This repository contains Sympower's default reusable GitHub workflows to be called/reused by the workflows of each individual repository.
The General Build and Push Docker Images to ECR (buildx) workflow facilitates
the automation of Docker image creation and deployment to AWS ECR.
- aws_region: The AWS region where the ECR is located. This is necessary for configuring the AWS environment and logging into the ECR.
- image_name: The name of the Docker image to be pushed to ECR.
- image_tag: The tag for the Docker image being pushed.
- context_path: The build context path for Docker. This is the path where the Docker build context resides, typically where your Dockerfile and related files are located.
- dockerfile_path: The path to the Dockerfile. This should point to the Dockerfile in the build context directory.
- platforms: The list of target platforms for build.
- provenance: Controls whether provenance attestation for the build is required or not.
name: Deploy to AWS ECR
on: [push, pull_request]
jobs:
build-and-push:
uses: sympower/sympower-actions/.github/workflows/build-and-push-docker-image.yml@{LATEST_VERSION}
secrets: inherit
with:
aws_region: 'eu-central-1'
image_name: 'my-application'
image_tag: 'latest'
context_path: '.'
dockerfile_path: 'Dockerfile'release-new-version is meant as default workflow that builds, tests, analyses a Java/Kotlin Gradle project and
publishes all the relevant artifact, Docker images, pact contracts etc. This workflow is aware whether it is
operating on main/master branch or on some development branch. If the branch is not main/master, then the workflow will
not publish any release artifacts.
This workflow calls following composite actions:
- setup-build-environment
- format-version
- run-tests
- code-analysis
- on main/master branches:
- build-and-upload-docker-image
- upload-schema
- upload-pacts
- deploy-to-environment
for
stagingenvironment
- always: upload-build-artifacts
Example of use:
name: Release new version
on:
push:
paths-ignore:
- '**/README.md'
workflow_dispatch:
jobs:
release-new-version:
name: "Release new version"
uses: sympower/sympower-actions/.github/workflows/release-new-version.yml@{LATEST_VERSION}
with:
gistID: {some-gist-id}
secrets: inheritrelease-for-testing is meant as default workflow that builds, test, analyses a Java/Kotlin Gradle project and upload
schema artifact and Docker image without checking if the branch is main/master or not. This workflow is meant to be used
for manually publishing testing images and schemas.
If you have added auto-deployment JSON
with testing deployment group then this workflow will auto-deploy the created image to the desired environment.
For example following auto-deploy/testing.env.json file would deploy the image created to my-test-env environment:
{
"environment": "my-test-env",
"deployGroup": "testing"
}This workflow calls following composite actions:
- setup-build-environment
- format-version
- run-tests
- code-analysis
- build-and-upload-docker-image
- upload-schema
- always: upload-build-artifacts
Example of use:
name: Release for testing
on: workflow_dispatch
jobs:
release-for-testing:
name: "Release for testing"
uses: sympower/sympower-actions/.github/workflows/release-for-testing.yml@{LATEST_VERSION}
secrets: inheritThere are two main approaches to customize the workflows:
It is possible to add additional job(s) to your workflow. These jobs can declare that they depend on the default
workflow with needs field like this:
jobs:
release-new-version:
name: "Release new version"
uses: sympower/sympower-actions/.github/workflows/release-new-version.yml@{LATEST_VERSION}
with:
gistID: {some-gist-id}
secrets: inherit
custom-job:
name: "Custom Job"
runs-on: ubuntu-latest
needs: release-new-version
# Use if you need it to run only on main/master branch and take out either master or main depending on your default
# branch.
# if: contains('refs/heads/main, refs/heads/master', github.ref)
steps:
# ..
- run: # ...
# ...
- id: some-composite-action-use
name: "Use some composite action"
uses: sympower/sympower-composite-actions/{COMPOSITE_ACTION_NAME}@{LATEST_VERSION}
# ...For example, if custom E2E/system test and deployment to Platform (production) composite actions steps were attached like this, then the workflow would make calls like this:
sequenceDiagram
participant APP as App 1 release
participant WORKFLOWS as sympower-actions
participant COMPOSITE_ACTIONS as sympower-composite-actions
APP ->> WORKFLOWS: release-new-version
WORKFLOWS ->> COMPOSITE_ACTIONS: setup-build-environment
WORKFLOWS ->> COMPOSITE_ACTIONS: format-version
WORKFLOWS ->> COMPOSITE_ACTIONS: run-tests
WORKFLOWS ->> COMPOSITE_ACTIONS: code-analysis
WORKFLOWS ->> COMPOSITE_ACTIONS: build-and-upload-docker-image
WORKFLOWS ->> COMPOSITE_ACTIONS: upload-schema
WORKFLOWS ->> COMPOSITE_ACTIONS: upload-pacts
WORKFLOWS ->> COMPOSITE_ACTIONS: deploy-to-environment (staging)
WORKFLOWS ->> COMPOSITE_ACTIONS: upload-build-artifacts
APP ->> APP: Custom E2E tests
APP ->> COMPOSITE_ACTIONS: deploy-to-environment (platform)
This approach is more static and slower since new job needs to be spawned for customization. However, it will require less upkeep when the composite actions and/or default workflows are updated.
It is possible to call the composite actions directly. Simplest approach is to copy the whole release-new-version.yml to your repository and modify it to your needs.
For example if custom E2E/system test and deployment to Platform (production) composite actions steps were injected
between other steps and upload-pacts step has been moved to make sure that the Pact contract is not enforced before
production version is upgraded, then the workflow would make calls like this:
sequenceDiagram
participant APP as App 2 release
participant COMPOSITE_ACTIONS as sympower-composite-actions
APP ->> COMPOSITE_ACTIONS: setup-build-environment
APP ->> COMPOSITE_ACTIONS: format-version
APP ->> COMPOSITE_ACTIONS: run-tests
APP ->> COMPOSITE_ACTIONS: code-analysis
APP ->> COMPOSITE_ACTIONS: build-and-upload-docker-image
APP ->> COMPOSITE_ACTIONS: upload-schema
APP ->> COMPOSITE_ACTIONS: deploy-to-environment (staging)
APP ->> COMPOSITE_ACTIONS: upload-build-artifacts
APP ->> APP: Custom E2E tests
APP ->> COMPOSITE_ACTIONS: deploy-to-environment (platform)
APP ->> COMPOSITE_ACTIONS: upload-pacts
Directly calling composite actions will give more freedom to rearrange the workflow steps and will ensure that all steps run in the same job and a runner which is faster and more optimal. However, this approach will require more upkeep when the composite actions are updated.