dockerize, add ci/cd #1
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: CI | |
on: | |
push: | |
jobs: | |
ci: | |
runs-on: ubuntu-20.04 | |
steps: | |
- uses: actions/checkout@v2 | |
- env: | |
DOCKER_APP_IMAGE_NAME: "ghcr.io/hasadna/openlaw-archive/openlaw-archive-app" | |
DOCKER_NGINX_IMAGE_NAME: "ghcr.io/hasadna/openlaw-archive/openlaw-archive-nginx" | |
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
HASADNA_K8S_DEPLOY_KEY: ${{ secrets.HASADNA_K8S_DEPLOY_KEY }} | |
MAIN_BRANCH: main | |
run: | | |
echo "${GITHUB_TOKEN}" | docker login ghcr.io -u hasadna --password-stdin &&\ | |
if docker pull "${DOCKER_APP_IMAGE_NAME}:latest"; then | |
CACHE_FROM_ARG="--cache-from ${DOCKER_APP_IMAGE_NAME}:latest" | |
else | |
CACHE_FROM_ARG="" | |
fi &&\ | |
docker build $CACHE_FROM_ARG --build-arg VERSION=${GITHUB_SHA} -t openlaw-archive-app . &&\ | |
docker tag openlaw-archive-app "${DOCKER_APP_IMAGE_NAME}:${GITHUB_SHA}" &&\ | |
docker push "${DOCKER_APP_IMAGE_NAME}:${GITHUB_SHA}" &&\ | |
if docker pull "${DOCKER_NGINX_IMAGE_NAME}:latest"; then | |
CACHE_FROM_ARG="--cache-from ${DOCKER_NGINX_IMAGE_NAME}:latest" | |
else | |
CACHE_FROM_ARG="" | |
fi &&\ | |
docker build $CACHE_FROM_ARG --build-arg VERSION=${GITHUB_SHA} -t openlaw-archive-nginx -f nginx.Dockerfile . &&\ | |
docker tag openlaw-archive-nginx "${DOCKER_NGINX_IMAGE_NAME}:${GITHUB_SHA}" &&\ | |
docker push "${DOCKER_NGINX_IMAGE_NAME}:${GITHUB_SHA}" &&\ | |
if [ "${GITHUB_REF}" == "refs/heads/${MAIN_BRANCH}" ]; then | |
docker tag openlaw-archive-app "${DOCKER_APP_IMAGE_NAME}:latest" &&\ | |
docker push "${DOCKER_APP_IMAGE_NAME}:latest" &&\ | |
docker tag openlaw-archive-nginx "${DOCKER_NGINX_IMAGE_NAME}:latest" &&\ | |
docker push "${DOCKER_NGINX_IMAGE_NAME}:latest" &&\ | |
if ! git log -1 --pretty=format:"%s" | grep -- --no-deploy; then | |
cd `mktemp -d` &&\ | |
echo "${HASADNA_K8S_DEPLOY_KEY}" > hasadna_k8s_deploy_key &&\ | |
chmod 400 hasadna_k8s_deploy_key &&\ | |
export GIT_SSH_COMMAND="ssh -i `pwd`/hasadna_k8s_deploy_key -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no" &&\ | |
git clone git@github.com:hasadna/hasadna-k8s.git &&\ | |
cd hasadna-k8s &&\ | |
python update_yaml.py '{"archiveAppImage":"'"${DOCKER_APP_IMAGE_NAME}:${GITHUB_SHA}"'","archiveNginxImage":"'"${DOCKER_NGINX_IMAGE_NAME}:${GITHUB_SHA}"'"}' apps/openlaw/values-hasadna-auto-updated.yaml &&\ | |
git config --global user.name "openlaw-archive CI" &&\ | |
git config --global user.email "openlaw-archive-ci@localhost" &&\ | |
git add apps/openlaw/values-hasadna-auto-updated.yaml && git commit -m "automatic update of openlaw-archive app" &&\ | |
git push origin master | |
fi | |
fi |