name: Deploy to NAS

on:
  push:
    branches: [main]

jobs:
  deploy:
    runs-on: self-hosted
    container:
      image: docker:latest

    steps:
      - name: Pull code
        run: |
          if [ -d "/volume2/docker/pamietnik/.git" ]; then
            git -C /volume2/docker/pamietnik pull
          else
            git clone http://192.168.1.4:3000/christoph/pamietnik.git /volume2/docker/pamietnik
          fi

      - name: Write .env
        run: printf 'DB_PASSWORD=%s\n' '${{ secrets.DB_PASSWORD }}' > /volume2/docker/pamietnik/.env

      - name: Build & Deploy
        run: docker compose -f /volume2/docker/pamietnik/docker-compose.yml up --build -d

      - name: Health check
        run: |
          sleep 15
          curl -sf http://localhost:9050/healthz || exit 1