Skip to content
Push to ECR and Deploy to ECS

Fix missing workflow extension #1

Sign in to view logs

Fix missing workflow extension

Fix missing workflow extension #1

Workflow file for this run

.github/workflows/build_and_deploy.yaml at e67c2ff
name: Push to ECR and Deploy to ECS
on:
pull_request:
types: [closed]
branches:
- main
- stg
workflow_dispatch:
env:
AWS_REGION: ap-southeast-1
ECS_CLUSTER: prodCluster
jobs:
check-commit:
if: github.event.pull_request.merged == true
runs-on: ubuntu-latest
outputs:
ENVIRONMENT: ${{ steps.check_commit.outputs.ENVIRONMENT }}
REPO_NAME: ${{ steps.check_commit.outputs.REPO_NAME }}
steps:
- name: Checkout Repository
uses: actions/checkout@v4
- name: Determine Environment & Check Commit Message
id: check_commit
run: |
COMMIT_MESSAGE=$(git log -1 --pretty=%B)
CURRENT_BRANCH=${GITHUB_REF#refs/heads/}
# Set environment based on branch
if [[ "$CURRENT_BRANCH" == "main" ]]; then
echo "ENVIRONMENT=prod" >> "$GITHUB_ENV"
echo "ENVIRONMENT=prod" >> "$GITHUB_OUTPUT"
elif [[ "$CURRENT_BRANCH" == "stg" ]]; then
echo "ENVIRONMENT=stg" >> "$GITHUB_ENV"
echo "ENVIRONMENT=stg" >> "$GITHUB_OUTPUT"
else
echo "::error::Workflow can only run on main or stg branches"
exit 1
fi
# Set repository name
echo "REPO_NAME=${{ github.event.repository.name }}" >> "$GITHUB_ENV"
echo "REPO_NAME=${{ github.event.repository.name }}" >> "$GITHUB_OUTPUT"
build-and-push:
needs: check-commit
runs-on: ubuntu-latest
steps:
- name: Checkout Repository
uses: actions/checkout@v4
- name: Configure AWS Credentials
uses: aws-actions/configure-aws-credentials@v2
with:
aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
aws-region: ${{ env.AWS_REGION }}
- name: Login to Amazon ECR
id: login-ecr
uses: aws-actions/amazon-ecr-login@v2
- name: Create ECR Repository if it doesn't exist
run: |
REPOSITORY="${{ needs.check-commit.outputs.REPO_NAME }}"
if ! aws ecr describe-repositories --repository-names "$REPOSITORY" >/dev/null 2>&1; then
echo "Repository $REPOSITORY does not exist. Creating it..."
aws ecr create-repository --repository-name "$REPOSITORY" --image-scanning-configuration scanOnPush=true
echo "Repository $REPOSITORY created successfully."
else
echo "Repository $REPOSITORY already exists."
fi
- name: Download Environment Variables from S3
run: |
aws s3 cp s3://quantum3labs/${{ needs.check-commit.outputs.REPO_NAME }}.${{ needs.check-commit.outputs.ENVIRONMENT }}.env .env
echo "Successfully downloaded environment variables from S3"
- name: Build, Tag, and Push Docker Image to Amazon ECR
id: build-image
env:
REGISTRY: ${{ steps.login-ecr.outputs.registry }}
REPOSITORY: ${{ needs.check-commit.outputs.REPO_NAME }}
IMAGE_TAG: ${{ github.sha }}
run: |
docker build -t $REGISTRY/$REPOSITORY:$IMAGE_TAG-${{ needs.check-commit.outputs.ENVIRONMENT }} .
docker push $REGISTRY/$REPOSITORY:$IMAGE_TAG-${{ needs.check-commit.outputs.ENVIRONMENT }}
docker tag $REGISTRY/$REPOSITORY:$IMAGE_TAG-${{ needs.check-commit.outputs.ENVIRONMENT }} $REGISTRY/$REPOSITORY:latest-${{ needs.check-commit.outputs.ENVIRONMENT }}
docker push $REGISTRY/$REPOSITORY:latest-${{ needs.check-commit.outputs.ENVIRONMENT }}
echo "Successfully pushed image: $REGISTRY/$REPOSITORY:$IMAGE_TAG"
echo "Successfully pushed image: $REGISTRY/$REPOSITORY:latest-${{ needs.check-commit.outputs.ENVIRONMENT }}"
# For security, remove the .env file
rm -f .env
deploy:
needs: [check-commit, build-and-push]
runs-on: ubuntu-latest
steps:
- name: Configure AWS Credentials
uses: aws-actions/configure-aws-credentials@v2
with:
aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
aws-region: ${{ env.AWS_REGION }}
- name: Login to Amazon ECR
id: login-ecr
uses: aws-actions/amazon-ecr-login@v2
- name: Get Latest Image URI
run: |
REGISTRY=${{ steps.login-ecr.outputs.registry }}
REPO_NAME=${{ needs.check-commit.outputs.REPO_NAME }}
ENVIRONMENT=${{ needs.check-commit.outputs.ENVIRONMENT }}
IMAGE_URI="${REGISTRY}/${REPO_NAME}:latest-${ENVIRONMENT}"
echo "Using image: ${IMAGE_URI}"
echo "IMAGE_URI=${IMAGE_URI}" >> $GITHUB_ENV
- name: Download Task Definition
run: |
aws ecs describe-task-definition --task-definition def-${{ needs.check-commit.outputs.ENVIRONMENT }}-${{ needs.check-commit.outputs.REPO_NAME }} --query taskDefinition > task-definition.json
cat task-definition.json
- name: Update ECS Task Definition with Latest Image
id: task-def
uses: aws-actions/amazon-ecs-render-task-definition@v1
with:
task-definition: task-definition.json
container-name: ${{ needs.check-commit.outputs.REPO_NAME }}
image: ${{ env.IMAGE_URI }}
- name: Deploy to ECS
uses: aws-actions/amazon-ecs-deploy-task-definition@v2
with:
task-definition: ${{ steps.task-def.outputs.task-definition }}
service: service-${{ needs.check-commit.outputs.ENVIRONMENT }}-${{ needs.check-commit.outputs.REPO_NAME }}
cluster: ${{ env.ECS_CLUSTER }}
wait-for-service-stability: true
- name: Notify Success to Slack Channel
id: slack-success
if: success()
uses: slackapi/[email protected]
with:
channel-id: ${{ secrets.SLACK_CHANNEL_ID }}
slack-message: "✅ Deployment Successful!\nRepository: ${{ needs.check-commit.outputs.REPO_NAME }}\nEnvironment: ${{ needs.check-commit.outputs.ENVIRONMENT }}\nBuild Status: ${{ job.status }}\nTriggered by: ${{ github.actor }}\n${{ github.event.pull_request.html_url || github.event.head_commit.url }}"
env:
SLACK_BOT_TOKEN: ${{ secrets.SLACK_BOT_TOKEN }}
- name: Notify Failure to Slack Channel
id: slack-failure
if: failure()
uses: slackapi/[email protected]
with:
channel-id: ${{ secrets.SLACK_CHANNEL_ID }}
slack-message: "❌ Deployment Failed!\nRepository: ${{ needs.check-commit.outputs.REPO_NAME }}\nEnvironment: ${{ needs.check-commit.outputs.ENVIRONMENT }}\nBuild Status: ${{ job.status }}\nTriggered by: ${{ github.actor }}\n${{ github.event.pull_request.html_url || github.event.head_commit.url }}"
env:
SLACK_BOT_TOKEN: ${{ secrets.SLACK_BOT_TOKEN }}