name: CI/CD Pipeline

on:
  push:
    branches:
      - master

jobs:
  build-and-deploy:
    runs-on: shell
    steps:
      - name: Clone repository
        run: git clone --depth 1 "http://192.168.8.174:3000/${GITHUB_REPOSITORY}.git" .
        env:
          GIT_TERMINAL_PROMPT: '0'

      - name: Ensure Docker CLI
        run: |
          apk add --no-cache docker-cli docker-cli-compose openssh-client || true
          grep -q '^vrubel:' /etc/passwd || echo 'vrubel:x:1000:1000::/data:/bin/sh' >> /etc/passwd

      - name: Setup .env for CI/CD
        run: cp .env.example .env

      - name: Build Docker image
        run: docker build -t 192.168.8.174:3000/vrubel/schedule-son:latest .

      - name: Test container
        run: |
          mkdir -p data
          docker run -d --name schedule-test \
            -p 8123:8000 \
            -v $(pwd)/data:/app/data \
            --env-file .env \
            -e TZ=Europe/Moscow \
            -e DATABASE_PATH=/app/data/schedule.db \
            192.168.8.174:3000/vrubel/schedule-son:latest

      - name: Verify container
        run: |
          sleep 5
          docker logs schedule-test --tail=20

      - name: Stop container
        run: docker rm -f schedule-test

      - name: Login to Gitea Container Registry
        run: echo "${{ secrets.REGISTRY_TOKEN }}" | docker login http://192.168.8.174:3000 -u "${{ secrets.REGISTRY_USER }}" --password-stdin

      - name: Push image to registry
        run: docker push 192.168.8.174:3000/vrubel/schedule-son:latest

      - name: Copy docker-compose to prod host
        run: scp -i /data/.ssh/id_ed25519 -o StrictHostKeyChecking=no docker-compose.prod.yml vrubel@192.168.8.171:~/services/scheduleSon/docker-compose.yml

      - name: Deploy on prod host
        run: ssh -i /data/.ssh/id_ed25519 -o StrictHostKeyChecking=no vrubel@192.168.8.171 "cd ~/services/scheduleSon && docker pull 192.168.8.174:3000/vrubel/schedule-son:latest && docker compose up -d --remove-orphans"