Add CI/CD

Author: Sigri44

.github/workflows/branch.yml

@@ -0,0 +1,130 @@
+name: Symfony deployment
+
+on:
+    push:
+        #    branches: [ "alpha" ]
+        branches: [ "feature/upgrade_symfony" ]
+    pull_request:
+        #    branches: [ "alpha" ]
+        branches: [ "feature/upgrade_symfony" ]
+
+permissions:
+    contents: read
+
+jobs:
+    validate:
+        name: Symfony (PHP ${{ matrix.php-versions }})
+        runs-on: ubuntu-latest
+
+        # Docs: https://docs.github.com/en/actions/using-containerized-services
+        services:
+            mysql:
+                image: mysql:9.3
+                env:
+                    MYSQL_ALLOW_EMPTY_PASSWORD: false
+                    MYSQL_ROOT_PASSWORD: symfony
+                    MYSQL_DATABASE: symfony
+                ports:
+                    - 3306/tcp
+                options: --health-cmd="mysqladmin ping" --health-interval=10s --health-timeout=5s --health-retries=3
+        strategy:
+            fail-fast: false
+            matrix:
+                php-versions: ['8.4']
+        steps:
+            - name: Checkout
+              uses: actions/checkout@v4
+
+            # Docs: https://github.com/shivammathur/setup-php
+            - name: Setup PHP
+              uses: shivammathur/setup-php@v2
+              with:
+                  php-version: ${{ matrix.php-versions }}
+                  tools: phpunit-bridge
+                  extensions: mbstring, xml, ctype, iconv, intl, pdo_sqlite, mysql
+                  coverage: xdebug
+
+            # Local MySQL service in GitHub hosted environments is disabled by default.
+            # If you are using it instead of service containers, make sure you start it.
+            # - name: Start mysql service
+            #   run: sudo systemctl start mysql.service
+
+            - name: Copy .env.dist
+              run: php -r "file_exists('.env.local') || copy('.env.dist', '.env.local');"
+            - name: Get composer cache directory
+              id: composer-cache
+              run: echo "dir=$(composer config cache-files-dir)" >> $GITHUB_OUTPUT
+            - name: Cache composer dependencies
+              uses: actions/cache@v4
+              with:
+                  path: ${{ steps.composer-cache.outputs.dir }}
+                  # Use composer.json for key, if composer.lock is not committed.
+                  # key: ${{ runner.os }}-composer-${{ hashFiles('**/composer.json') }}
+                  key: ${{ runner.os }}-composer-${{ hashFiles('**/composer.lock') }}
+                  restore-keys: ${{ runner.os }}-composer-
+            - name: Install Composer dependencies
+              if: steps.composer-cache.outputs.cache-hit != 'true'
+              run: composer install --no-progress --prefer-dist --optimize-autoloader
+            - name: Run Migration
+              run: |
+                  composer require --dev symfony/orm-pack
+                  php bin/console doctrine:schema:update --complete --force || echo "No migrations found or schema update failed"
+                  php bin/console doctrine:migrations:migrate || echo "No migrations found or migration failed"
+              env:
+                  DATABASE_URL: mysql://root:symfony@127.0.0.1:${{ job.services.mysql.ports['3306'] }}/symfony
+            - name: Install PHPUnit
+              run: composer require --dev phpunit/phpunit && vendor/bin/phpunit --coverage-text
+    deploy:
+        name: Deploy image
+        runs-on: ubuntu-latest
+        needs: validate
+        steps:
+            - uses: actions/checkout@v4
+            - name: Login to registry
+              uses: docker/login-action@v3
+              with:
+                  registry: ${{ secrets.DOCKER_REGISTRY }}
+                  username: ${{ secrets.DOCKER_LOGIN }}
+                  password: ${{ secrets.DOCKER_PASSWD }}
+            - name: Build and push Docker image
+              uses: docker/build-push-action@v5
+              with:
+                  context: .
+                  push: true
+                  tags: ${{ secrets.DOCKER_REGISTRY }}/api-php:${{ github.ref_name }}
+            - name: Configure SSH
+              run: |
+                  mkdir -p ~/.ssh/
+                  echo "$SSH_KEY" > ~/.ssh/staging.key
+                  chmod 600 ~/.ssh/staging.key
+                  cat >>~/.ssh/config <<END
+                  Host staging
+                    HostName $SSH_HOST
+                    User $SSH_USER
+                    Port $SSH_PORT
+                    IdentityFile ~/.ssh/staging.key
+                    StrictHostKeyChecking no
+                  END
+              env:
+                  SSH_USER: ${{ secrets.SSH_USER }}
+                  SSH_KEY: ${{ secrets.SSH_KEY }}
+                  SSH_HOST: ${{ secrets.SSH_HOST }}
+                  SSH_PORT: ${{ secrets.SSH_PORT }}
+                  DOMAIN_URL: ${{ secrets.DOMAIN_URL }}
+            - name: Update alpha environment & run migrations
+              run: |
+                  if [[ "$DOCKER_BRANCH" == "master" ]]; then
+                      export HOSTNAME="api.$DOMAIN_URL"
+                  elif [[ "$DOCKER_BRANCH" == "preprod" ]]; then
+                      export HOSTNAME="api.$DOCKER_BRANCH.$DOMAIN_URL"
+                  else
+                      export HOSTNAME="api.$DOCKER_BRANCH.$DOMAIN_URL"
+                  fi
+                  ssh staging 'export DOCKER_BRANCH=${{ github.ref_name }} DOCKER_REGISTRY=${{ secrets.DOCKER_REGISTRY }}
+                  cd /var/docker/api/${DOCKER_BRANCH}
+                  git pull origin ${{ github.ref_name }}
+                  docker compose --file docker-compose-branch.yml pull
+                  docker login -u ${{ secrets.DOCKER_LOGIN }} -p ${{ secrets.DOCKER_PASSWD }} ${{ secrets.DOCKER_REGISTRY }}
+                  docker compose --project-name ${{ github.ref_name }}-api_php --file docker-compose-branch.yml up -d
+                  docker compose --file docker-compose-branch.yml exec symfony php bin/console doctrine:migrations:migrate --no-interaction'
+# Ajout de l'exécution des migrations Doctrine sur le VPS

docker-compose-branch.yml

@@ -0,0 +1,54 @@
+services:
+    symfony:
+        image: ${DOCKER_REGISTRY}/api-php:${DOCKER_BRANCH}
+        container_name: ${DOCKER_BRANCH}-api_php-sf
+        build:
+        context: ./
+        networks:
+            - api-${DOCKER_BRANCH}
+            - traefik-realt
+#        volumes:
+#              - ./logs/symfony:/var/www/html/var/log:cached
+#              - ./logs/nginx:/var/log/nginx:cached
+        labels:
+            - "traefik.enable=true"
+            - "traefik.http.routers.api-${DOCKER_BRANCH}.rule=Host(`${HOSTNAME}`)"
+            - "traefik.http.services.api-${DOCKER_BRANCH}.loadbalancer.server.port=80"
+        restart: always
+
+    db:
+        image: mysql:9.3
+        container_name: ${DOCKER_BRANCH}-api_php-db
+        networks:
+            - api-${DOCKER_BRANCH}
+        environment:
+            - "MYSQL_ROOT_PASSWORD=${MYSQL_ROOT_PASSWORD}"
+            - "MYSQL_USER=${MYSQL_USER}"
+            - "MYSQL_PASSWORD=${MYSQL_PASSWORD}"
+            - "MYSQL_DATABASE=${MYSQL_DATABASE}"
+        restart: always
+
+    redis:
+        image: redis:7-alpine
+        container_name: api-redis
+#        ports:
+#            - "6379:6379"
+        networks:
+            - api-php
+        restart: unless-stopped
+        command: ["redis-server", "--appendonly", "yes"]
+
+    adminer-branch:
+        image: adminer
+        container_name: ${DOCKER_BRANCH}-api_php-adminer
+        ports:
+            - "18080:8080"
+        networks:
+            - api-${DOCKER_BRANCH}
+        restart: always
+
+networks:
+    api-${DOCKER_BRANCH}:
+    traefik-realt:
+        external: true
+

docker-compose.local.yml

@@ -38,7 +38,6 @@ services:
     restart: unless-stopped
     command: ["redis-server", "--appendonly", "yes"]
 
-
   adminer:
     image: adminer
     platform: linux/amd64