name: baekjoon-bot-cicd

on:
  push:
    branches: ["main"]

jobs:
  build_push_deploy:
    runs-on: ubuntu-latest
    steps:
      - name: Manual checkout (supports /gitea subpath)
        env:
          ACTOR: ${{ github.actor }}
          REPO: ${{ github.repository }}   # owner/repo
          SHA: ${{ github.sha }}
          TOKEN: ${{ secrets.NKEY_PAT }}  # repo read 권한 있는 PAT
        run: |
          set -euo pipefail
          git init .
          git remote add origin "https://${ACTOR}:${TOKEN}@nkeystudy.site/gitea/${REPO}.git"
          git fetch --no-tags --prune --depth=1 origin "${SHA}"
          git checkout -q FETCH_HEAD

      - name: Ensure docker compose available
        run: |
          set -euo pipefail
          docker version
          if ! docker compose version >/dev/null 2>&1; then
            # docker:24-git(Alpine) 기준
            apk add --no-cache docker-cli-compose
          fi
          docker compose version

      - name: Docker login
        env:
          DOCKERHUB_USER: ${{ secrets.DOCKERHUB_USER }}
          DOCKERHUB_TOKEN: ${{ secrets.DOCKERHUB_TOKEN }}
        run: |
          set -euo pipefail
          echo "${DOCKERHUB_TOKEN}" | docker login -u "${DOCKERHUB_USER}" --password-stdin
      
      - name: Build & push image
        env:
          DOCKERHUB_USER: ${{ secrets.DOCKERHUB_USER }}
          IMAGE_NAME: baekjoon-bot
        run: |
          set -euo pipefail
          IMAGE="${DOCKERHUB_USER}/${IMAGE_NAME}:latest"
          docker build -t "${IMAGE}" .
          docker push "${IMAGE}"

      - name: Deploy on server (compose pull/up)
        run: |
          docker compose -f /nkeysworld/compose.yml pull baekjoon-bot
          docker compose -f /nkeysworld/compose.yml up -d baekjoon-bot
          docker image prune -f