- ### Create `.github/workflows` folder in main folder, our yaml file will reside here
- `.yml file`: GitHib Actions workflow file for deployments to handle on various branches particularly `main` branch.


```yaml

name: Deploy Python Lambda # name of the workflow: `optional`

on: # name of github event that triggers the workflow: `required`
  push:
    branches:
      - main
  pull_request:
    branches:
      - main

# job is a sequence of task that gets executed
jobs: # jobs that will get executed whenver the events happen: `required`
  deploy: # name of the job: `optional`
    name: deploy
    runs-on: ubuntu-latest # running/deployment environmrnt
    env: # environment variables
      NODE_VERSION: 14.x # used for installing the serverless-python-requirements dependency from NPM
    strategy: # in this section, we will define a build matrix
      matrix:
        python-version:
          - 3.8 # with a build matrix, you can specify a list of python versions to deploy with
    steps: # the actual sequence of tasks this job will do
      # --------- use Python to install Python dependencies and run linter, tests, etc. ---------
      - uses: actions/checkout@v2 # checksout github rebo into the runs-on machine
      - name: Set up Python ${{ matrix.python-version }}
      - uses: actions/setup-python@v2 # uses selects an action, under path `action/` the reusable code is hosted
        with:
          python-version: ${{ matrix.python-version }}

      - name: Cache pip
        uses: actions/cache@v2
        with:
          # This path is specific to Ubuntu
          path: ~/.cache/pip
          # Look to see if there is a cache hit for the corresponding requirements file
          key: ${{ runner.os }}-pip-${{ hashFiles('requirements.txt') }}
          restore-keys: |
            ${{ runner.os }}-pip-
            ${{ runner.os }}-
      - name: Install dependencies
        run: |
          python -m pip install --upgrade pip
          pip install flake8 pytest
          if [ -f requirements.txt ]; then pip install -r requirements.txt; fi
      - name: Lint with flake8
        run: |
          # stop the build if there are Python syntax errors or undefined names
          flake8 . --count --select=E9,F63,F7,F82 --show-source --statistics
          # exit-zero treats all errors as warnings. The GitHub editor is 127 chars wide
          flake8 . --count --exit-zero --max-complexity=10 --max-line-length=127 --statistics

      # --------- Use Node and NPM to install serverless-python-requirements ---------
      - name: Use Node.js ${{ env.NODE_VERSION }}
        uses: actions/setup-node@v1
        with:
          node-version: ${{ env.NODE_VERSION }}

      - name: Cache node modules
        uses: actions/cache@v2
        env:
          cache-name: cache-node-modules
        with:
          # npm cache files are stored in `~/.npm` on Linux/macOS
          path: ~/.npm
          key: ${{ runner.os }}-build-${{ env.cache-name }}-${{ hashFiles('**/package-lock.json') }}
          restore-keys: |
            ${{ runner.os }}-build-${{ env.cache-name }}-
            ${{ runner.os }}-build-
            ${{ runner.os }}-
      - name: Install Node dependencies (specifically, serverless-python-requirements)
        run: npm install

      - name: Serverless Deploy
        uses: dhollerbach/github-action-serverless-with-python-requirements@master
        env:
          # SERVERLESS_ACCESS_KEY: ${{ secrets.SERVERLESS_ACCESS_KEY }}
          # or if using AWS credentials directly
          AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
          AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}


```

- `on` : # name of github event that triggers the workflow: `required`
- `steps`:the actual sequence of tasks this job will do
- `uses`: selects an action, under path `actions/` the reusable code is hosted, version is used after the  `@` symbol
- whenever we are using an action that is already available, we can use any such action using the `uses` attribute
- `run`: runs a command line command.


### Deployment To Heroku
- use `heroku authorizations:create` to create `Long Lived` authentication token i.e which never expires.
- use `heroku auth:token` to create a toke with 1 month validity.

#### `use the above generated authentication token in github settings secret `

- Also add hoeroku_app_name & other env_vars there 

- We need to have a `Procfile` to deploy to heroku