What is CI/CD in Node.js?

CI/CD stands for Continuous Integration and Continuous Deployment, automating the testing and deployment processes for Node.js applications.

How does GitHub Actions work for CI/CD?

GitHub Actions allows you to automate workflows in your repositories. In CI/CD, GitHub Actions can be used to trigger builds, tests, and deployments on code changes.

What are the prerequisites for setting up CI/CD with GitHub Actions?

You need a GitHub repository, a VPS with SSH access, and environment variables stored in GitHub Secrets.

How do I set up an SSH key for deployment in GitHub Actions?

You can use the webfactory/ssh-agent GitHub Action to load your SSH key securely without saving it locally.

What is PM2, and why is it used in this setup?

PM2 is a process manager for Node.js applications, used to run and manage applications in the background and keep them running even after crashes.

What version of Node.js should I use with this GitHub Actions setup?

It is recommended to use Node.js version 18 or higher for compatibility with modern libraries and better performance.

What are GitHub Secrets, and how do I use them?

GitHub Secrets are secure environment variables used to store sensitive information, like SSH keys and API tokens, for use in your workflows.

How does rsync work in this GitHub Actions workflow?

rsync is a file transfer utility that syncs files from your GitHub repository to the server, ensuring only new or changed files are transferred.

What is the difference between npm install and npm ci?

npm ci installs dependencies strictly based on package-lock.json, ensuring consistent and faster installations, ideal for CI environments.

How do I add my VPS to the SSH known hosts list?

You can use ssh-keyscan to add your VPS IP to the known hosts, which prevents SSH prompts during deployment.

Why is environment management important in CI/CD?

Environment management ensures that sensitive information, like database URIs and API keys, is securely handled and accessible only where necessary.

How do I handle environment variables in GitHub Actions?

Environment variables are managed via GitHub Secrets, allowing secure storage and access during deployment steps.

How can I deploy my Node.js app to a VPS with GitHub Actions?

Using rsync and SSH commands in GitHub Actions, you can automate the deployment of your application files from GitHub to your VPS.

What is a YAML configuration file?

A YAML file is used to define GitHub Actions workflows, specifying steps, triggers, and settings in a structured format.

What does the `on: push` configuration do in GitHub Actions?

The `on: push` configuration triggers the workflow whenever code is pushed to the specified branch, such as `main`.

Can I run tests before deploying with GitHub Actions?

Yes, you can add steps to run tests before the deployment step to ensure the code is functioning correctly.

How do I manage different environments (e.g., development, production) in CI/CD?

Use environment variables and separate workflows or branches to manage deployment settings for different environments.

What happens if a GitHub Actions step fails?

If a step fails, the workflow stops, and an error message is logged. You can review logs to troubleshoot issues.

How do I clean up sensitive information after a GitHub Actions workflow?

Sensitive files, like private keys, can be removed using cleanup steps at the end of the workflow to maintain security.

Can I run multiple workflows in parallel with GitHub Actions?

Yes, GitHub Actions supports parallel workflows, allowing you to run different tasks simultaneously.

How do I restart my Node.js app after deployment?

You can use PM2 to restart your Node.js app automatically after deployment.

What is the purpose of `sudo` in the GitHub Actions workflow?

sudo allows you to execute commands with elevated privileges on the VPS, such as deploying files to restricted directories.

How do I check the status of my GitHub Actions workflows?

You can view workflow status and logs in the Actions tab of your GitHub repository.

What are the benefits of using rsync for deployment?

rsync only transfers changed files, making deployments faster and reducing bandwidth.

How can I monitor my Node.js app in production?

PM2 provides monitoring tools to track application health and restart on crashes.

What is the role of GitHub Actions runners?

Runners are servers that execute the steps in your GitHub Actions workflows, such as running commands and deploying code.

How do I handle deployment errors in GitHub Actions?

Check the workflow logs for specific error messages, adjust your workflow if needed, and re-run the workflow to test fixes.

Setting Up CI/CD for Node.js with GitHub Actions

Success! Setting up CI/CD for Node.js with GitHub Actions can streamline your deployment by automating steps like dependency installation, environment management, and secure SSH access.

Setting up CI/CD for your Node.js app using GitHub Actions can save time and reduce errors by automating repetitive deployment tasks. In this guide, you’ll learn to configure a workflow that pulls code, installs dependencies, manages SSH securely, and deploys with PM2.

What You’ll Need

GitHub Repository: For hosting your Node.js code.
VPS: A server with SSH access to deploy your app.
Secrets Setup: Add credentials (SSH key, IP, user, and environment variables) in GitHub Secrets for secure access.

GitHub Actions Workflow

Here’s a full YAML configuration with each step explained:

    name: CI/CD for Node.js App with PM2

on:
  push:
    branches:
      - main

jobs:
  deploy:
    runs-on: ubuntu-latest

    steps:
      # 1. Checkout Code
      - name: Checkout code
        uses: actions/checkout@v3

      # 2. Set Up Node.js
      - name: Set up Node.js
        uses: actions/setup-node@v3
        with:
          node-version: '18'

      # 3. Install Dependencies
      - name: Install dependencies
        run: npm ci

      # 4. Set Up SSH for Deployment
      - name: Set up SSH key
        uses: webfactory/ssh-agent@v0.8.0
        with:
          ssh-private-key: ${{ secrets.SSH_PRIVATE_KEY }}

      # 5. Add VPS to Known Hosts
      - name: Add VPS to known hosts
        run: |
          mkdir -p ~/.ssh
          ssh-keyscan -H "${{ secrets.VPS_IP }}" >> ~/.ssh/known_hosts

      # 6. Deploy Files to VPS
      - name: Deploy to temporary directory on VPS
        env:
          VPS_USER: ${{ secrets.VPS_USER }}
        run: |
          rsync -avz --delete ./ ${VPS_USER}@${{ secrets.VPS_IP }}:/tmp/node-hello/

      # 7. Move Files to Final Directory on VPS
      - name: Move files to /root/node-hello
        env:
          VPS_USER: ${{ secrets.VPS_USER }}
        run: |
          ssh ${VPS_USER}@${{ secrets.VPS_IP }} "
            sudo rsync -avz /tmp/node-hello/ /root/node-hello/
          "

      # 8. Set Up Environment and Manage PM2
      - name: Configure environment and manage PM2
        env:
          VPS_USER: ${{ secrets.VPS_USER }}
          MONGO_URI: ${{ secrets.MONGO_URI }}
          JWT_SECRET: ${{ secrets.JWT_SECRET }}
          BCRYPT_SALT_ROUNDS: ${{ secrets.BCRYPT_SALT_ROUNDS }}
          PORT: ${{ secrets.PORT }}
          NODE_ENV: 'production'
        run: |
          ssh ${VPS_USER}@${{ secrets.VPS_IP }} "
            sudo bash -c '
            cd /root/node-hello

            # Write environment variables to .env
            cat > .env < /dev/null; then
              npm install -g pm2
            fi
            pm2 startOrRestart server.js --name \"server\" --update-env
            '
          "

      # 9. Clean Up Known Hosts
      - name: Clean up known hosts
        run: |
          ssh-keygen -R "${{ secrets.VPS_IP }}"

Workflow Breakdown

Checkout Code: Pulls your latest code from the main branch.
Node.js Setup: Sets up Node.js (version 18 or higher) for compatibility with modern libraries.
Install Dependencies: npm ci is preferred over npm install for faster installs and consistency with package-lock.json.
SSH Key Setup: Uses webfactory/ssh-agent to securely handle SSH. This action adds your SSH key to the agent without saving it locally.
Add VPS to Known Hosts: Adds your server’s IP to the SSH known hosts list, avoiding interactive prompts during SSH.
Deploy Files to VPS: Uses rsync to deploy files to a temporary directory on the VPS, ensuring only the latest files are uploaded.
Move Files to Final Directory: Moves files from the temporary to the final directory, requiring root privileges to write to /root/node-hello.
Set Environment and PM2: Writes environment variables to a .env file on the server, then starts or restarts the app using PM2. The startOrRestart command is efficient and reduces downtime.
Clean Up Known Hosts: Removes the VPS IP from known hosts after deployment. This step prevents clutter and mitigates risks from SSH fingerprint changes.

Warning! This is a beginner setup and may not cover all scenarios. We’re open to suggestions and feedback to improve this guide, so feel free to share any ideas or tips you have.

Basanta Sapkota

Setting Up CI/CD for Node.js with GitHub Actions

What You’ll Need

GitHub Actions Workflow

Workflow Breakdown

Post a Comment

Why Isn't It Just sudo apt install docker?

Automating SSL Certificates (Let’s Encrypt) for Dockerised Apps

How to Maximize the Best Use of a Budget VPS for Optimal Performance

Google AI Pro student trial: how to claim it and use it effectively

The Success of Cloudflare Turnstile: A Modern Approach to Bot Protection