-
Notifications
You must be signed in to change notification settings - Fork 106
125 lines (115 loc) · 3.57 KB
/
release_and_deploy_production.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
name: Release workflow
on:
workflow_dispatch:
inputs:
commit:
description: "Leave blank to use current HEAD, or provide an override commit SHA"
type: string
required: false
jobs:
ref:
name: Load Commit Ref
runs-on: ubuntu-latest
steps:
- id: ref
uses: passportxyz/gh-workflows/.github/actions/load_commit_ref@v1
with:
commit: ${{ inputs.commit }}
outputs:
version_tag: ${{ steps.ref.outputs.version_tag }}
docker_tag: ${{ steps.ref.outputs.docker_tag }}
refspec: ${{ steps.ref.outputs.refspec }}
test:
name: Test
needs: [ref]
uses: ./.github/workflows/test_generic.yml
with:
refspec: ${{ needs.ref.outputs.refspec }}
environment: review
secrets: inherit
create-draft-release:
name: Create Draft Release
runs-on: ubuntu-latest
needs: [ref, test]
permissions: write-all
steps:
- name: Release
# https://github.com/ncipollo/release-action
uses: ncipollo/release-action@v1
with:
generateReleaseNotes: true
allowUpdates: true
token: ${{ secrets.github_token }}
tag: ${{ needs.ref.outputs.version_tag }}
commit: ${{ needs.ref.outputs.refspec }}
draft: true
deploy-staging:
name: Deploy to Staging
needs: [create-draft-release, ref]
uses: ./.github/workflows/build_and_deploy_generic.yml
with:
refspec: ${{ needs.ref.outputs.refspec }}
docker_tag: ${{ needs.ref.outputs.docker_tag }}
environment: staging
secrets: inherit
deploy-interface-to-staging:
name: Push code to staging branch
needs: [ref, deploy-staging]
permissions:
contents: write
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v3
with:
ref: ${{ needs.ref.outputs.refspec }}
fetch-depth: 0
- id: push-to-branch
uses: passportxyz/gh-workflows/.github/actions/push_to_branch@v1
with:
commit: ${{ needs.ref.outputs.refspec }}
github-token: ${{ secrets.GITHUB_TOKEN }}
branch: staging-interface
deploy-production:
name: Deploy to Production
needs: [ref, deploy-staging, deploy-interface-to-staging]
uses: ./.github/workflows/build_and_deploy_generic.yml
with:
refspec: ${{ needs.ref.outputs.refspec }}
docker_tag: ${{ needs.ref.outputs.docker_tag }}
environment: production
secrets: inherit
deploy-interface-to-production:
name: Push code to branch
needs: [ref, deploy-production]
permissions:
contents: write
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v3
with:
ref: ${{ needs.ref.outputs.refspec }}
fetch-depth: 0
- id: push-to-branch
uses: passportxyz/gh-workflows/.github/actions/push_to_branch@v1
with:
commit: ${{ needs.ref.outputs.refspec }}
github-token: ${{ secrets.GITHUB_TOKEN }}
branch: production-interface
release:
name: Release
needs: [ref, create-draft-release, deploy-production, deploy-interface-to-production]
permissions: write-all
runs-on: ubuntu-latest
steps:
- name: Release
# https://github.com/ncipollo/release-action
uses: ncipollo/release-action@v1
with:
allowUpdates: true
omitBodyDuringUpdate: true
token: ${{ secrets.github_token }}
tag: ${{ needs.ref.outputs.version_tag }}
commit: ${{ needs.ref.outputs.refspec }}
draft: false