isky/backend-springboot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
8cc52bc032e1006f9dd64385e00bb90fb8614cf7
backend-springboot/.github/workflows/workflow.yml
heyethereum 8cc52bc032 test iam sts assume role
2024-06-17 22:00:27 +08:00

63 lines
2.4 KiB
YAML
Raw Blame History

name: Deploy jar to EC2
on:
push:
branches: [ "main" ]
permissions:
id-token: write # This is required for requesting the JWT
contents: read # This is required for actions/checkout
jobs:
build:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Set up JDK 17
uses: actions/setup-java@v3
with:
java-version: '17'
distribution: 'temurin'
cache: maven
- name: Create application-local.properties file
run: |
echo "spring.datasource.url=${{ secrets.DB_URL }}" >> src/main/resources/application-local.properties
echo "spring.datasource.username=${{ secrets.DB_USERNAME }}" >> src/main/resources/application-local.properties
echo "spring.datasource.password=${{ secrets.DB_PASSWORD }}" >> src/main/resources/application-local.properties
echo "spring.datasource.driver-class-name=${{ secrets.DB_DRIVER }}" >> src/main/resources/application-local.properties
echo "spring.jpa.hibernate.ddl-auto=update" >> src/main/resources/application-local.properties
echo "spring.jpa.show-sql=true" >> src/main/resources/application-local.properties
- name: Build with Maven
run: mvn -B package --file pom.xml
- name: Configure AWS Credentials
id: configure-aws-credentials
uses: aws-actions/configure-aws-credentials@v4
with:
role-to-assume: arn:aws:iam::${{ secrets.AWS_ACCOUNT_ID }}:role/${{ secrets.AWS_ROLE }}
aws-region: ${{ secrets.AWS_REGION }}
- name: Get Instance ID
id: get_instance_id
run: |
INSTANCE_ID=$(aws ec2 describe-instances --filters "Name=tag:Name,Values=safeqr-ec2" --query "Reservations[0].Instances[0].InstanceId" --output text)
echo "INSTANCE_ID=$INSTANCE_ID" >> $GITHUB_ENV
- name: Start SSM Port Forwarding
id: port_forward
run: |
aws ssm start-session --target ${{ env.INSTANCE_ID }}
env:
AWS_DEFAULT_REGION: ${{ secrets.AWS_REGION }}
AWS_REGION: ${{ secrets.AWS_REGION }}
AWS_ACCESS_KEY_ID: ${{ steps.configure-aws-credentials.outputs.aws_access_key_id }}
AWS_SECRET_ACCESS_KEY: ${{ steps.configure-aws-credentials.outputs.aws_secret_access_key }}
AWS_SESSION_TOKEN: ${{ steps.configure-aws-credentials.outputs.aws_session_token }}
Reference in New Issue View Git Blame Copy Permalink