diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml new file mode 100644 index 0000000..c7ba03b --- /dev/null +++ b/.github/workflows/build.yml @@ -0,0 +1,29 @@ +name: Build template + +on: [push] + +jobs: + build: + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v4 + + - name: Build docker image + run: docker compose build + + - name: Run docker container + run: docker compose up -d + + - name: Test if service is reachable + run: | + sleep 30 + curl -v -s --retry 10 --retry-connrefused http://localhost:8000/ + + - name: Report error to Sentry + if: failure() + run: | + curl -sL https://sentry.io/get-cli/ | bash + export SENTRY_DSN=${{ secrets.SENTRY_DSN }} + MESSAGE_HEAD='Template: "${{ github.workflow }}" failed in ${{ github.repository }}.' + MESSAGE_BODY='Check for more details.' + sentry-cli send-event -m "$MESSAGE_HEAD" -m "$MESSAGE_BODY" --log-level=error diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml new file mode 100644 index 0000000..b089eb0 --- /dev/null +++ b/.github/workflows/deploy.yml @@ -0,0 +1,40 @@ +name: Deploy template + +on: + push: + schedule: + - cron: "20 16 * * *" + +jobs: + build: + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v4 + + - name: Set up Python + uses: actions/setup-python@v5 + with: + python-version: "3.12" + + - name: Install dependencies + run: | + python -m pip install --upgrade pip + pip install divio-cli + + - name: Deploy to Divio + run: | + divio login ${{ secrets.DIVIO_TOKEN }} + divio app deploy test --remote-id ${{ secrets.DIVIO_WEBSITE_ID }} --build-mode FORCE + + - name: Test if website is reachable + run: | + curl -v -s --retry 10 --retry-connrefused ${{ secrets.WEBSITE_URL }} + + - name: Report error to Sentry + if: failure() + run: | + curl -sL https://sentry.io/get-cli/ | bash + export SENTRY_DSN=${{ secrets.SENTRY_DSN }} + MESSAGE_HEAD='Template: "${{ github.workflow }}" failed in ${{ github.repository }}.' + MESSAGE_BODY='Check for more details.' + sentry-cli send-event -m "$MESSAGE_HEAD" -m "$MESSAGE_BODY" --log-level=error diff --git a/Dockerfile b/Dockerfile index 161b73c..c616959 100644 --- a/Dockerfile +++ b/Dockerfile @@ -39,11 +39,6 @@ RUN apt-get update -qq && \ apt-get install --no-install-recommends -y curl libsqlite3-0 libvips && \ rm -rf /var/lib/apt/lists /var/cache/apt/archives -# Run and own only the runtime files as a non-root user for security -RUN useradd rails --create-home --shell /bin/bash && \ - chown -R rails:rails db log storage tmp -USER rails:rails - # Start the server by default, this can be overwritten at runtime EXPOSE 80 CMD ["./bin/rails", "server", "-p", "80", "-b", "0.0.0.0"]