# ========================================== # 纯 Bash 命令行部署工作流(适配自定义 SSH 端口) # ========================================== name: Deploy Frontend on: push: branches: - main jobs: deploy: runs-on: ubuntu-latest steps: - name: Checkout code uses: actions/checkout@v4 - name: Execute Bash Deployment run: | # 🚨 [核心加速点]:免去 apt-get update,3秒内直接下载绿色版 rsync if ! command -v rsync &> /dev/null; then echo "📦 正在极速拉取静态编译版 rsync..." mkdir -p ~/.local/bin # 从针对 Linux x86_64 静态编译的成品库直接下载单个文件 curl -sSL https://repo.malkas.club/pub/rsync/rsync-3.2.7-x86_64 -o ~/.local/bin/rsync # 如果上面的小众源由于网络波动慢,这里提供一个极速国内加速镜像(Gitee 镜像)作为备用: # curl -sSL https://gitee.com/quick-build-tools/rsync-static/raw/main/rsync-3.2.7-x86_64 -o ~/.local/bin/rsync chmod +x ~/.local/bin/rsync export PATH="$HOME/.local/bin:$PATH" fi # -------------- 1. 声明与解析变量 -------------- SERVER_IP="${{ secrets.SSH_HOST }}" SERVER_USER="${{ secrets.SSH_USER }}" TARGET_DIR="${{ secrets.TARGET_DIR }}" SSH_PORT="${{ secrets.SSH_PORT }}" : ${SERVER_IP:="192.168.31.185"} : ${SERVER_USER:="root"} : ${TARGET_DIR:="/data/apps/ci-cd/frontend"} : ${SSH_PORT:="2222"} echo "🌐 准备部署至目标服务器: ${SERVER_USER}@${SERVER_IP}:${TARGET_DIR} (端口: ${SSH_PORT})" # -------------- 2. 初始化本地 SSH 环境 -------------- mkdir -p ~/.ssh chmod 700 ~/.ssh echo "${{ secrets.SSH_PRIVATE_KEY }}" > ~/.ssh/id_ed25519 chmod 600 ~/.ssh/id_ed25519 echo "🔍 正在扫描目标服务器主机指纹..." ssh-keyscan -p "$SSH_PORT" -H "$SERVER_IP" >> ~/.ssh/known_hosts 2>/dev/null # -------------- 3. 执行 rsync 增量同步 -------------- echo "🚀 开始传输增量文件..." # 🚨 这里显式指定了我们刚刚下载的绿色版 rsync 路径 ~/.local/bin/rsync -avz --delete \ -e "ssh -i ~/.ssh/id_ed25519 -p $SSH_PORT" \ --exclude=".git/" \ --exclude=".gitea/" \ --exclude=".github/" \ ./ \ "${SERVER_USER}@${SERVER_IP}:${TARGET_DIR}" # -------------- 4. 状态检查 -------------- if [ $? -eq 0 ]; then echo "✨ 部署成功!" else echo "❌ 部署失败,请检查密钥权限或局域网连通性。" exit 1 fi