Merge pull request #1 from RG-AutoPilot/release

Initial State Based Autopilot Repository Setup

Author: csnhawkins

.github/workflows/GitHub-Flyway-CICD-StateBased-Pipeline_Linux.yml

@@ -0,0 +1,79 @@
+# This is a basic workflow to help you get started with Actions
+ 
+name: GitHub-Autopilot-Simple-State-Pipeline-Linux
+
+on:
+  # pull_request:
+  #   branches:
+  #     - release
+ 
+  # Allows you to run this workflow manually from the Actions tab
+  workflow_dispatch:
+  workflow_call:  # This enables the workflow to be called from other workflows
+env:
+
+  # Enable this for additional debug logging
+  ACTIONS_RUNNER_DEBUG: false
+
+  ### Step 1: Define Environment Secrets ###
+  ### Environment Secrets - Create Environment Secrets ###
+  ### Navigate to Settings > Secrets & Variables > Actions
+  # FLYWAY_EMAIL: Enter the email address linked to the Redgate Account that created the PAT
+  # FLYWAY_TOKEN: Enter the PAT Value (This should be treated like a password and thus as a secure variable.
+  # FLYWAY_AUTH_DISABLED: (Optional) - Create and set to true to skip the auth check stage
+  # TARGET_DATABASE_USERNAME: Leave blank if using integratedSecurity (default).
+  # TARGET_DATABASE_PASSWORD: Leave blank if using integratedSecurity (default).
+  # CUSTOM_PARAMS: Optional - Used for passing custom Flyway Parameters to each Flyway command
+  ### End of Environment Variables ###
+  
+  # Step 3: Authenticate Flyway with Personal Access Tokens (PATs)
+  # Details on how to do this can be found here: https://documentation.red-gate.com/flyway/flyway-cli-and-api/tutorials/tutorial-personal-access-tokens
+  # Documentation on all available Authentication methods can be found here: https://documentation.red-gate.com/fd/flyway-licensing-263061944.html
+  FLYWAY_EMAIL: "${{ secrets.FLYWAY_EMAIL }}" # Enter the email address linked to the Redgate Account that created the PAT
+  FLYWAY_TOKEN: "${{ secrets.FLYWAY_TOKEN }}" # Enter the PAT Value (This should be treated like a password and thus as a secure variable.
+  FLYWAY_AUTH_DISABLED: "${{ secrets.FLYWAY_AUTH_DISABLED }}" # Create and set to true to skip the auth check stage, useful when Offline Permits are in use instead.
+
+  BASELINE_VERSION: "001" # This should match the version number of your baseline script
+  FIRST_UNDO_SCRIPT: "002" # This should match the first undo version in your project
+
+  # Optional - Validate Flyway CLI installation for ephemeral agents
+  FLYWAY_CLI_INSTALL_CHECK: "${{ secrets.FLYWAY_CLI_INSTALL_CHECK }}" # Setting to false will skip the Flyway CLI check step
+  FLYWAY_VERSION: "Latest" # This outlines the version of Flyway CLI that will be downloaded if no Flyway CLI is detected on the target agent (Examples - '11.0.0' for specific version. Or 'Latest' for latest version)
+  FLYWAY_INSTALL_DIRECTORY: "" # The path on the agent machine where Flyway CLI will be installed  
+
+  # Optional: Side Quest #1 - Setup Flyway Pipeline Integration - https://flyway.red-gate.com/ For More Details
+  FLYWAY_PUBLISH_RESULT: "true" # Set this value to true to enable Flyway Pipelines and track your releases centrally!
+  FLYWAY_DRIFT_ON_MIGRATE: "true" # Set this value to true to enable Flyway Pipelines drift detection and track your drift centrally!
+ 
+### DO NOT EDIT BELOW THIS LINE - All variables set in the above section will be consumed by the jobs below and therefore do not require any updates to function ###
+
+jobs:
+  # This workflow contains a single job called "build"
+  build:
+    name: Deploy Build
+    # The type of runner that the job will run on
+    runs-on: "self-hosted" # Options - self-hosted/ubuntu-latest/windows-latest (See here for more details on GitHub hosted runners - https://docs.github.com/en/actions/using-github-hosted-runners/using-github-hosted-runners/about-github-hosted-runners)
+    environment: 'build'
+    env:
+      stage: 'Build'
+      displayName: 'Build'
+      DATABASE_NAME: 'AutoPilotBuild'
+      ENVIRONMENT: 'Build' # This variable refers to the environment name present in the Flyway Projects TOML file. 
+      TARGET_DATABASE_USERNAME: "${{ secrets.TARGET_DATABASE_USERNAME }}"
+      TARGET_DATABASE_PASSWORD: "${{ secrets.TARGET_DATABASE_PASSWORD }}"
+      CUSTOM_PARAMS: "${{ secrets.CUSTOM_PARAMS }}" # Secure method of adding custom Flyway Parameters (Example -X for debug)
+      EXECUTE_BUILD: 'true' # Turn to false to skip the build stage tasks
+      publishArtifacts: 'true' # Turn to false to skip the artifact upload
+    steps:
+      # Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
+      - uses: actions/checkout@v4
+      # Optional - If Enabled, Flyway CLI will be validated and installed if not present
+      - name: Flyway - CLI Automatic Validation and Install
+        run: bash ${{ GITHUB.WORKSPACE }}/Scripts/Flyway_DownloadAndInstallCLI_Unix.sh
+        if: env.FLYWAY_CLI_INSTALL_CHECK == 'true'
+      # Step 1 - Flyway License Authentication #
+      - name: Flyway Authentication
+        if: ${{ env.EXECUTE_BUILD == 'true' && env.FLYWAY_AUTH_DISABLED != 'true' && success() }}
+        run: |
+         flyway auth -IAgreeToTheEula -email="${{ env.FLYWAY_EMAIL }}" -token="${{ env.FLYWAY_TOKEN }}"
+           # Step 2 - Ensure the Build Database is cleaned of all objects, meaning the build starts from scratch

.github/workflows/GitHub-Flyway-CICD-StateBased-Pipeline_Windows.yml

@@ -0,0 +1,51 @@
+# This is a basic workflow to help you get started with Actions
+ 
+name: GitHub-Autopilot-Simple-State-Pipeline-Windows
+
+on:
+  # Triggers the workflow on push or pull request events but only for the "release" branch
+  #push:
+    #branches:
+      #- release
+      #- 'migrations/**'
+ 
+  # Allows you to run this workflow manually from the Actions tab
+  workflow_dispatch:
+env:
+  # Enable this for additional debug logging
+  ACTIONS_RUNNER_DEBUG: false
+
+  ### Step 1: Define Environment Secrets ###
+  ### Environment Secrets - Create Environment Secrets ###
+  ### Navigate to Settings > Secrets & Variables > Actions
+  # FLYWAY_EMAIL: Enter the email address linked to the Redgate Account that created the PAT
+  # FLYWAY_TOKEN: Enter the PAT Value (This should be treated like a password and thus as a secure variable.
+  # FLYWAY_AUTH_DISABLED: (Optional) - Create and set to true to skip the auth check stage
+  # TARGET_DATABASE_USERNAME: Leave blank if using integratedSecurity (default).
+  # TARGET_DATABASE_PASSWORD: Leave blank if using integratedSecurity (default).
+  # CUSTOM_PARAMS: Optional - Used for passing custom Flyway Parameters to each Flyway command
+  ### End of Environment Variables ###
+  
+  # Step 3: Authenticate Flyway with Personal Access Tokens (PATs)
+  # Details on how to do this can be found here: https://documentation.red-gate.com/flyway/flyway-cli-and-api/tutorials/tutorial-personal-access-tokens
+  # Documentation on all available Authentication methods can be found here: https://documentation.red-gate.com/fd/flyway-licensing-263061944.html
+  FLYWAY_EMAIL: "${{ secrets.FLYWAY_EMAIL }}" # Enter the email address linked to the Redgate Account that created the PAT
+  FLYWAY_TOKEN: "${{ secrets.FLYWAY_TOKEN }}" # Enter the PAT Value (This should be treated like a password and thus as a secure variable.
+  FLYWAY_AUTH_DISABLED: "${{ secrets.FLYWAY_AUTH_DISABLED }}" # Create and set to true to skip the auth check stage, useful when Offline Permits are in use instead.
+
+  
+  BASELINE_VERSION: "001" # This should match the version number of your baseline script
+  FIRST_UNDO_SCRIPT: "002" # This should match the first undo version in your project
+
+  # Optional: Validate Flyway CLI installation for ephemeral agents.
+  FLYWAY_CLI_INSTALL_CHECK: "${{ secrets.FLYWAY_CLI_INSTALL_CHECK }}" # Setting to false will skip the Flyway CLI check step
+  FLYWAY_VERSION: "Latest" # This outlines the version of Flyway CLI that will be downloaded if no Flyway CLI is detected on the target agent (Examples - '11.0.0' for specific version. Or 'Latest' for latest version)
+  FLYWAY_INSTALL_DIRECTORY: "C:\\FlywayCLI\\" # The path on the agent machine where Flyway CLI will be installed  
+
+  # Optional: Side Quest #1 - Enable Flyway Pipeline Integration for tracking releases and drift. - https://flyway.red-gate.com/
+  FLYWAY_PUBLISH_RESULT: "true" # Set this value to true to enable Flyway Pipelines and track your releases centrally!
+  FLYWAY_DRIFT_ON_MIGRATE: "true" # Set this value to true to enable Flyway Pipelines drift detection and track your drift centrally!
+ 
+### DO NOT EDIT BELOW THIS LINE - All variables set in the above section will be consumed by the jobs below and therefore do not require any updates to function ###
+
+

.github/workflows/GitHub-Workflow-Validation-Checks_RGCLONE.yml

@@ -0,0 +1,117 @@
+name: GitHub - Pipeline Validation Workflow
+
+on:
+  # Allows you to run this workflow manually from the Actions tab
+  workflow_dispatch:
+  pull_request:
+    branches:
+      - release
+  schedule:
+    - cron: "0 3 * * *"  # Runs at 3 AM UTC every night
+    
+jobs:
+  setup-validation-environment:
+    name: Spin Up RGClone Validation Container
+    runs-on: "self-hosted"
+    env:
+      DATA_IMAGE_NAME: "Autopilot-Flyway-MSSQL"
+      DATA_CONTAINER_NAME: "Autopilot-GitHub-Actions-StateBased-Build-Validatation_MSSQL-${{ github.run_number }}"
+      PROXY_PORT: "1433"
+    steps:
+      - name: Checkout Code
+        uses: actions/checkout@v4
+
+      - name: Install rgclone CLI
+        id: installCLI
+        env:
+          RGCLONE_API_ENDPOINT: ${{ secrets.RGCLONE_API_ENDPOINT }}
+          RGCLONE_ACCESS_TOKEN: ${{ secrets.RGCLONE_ACCESS_TOKEN }}
+        run: |
+          # Check if rgclone is already installed
+          if command -v rgclone &> /dev/null; then
+            echo "rgclone is already installed. Skipping installation."
+            rgclone version
+            exit 0
+          fi
+      
+          echo "rgclone not found. Installing..."
+      
+          # Define install location
+          INSTALL_DIR="/usr/local/bin"
+          TEMP_DIR=$(mktemp -d)
+      
+          # Download and extract rgclone
+          curl $RGCLONE_API_ENDPOINT/cloning-api/download/cli/linux-amd64 | tar xz -C "$TEMP_DIR"
+      
+          # Move rgclone to the install directory
+          sudo mv "$TEMP_DIR/rgclone" "$INSTALL_DIR/"
+          sudo chmod +x "$INSTALL_DIR/rgclone"
+      
+          # Verify installation
+          echo "rgclone installed successfully."
+          rgclone version
+
+      - name: Validate Data Image
+        id: createDataImage
+        env:
+          RGCLONE_API_ENDPOINT: ${{ secrets.RGCLONE_API_ENDPOINT }}
+          RGCLONE_ACCESS_TOKEN: ${{ secrets.RGCLONE_ACCESS_TOKEN }}
+        run: |
+          output=$(rgclone get di "$DATA_IMAGE_NAME" --ignore-not-found -o json)
+
+          if [[ -z "$output" ]]; then
+              echo "Image does not exist. Creating image..."
+          else
+              echo "Image already exists. Moving on..."
+          fi
+
+      - name: Create data container
+        id: createDc
+        env:
+          RGCLONE_API_ENDPOINT: ${{ secrets.RGCLONE_API_ENDPOINT }}
+          RGCLONE_ACCESS_TOKEN: ${{ secrets.RGCLONE_ACCESS_TOKEN }}
+        run: |
+          # Spin up a Data Container for chosen Image
+          echo "Check if Data Container Already Exists"
+          
+          if ! rgclone get data-container "$DATA_CONTAINER_NAME" &> /dev/null ; then
+            echo "Creating container for $DATA_CONTAINER_NAME"
+            output=$(rgclone create dc -n "$DATA_CONTAINER_NAME" -i "$DATA_IMAGE_NAME" -t 20m -o json)
+          fi
+          
+          # Parse JSON output using jq
+          dbUser=$(echo "$output" | jq -r '.user')
+          dbPassword=$(echo "$output" | jq -r '.password')
+          sqlhost=$(echo "$output" | jq -r '.host')
+          sqlport=$(echo "$output" | jq -r '.port')
+          instance="${sqlhost},${sqlport}"
+      
+          echo "Data container created successfully and available at: $instance"
+      
+          # Set output values for use in subsequent steps
+          echo "dbUser=$dbUser" >> "$GITHUB_ENV"
+          echo "dbPassword=$dbPassword" >> "$GITHUB_ENV"
+          echo "instance=$instance" >> "$GITHUB_ENV"
+        
+      - name: Create Local Proxy for Container
+        id: createProxy
+        env:
+          RGCLONE_API_ENDPOINT: ${{ secrets.RGCLONE_API_ENDPOINT }}
+          RGCLONE_ACCESS_TOKEN: ${{ secrets.RGCLONE_ACCESS_TOKEN }}
+        run: |
+          # Kill any pending RGClone processes
+          echo "Killing any pending RGClone processes"
+          pkill -f rgclone || true  # the `|| true` ensures the script doesn't fail if no process is found
+
+          # Create Data Container Proxy
+          echo "Creating Data Container Proxy"
+          RUNNER_TRACKING_ID="" && rgclone proxy dc "$DATA_CONTAINER_NAME" -p "$PROXY_PORT" &  # Run the proxy in the background
+
+          echo "RGClone Proxy Enabled"
+
+  # Validate-Flyway-Pipeline:
+  #   name: Run Flyway Pipeline
+  #   needs: setup-validation-environment
+  #   uses: ./.github/workflows/GitHub-Flyway-CICD-StateBased-Pipeline_Linux.yml
+  #   secrets: inherit  # Inherit existing secrets but allow environment overrides
+

.gitignore

@@ -0,0 +1,6 @@
+
+# Flyway ignores
+*.user.toml
+*.artifact
+report.html
+report.json