#!/usr/bin/env bash set -euo pipefail cd "$(dirname "$0")/.." ENV_SOURCE="/opt/job-tracker/shared/.env" ENV_TARGET=".env" if [ ! -f "$ENV_SOURCE" ]; then echo "Missing shared env file at $ENV_SOURCE" exit 1 fi # Keep runtime secrets outside the repo checkout so workflow uploads cannot wipe them. ln -snf "$ENV_SOURCE" "$ENV_TARGET" if [ ! -L "$ENV_TARGET" ] && [ ! -f "$ENV_TARGET" ]; then echo "Failed to link deployment env file into $(pwd)/$ENV_TARGET" exit 1 fi export APP_VERSION="${APP_VERSION:-0.0.0}" export APP_COMMIT_SHA="${APP_COMMIT_SHA:-unknown}" export APP_BUILD_STAMP="${APP_BUILD_STAMP:-unknown}" compose() { docker compose "$@" } build_with_recovery() { if compose build; then return 0 fi echo "docker compose build failed. Attempting one cleanup + retry because layer extraction can fail on constrained hosts." docker image rm -f app-ai-service:latest 2>/dev/null || true docker builder prune -af >/dev/null 2>&1 || true docker system prune -f >/dev/null 2>&1 || true compose build --no-cache ai-service compose build backend frontend } compose pull || true build_with_recovery # Force recreation so updated port mappings, env vars, and container config always apply on deploy. compose up -d --force-recreate --remove-orphans sleep 5 compose ps backend_status="$(compose ps backend --format '{{.State}}' 2>/dev/null | head -n 1 | tr '[:upper:]' '[:lower:]')" if [ "$backend_status" != "running" ]; then echo "Backend service is not healthy after deploy (state: ${backend_status:-unknown})." compose logs --tail=200 backend || true exit 1 fi ai_status="$(compose ps ai-service --format '{{.State}}' 2>/dev/null | head -n 1 | tr '[:upper:]' '[:lower:]')" if [ "$ai_status" != "running" ]; then echo "AI service is not healthy after deploy (state: ${ai_status:-unknown})." compose logs --tail=200 ai-service || true exit 1 fi # Clean up old legacy container name if it still exists from pre-rename deployments. docker rm -f app-summarizer-1 2>/dev/null || true echo "Deployment complete: ${APP_VERSION} ${APP_COMMIT_SHA}"