Skip to content

Lorrin/20260103 fix platform cd env #201

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
lorrinferdinand-hue wants to merge 26 commits into
base: main
Choose a base branch
from
Open

Lorrin/20260103 fix platform cd env #201

lorrinferdinand-hue wants to merge 26 commits into from

Conversation

@lorrinferdinand-hue
Copy link
Collaborator

@lorrinferdinand-hue lorrinferdinand-hue commented Jan 4, 2026
edited
Loading

Environment Variable Binding

  • Add environment binding to execute-training-job, enable-storage-access, and execute-ml-job-pipeline jobs
  • Enable hybrid variable resolution: environment variables override repository variables when defined
  • Preserve repository variables as fallback for jobs without environment binding
  • Support multi-workspace architecture per InfrastructureDesign.md recommendations

Storage Access & Authentication

  • Fix environment variable scoping in platform_ci_workflow.yml and platform_cd_workflow.yml
  • Move critical vars (SUBSCRIPTION_ID, RESOURCE_GROUP_NAME, etc.) to workflow-level env block
  • Add validate_storage_rbac.py for local diagnostic testing (~30s vs 10+ min workflow runs)
  • Validate endpoint identity storage permissions before deployment

Workflow Trigger Standardization

  • Standardize enable_storage_public_access parameter across all model workflows
    • CI: hardcoded true (acceptable for PR/dev environments)
    • CD workflow_dispatch: default true (testing convenience)
    • CD workflow_call: default true (overridable for production)

Documentation

  • Add "Storage Network Access Configuration" section to InfrastructureDesign.md
  • Document enable_storage_public_access pattern and production networking requirements
  • Explain temporary public access trade-offs for dev vs private endpoints for prod
  • Provide workflow examples for dev and production deployments

Code Quality

  • Fix flake8
  • Include RBAC validation steps as needed
  • Improve error messages

Ferdinand, Lorrin added 22 commits January 3, 2026 06:08
test the case-sensitivity of the environment input
90944a4
Add back workflow_call block
8ee4dca
Fix platform cd since permissions and environment mapping had been re…
13c896d 
…moved
allow setting of enable_storage_public_access in cd dev deployment
66feb42
add ability to pass public access flag from model to platform on work…
ae6dbe3 
…flow call
Pass the enable_storage_public_access to downstream pipelines
22d01ab
Make exec_environment passed as a variable
f37a0d5
Fix storage validation step
04bbe74
Fix Validate step json-parsing issues.
e2cf107
Add a local storage validation for online endpoints
27f8761
Comment out the Validation step - it is challenging to get working
9341a0e
Test docker-taxi-cd
2497ba6
Fix path to generic platform_cd
31a2f9f
Fix linting errors
08960fd
Enable public storage access
966c563
Flip the flag to true for enable storage public access
0a395c7
Test pr-driven activation of the CI process
6d7ff40
Add cd tester to initiate all cd workflows when developing
7ee2d26
Add control over public network access storage settings to sequence m…
e4d2d97 
…odel
Add public network storage access control to sequence model cd
3d7713c
Add feature branch to cause cd to run on push
024641c
Test cd the models on push to feature branch temporarily.
b8c10d0
@lorrinferdinand-hue lorrinferdinand-hue marked this pull request as ready for review January 11, 2026 15:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sbaidachni sbaidachni Awaiting requested review from sbaidachni

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@lorrinferdinand-hue