-
Notifications
You must be signed in to change notification settings - Fork 32
86 lines (76 loc) · 2.61 KB
/
2.dev-deploy.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
name: "deploy to dev"
# Note: Execute when feature branch is merge into develop this CI will be executed.
on:
pull_request:
types: [ closed ]
branches: [ develop ]
env:
IMAGE_NAME: api
concurrency:
group: ci-deploy-dev-${{ github.ref }}
cancel-in-progress: true
jobs:
dev-deploy:
runs-on: ubuntu-latest
environment: dev
permissions: # Necessary for workload identity provider
contents: 'read'
id-token: 'write'
if: github.event.pull_request.merged == true
steps:
# 1. Setup
- uses: actions/checkout@v4
- name: Set up JDK
uses: actions/[email protected]
with:
distribution: 'liberica'
java-version: '21'
cache: 'maven'
# 2. Sets & print variables
- name: Sets variables
id: variables
run: |
# 1. Set vars
IMAGE_REGISTRY="us-docker.pkg.dev/${{ secrets.PROJECT_ID }}/cloud-diplomats/${{ env.IMAGE_NAME }}"
IMAGE_TAG="dev-${{ github.run_number }}"
# 3. Set vars as env
echo "IMAGE_REGISTRY=$IMAGE_REGISTRY" >> $GITHUB_ENV
echo "IMAGE_TAG=$IMAGE_TAG" >> $GITHUB_ENV
- name: Print variables
run: |
echo "IMAGE_TAG=$IMAGE_TAG"
echo "IMAGE_REGISTRY=$IMAGE_REGISTRY"
# # 3. Auth
# - name: Auth via Workload Identity Federation
# id: auth
# uses: google-github-actions/[email protected]
# with:
# workload_identity_provider: ${{ secrets.WORKLOAD_IDENTITY_PROVIDER }}
# service_account: ${{ secrets.SERVICE_ACCOUNT }} # impersonated SA
#
# # 4. Setup gcloud & configure docker to use gcloud
# - name: Setup gcloud
# uses: google-github-actions/[email protected]
# with:
# project_id: ${{ secrets.PROJECT_ID }}
# - name: Setup docker to authenticate via gcloud
# run: gcloud --quiet auth configure-docker us-docker.pkg.dev
#
# # 5. Build image
# - name: Build image
# run: mvn clean package -DskipTests spring-boot:build-image --no-transfer-progress -Dspring-boot.build-image.imageName=$IMAGE_REGISTRY:$IMAGE_TAG
#
# # 6. Push image
# - name: Push image
# run: docker push $IMAGE_REGISTRY:$IMAGE_TAG
#
# # 7. Notify if fails
# # - name: Notify slack fail
# # if: failure()
# # env:
# # SLACK_BOT_TOKEN: ${{ secrets.SLACK_NOTIFICATIONS_BOT_TOKEN }}
# # uses: voxmedia/github-action-slack-notify-build@v1
# # with:
# # channel: app-alerts
# # status: FAILED
# # color: danger