Skip to content

Commit

Permalink
feat: GitHub Actions (#277)
Browse files Browse the repository at this point in the history 
* feat: add workflow configurations

* fix(ci): correctly set network

* fix(ci): remove pseudo-tty flags from docker run

* fix(ci): specify POSTGRES_HOST

* chore(ci): remove unnecessary env variable setting

* feat: add workflow configurations

* fix(ci): correctly set network

* fix(ci): remove pseudo-tty flags from docker run

* fix(ci): specify POSTGRES_HOST

* chore(ci): remove unnecessary env variable setting

* fix(ci): try setting timezone

* fix(ci): set PGTZ env variable too

* fix(ci): remove timezone stuff and improve user_cleanup_job_spec

* fix(jobs): change end_date to correct number

* feat: problem matchers

* chore: change documentation

* refactor(ci): try building without RAILS_MASTER_KEY

* fix(ci): default camo_key to empty string

* fix(ci): readd RAILS_MASTER_KEY stuff

* test(ci): test problem matchers

* fix(problemmatchers): rspec regex

* fix(problemmatchers): escape dot correctly

* fix(problemmatchers): remove escaped backslash

* chore: remove unused build-args setting and add -t to docker run

* fix(ci): add db container to lint step too

* chore(ci): remove -t from docker run

* refactor: update all action tags to exclude prefix

* fix: image repository

* chore: remove unnecessary step id

* fix: set Sentry release

* fix: lint error in Sentry initializer

* fix: use whitespace character in regex

* fix: also change sidekiq image url

Co-authored-by: Wilco <[email protected]>
  • Loading branch information
@guidojw @wilco375
guidojw and wilco375 authored Mar 11, 2022
1 parent 2c2d3ae commit 634629e
Show file tree
Hide file tree
Showing 17 changed files with 523 additions and 124 deletions.
66 changes: 0 additions & 66 deletions .buildkite/pipeline.yml
View file

This file was deleted.

9 changes: 0 additions & 9 deletions .buildkite/release.sh
View file

This file was deleted.

9 changes: 0 additions & 9 deletions .buildkite/sentry.sh
View file

This file was deleted.

8 changes: 0 additions & 8 deletions .buildkite/slack.sh
View file

This file was deleted.

16 changes: 16 additions & 0 deletions .github/problem-matchers/rspec.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,16 @@
{
"problemMatcher": [
{
"owner": "rspec",
"severity": "error",
"pattern": [
{
"regexp": "^rspec\\s\\.\/(.*):(.*)\\s#\\s(.*)$",
"file": 1,
"line": 2,
"message": 3
}
]
}
]
}
32 changes: 32 additions & 0 deletions .github/problem-matchers/rubocop.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,32 @@
{
"problemMatcher": [
{
"owner": "rubocop-error",
"severity": "error",
"pattern": [
{
"regexp": "^(.+):(\\d+):(\\d+):\\sC:\\s((.+):\\s.+)$",
"file": 1,
"line": 2,
"column": 3,
"message": 4,
"code": 5
}
]
},
{
"owner": "rubocop-warning",
"severity": "warning",
"pattern": [
{
"regexp": "^(.+):(\\d+):(\\d+):\\sW:\\s((.+):\\s.+)$",
"file": 1,
"line": 2,
"column": 3,
"message": 4,
"code": 5
}
]
}
]
}
24 changes: 24 additions & 0 deletions .github/workflows/cleanup-registry.yml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,24 @@
name: Cleanup Registry

on:
schedule:
- cron: '0 0 * * 1' # https://crontab.guru/#0_0_*_*_1
workflow_dispatch:

env:
IMAGE_NAMES: amber-api

jobs:
cleanup:
name: Cleanup
runs-on: ubuntu-latest
steps:
- name: Delete old versions
uses: snok/container-retention-policy@81ba73785bb8207a451a0de928aa6a3c57d6fd77 # tag=v1.4.0
with:
image-names: ${{ env.IMAGE_NAMES }}
cut-off: 2 days ago UTC
account-type: org
org-name: ${{ github.repository_owner }}
skip-tags: latest,staging
token: ${{ secrets.PAT }}
216 changes: 216 additions & 0 deletions .github/workflows/continuous-delivery.yml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,216 @@
name: Continuous Delivery

on:
workflow_dispatch:
inputs:
merge:
description: Merge staging into master first? (y/N)
required: false
default: 'n'

concurrency:
group: cd-${{ github.ref_name }}

env:
PROJECT_NAME: amber-api
SENTRY_ORG: csvalpha
APP_ID: 152333

jobs:
branch_check:
name: Branch Check
runs-on: ubuntu-latest
steps:
- name: Validate branch
run: |
if [ $GITHUB_REF_NAME != 'staging' ] && [ $GITHUB_REF_NAME != 'master' ]; then
echo 'This workflow can only be run on branches staging and master.'
exit 1
fi
metadata:
name: Metadata
runs-on: ubuntu-latest
needs: branch_check
outputs:
has_diff: ${{ steps.get_metadata.outputs.has_diff }}
stage: ${{ steps.get_metadata.outputs.stage }}
steps:
- name: Checkout code
uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 # tag=v2.4.0

- name: Get metadata
id: get_metadata
env:
INPUT_MERGE: ${{ github.event.inputs.merge }}
run: |
if [ $GITHUB_REF_NAME = 'master' ]; then
if [ "${INPUT_MERGE,,}" = 'y' ]; then
git fetch origin staging
if ! git diff origin/master origin/staging --exit-code; then
echo '::set-output name=has_diff::true'
else
echo '::set-output name=has_diff::false'
fi
fi
echo '::set-output name=stage::production'
else
echo '::set-output name=stage::staging'
fi
merge:
name: Merge
runs-on: ubuntu-latest
needs: metadata
if: github.event.inputs.merge == 'y'
outputs:
sha: ${{ steps.get_sha.outputs.sha }}
steps:
- name: Validate inputs
env:
HAS_DIFF: ${{ fromJSON(needs.metadata.outputs.has_diff || false) }}
run: |
if [ $GITHUB_REF_NAME != 'master' ]; then
echo 'Can only merge when the workflow target branch is master.'
exit 1
fi
if ! $HAS_DIFF; then
echo 'There is no diff so a merge is not necessary, skipping next steps.'
fi
- name: Checkout code
if: fromJSON(needs.metadata.outputs.has_diff)
uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 # tag=v2.4.0

- name: Run merge
if: fromJSON(needs.metadata.outputs.has_diff)
uses: devmasx/merge-branch@854d3ac71ed1e9deb668e0074781b81fdd6e771f # tag=v1.4.0
with:
type: now
from_branch: staging
target_branch: master
github_token: ${{ github.token }}

- name: Get merge commit SHA
id: get_sha
if: fromJSON(needs.metadata.outputs.has_diff)
run: |
git fetch origin master
echo '::set-output name=sha::'$(git rev-parse origin/master)
continuous_integration:
name: Continuous Integration
needs: [metadata, merge]
if: fromJSON(needs.metadata.outputs.has_diff)
uses: csvalpha/amber-api/.github/workflows/continuous-integration.yml@staging
with:
sha: ${{ needs.merge.outputs.sha }}
secrets:
rails_master_key: ${{ secrets.RAILS_MASTER_KEY }}

publish_image:
name: Publish Image
needs: [metadata, merge]
if: fromJSON(needs.metadata.outputs.has_diff)
uses: csvalpha/amber-api/.github/workflows/publish-image.yml@staging
with:
sha: ${{ needs.merge.outputs.sha }}
secrets:
sentry_auth_token: ${{ secrets.SENTRY_AUTH_TOKEN }}

deploy:
name: Deploy
runs-on: ubuntu-latest
needs: [metadata, merge, continuous_integration, publish_image]
if: |
(github.ref_name == 'staging' || github.ref_name == 'master') && ((github.ref_name == 'master' &&
github.event.inputs.merge == 'y' && fromJSON(needs.metadata.outputs.has_diff) && success()) ||
((github.event.inputs.merge != 'y' || !fromJSON(needs.metadata.outputs.has_diff)) && !cancelled()))
steps:
- name: Get environment URL
id: get_url
run: |
if [ $GITHUB_REF_NAME = 'master' ]; then
echo '::set-output name=environment_url::https://csvalpha.nl/api'
else
echo '::set-output name=environment_url::https://staging.csvalpha.nl/api'
fi
- name: Checkout code
uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 # tag=v2.4.0
with:
ref: ${{ needs.merge.outputs.sha }}

- name: Start deployment
uses: bobheadxi/deployments@f235d02c2daaaa84c710d013c7d39f7f0f8bf298 # tag=v0.6.2
id: start_deployment
with:
step: start
token: ${{ secrets.GITHUB_TOKEN }}
env: ${{ needs.metadata.outputs.stage }}

- name: Deploy
uses: appleboy/ssh-action@1d1b21ca96111b1eb4c03c21c14ebb971d2200f6 # tag=v0.1.4
env:
STAGE: ${{ needs.metadata.outputs.stage }}
with:
host: csvalpha.nl
username: github-actions
key: ${{ secrets.SSH_PRIVATE_KEY }}
envs: PROJECT_NAME,STAGE
script: |
cd /opt/docker/$PROJECT_NAME/$STAGE
docker-compose pull
docker-compose run --rm web rails db:migrate
docker-compose up -d
- name: Finalize Sentry release
uses: getsentry/action-release@744e4b262278339b79fb39c8922efcae71e98e39 # tag=v1.1.6
env:
SENTRY_AUTH_TOKEN: ${{ secrets.SENTRY_AUTH_TOKEN }}
SENTRY_PROJECT: ${{ env.PROJECT_NAME }}
with:
environment: ${{ needs.metadata.outputs.stage }}
version: ${{ needs.merge.outputs.sha }}
set_commits: skip

- name: Finish deployment
uses: bobheadxi/deployments@f235d02c2daaaa84c710d013c7d39f7f0f8bf298 # tag=v0.6.2
if: steps.start_deployment.conclusion == 'success' && always()
with:
step: finish
token: ${{ secrets.GITHUB_TOKEN }}
status: ${{ job.status }}
deployment_id: ${{ steps.start_deployment.outputs.deployment_id }}
env_url: ${{ steps.get_url.outputs.environment_url }}

update_check_run:
name: Update Check Run
runs-on: ubuntu-latest
needs: [branch_check, metadata, merge, continuous_integration, publish_image, deploy]
if: (github.ref_name == 'staging' || github.ref_name == 'master') && always()
steps:
- name: Get conclusion
id: get_conclusion
env:
RESULTS: ${{ join(needs.*.result, ' ') }}
run: |
echo '::set-output name=conclusion::success'
for RESULT in $RESULTS; do
if [ $RESULT = 'cancelled' ] || [ $RESULT = 'failure' ]; then
echo '::set-output name=conclusion::'$RESULT
break
fi
done
- name: Update Continuous Delivery check run
uses: guidojw/actions/update-check-run@2b1dea8cbd9e44491c269e771b75636026caf8ca # tag=v1.1.0
with:
app_id: ${{ env.APP_ID }}
private_key: ${{ secrets.APP_PRIVATE_KEY }}
sha: ${{ needs.merge.outputs.sha }}
name: Continuous Delivery
conclusion: ${{ steps.get_conclusion.outputs.conclusion }}
details_url: ${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}
Loading

0 comments on commit 634629e

Please sign in to comment.