Manual Production Deploy #13
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Manual Production Deploy | |
on: | |
workflow_dispatch: | |
inputs: | |
version: | |
description: 'Version' | |
required: true | |
concurrency: Manual Production Deploy | |
jobs: | |
deploy_to_production_start_slack: | |
if: github.repository_owner == 'Informatievlaanderen' | |
name: Deploy to production started | |
environment: prd | |
runs-on: ubuntu-latest | |
steps: | |
- name: Parse repository name | |
run: echo REPOSITORY_NAME=$(echo ""$GITHUB_REPOSITORY"" | awk -F / '{print $2}' | sed -e ""s/:refs//"") >> $GITHUB_ENV | |
shell: bash | |
- name: Notify deployment started | |
uses: slackapi/[email protected] | |
with: | |
channel-id: '#team-dinosaur-dev' | |
slack-message: Deployment of streetname-registry to production has started | |
env: | |
SLACK_BOT_TOKEN: ${{ secrets.VBR_SLACK_BOT_TOKEN }} | |
SLACK_CHANNEL: ${{ secrets.VBR_NOTIFIER_CHANNEL_NAME }} | |
REPOSITORY_NAME: ${{ env.REPOSITORY_NAME }} | |
deploy_services_to_production: | |
if: github.repository_owner == 'Informatievlaanderen' | |
needs: [ deploy_to_production_start_slack ] | |
name: Deploy to Production | |
runs-on: ubuntu-latest | |
strategy: | |
matrix: | |
services: [ | |
'streetname-api', | |
'streetname-projections', | |
'streetname-backoffice-api', | |
'streetname-consumer', | |
'streetname-producer', | |
'streetname-producer-snapshot-oslo', | |
'streetname-projections-backoffice' | |
] | |
steps: | |
- name: CD services | |
env: | |
BUILD_URL: ${{ vars.VBR_AWS_BUILD_API_DEVOPS }}/${{matrix.services}} | |
STATUS_URL: ${{ vars.VBR_AWS_BUILD_STATUS_API_DEVOPS }}/${{matrix.services}} | |
uses: informatievlaanderen/awscurl-polling-action/polling-action@main | |
with: | |
environment: prd | |
version: ${{ github.event.inputs.version }} | |
status-url: $STATUS_URL | |
deploy-url: $BUILD_URL | |
access-key: ${{ secrets.VBR_AWS_ACCESS_KEY_ID_DEVOPS }} | |
secret-key: ${{ secrets.VBR_AWS_SECRET_ACCESS_KEY_DEVOPS }} | |
interval: 2 | |
deploy-target: 'agb_ecs_service' | |
domain: 'basisregisters' | |
project: 'basisregisters' | |
- name: output CD services | |
shell: bash | |
run: | | |
echo build-uuid: ${{ steps.awscurl-polling-action.outputs.build-uuid }} | |
echo Status: ${{ steps.awscurl-polling-action.outputs.status }} | |
echo ${{ steps.awscurl-polling-action.outputs.final-message }} | |
deploy_tasks_to_production: | |
if: github.repository_owner == 'Informatievlaanderen' | |
needs: [ deploy_to_production_start_slack ] | |
name: Deploy to Production | |
runs-on: ubuntu-latest | |
strategy: | |
matrix: | |
services: [ | |
#'streetname-migrator-streetname', | |
'streetname-snapshot-verifier' | |
] | |
steps: | |
- name: CD tasks | |
env: | |
BUILD_URL: ${{ vars.VBR_AWS_BUILD_API_DEVOPS }}/${{matrix.services}} | |
STATUS_URL: ${{ vars.VBR_AWS_BUILD_STATUS_API_DEVOPS }}/${{matrix.services}} | |
uses: informatievlaanderen/awscurl-polling-action/polling-action@main | |
with: | |
environment: prd | |
version: ${{ github.event.inputs.version }} | |
status-url: $STATUS_URL | |
deploy-url: $BUILD_URL | |
access-key: ${{ secrets.VBR_AWS_ACCESS_KEY_ID_DEVOPS }} | |
secret-key: ${{ secrets.VBR_AWS_SECRET_ACCESS_KEY_DEVOPS }} | |
interval: 2 | |
deploy-target: 'ecs_scheduled_task' | |
domain: 'basisregisters' | |
project: 'basisregisters' | |
- name: output CD tasks | |
shell: bash | |
run: | | |
echo build-uuid: ${{ steps.awscurl-polling-action.outputs.build-uuid }} | |
echo Status: ${{ steps.awscurl-polling-action.outputs.status }} | |
echo ${{ steps.awscurl-polling-action.outputs.final-message }} | |
deploy_lambda_to_production: | |
if: github.repository_owner == 'Informatievlaanderen' | |
needs: [deploy_services_to_production, deploy_tasks_to_production] | |
name: Deploy lambda to production | |
runs-on: ubuntu-latest | |
steps: | |
- name: CD Lambda(s) Configure credentials | |
uses: aws-actions/configure-aws-credentials@v1-node16 | |
with: | |
aws-access-key-id: ${{ secrets.VBR_AWS_ACCESS_KEY_ID_NEWPRD }} | |
aws-secret-access-key: ${{ secrets.VBR_AWS_SECRET_ACCESS_KEY_NEWPRD }} | |
aws-region: ${{ secrets.VBR_AWS_REGION_PRD }} | |
- name: Prepare Lambda(s) | |
shell: bash | |
run: | | |
echo aws s3 cp s3://077849980894-vbr-prd-lam-sr-sqsbackoffice/$VERSION/lambda.zip s3://077849980894-vbr-prd-lam-sr-sqsbackoffice/lambda.zip --copy-props none | |
aws s3 cp s3://077849980894-vbr-prd-lam-sr-sqsbackoffice/$VERSION/lambda.zip s3://077849980894-vbr-prd-lam-sr-sqsbackoffice/lambda.zip --copy-props none | |
env: | |
VERSION: ${{ github.event.inputs.version }} | |
- name: Promote Lambda(s) | |
shell: bash | |
run: | | |
echo pulling awscurl docker image | |
docker pull ghcr.io/okigan/awscurl:latest | |
echo docker run --rm okigan/awscurl --access_key $ACCESS_KEY_ID --secret_key $SECRET_ACCESS_KEY_ID --region $REGION -X POST -d '{ "functionName": "sr-sqsbackofficefunction", "project": "basisregisters", "domain": "basisregisters" }' $PROMOTEURL/acc | |
docker run --rm okigan/awscurl --access_key $ACCESS_KEY_ID --secret_key $SECRET_ACCESS_KEY_ID --region $REGION -X POST -d '{ "functionName": "sr-sqsbackofficefunction", "project": "basisregisters", "domain": "basisregisters" }' $PROMOTEURL/acc | |
env: | |
ACCESS_KEY_ID: ${{ secrets.VBR_AWS_ACCESS_KEY_ID_TST }} | |
SECRET_ACCESS_KEY_ID: ${{ secrets.VBR_AWS_SECRET_ACCESS_KEY_TST }} | |
REGION: ${{ secrets.VBR_AWS_REGION_PRD }} | |
PROMOTEURL: ${{ secrets.VBR_AWS_PROMOTE_LAMBDA_BASEURL }} | |
deploy_to_production_finish_slack: | |
if: github.repository_owner == 'Informatievlaanderen' | |
needs: [ deploy_lambda_to_production ] | |
name: Deploy to production finished | |
runs-on: ubuntu-latest | |
steps: | |
- name: Parse repository name | |
run: echo REPOSITORY_NAME=$(echo ""$GITHUB_REPOSITORY"" | awk -F / '{print $2}' | sed -e ""s/:refs//"") >> $GITHUB_ENV | |
shell: bash | |
- name: Notify deployment finished | |
uses: slackapi/[email protected] | |
with: | |
channel-id: '#team-dinosaur-dev' | |
slack-message: Deployment of streetname-registry to production has finished | |
env: | |
SLACK_BOT_TOKEN: ${{ secrets.VBR_SLACK_BOT_TOKEN }} | |
SLACK_CHANNEL: ${{ secrets.VBR_NOTIFIER_CHANNEL_NAME }} | |
REPOSITORY_NAME: ${{ env.REPOSITORY_NAME }} |