tacit/nanochat
1
0
Fork 0
mirror of https://github.com/karpathy/nanochat.git synced 2026-05-07 08:19:52 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
b766dcf703
nanochat/.github/workflows/deploy-ec2.yml
Manmohan Sharma b766dcf703
feat(deploy): add dual-mode deploy switch (EC2 monolith + EKS) 
- deploy.sh: single script to switch between EC2 and EKS modes
  - ec2: docker-compose with ECR images + nginx SSL reverse proxy
  - eks: terraform apply + helm install (for demos/grading)
  - eks-down: terraform destroy (stop costs)
- docker-compose.prod.yml: ECR image overrides + nginx service
- nginx/nginx.conf: reverse proxy with SSL, SSE streaming support
- deploy-ec2.yml: auto-deploy to EC2 after images are built
- Remove old single-server deploy.yml

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-04-16 12:57:57 -07:00

71 lines
2.4 KiB
YAML
Raw Blame History

name: Deploy to EC2 (Monolith)
on:
workflow_dispatch: # Manual trigger from GitHub UI
workflow_run: # Auto-trigger after images are built
workflows: ["Build & Push Dev Images"]
types: [completed]
branches: [master, main]
concurrency:
group: deploy-ec2
cancel-in-progress: false
jobs:
deploy:
if: github.event_name == 'workflow_dispatch' || github.event.workflow_run.conclusion == 'success'
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Configure AWS credentials
uses: aws-actions/configure-aws-credentials@v4
with:
role-to-assume: ${{ secrets.AWS_ROLE_ARN }}
aws-region: ${{ vars.AWS_REGION || 'us-west-2' }}
- name: Get ECR login password
id: ecr
run: |
echo "password=$(aws ecr get-login-password --region ${{ vars.AWS_REGION || 'us-west-2' }})" >> $GITHUB_OUTPUT
echo "registry=${{ secrets.AWS_ACCOUNT_ID || '883107058766' }}.dkr.ecr.${{ vars.AWS_REGION || 'us-west-2' }}.amazonaws.com" >> $GITHUB_OUTPUT
- name: Deploy to EC2
uses: appleboy/ssh-action@v1
with:
host: ${{ secrets.EC2_HOST }}
username: ubuntu
key: ${{ secrets.EC2_SSH_KEY }}
script: |
set -e
cd /home/ubuntu
# Login to ECR
echo "${{ steps.ecr.outputs.password }}" | \
docker login --username AWS --password-stdin ${{ steps.ecr.outputs.registry }}
# Clone or update repo
if [ -d samosachaat ]; then
cd samosachaat
git fetch origin master
git reset --hard origin/master
else
git clone https://github.com/manmohan659/nanochat.git samosachaat
cd samosachaat
fi
# Set image source
export ECR_REGISTRY=${{ steps.ecr.outputs.registry }}
export IMAGE_TAG=dev-latest
# Pull and deploy
docker compose -f docker-compose.yml -f docker-compose.prod.yml pull
docker compose -f docker-compose.yml -f docker-compose.prod.yml up -d
# Run migrations (wait for postgres)
sleep 8
docker compose exec -T chat-api alembic upgrade head 2>/dev/null || true
echo "Deploy complete!"
docker compose -f docker-compose.yml -f docker-compose.prod.yml ps
Reference in New Issue View Git Blame Copy Permalink