sboulahtit/orion
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
1decb4572c9928806725841a2270706565308efd
orion/scripts/deploy.sh
Samir Boulahtit 644bf158cd
Some checks failed
CI / ruff (push) Successful in 15s
Details
CI / validate (push) Successful in 29s
Details
CI / dependency-scanning (push) Successful in 32s
Details
CI / pytest (push) Failing after 1h10m52s
Details
CI / docs (push) Has been cancelled
Details
CI / deploy (push) Has been cancelled
Details
chore: dev/prod Docker compose separation with safety docs 
- Add docker-compose.override.yml exposing db/redis ports for local dev
- Remove override from .gitignore so all devs get port mappings
- Use explicit -f in deploy.sh to skip override in production
- Document production safety rule: always use -f on the server

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-22 16:16:29 +01:00

97 lines
3.6 KiB
Bash
Executable File
Raw Blame History

#!/usr/bin/env bash
# =============================================================================
# Orion Production Deploy Script
# =============================================================================
# Usage: cd ~/apps/orion && bash scripts/deploy.sh
#
# Called by Gitea Actions CD pipeline (appleboy/ssh-action) or manually.
#
# Exit codes:
# 0 — success
# 1 — git pull failed
# 2 — docker compose build/up failed
# 3 — alembic migration failed
# 4 — health check failed
# =============================================================================
set -euo pipefail
COMPOSE="docker compose -f docker-compose.yml --profile full"
HEALTH_URL="http://localhost:8001/health"
HEALTH_RETRIES=12
HEALTH_INTERVAL=5
log() { echo "[deploy] $(date '+%H:%M:%S') $*"; }
# ── 1. Pull latest code (stash local changes like .env) ─────────────────────
log "Stashing local changes …"
git stash --include-untracked --quiet || true
log "Pulling latest code …"
if ! git pull --ff-only; then
log "ERROR: git pull failed"
git stash pop --quiet 2>/dev/null || true
exit 1
fi
log "Restoring local changes …"
git stash pop --quiet 2>/dev/null || true
# ── 1b. Write build info ─────────────────────────────────────────────────────
log "Writing build info …"
printf '{"commit":"%s","deployed_at":"%s"}\n' \
"$(git rev-parse --short=8 HEAD)" \
"$(date -u +%Y-%m-%dT%H:%M:%SZ)" \
> .build-info
# ── 2. Rebuild and restart containers ────────────────────────────────────────
log "Rebuilding containers …"
if ! $COMPOSE up -d --build; then
log "ERROR: docker compose up failed"
exit 2
fi
# ── 3. Wait for DB to be healthy before running migrations ──────────────────
log "Waiting for database to be healthy …"
for i in $(seq 1 12); do
if $COMPOSE exec -T db pg_isready -U orion_user -d orion_db > /dev/null 2>&1; then
log "Database is ready (attempt $i/12)"
break
fi
if [ "$i" -eq 12 ]; then
log "ERROR: database not ready after 60s"
exit 3
fi
sleep 5
done
# ── 4. Run database migrations ───────────────────────────────────────────────
log "Running database migrations …"
if ! $COMPOSE exec -T -e PYTHONPATH=/app api python -m alembic upgrade heads; then
log "ERROR: alembic migration failed"
exit 3
fi
# ── 5. Health check with retries ─────────────────────────────────────────────
log "Waiting for health check ($HEALTH_URL) …"
for i in $(seq 1 "$HEALTH_RETRIES"); do
if curl -sf "$HEALTH_URL" > /dev/null 2>&1; then
log "Health check passed (attempt $i/$HEALTH_RETRIES)"
break
fi
log "Health check attempt $i/$HEALTH_RETRIES failed, retrying in ${HEALTH_INTERVAL}s …"
sleep "$HEALTH_INTERVAL"
done
if ! curl -sf "$HEALTH_URL" > /dev/null 2>&1; then
log "ERROR: health check failed after $HEALTH_RETRIES attempts"
exit 4
fi
# ── 6. Clean up old Docker images ───────────────────────────────────────────
log "Pruning unused Docker images …"
docker image prune -f --filter "until=72h" > /dev/null 2>&1 || true
log "Deploy complete."
exit 0
Reference in New Issue View Git Blame Copy Permalink