feat: build and push docker image in ci workflow (#22)

junjie-w · web-flow · commit be0be6354e47 · 2025-03-09T12:52:24.000+01:00
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -23,5 +23,46 @@ jobs:
     - name: Build with Maven
       run: mvn -B package --file pom.xml
     
-    - name: Run tests
-      run: mvn test
+    - name: Run tests with dev profile
+      run: mvn test -Dspring.profiles.active=dev
+      
+    - name: Upload test results
+      if: always()
+      uses: actions/upload-artifact@v4
+      with:
+        name: test-results
+        path: target/surefire-reports/
+
+  docker:
+    needs: build-test
+    if: success() && github.ref == 'refs/heads/main'
+    runs-on: ubuntu-latest
+    
+    steps:
+    - uses: actions/checkout@v4
+    
+    - name: Set up Docker Buildx
+      uses: docker/setup-buildx-action@v3
+      
+    - name: Login to Docker Hub
+      uses: docker/login-action@v3
+      with:
+        username: ${{ secrets.DOCKERHUB_USERNAME }}
+        password: ${{ secrets.DOCKERHUB_TOKEN }}
+        
+    - name: Extract version from pom.xml
+      id: get_version
+      run: |
+        VERSION=$(grep -A 1 "<version>" pom.xml | grep -v "<version>" | head -1 | sed 's/[[:space:]]*<version>\(.*\)<\/version>.*/\1/')
+        echo "VERSION=${VERSION}" >> $GITHUB_ENV
+        
+    - name: Build and push Docker image
+      uses: docker/build-push-action@v5
+      with:
+        context: .
+        push: true
+        tags: |
+          ${{ secrets.DOCKERHUB_USERNAME }}/jwt-auth-server:latest
+          ${{ secrets.DOCKERHUB_USERNAME }}/jwt-auth-server:${{ env.VERSION }}
+        cache-from: type=registry,ref=${{ secrets.DOCKERHUB_USERNAME }}/jwt-auth-server:buildcache
+        cache-to: type=registry,ref=${{ secrets.DOCKERHUB_USERNAME }}/jwt-auth-server:buildcache,mode=max
diff --git a/src/main/java/com/example/jwt_auth_server/config/SecurityConfig.java b/src/main/java/com/example/jwt_auth_server/config/SecurityConfig.java
@@ -37,7 +37,6 @@ public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Excepti
             .csrf(csrf -> csrf.disable())
             .authorizeHttpRequests(authorize -> authorize
                 .requestMatchers("/", "/api/health", "/api/auth/**").permitAll()
-                .requestMatchers("/h2-console/**").permitAll()
                 .anyRequest().authenticated()
             )
             .sessionManagement(session -> session

Original file line number	Diff line number	Diff line change
`@@ -37,7 +37,6 @@ public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Excepti`
`37`	`37`	`.csrf(csrf -> csrf.disable())`
`38`	`38`	`.authorizeHttpRequests(authorize -> authorize`
`39`	`39`	`.requestMatchers("/", "/api/health", "/api/auth/**").permitAll()`
`40`		`- .requestMatchers("/h2-console/**").permitAll()`
`41`	`40`	`.anyRequest().authenticated()`
`42`	`41`	`)`
`43`	`42`	`.sessionManagement(session -> session`