事前准备

  1. 在 runner 所在的服务器上生成 ssh

    1. ssh-keygen -t rsa -b 2048 -C "<comment>"

  2. 在 gitlab repo 的 seetings -> CI/CD -> variables 下新建变量 SSH_PRIVATE_KEY,value 填写 ~/.ssh/id_xxx.pub的内容

image.png

  1. 关键步骤 将本地的私钥通过 ssh-copy-id命令注册到要部署的服务器上
    1. ssh-copy-id -i ~/.ssh/id_rsa.pub root@149.129.57.229

yml 配置

  1. workflow:
  2.   rules:
  3.     - if: '$CI_COMMIT_REF_NAME == "master"'
  5. stages:
  6.   - build
  7.   - deploy
  9. build_prod:
  10.   stage: build
  11.   cache:
  12.     key: build_prod
  13.     paths:
  14.       - node_modules/
  15.   script:
  16.     - yarn install --registry=http://registry.npm.taobao.org/
  17.     - yarn build
  18.     - ls
  19.   artifacts:
  20.     expire_in: 60 mins
  21.     paths:
  22.       - dist
  24. deploy_prod:
  25.   stage: deploy
  26.   dependencies:
  27.     - build_prod
  28.   before_script:
  29.   - 'command -v ssh-agent >/dev/null || ( apt-get update -y && apt-get install openssh-client -y )'
  30.   - eval $(ssh-agent -s)
  31.   - echo "$SSH_PRIVATE_KEY" | tr -d '\r' | ssh-add -
  32.   - mkdir -p ~/.ssh
  33.   - chmod 700 ~/.ssh
  34.   - '[[ -f /.dockerenv ]] && echo -e "Host *\n\tStrictHostKeyChecking no\n\n" > ~/.ssh/config'
  36.   script:
  37.     - ssh -t root@149.129.57.229 "cd /home/nginx-server/1995 && rm -rf *"
  38.     - scp -r dist/* root@149.129.57.229:/home/nginx-server/1995/