Webook
The Debian/Ubuntu package called webhook is very useful. Uses systemd to run but you have to adjust the config a bit.
apt install webhook
The file /lib/systemd/system/webhook.service should contain this ExecStart command. The order of the options matters!
ExecStart=/usr/bin/webhook -nopanic -hooks /etc/webhook.conf -hotreload -verbose -port 8000
bash systemctl edit webhook
Configuration
Here is a /etc/webhook.conf example:
[
{
"id": "deploy-j5wnuY96pbtit",
"execute-command": "deploy.sh",
"command-working-directory": "/opt/app-name/"
}
]
Webhook with Parameters
[
{
"id": "deploy-123456789",
"execute-command": "/opt/deploy.sh",
"pass-arguments-to-command":
[
{
"source": "url",
"name": "var1"
},
{
"source": "url",
"name": "var2"
},
{
"source": "url",
"name": "var3"
}
]
}
]
Firewall on Digital Ocean
# to get the Droplet ID
doctl compute droplet list
# add firewall rule
doctl compute firewall create --name "allow-webhook-from-all" --inbound-rules "protocol:tcp,ports:9000" --droplet-ids
Github Actions line
- name: Trigger deploy webhook
run: curl -s -k http://host.name.com:9000/hooks/deploy-WFUEmasdfasdfasfdk
Deploy script for containers
#!/bin/bash
#set -o errexit
#set -o nounset
#set -o pipefail
# load file outside of git repo with your DOCKER_TOKEN (PAT)
source ~/.env
# login so we can pull the container
echo $DOCKER_TOKEN | docker login ghcr.io --username doesnt@matter.com --password-stdin
# actually pull container
docker-compose pull backend
# restart container
# docker-compose restart backend # WARN: this seems to load an old image
docker compose stop backend
docker-compose up -d --force-recreate --renew-anon-volumes backend # https://stackoverflow.com/a/50059206/159086