feature/CE-628-Update-"Pending-Upload"-text-on-attachments-waiting-to… #311
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Merge to Main | |
on: | |
push: | |
branches: | |
- main | |
paths-ignore: | |
- ".github/ISSUE_TEMPLATE/*" | |
- "**.md" | |
workflow_dispatch: | |
concurrency: | |
group: ${{ github.workflow }} | |
cancel-in-progress: true | |
jobs: | |
codeql: | |
name: Semantic Code Analysis | |
runs-on: ubuntu-22.04 | |
permissions: | |
actions: read | |
contents: read | |
security-events: write | |
steps: | |
- uses: actions/checkout@v3 | |
- name: Initialize | |
uses: github/codeql-action/init@v2 | |
with: | |
languages: javascript | |
# Autobuild attempts to build any compiled languages (C/C++, C#, or Java). | |
# If this step fails, then you should remove it and run the build manually (see below) | |
- name: Autobuild | |
uses: github/codeql-action/autobuild@v2 | |
- name: Perform CodeQL Analysis | |
uses: github/codeql-action/analyze@v2 | |
deploys-test: | |
name: TEST Deployments | |
needs: | |
- codeql | |
environment: test | |
runs-on: ubuntu-22.04 | |
steps: | |
- uses: actions/checkout@v3 | |
# Deploy NATS before the rest of the containers. | |
- name: Set up OpenShift CLI | |
uses: redhat-actions/oc-login@v1 | |
with: | |
openshift_server_url: ${{ vars.OC_SERVER }} | |
openshift_token: ${{ secrets.OC_TOKEN }} | |
namespace: ${{ vars.OC_NAMESPACE }} | |
- name: Add NATS Helm repo | |
run: helm repo add nats https://nats-io.github.io/k8s/helm/charts/ | |
- name: Check if NATS release exists in TEST | |
run: | | |
RELEASE_NAME=${{ github.event.repository.name }}-test-nats | |
if helm list -q | grep -q $RELEASE_NAME; then | |
echo "TEST Release $RELEASE_NAME already exists. Skipping install." | |
echo "release_exists=true" >> $GITHUB_ENV | |
else | |
echo "TEST Release $RELEASE_NAME does not exist. Proceeding with install." | |
echo "release_exists=false" >> $GITHUB_ENV | |
fi | |
- name: Deploy NATS to TEST using Helm | |
if: env.release_exists == 'false' | |
run: | | |
helm install ${{ github.event.repository.name }}-test-nats nats/nats \ | |
--set natsBox.enabled=false \ | |
--set container.merge.resources.requests.cpu=100m \ | |
--set container.merge.resources.limits.cpu=200m \ | |
--set container.merge.resources.requests.memory=100Mi \ | |
--set container.merge.resources.limits.memory=400Mi \ | |
--set reloader.enabled=false \ | |
# Deploy other components using matrix strategy | |
- name: Deploy Components | |
uses: bcgov-nr/[email protected] | |
with: | |
file: ${{ matrix.file }} | |
oc_namespace: ${{ vars.OC_NAMESPACE }} | |
oc_server: ${{ vars.OC_SERVER }} | |
oc_token: ${{ secrets.OC_TOKEN }} | |
overwrite: ${{ matrix.overwrite }} | |
parameters: -p ZONE=test -p PROMOTE=${{ github.repository }}/${{ matrix.name }}:test | |
-p NAME=${{ github.event.repository.name }} ${{ matrix.parameters }} | |
penetration_test: false | |
strategy: | |
matrix: | |
name: [backend, database, frontend, init, webeoc] | |
include: | |
- name: backend | |
file: backend/openshift.deploy.yml | |
parameters: -p PROMOTE_MIGRATION=${{ github.repository }}/database-migrations:test | |
overwrite: true | |
- name: webeoc | |
file: webeoc/openshift.deploy.yml | |
overwrite: true | |
- name: database | |
file: database/openshift.deploy.yml | |
overwrite: false | |
- name: frontend | |
file: frontend/openshift.deploy.yml | |
parameters: -p KEYCLOAK_URL=${{ vars.KEYCLOAK_URL_TEST }} | |
-p COMS_URL=${{ vars.COMS_URL_TEST }} | |
-p COMS_BUCKET=${{ vars.COMS_BUCKET_TEST }} | |
overwrite: true | |
- name: init | |
file: common/openshift.init.yml | |
overwrite: false | |
deploys-prod: | |
name: PROD Deployments | |
needs: | |
- deploys-test | |
environment: prod | |
runs-on: ubuntu-22.04 | |
strategy: | |
matrix: | |
name: [backend, database, frontend, init] | |
include: | |
- name: backend | |
file: backend/openshift.deploy.yml | |
parameters: -p PROMOTE_MIGRATION=${{ github.repository }}/database-migrations:test | |
overwrite: true | |
- name: database | |
file: database/openshift.deploy.yml | |
overwrite: false | |
- name: frontend | |
file: frontend/openshift.deploy.yml | |
parameters: -p KEYCLOAK_URL=${{ vars.KEYCLOAK_URL_PROD}} | |
-p COMS_URL=${{vars.COMS_URL_PRD}} | |
-p COMS_BUCKET=${{vars.COMS_BUCKET_PROD}} | |
overwrite: true | |
- name: init | |
file: common/openshift.init.yml | |
overwrite: false | |
steps: | |
- uses: bcgov-nr/[email protected] | |
with: | |
file: ${{ matrix.file }} | |
oc_namespace: ${{ vars.OC_NAMESPACE }} | |
oc_server: ${{ vars.OC_SERVER }} | |
oc_token: ${{ secrets.OC_TOKEN }} | |
overwrite: ${{ matrix.overwrite }} | |
parameters: -p ZONE=prod -p PROMOTE=${{ github.repository }}/${{ matrix.name }}:test | |
-p NAME=${{ github.event.repository.name }} ${{ matrix.parameters }} | |
penetration_test: false | |
image-promotions: | |
name: Promote images to PROD | |
needs: | |
- deploys-prod | |
runs-on: ubuntu-22.04 | |
permissions: | |
packages: write | |
strategy: | |
matrix: | |
component: [backend, database, database-migrations, frontend, webeoc] | |
steps: | |
- uses: shrink/actions-docker-registry-tag@v3 | |
with: | |
registry: ghcr.io | |
repository: ${{ github.repository }}/${{ matrix.component }} | |
target: test | |
tags: prod |