Webmail Website Panel VPS Panel Client Panel
Client Services
Webmail Website Panel VPS Panel Client Panel
Guides

Advanced Infrastructure Automation: Building a CI/CD Pipeline for Continuous Deployment

Manual deployment processes are prone to human error and inconsistency. Learn how to architect a Continuous Integration and Continuous Deployment (CI/CD) pipeline using GitHub Actions to automate code delivery to your production environment.

Advanced Infrastructure Automation: Building a CI/CD Pipeline for Continuous Deployment

The Necessity of Automated Delivery

Connecting to a server via SSH to manually pull code repositories and restart services introduces configuration drift and unnecessary downtime. A Continuous Integration and Continuous Deployment (CI/CD) pipeline eliminates these risks by strictly automating the testing, building, and delivery of code. This guide details the configuration of a deployment pipeline using GitHub Actions to deploy an application securely to a production KVM VPS. Before allowing any automated runner to access your production environment, you must enforce strict access controls as outlined in our Securing Your Server guide.

Configuring Dedicated Authentication

The automated runner requires authenticated access to your server. You must never use your personal administrative keys for automated pipelines. The first step is generating a dedicated SSH key pair exclusively for the deployment process. Execute this command on your secure local machine to generate an Ed25519 key pair:

ssh-keygen -t ed25519 -C "github-actions-deploy" -f ./deploy_key

You must append the generated public key to the authorized_keys file of the deployment user on your CLOUD HIVE DC server. The private key must be stored securely as an encrypted secret within your GitHub repository settings, along with the server IP address and username.

Defining the Declarative Workflow

With authentication established, you must define the pipeline workflow. Create a YAML file within your repository directory at .github/workflows/deploy.yml. This declarative configuration specifies the exact triggers and the sequence of commands the runner will execute. Open your code editor and insert the following pipeline definition:

name: Production Deployment

on:
  push:
    branches:
      - main

jobs:
  deploy:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout Code
        uses: actions/checkout@v3

      - name: Execute Remote SSH Commands
        uses: appleboy/ssh-action@v0.1.6
        with:
          host: ${{ secrets.SERVER_IP }}
          username: ${{ secrets.DEPLOY_USER }}
          key: ${{ secrets.DEPLOY_PRIVATE_KEY }}
          script: |
            cd /var/www/application
            git pull origin main
            npm install
            pm2 restart app

Executing the Automated Deployment

Once you commit and push this YAML file to your repository, the pipeline becomes active. Every time new code is merged into the main branch, the GitHub Actions runner automatically provisions a secure container, authenticates with your CLOUD HIVE DC server via SSH, pulls the latest commit, installs necessary dependencies, and restarts the application daemon. This process ensures absolute consistency across deployments and completely removes manual intervention from the release cycle.

Back to Blog
Recent Posts
Important Notice About Pricing
Important Notice About Pricing
Dedicated Server Addons
Dedicated Server Addons
IP Price
IP Price
Search
Categories
All Posts 42 News 1 Server Addons 2 Tutorials 11 Security 2 Guides 10 Technology 2 E-commerce 0 Infrastructure 3 Architecture 2 Gaming 2 Artificial Intelligence 1 Business 1 Development 2 VPN 3
Most Popular
  1. 1 Important Notice About Pricing
  2. 2 Dedicated Server Addons
  3. 3 IP Price
  4. 4 Making Your Website Accessible from Restricted Regions
  5. 5 Centralized CrowdSec Management with Web UI
AI
AI
CLOUD HIVE DC AI
Welcome aboard!
Ask me anything about CLOUD HIVE DC services. 🚀
I'm still learning, so please be patient with me 😊😋
👨‍💻 An operator has joined the chat