Skip to content
.github/workflows/build-push-deploy.yml

add migration #6

Sign in to view logs

add migration

add migration #6

Workflow file for this run

.github/workflows/build-push-deploy.yml at 5aef156
on:

Check failure on line 1 in .github/workflows/build-push-deploy.yml

View workflow run for this annotation

GitHub Actions / .github/workflows/build-push-deploy.yml

Invalid workflow file 

(Line: 97, Col: 16): Unrecognized named-value: 'secrets'. Located at position 1 within expression: secrets.ECR_REGISTRY
workflow_call:
inputs:
service-name:
description: "Name of the service to build. Used as the default image name and src dir unless 'image-name' or 'src-path' are used."
type: string
required: true
stage-name:
description: "The backend environment we are building for (API calls are pointed to). This should be one of (development, staging, production)."
type: string
required: true
deploy-namespace:
description: "The Kubernetes namespace to deploy the service to."
type: string
required: false
docker-build-args:
description: "Extra args passed to 'docker build'."
type: string
required: false
docker-image-ref:
description: "The version number or sha used in creating image tag."
type: string
required: false
default: "${{ github.sha }}"
dockerfiles:
description: "JSON list of dockerfiles to build, e.g. ['Dockerfile1', 'Dockerfile2']"
type: string
required: false
default: "['Dockerfile']"
docker-bake-target:
description: "The target to build with docker bake."
type: string
required: false
docker-bake-platforms:
description: "The platforms to build with docker bake."
type: string
required: false
migrate-command:
description: "The command to run migrations."
type: string
required: false
jobs:
# Looks for PR labels like "deploy-to-<env>" so we can deploy to those envs
get-deploy-labels:
name: Get Deploy Envs
runs-on: mdb-dev
concurrency:
group: ${{ github.workflow_ref }} # workflow_ref contains the workflow name and branch ref
cancel-in-progress: true # Cancel any in-progress runs on this branch - this one is newer
outputs:
deploy-envs: ${{ steps.get-labels.outputs.deploy-envs }}
steps:
- id: get-labels
uses: mindsdb/github-actions/get-deploy-labels@main
# Build docker image(s) based on Dockerfile(s) and push to ECR
build:
runs-on: mdb-dev
needs: [get-deploy-labels]
if: ${{ !inputs.docker-bake && needs.get-deploy-labels.outputs.deploy-envs != '[]' }}
strategy:
matrix:
dockerfile: ${{fromJson(inputs.dockerfiles)}}
concurrency:
group: ${{ github.workflow_ref }} # workflow_ref contains the workflow name and branch ref
cancel-in-progress: true # Cancel any in-progress runs on this branch - this one is newer
env:
AWS_REGION: us-east-1
steps:
- uses: actions/checkout@v4
with:
ref: ${{ inputs.docker-image-ref }}
# Build via docker-bake if a bakefile is specified
- if: ${{ contains(matrix.dockerfile, '.hcl') }}
uses: mindsdb/github-actions/docker-bake@main
with:
git-sha: ${{ inputs.docker-image-ref }}
target: ${{ inputs.docker-bake-target }}
platforms: ${{ inputs.docker-bake-platforms }}
push-cache: false
# Otherwise build via regular docker
- if: ${{ !contains(matrix.dockerfile, '.hcl') }}
uses: mindsdb/github-actions/build-push-ecr@main
with:
module-name: ${{ inputs.service-name }}
build-for-environment: ${{ inputs.stage-name }}
image-ref: ${{ inputs.docker-image-ref }}
extra-build-args: "-f ${{ matrix.dockerfile }}"
migrate:
runs-on: mdb-dev
container: ${{ secrets.ECR_REGISTRY }}/${{ inputs.service-name }}:${{ inputs.stage-name }}-${{ inputs.docker-image-ref }}
needs: [get-deploy-labels, build]
if: ${{ needs.get-deploy-labels.outputs.deploy-envs != '[]' }}
steps:
- name: Run migrations
if: ${{ inputs.migrate-command }}
run: |
${{ inputs.migrate-command }}
# Deploy the built image to the specified environments
# Deploys to all environments at once
deploy:
runs-on: mdb-dev
needs: [ get-deploy-labels, build, migrate ]
strategy:
matrix:
deploy-env: ${{fromJson(needs.get-deploy-labels.outputs.deploy-envs)}}
concurrency:
group: deploy-${{ matrix.deploy-env }} # All deployments for this env are grouped together
cancel-in-progress: false # Don't cancel in-progress deployments, it breaks helm
environment:
# Assuming that ENV_URL is set in a github environment in the repo
# If not the link in the slack message will be borked, thats all
name: ${{ matrix.deploy-env }}
url: ${{ vars.ENV_URL }}
steps:
- uses: actions/checkout@v4
- uses: mindsdb/github-actions/setup-env@main
- name: Notify of deployment starting
# This same message will be updated later with the deployment status
id: slack
uses: mindsdb/github-actions/slack-deploy-msg@main
with:
channel-id: ${{ secrets.SLACK_DEPLOYMENTS_CHANNEL_ID }}
status: "started"
color: "#0099CC"
env-name: ${{ matrix.deploy-env }}
env-url: ${{ vars.ENV_URL }}
slack-token: ${{ secrets.GH_ACTIONS_SLACK_BOT_TOKEN }}
- uses: DevOps-Nirvana/aws-helm-multi-deploy-nodocker@v4
# Do the actual deployment
with:
environment-slug: ${{matrix.deploy-env}}
k8s-namespace: ${{inputs.deploy-namespace || matrix.deploy-env}}
image-tag: ${{ inputs.stage-name }}-${{ github.sha }}
timeout: 600s
# We need to wait till deployment is finished here, since the calling workflow might test the deployment env once this job is done
wait: "true"
- name: Notify of deployment finish
# Update the slack message from before with the deployment status
uses: mindsdb/github-actions/slack-deploy-msg@main
if: always()
with:
channel-id: ${{ secrets.SLACK_DEPLOYMENTS_CHANNEL_ID }}
status: "${{ job.status == 'success' && 'finished' || 'failed' }}"
color: "${{ job.status == 'success' && '#00C851' || '#FF4444' }}"
env-name: ${{ matrix.deploy-env }}
env-url: ${{ vars.ENV_URL }}
slack-token: ${{ secrets.GH_ACTIONS_SLACK_BOT_TOKEN }}
update-message-id: ${{ steps.slack.outputs.ts }}