-
Notifications
You must be signed in to change notification settings - Fork 3
116 lines (101 loc) · 3.87 KB
/
deploy.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
name: Deploy cluster
on:
push:
branches: [github-action-deploy]
workflow_dispatch:
jobs:
deploy-staging:
name: Deploy on staging
runs-on: ubuntu-latest
environment:
name: staging
timeout-minutes: 15
strategy:
matrix:
include:
- environment: staging-01
host: SSH_HOST_STAGING_01
steps:
- uses: actions/checkout@v3
- name: Set up SSH
run: |
mkdir -p ~/.ssh/
echo "$SSH_PRIVATE_KEY" > ./deploy.key
sudo chmod 600 ./deploy.key
ssh-keyscan -H $SSH_HOST >> ~/.ssh/known_hosts
shell: bash
env:
SSH_PRIVATE_KEY: ${{secrets.SSH_MACHINE_USER_PRIVATE_KEY}}
SSH_HOST: ${{ secrets[matrix.host] }}
- name: Deploy to staging
run: ssh -i ./deploy.key www-data@$SSH_HOST 'python3 /opt/scripts/app-deploy-release/deploy.py /opt/git/releases/annuaire-entreprises-search-api https://github.com/etalab/annuaire-entreprises-search-api.git api --version github-action-deploy --versions_to_keep=5 | tee --append /var/log/deploy_annuaire-entreprises-search-api'
env:
SSH_HOST: ${{ secrets[matrix.host] }}
- name: Notify staging failure only
if: failure()
uses: ./.github/actions/notify
with:
message: '🚨 ${{ github.event.repository.name }} [${{ matrix.environment }}] : deploy to staging cluster failed'
hook: ${{ secrets.TCHAP_HOOK }}
id: ${{ secrets.TCHAP_ROOM_ID }}
deploy-production:
name: Deploy on production
runs-on: ubuntu-latest
needs: [deploy-staging]
environment:
name: production
timeout-minutes: 15
strategy:
matrix:
include:
- environment: production-01
host: SSH_HOST_PRODUCTION_01
- environment: production-02
host: SSH_HOST_PRODUCTION_02
steps:
- uses: actions/checkout@v3
- name: Set up SSH
run: |
mkdir -p ~/.ssh/
echo "$SSH_PRIVATE_KEY" > ./deploy.key
sudo chmod 600 ./deploy.key
ssh-keyscan -H $SSH_HOST >> ~/.ssh/known_hosts
shell: bash
env:
SSH_PRIVATE_KEY: ${{secrets.SSH_MACHINE_USER_PRIVATE_KEY}}
SSH_HOST: ${{ secrets[matrix.host] }}
- name: Deploy to production
run: ssh -i ./deploy.key www-data@$SSH_HOST 'python3 /opt/scripts/app-deploy-release/deploy.py /opt/git/releases/annuaire-entreprises-search-api https://github.com/etalab/annuaire-entreprises-search-api.git api --version github-action-deploy --versions_to_keep=5 | tee --append /var/log/deploy_annuaire-entreprises-search-api'
env:
SSH_HOST: ${{ secrets[matrix.host] }}
- name: Notify production failure only
if: failure()
uses: ./.github/actions/notify
with:
message: '🚨 ${{ github.event.repository.name }} [${{ matrix.environment }}] : deploy to production cluster failed'
hook: ${{ secrets.TCHAP_HOOK }}
id: ${{ secrets.TCHAP_ROOM_ID }}
notify-deploy-staging-success:
name: Notify successful deployment
runs-on: ubuntu-latest
needs: [deploy-staging]
steps:
- uses: actions/checkout@v3
- name: Notify deploy success
uses: ./.github/actions/notify
with:
message: '✅ ${{ github.event.repository.name }} : successfully deploy staging cluster'
hook: ${{ secrets.TCHAP_HOOK }}
id: ${{ secrets.TCHAP_ROOM_ID }}
notify-deploy-success:
name: Notify successful deployment
runs-on: ubuntu-latest
needs: [deploy-production]
steps:
- uses: actions/checkout@v3
- name: Notify deploy success
uses: ./.github/actions/notify
with:
message: '✅ ${{ github.event.repository.name }} : successfully deploy production cluster'
hook: ${{ secrets.TCHAP_HOOK }}
id: ${{ secrets.TCHAP_ROOM_ID }}