try try try #252
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Deploy Backend to Infra Test | |
# TODO: Currently this deploys ALL of the microservices including the frontend and data server | |
# TODO: ideally we should reduce this to the minimum services needed for backend | |
on: | |
push: | |
branches: [infra-test] | |
workflow_dispatch: | |
jobs: | |
build-ingestion: | |
if: github.repository == 'SatcherInstitute/health-equity-tracker' | |
name: (infra-test) Data Ingestion Image | |
runs-on: ubuntu-latest | |
outputs: | |
image-digest: ${{ steps.ingestion.outputs.image-digest }} | |
steps: | |
- name: Check Out Code from infra-test | |
uses: actions/checkout@v4 | |
with: | |
ref: infra-test | |
- id: auth | |
uses: google-github-actions/auth@v2 | |
with: | |
credentials_json: ${{ secrets.TEST_DEPLOYER_SA_KEY }} | |
- name: Set Up gcloud | |
uses: google-github-actions/setup-gcloud@v2 | |
with: | |
project_id: ${{ secrets.TEST_PROJECT_ID }} | |
- id: ingestion | |
uses: ./.github/actions/buildAndPush | |
with: | |
dockerfile: 'run_ingestion/Dockerfile' | |
image-path: 'gcr.io/${{ secrets.TEST_PROJECT_ID }}/data-ingestion' | |
build-gcs-to-bq: | |
if: github.repository == 'SatcherInstitute/health-equity-tracker' | |
name: (infra-test) GCS-to-BQ Image | |
runs-on: ubuntu-latest | |
outputs: | |
image-digest: ${{ steps.gcstobq.outputs.image-digest }} | |
steps: | |
- name: Check Out Code from infra-test | |
uses: actions/checkout@v4 | |
with: | |
ref: infra-test | |
- id: auth | |
uses: google-github-actions/auth@v2 | |
with: | |
credentials_json: ${{ secrets.TEST_DEPLOYER_SA_KEY }} | |
- name: Set Up gcloud | |
uses: google-github-actions/setup-gcloud@v2 | |
with: | |
project_id: ${{ secrets.TEST_PROJECT_ID }} | |
- id: gcstobq | |
uses: ./.github/actions/buildAndPush | |
with: | |
dockerfile: 'run_gcs_to_bq/Dockerfile' | |
image-path: 'gcr.io/${{ secrets.TEST_PROJECT_ID }}/gcs-to-bq' | |
build-exporter: | |
if: github.repository == 'SatcherInstitute/health-equity-tracker' | |
name: (infra-test) Exporter Image | |
runs-on: ubuntu-latest | |
outputs: | |
image-digest: ${{ steps.exporter.outputs.image-digest }} | |
steps: | |
- name: Check Out Code from infra-test | |
uses: actions/checkout@v4 | |
with: | |
ref: infra-test | |
- id: auth | |
uses: google-github-actions/auth@v2 | |
with: | |
credentials_json: ${{ secrets.TEST_DEPLOYER_SA_KEY }} | |
- name: Set Up gcloud | |
uses: google-github-actions/setup-gcloud@v2 | |
with: | |
project_id: ${{ secrets.TEST_PROJECT_ID }} | |
- id: exporter | |
uses: ./.github/actions/buildAndPush | |
with: | |
dockerfile: 'exporter/Dockerfile' | |
image-path: 'gcr.io/${{ secrets.TEST_PROJECT_ID }}/exporter' | |
build-data-server: | |
if: github.repository == 'SatcherInstitute/health-equity-tracker' | |
name: (infra-test) Data Server Image | |
runs-on: ubuntu-latest | |
outputs: | |
image-digest: ${{ steps.serving.outputs.image-digest }} | |
steps: | |
- name: Check Out Code from infra-test | |
uses: actions/checkout@v4 | |
with: | |
ref: infra-test | |
- id: auth | |
uses: google-github-actions/auth@v2 | |
with: | |
credentials_json: ${{ secrets.TEST_DEPLOYER_SA_KEY }} | |
- name: Set Up gcloud | |
uses: google-github-actions/setup-gcloud@v2 | |
with: | |
project_id: ${{ secrets.TEST_PROJECT_ID }} | |
- id: serving | |
uses: ./.github/actions/buildAndPush | |
with: | |
dockerfile: 'data_server/Dockerfile' | |
image-path: 'gcr.io/${{ secrets.TEST_PROJECT_ID }}/data-server' | |
build-frontend: | |
if: github.repository == 'SatcherInstitute/health-equity-tracker' | |
name: (main -> dev site) Frontend Image | |
runs-on: ubuntu-latest | |
outputs: | |
image-digest: ${{ steps.frontend.outputs.image-digest }} | |
steps: | |
- name: Check Out Code from main | |
uses: actions/checkout@v4 | |
with: | |
# don't update dev.healthequitytracker.org frontend with push to infra-test branch | |
ref: main | |
- id: auth | |
uses: google-github-actions/auth@v2 | |
with: | |
credentials_json: ${{ secrets.TEST_DEPLOYER_SA_KEY }} | |
- name: Set Up gcloud | |
uses: google-github-actions/setup-gcloud@v2 | |
with: | |
project_id: ${{ secrets.TEST_PROJECT_ID }} | |
- id: frontend | |
uses: ./.github/actions/buildAndPush | |
with: | |
dockerfile: 'frontend_server/Dockerfile' | |
image-path: 'gcr.io/${{ secrets.TEST_PROJECT_ID }}/frontend' | |
deploy-context: 'staging' | |
basic-auth-username: ${{ secrets.BASIC_AUTH_USERNAME }} | |
basic-auth-password: ${{ secrets.BASIC_AUTH_PASSWORD }} | |
deploy: | |
if: github.repository == 'SatcherInstitute/health-equity-tracker' | |
name: (infra-test) Terraform / Airflow Configs | |
runs-on: ubuntu-latest | |
needs: | |
[ | |
build-ingestion, | |
build-gcs-to-bq, | |
build-exporter, | |
build-data-server, | |
build-frontend, | |
] | |
steps: | |
- name: Check Out Code from infra-test | |
uses: actions/checkout@v4 | |
with: | |
ref: infra-test | |
- id: auth | |
uses: google-github-actions/auth@v2 | |
with: | |
credentials_json: ${{ secrets.TEST_DEPLOYER_SA_KEY }} | |
- name: Set Up gcloud | |
uses: google-github-actions/setup-gcloud@v2 | |
with: | |
project_id: ${{ secrets.TEST_PROJECT_ID }} | |
- name: Setup Terraform | |
uses: hashicorp/setup-terraform@v3 | |
# Disable wrapper to enable access to terraform output. | |
with: | |
terraform_wrapper: false | |
- name: Save credentials | |
working-directory: ./config | |
run: | | |
cat > creds.json << EOF | |
${{ secrets.TEST_DEPLOYER_SA_KEY }} | |
EOF | |
- name: Terraform Init | |
working-directory: ./config | |
run: | | |
terraform init -backend-config="bucket=${{ secrets.TEST_TF_STATE_BUCKET }}" \ | |
-backend-config="credentials=creds.json" | |
- name: Terraform Apply | |
id: terraform | |
working-directory: ./config | |
run: | | |
terraform apply -auto-approve -var-file=test/test.tfvars \ | |
-var-file=common.tfvars \ | |
-var 'gcp_credentials=${{ secrets.TEST_DEPLOYER_SA_KEY }}' \ | |
-var 'project_id=${{ secrets.TEST_PROJECT_ID }}' \ | |
-var 'ingestion_image_digest=${{ needs.build-ingestion.outputs.image-digest }}' \ | |
-var 'gcs_to_bq_image_digest=${{ needs.build-gcs-to-bq.outputs.image-digest }}' \ | |
-var 'data_server_image_digest=${{ needs.build-data-server.outputs.image-digest }}' \ | |
-var 'exporter_image_digest=${{ needs.build-exporter.outputs.image-digest }}' \ | |
-var 'frontend_image_digest=${{ needs.build-frontend.outputs.image-digest }}' | |
data_server_url=$(terraform output data_server_url) | |
echo "data_server_url=$data_server_url" >> "$GITHUB_OUTPUT" | |
ingestion_url=$(terraform output ingestion_url) | |
echo "ingestion_url=$ingestion_url" >> "$GITHUB_OUTPUT" | |
gcs_to_bq_url=$(terraform output gcs_to_bq_url) | |
echo "gcs_to_bq_url=$gcs_to_bq_url" >> "$GITHUB_OUTPUT" | |
exporter_url=$(terraform output exporter_url) | |
echo "exporter_url=$exporter_url" >> "$GITHUB_OUTPUT" | |
frontend_url=$(terraform output frontend_url) | |
echo "frontend_url=$frontend_url" >> "$GITHUB_OUTPUT" | |
- name: Airflow Environment Variables | |
id: airflow-environment-variables | |
continue-on-error: true | |
run: | | |
gcloud composer environments update data-ingestion-environment \ | |
--update-env-variables=AIRFLOW_VAR_INGEST_TO_GCS_SERVICE_ENDPOINT=${{ steps.terraform.outputs.ingestion_url }} \ | |
--update-env-variables=AIRFLOW_VAR_GCS_TO_BQ_SERVICE_ENDPOINT=${{ steps.terraform.outputs.gcs_to_bq_url }} \ | |
--update-env-variables=AIRFLOW_VAR_EXPORTER_SERVICE_ENDPOINT=${{ steps.terraform.outputs.exporter_url }} \ | |
--update-env-variables=AIRFLOW_VAR_GCS_LANDING_BUCKET=msm-test-landing-bucket \ | |
--update-env-variables=AIRFLOW_VAR_GCS_MANUAL_UPLOADS_BUCKET=msm-test-manual-data-bucket \ | |
--location=us-central1 | |
- name: Upload Airflow DAGs and utility file | |
working-directory: ./airflow | |
run: | | |
./upload-dags.sh | |
- name: Set up Python | |
uses: actions/setup-python@v5 | |
with: | |
python-version: 3.9 |