Today-s-Sound · wlgusqkr · May 17, 2026 · Oct 31, 2025 · Oct 31, 2025 · Oct 31, 2025
diff --git a/.github/workflows/cicd.yml b/.github/workflows/cicd.yml
diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml
@@ -0,0 +1,62 @@
+name: Deploy to homeserver
+
+on:
+  push:
+    branches: [dev]
+    paths:
+      - "src/**"
+      - "build.gradle"
+      - "settings.gradle"
+      - "gradle/**"
+      - "Dockerfile"
+      - ".github/workflows/deploy.yml"
+  workflow_dispatch:
+
+concurrency:
+  group: deploy-homeserver-todaysound
+  cancel-in-progress: false
+
+jobs:
+  deploy:
+    runs-on: [self-hosted, homeserver]
+    timeout-minutes: 25
+
+    env:
+      REPO_DIR: /Users/parkparkjihyeon/homeserver/services/todaysound/repo
+      APP_DIR:  /Users/parkparkjihyeon/homeserver/services/todaysound
+
+    steps:
+      - name: Sync repo on host
+        run: |
+          cd "$REPO_DIR"
+          git fetch --all --prune
+          git reset --hard origin/dev
+
+      - name: Build backend image
+        run: |
+          cd "$APP_DIR"
+          DOCKER_BUILDKIT=1 docker compose build
+
+      - name: Roll out
+        run: |
+          cd "$APP_DIR"
+          docker compose up -d
+          docker image prune -f
+
+      - name: Smoke test (e2e via caddy with correct Host)
+        run: |
+          for i in 1 2 3 4 5 6 7 8 9 10; do
+            code=$(docker exec caddy wget -S -q -O- \
+                --header "Host: today-sound.com" \
+                http://localhost/actuator/health 2>&1 \
+              | awk '/HTTP\//{print $2; exit}')
+            if [ "$code" = "200" ] || [ "$code" = "401" ] || [ "$code" = "403" ]; then
+              echo "Backend OK ($code)"
+              exit 0
+            fi
+            echo "Retry $i (code=$code)..."
+            sleep 6
+          done
+          echo "Backend healthcheck failed"
+          docker logs todaysound-server --tail 100 || true
+          exit 1
diff --git a/Dockerfile b/Dockerfile
@@ -1,10 +1,15 @@
-FROM eclipse-temurin:17-jre
-
-WORKDIR /app
+# syntax=docker/dockerfile:1.7
 
-COPY build/libs/*SNAPSHOT*.jar /app/app.jar
+FROM eclipse-temurin:17-jdk AS build
+WORKDIR /src
+COPY . .
+RUN --mount=type=cache,target=/root/.gradle \
+    chmod +x gradlew && \
+    ./gradlew --no-daemon clean bootJar -x test -x asciidoctor
 
+FROM eclipse-temurin:17-jre
+WORKDIR /app
+COPY --from=build /src/build/libs/*SNAPSHOT*.jar /app/app.jar
 ENV SPRING_PROFILES_ACTIVE=prod
 EXPOSE 8080
-
 ENTRYPOINT ["java","-jar","/app/app.jar"]