My original deploy flow was the classic \u201cfreelancer special\u201d:<\/p>\n\n\n\n
Make changes locally, open FileZilla, SFTP into the server, drag files over, hope I didn\u2019t miss anything, refresh the site, repeat.<\/p>\n\n\n\n
It worked, but it was slow and it always felt a little fragile. So we switched to auto-deploys with GitHub Actions. Now whenever I push to Push code \u2192 live site updates. No more FileZilla sessions.<\/p>\n\n\n\n And here\u2019s a bonus I didn\u2019t fully appreciate until I started using it: it also makes it ridiculously easy to make small static page edits from my phone using the GitHub.com editor. Change a line of HTML, fix a typo, update a link, commit to Create What\u2019s happening here:<\/p>\n\n\n\n On the server, we keep the deploy logic in a script (e.g. Make sure:<\/p>\n\n\n\n In your repo: Settings \u2192 Secrets and variables \u2192 Actions<\/strong>. Add:<\/p>\n\n\n\n Now the runner can SSH in and deploy without you storing credentials in the repo.<\/p>\n\n\n\n This is the part that feels almost unfair once you have it.<\/p>\n\n\n\n Because deploys are tied to Commit to If you sit behind a CDN (like CloudFront), you may need to invalidate cache after deploy so you actually see your changes immediately.<\/p>\n\n\n\n You can:<\/p>\n\n\n\n That\u2019s it.<\/p>\n\n\n\n The whole goal here is to stop \u201cdeploying\u201d and start \u201cpushing.\u201d Once this is in place, you\u2019re not moving files around anymore. You\u2019re making changes in one place (your repo), and production stays in sync automatically.<\/p>\n","protected":false},"excerpt":{"rendered":" My original deploy flow was the classic \u201cfreelancer special\u201d: Make changes locally, open FileZilla, SFTP into the server, drag files over, hope I didn\u2019t miss anything, refresh the site, repeat. It worked, but it was slow and it always felt a little fragile. So we switched to auto-deploys with GitHub Actions. Now whenever I push … <\/p>\nmain<\/code>, GitHub connects to the server and runs a deploy script automatically.<\/p>\n\n\n\nmain<\/code>, and it deploys the same way as if I did it from my laptop.<\/p>\n\n\n\nWhat We Set Up<\/h2>\n\n\n\n
\n
main<\/code> runs the workflow.<\/li>\n\n\n\nmain<\/code> updates the live site without manual SFTP, SSH, or FTP.<\/li>\n<\/ul>\n\n\n\n1. The GitHub Workflow<\/h2>\n\n\n\n
.github\/workflows\/deploy.yml<\/code> in your repo:<\/p>\n\n\n\nname: Deploy to Lightsail\n\non:\n push:\n branches: [ main ]\n\njobs:\n deploy:\n runs-on: ubuntu-latest\n steps:\n - name: SSH deploy\n uses: appleboy\/ssh-action@v1.0.3\n with:\n host: ${{ secrets.HOST }}\n username: ${{ secrets.USERNAME }}\n key: ${{ secrets.SSH_KEY }}\n port: ${{ secrets.PORT || 22 }}\n script: |\n cd \/opt\/bitnami\/apache\/htdocs\n .\/scripts\/deploy.sh\n<\/code><\/pre>\n\n\n\n\n
appleboy\/ssh-action<\/code><\/strong> runs the given script on your server over SSH.<\/li>\n\n\n\nhost<\/code>, username<\/code>, key<\/code>, and optionally port<\/code> come from GitHub Secrets<\/strong> so you never put credentials in the repo.<\/li>\n\n\n\ncd<\/code> path to your actual document root.<\/li>\n<\/ul>\n\n\n\n2. The Deploy Script on the Server<\/h2>\n\n\n\n
scripts\/deploy.sh<\/code>) that the workflow runs:<\/p>\n\n\n\n#!\/bin\/bash\nset -euo pipefail\ngit pull origin main\n<\/code><\/pre>\n\n\n\n\n
set -euo pipefail<\/code> makes the script exit on errors and on use of unset variables.<\/li>\n\n\n\nmain<\/code>. You can expand this later (build steps, dependency installs, cache clears, service restarts, etc.).<\/li>\n<\/ul>\n\n\n\n\n
chmod +x scripts\/deploy.sh<\/code><\/li>\n\n\n\norigin<\/code> pointing to the same GitHub repo you push to.<\/li>\n<\/ul>\n\n\n\n3. GitHub Secrets<\/h2>\n\n\n\n
\n
origin.antpace.com<\/code>)<\/li>\n\n\n\nbitnami<\/code>)<\/li>\n\n\n\n4. The Underrated Win: Editing From Your Phone<\/h2>\n\n\n\n
main<\/code>, you can make simple static changes directly in the GitHub.com editor on mobile:<\/p>\n\n\n\n\n
main<\/code>, and the same workflow runs. No laptop required. No FileZilla. No \u201cI\u2019ll do it later when I\u2019m home.\u201d<\/p>\n\n\n\n5. One More Thing: Cache Invalidation<\/h2>\n\n\n\n
\n
\n\n\n\n