From 19640b371a6c7eb467a5125837240faeb0189fe3 Mon Sep 17 00:00:00 2001
From: alvicsam <alvicsam@gmail.com>
Date: Fri, 1 Nov 2024 11:09:25 +0100
Subject: [PATCH] add deploy

---
 .github/workflows/deploy.yml | 112 +++++++++++++++++++++++++++++++++++
 1 file changed, 112 insertions(+)
 create mode 100644 .github/workflows/deploy.yml

diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml
new file mode 100644
index 000000000..430332ee9
--- /dev/null
+++ b/.github/workflows/deploy.yml
@@ -0,0 +1,112 @@
+name: Deploy
+
+on:
+  push:
+    branches:
+      - master
+    tags:
+      - v*
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }}
+  cancel-in-progress: true
+
+#to use reusable workflow
+permissions:
+  id-token: write
+  contents: read
+
+env:
+  APP: "substrate-api-sidecar"
+
+jobs:
+  set-variables:
+    # This workaround sets the container image for each job using 'set-variables' job output.
+    # env variables don't work for PR from forks, so we need to use outputs.
+    runs-on: ubuntu-latest
+    outputs:
+      VERSION: ${{ steps.version.outputs.VERSION }}
+    steps:
+      - name: Define version
+        id: version
+        run: |
+          export COMMIT_SHA=${{ github.sha }}
+          export COMMIT_SHA_SHORT=${COMMIT_SHA:0:8}
+          export REF_NAME=${{ github.ref_name }}
+          export REF_SLUG=${REF_NAME//\//_}
+          if [[ ${REF_SLUG} == "master" ]]
+          then
+            VERSION=${REF_SLUG}-${COMMIT_SHA_SHORT}
+            echo "VERSION=${REF_SLUG}-${COMMIT_SHA_SHORT}" >> $GITHUB_OUTPUT
+          else
+            VERSION=${REF_SLUG}
+            echo "VERSION=${REF_SLUG}" >> $GITHUB_OUTPUT
+          fi
+          echo "set VERSION=${VERSION}"
+
+  build_push_docker:
+    name: Build docker image
+    runs-on: ubuntu-latest
+    environment: tags
+    needs: [set-variables]
+    env:
+      VERSION: ${{ needs.set-variables.outputs.VERSION }}
+    steps:
+      - name: Log in to Docker Hub
+        uses: docker/login-action@v3
+        with:
+          username: ${{ secrets.DOCKERHUB_USERNAME }}
+          password: ${{ secrets.DOCKERHUB_PASSWORD }}
+
+      - name: Build Docker image
+        uses: docker/build-push-action@v5
+        with:
+          context: .
+          file: ./Dockerfile
+          push: true
+          tags: |
+            docker.io/parity/substrate-api-sidecar:${{ env.VERSION }}
+
+  deploy-stg:
+    name: Deploy Staging
+    runs-on: ubuntu-latest
+    needs: [set-variables, build_push_docker]
+    environment: parity-stg
+    env:
+      VERSION: ${{ needs.set-variables.outputs.VERSION }}
+      ARGOCD_SERVER: "argocd-stg.teleport.parity.io"
+    steps:
+      - name: Deploy to ArgoCD
+        uses: paritytech/argocd-deployment-action@main
+        with:
+          environment: "parity-stg"
+          tag: "${{ env.VERSION }}"
+          app_name: "${{ env.APP }}"
+          app_packages: "${{ env.APP }}"
+          argocd_server: ${{ env.ARGOCD_SERVER }}
+          teleport_token: ${{ env.APP }}
+          teleport_app_name: "argocd-stg"
+          argocd_auth_token: ${{ secrets.ARGOCD_AUTH_TOKEN }}
+
+  deploy-prod:
+    name: Deploy Production
+    runs-on: ubuntu-latest
+    needs: [set-variables, deploy-stg]
+    # Deploy only if the tag is v*
+    if: startsWith(github.ref, 'refs/tags/v')
+    environment: parity-prod
+    env:
+      VERSION: ${{ needs.set-variables.outputs.VERSION }}
+      ARGOCD_SERVER: "argocd-prod.teleport.parity.io"
+    steps:
+      - name: Deploy to ArgoCD
+        uses: paritytech/argocd-deployment-action@main
+        with:
+          environment: "parity-prod"
+          tag: "${{ env.VERSION }}"
+          app_name: "${{ env.APP }}"
+          app_packages: "${{ env.APP }}"
+          argocd_server: ${{ env.ARGOCD_SERVER }}
+          teleport_token: ${{ env.APP }}
+          teleport_app_name: "argocd-prod"
+          argocd_auth_token: ${{ secrets.ARGOCD_AUTH_TOKEN }}