FORGEJO_TOKEN }}" | docker login ${{ env.REGISTRY }} \ -u ${{ env.IMAGE_NAMESPACE }} --password-stdin - name: Build & Push Backend run: | docker build --build-arg DOCKER_MTU=${{ env.DOCKER_MTU }} \ -t ${{ env.REGISTRY }}/${{ env.IMAGE_NAMESPACE }}/gohorsejobs:${{ github.sha }} \ -t ${{ env.REGISTRY }}/${{ env.IMAGE_NAMESPACE }}/gohorsejobs:latest ./backend docker push ${{ env.REGISTRY }}/${{ env.IMAGE_NAMESPACE }}/gohorsejobs:${{ github.sha }} docker push ${{ env.REGISTRY }}/${{ env.IMAGE_NAMESPACE }}/gohorsejobs:latest - name: Build & Push Backoffice run: | docker build --build-arg DOCKER_MTU=${{ env.DOCKER_MTU }} \ -t ${{ env.REGISTRY }}/${{ env.IMAGE_NAMESPACE }}/backoffice:${{ github.sha }} \ -t ${{ env.REGISTRY }}/${{ env.IMAGE_NAMESPACE }}/backoffice:latest ./backoffice docker push ${{ env.REGISTRY }}/${{ env.IMAGE_NAMESPACE }}/backoffice:${{ github.sha }} docker push ${{ env.REGISTRY }}/${{ env.IMAGE_NAMESPACE }}/backoffice:latest deploy-to-k3s: needs: build-and-push runs-on: - self-hosted - ubuntu-latest container: image: alpine/k8s:1.30.0 steps: - name: Fix Network & Install Git run: | ip link set dev eth0 mtu ${{ env.DOCKER_MTU }} || true apk add --no-cache git - name: Checkout code run: | git clone --depth 1 --branch dev https://${{ secrets.FORGEJO_TOKEN }}@pipe.gohorsejobs.com/${{ github.repository }}.git . - name: Apply to K3s run: | mkdir -p $HOME/.kube echo "${{ secrets.KUBECONFIG }}" > $HOME/.kube/config chmod 600 $HOME/.kube/config export KUBECONFIG=$HOME/.kube/config kubectl create namespace gohorsejobsdev --dry-run=client -o yaml | kubectl apply -f - # Garante que o secret de pull de imagem no K3s use o Registry correto kubectl -n gohorsejobsdev create secret docker-registry forgejo-registry \ --docker-server=${{ env.REGISTRY }} \ --docker-username=${{ env.IMAGE_NAMESPACE }} \ --docker-password="${{ secrets.FORGEJO_TOKEN }}" \ --dry-run=client -o yaml | kubectl apply -f - kubectl -n gohorsejobsdev create secret generic backend-secrets \ --from-literal=MTU="${{ env.DOCKER_MTU }}" \ --from-literal=JWT_SECRET="${{ vars.JWT_SECRET }}" \ --from-literal=AMQP_URL="${{ vars.AMQP_URL }}" \ --from-literal=DATABASE_URL="${{ vars.DATABASE_URL }}" \ --dry-run=client -o yaml | kubectl apply -f - kubectl apply -f k8s/dev/ -n gohorsejobsdev kubectl -n gohorsejobsdev set image deployment/gohorse-backend-dev \ backend=${{ env.REGISTRY }}/${{ env.IMAGE_NAMESPACE }}/gohorsejobs:${{ github.sha }} kubectl -n gohorsejobsdev set image deployment/gohorse-backoffice-dev \ backoffice=${{ env.REGISTRY }}/${{ env.IMAGE_NAMESPACE }}/backoffice:${{ github.sha }} kubectl -n gohorsejobsdev rollout status deployment/gohorse-backend-dev --timeout=120s kubectl -n gohorsejobsdev rollout status deployment/gohorse-backoffice-dev --timeout=120s