[Chore] CI/CD 환경변수 수정 및 Actuator healthcheck 추가

.github/workflows/ci.yml

@@ -25,8 +25,9 @@ jobs:
         working-directory: backend
         run: ./gradlew bootJar -x test
         env:
-          DB_URL: ${{ secrets.DB_URL }}
-          DB_USER: ${{ secrets.DB_USER }}
-          DB_PASSWORD: ${{ secrets.DB_PASSWORD }}
+          RDS_ENDPOINT: ${{ secrets.RDS_ENDPOINT }}
+          RDS_DB_NAME: ${{ secrets.RDS_DB_NAME }}
+          RDS_USERNAME: ${{ secrets.RDS_USERNAME }}
+          RDS_PASSWORD: ${{ secrets.RDS_PASSWORD }}
           JWT_SECRET: ${{ secrets.JWT_SECRET }}
           JWT_EXPIRATION: ${{ secrets.JWT_EXPIRATION }}

.github/workflows/deploy.yml

@@ -25,9 +25,10 @@ jobs:
         working-directory: backend
         run: ./gradlew bootJar -x test
         env:
-          DB_URL: ${{ secrets.DB_URL }}
-          DB_USER: ${{ secrets.DB_USER }}
-          DB_PASSWORD: ${{ secrets.DB_PASSWORD }}
+          RDS_ENDPOINT: ${{ secrets.RDS_ENDPOINT }}
+          RDS_DB_NAME: ${{ secrets.RDS_DB_NAME }}
+          RDS_USERNAME: ${{ secrets.RDS_USERNAME }}
+          RDS_PASSWORD: ${{ secrets.RDS_PASSWORD }}
           JWT_SECRET: ${{ secrets.JWT_SECRET }}
           JWT_EXPIRATION: ${{ secrets.JWT_EXPIRATION }}
 
@@ -55,10 +56,16 @@ jobs:
             docker rm piroin-backend || true
             docker run -d \
               --name piroin-backend \
+              --restart unless-stopped \
               -p 8080:8080 \
-              -e DB_URL=${{ secrets.DB_URL }} \
-              -e DB_USER=${{ secrets.DB_USER }} \
-              -e DB_PASSWORD=${{ secrets.DB_PASSWORD }} \
-              -e JWT_SECRET=${{ secrets.JWT_SECRET }} \
-              -e JWT_EXPIRATION=${{ secrets.JWT_EXPIRATION }} \
+              --health-cmd="curl -f http://localhost:8080/actuator/health || exit 1" \
+              --health-interval=30s \
+              --health-timeout=10s \
+              --health-retries=3 \
+              -e RDS_ENDPOINT="${{ secrets.RDS_ENDPOINT }}" \
+              -e RDS_DB_NAME="${{ secrets.RDS_DB_NAME }}" \
+              -e RDS_USERNAME="${{ secrets.RDS_USERNAME }}" \
+              -e RDS_PASSWORD="${{ secrets.RDS_PASSWORD }}" \
+              -e JWT_SECRET="${{ secrets.JWT_SECRET }}" \
+              -e JWT_EXPIRATION="${{ secrets.JWT_EXPIRATION }}" \
               ${{ secrets.DOCKERHUB_USERNAME }}/piroin-backend:latest

backend/build.gradle

@@ -32,6 +32,9 @@ dependencies {
 	// Swagger
 	implementation 'org.springdoc:springdoc-openapi-starter-webmvc-ui:3.0.0'
 
+	// Actuator
+	implementation 'org.springframework.boot:spring-boot-starter-actuator'
+
 
 	// Flyway
 	implementation 'org.springframework.boot:spring-boot-flyway'

backend/src/main/java/com/example/Piroin/project/global/config/SecurityConfig.java

@@ -46,6 +46,9 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
                                 "/swagger-ui.html"
                         ).permitAll()
 
+                        // Actuator health check
+                        .requestMatchers("/actuator/health").permitAll()
+
                         // 다른 도메인 권한 설정 필요 시 위 패턴 참고해서 추가
                         // 단, 추가하지 않아도 무방함
                         // 이유 1. anyRequest().authenticated()로 비로그인 접근 차단

backend/src/main/resources/application.yml

@@ -21,3 +21,9 @@ spring:
       hibernate:
         format_sql: true
         packagesToScan: com.example.Piroin.project.domain
+
+management:
+  endpoints:
+    web:
+      exposure:
+        include: health