Build & Deploy PROD #21
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Copyright 2020 ChainSafe Systems | |
| # SPDX-License-Identifier: LGPL-3.0-only | |
| name: Build & Deploy PROD | |
| on: | |
| push: | |
| tags: | |
| - 'v*' | |
| workflow_dispatch: | |
| env: | |
| AWS_REGION: ${{ secrets.AWS_REGION }} | |
| AWS_ACCOUNT_ID: ${{ secrets.AWS_ACCOUNT_ID }} | |
| ECR_REPO: ${{ secrets.AWS_ECR_REPO }} | |
| ECS_CLUSTER: ${{ secrets.AWS_ECS_CLUSTER }} | |
| ECS_SERVICE: ${{ secrets.AWS_ECS_SERVICE }} | |
| ENVIRONMENT: PROD | |
| jobs: | |
| build: | |
| name: build_deploy_prod | |
| runs-on: ubuntu-latest | |
| permissions: | |
| id-token: write | |
| contents: write | |
| steps: | |
| # download the source code into the runner | |
| - name: checkout | |
| uses: actions/checkout@v2 | |
| - name: Set output | |
| id: vars | |
| run: echo ::set-output name=tag::${GITHUB_REF#refs/*/} | |
| - name: Configure AWS credentials | |
| uses: aws-actions/configure-aws-credentials@v1 | |
| with: | |
| role-to-assume: arn:aws:iam::${{ env.AWS_ACCOUNT_ID }}:role/github-actions-role | |
| aws-region: ${{ env.AWS_REGION }} | |
| # gather metadata from git & github actions to reference in docker | |
| - name: git & github metadata | |
| id: metadata | |
| uses: docker/metadata-action@v3 | |
| with: | |
| images: ${{ env.AWS_ACCOUNT_ID }}.dkr.ecr.${{ env.AWS_REGION }}.amazonaws.com/${{ env.AWS_ECR_REPO }} | |
| # login in docker repository | |
| - name: docker login | |
| uses: aws-actions/amazon-ecr-login@v1 | |
| # build a docker image | |
| - name: docker & push image | |
| uses: docker/build-push-action@v2 | |
| with: | |
| context: . | |
| file: ./Dockerfile | |
| push: true | |
| tags: | | |
| ${{ env.AWS_ACCOUNT_ID }}.dkr.ecr.${{ env.AWS_REGION }}.amazonaws.com/${{ env.ECR_REPO }}:latest | |
| ${{ env.AWS_ACCOUNT_ID }}.dkr.ecr.${{ env.AWS_REGION }}.amazonaws.com/${{ env.ECR_REPO }}:${{ steps.vars.outputs.tag }} | |
| # deploy to AWS ECS | |
| - name: Deploy to Amazon ECS | |
| uses: aws-actions/amazon-ecs-deploy-task-definition@v1 | |
| with: | |
| task-definition: infra/aws-ecs/task_definition_${{ env.ENVIRONMENT }}.json | |
| service: ${{ env.ECS_SERVICE }} | |
| cluster: ${{ env.ECS_CLUSTER }} | |
| wait-for-service-stability: true | |