sancho41/condado-newsletter
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feature/testing #5

Merged
sancho41 merged 5 commits from feature/testing into main 2026-03-27 16:23:53 -03:00
Conversation 0 Commits 5 Files Changed 9 +29 -13
4 changed files with 29 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files
Showing only changes of commit d6de131a9b - Show all commits

20
.gitea/workflows/build.yml
View File

@@ -1,4 +1,4 @@
name: Build Production Image name: Build And Publish Production Image
on: on:
pull_request_review: pull_request_review:
@@ -6,9 +6,12 @@ on:
jobs: jobs:
build: build:
name: Build Production Image name: Build And Publish Production Image
if: github.event.review.state == 'approved' && github.event.pull_request.base.ref == 'main' if: github.event.review.state == 'approved' && github.event.pull_request.base.ref == 'main'
runs-on: ubuntu-latest runs-on: ubuntu-latest
env:
REGISTRY: gitea.lab
IMAGE_NAME: sancho41/condado-newsletter
steps: steps:
- uses: actions/checkout@v4 - uses: actions/checkout@v4
with: with:
@@ -20,3 +23,16 @@ jobs:
- name: Build all-in-one image - name: Build all-in-one image
run: docker build -t condado-newsletter:latest -f Dockerfile.allinone . run: docker build -t condado-newsletter:latest -f Dockerfile.allinone .
- name: Log in to Gitea container registry
run: echo "${{ secrets.GITEA_REGISTRY_PASSWORD }}" | docker login ${REGISTRY} -u "${{ secrets.GITEA_REGISTRY_USERNAME }}" --password-stdin
- name: Tag registry images
run: |
docker tag condado-newsletter:latest ${REGISTRY}/${IMAGE_NAME}:latest
docker tag condado-newsletter:latest ${REGISTRY}/${IMAGE_NAME}:${{ github.sha }}
- name: Push registry images
run: |
docker push ${REGISTRY}/${IMAGE_NAME}:latest
docker push ${REGISTRY}/${IMAGE_NAME}:${{ github.sha }}

6
.github/agents/infra.agent.md vendored
View File

@@ -22,7 +22,7 @@ You are a senior DevOps / infrastructure engineer and software architect for the
| `docker/supervisord.conf` | Supervisor config (manages postgres + java + nginx inside allinone) | | `docker/supervisord.conf` | Supervisor config (manages postgres + java + nginx inside allinone) |
| `docker/entrypoint.sh` | Allinone container entrypoint (DB init, env wiring, supervisord start) | | `docker/entrypoint.sh` | Allinone container entrypoint (DB init, env wiring, supervisord start) |
| `.gitea/workflows/ci.yml` | CI: backend tests + frontend tests on pull requests to `develop` | | `.gitea/workflows/ci.yml` | CI: backend tests + frontend tests on pull requests to `develop` |
| `.gitea/workflows/build.yml` | Build: create the local all-in-one image on approved PRs to `main` | | `.gitea/workflows/build.yml` | Build: create and publish the all-in-one image on approved PRs to `main` |
| `.env.example` | Template for all environment variables | | `.env.example` | Template for all environment variables |
## System Topology ## System Topology
@@ -81,9 +81,9 @@ All injected at runtime — never hardcoded in images.
| Workflow | Trigger | What it does | | Workflow | Trigger | What it does |
|---|---|---| |---|---|---|
| `ci.yml` | Pull request to `develop` | Backend `./gradlew test` + Frontend `npm run test` | | `ci.yml` | Pull request to `develop` | Backend `./gradlew test` + Frontend `npm run test` |
| `build.yml` | Approved PR review to `main` | Builds `condado-newsletter` on the target Docker host | | `build.yml` | Approved PR review to `main` | Builds `condado-newsletter` on the target Docker host, then pushes `latest` and `${github.sha}` tags to Gitea container registry |
The runner shares the target Docker host, so this workflow produces the local `condado-newsletter` image directly on that host. `docker-compose.prod.yml` must reference that image and not local build directives. The runner shares the target Docker host, so this workflow builds the image locally, tags it for `gitea.lab/sancho41/condado-newsletter`, and pushes it to Gitea container registry. `docker-compose.prod.yml` must reference that published image and not local build directives.
## Implementation Rules ## Implementation Rules

12
CLAUDE.md
View File

@@ -83,8 +83,8 @@ The cycle for every step is:
| Reverse Proxy | Nginx (serves frontend + proxies `/api` to backend) | | Reverse Proxy | Nginx (serves frontend + proxies `/api` to backend) |
| Dev Mail | Mailhog (SMTP trap + web UI) | | Dev Mail | Mailhog (SMTP trap + web UI) |
| All-in-one image | Single Docker image: Nginx + Spring Boot + PostgreSQL + Supervisor | | All-in-one image | Single Docker image: Nginx + Spring Boot + PostgreSQL + Supervisor |
| Image registry | Local Docker image on the deployment host (`condado-newsletter`) | | Image registry | Gitea container registry (`gitea.lab/sancho41/condado-newsletter`) |
| CI/CD | Gitea Actions — test PRs to `develop`, deploy approved PRs targeting `main` | | CI/CD | Gitea Actions — test PRs to `develop`, build and publish the production image on approved PRs targeting `main` |
## Deployment Flavours ## Deployment Flavours
@@ -104,7 +104,7 @@ The all-in-one image (`Dockerfile.allinone`) bundles **everything** into a singl
- **PostgreSQL** — embedded database - **PostgreSQL** — embedded database
- **Supervisor** — process manager that starts and supervises all three processes - **Supervisor** — process manager that starts and supervises all three processes
The all-in-one image is built locally or in external pipelines as needed (no default registry publish workflow in-repo). The all-in-one image is built on the runner host and then published to the Gitea container registry.
**Minimal `docker run` command:** **Minimal `docker run` command:**
```bash ```bash
@@ -121,7 +121,7 @@ docker run -d \
-e IMAP_PORT=993 \ -e IMAP_PORT=993 \
-e APP_RECIPIENTS=friend1@example.com,friend2@example.com \ -e APP_RECIPIENTS=friend1@example.com,friend2@example.com \
-v condado-data:/var/lib/postgresql/data \ -v condado-data:/var/lib/postgresql/data \
<registry-or-local-image>/condado-newsletter:latest gitea.lab/sancho41/condado-newsletter:latest
``` ```
The app is then available at `http://localhost`. The app is then available at `http://localhost`.
@@ -575,9 +575,9 @@ Good examples:
| Workflow file | Trigger | What it does | | Workflow file | Trigger | What it does |
|----------------------------|----------------------------|-----------------------------------------------------------| |----------------------------|----------------------------|-----------------------------------------------------------|
| `.gitea/workflows/ci.yml` | PR to `develop` | Backend tests (`./gradlew test`) + Frontend tests (`npm run test`) | | `.gitea/workflows/ci.yml` | PR to `develop` | Backend tests (`./gradlew test`) + Frontend tests (`npm run test`) |
| `.gitea/workflows/build.yml` | Approved PR review on `main` | Build `condado-newsletter` locally on the runner host | | `.gitea/workflows/build.yml` | Approved PR review on `main` | Build `condado-newsletter`, then publish `latest` and `${github.sha}` tags to Gitea container registry |
Build policy: the runner shares the target Docker host, so the build workflow produces the local `condado-newsletter` image directly on that host. `docker-compose.prod.yml` is image-based and can be started separately without build directives. Build policy: the runner shares the target Docker host, so the build workflow produces the image locally, tags it for `gitea.lab/sancho41/condado-newsletter`, and pushes it to Gitea container registry. `docker-compose.prod.yml` references that published image.
--- ---

2
docker-compose.prod.yml
View File

@@ -1,6 +1,6 @@
services: services:
condado-newsletter: condado-newsletter:
image: condado-newsletter:latest image: gitea.lab/sancho41/condado-newsletter:latest
container_name: condado-newsletter container_name: condado-newsletter
restart: unless-stopped restart: unless-stopped
environment: environment: