Skip to content
This repository has been archived by the owner on Dec 18, 2024. It is now read-only.

Commit

Permalink
FS-3337 - split out copilot and add post-deploy tests
Browse files Browse the repository at this point in the history
  • Loading branch information
robk-dluhc committed Oct 19, 2023

Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature.
1 parent 29d5761 commit 91633b4
Showing 2 changed files with 89 additions and 61 deletions.
88 changes: 88 additions & 0 deletions .github/workflows/copilot_deploy.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,88 @@
name: Deploy to Gov PaaS

on:
workflow_dispatch:
inputs:
environment:
description: Which AWS Account to use
type: choice
required: true
options:
- test
run_performance_tests:
required: false
default: false
type: boolean
description: Run performance tests
run_e2e_tests:
required: false
default: false
type: boolean
description: Run e2e tests
push:
paths-ignore:
- '**/README.md'

jobs:
paketo_build:
permissions:
packages: write
uses: communitiesuk/funding-service-design-workflows/.github/workflows/package.yml@main
with:
version_to_build: $(echo "${{ github.ref }}" | sed -e 's,.*/\(.*\),\1,')
owner: ${{ github.repository_owner }}
application: funding-service-design-authenticator
assets_required: true
pre_deploy_tests:
secrets:
E2E_PAT: ${{secrets.E2E_PAT}}
uses: communitiesuk/funding-service-design-workflows/.github/workflows/pre-deploy.yml@main
with:
postgres_unit_testing: false
assets_required: true
copilot_build:
concurrency: deploy-${{ inputs.environment || 'test' }}
permissions:
id-token: write # This is required for requesting the JWT
contents: read # This is required for actions/checkout
runs-on: ubuntu-latest
environment: ${{ inputs.environment || 'test' }}
steps:
- name: Git clone the repository
uses: actions/checkout@v3

- name: Get current date
id: currentdatetime
run: echo "datetime=$(date +'%Y%m%d%H%M%S')" >> $GITHUB_OUTPUT

- name: configure aws credentials
uses: aws-actions/configure-aws-credentials@v2
with:
role-to-assume: arn:aws:iam::${{ secrets.AWS_ACCOUNT }}:role/GithubCopilotDeploy
role-session-name: AUTHENTICATOR_COPILOT_${{ steps.currentdatetime.outputs.datetime }}
aws-region: eu-west-2

- name: Install AWS Copilot CLI
run: |
curl -Lo aws-copilot https://github.com/aws/copilot-cli/releases/latest/download/copilot-linux && chmod +x aws-copilot && sudo mv aws-copilot /usr/local/bin/copilot
- name: Inject Git SHA into manifest
run: |
yq -i '.variables.GITHUB_SHA = "${{ github.sha }}"' copilot/fsd-authenticator/manifest.yml
- name: Inject replacement image into manifest
run: |
yq -i '.image.location = "ghcr.io/communitiesuk/funding-service-design-authenticator:${{ github.ref_name }}"' copilot/fsd-authenticator/manifest.yml
- name: Copilot deploy
run: |
copilot deploy --env ${{ inputs.environment || 'test' }}
post_deploy_tests:
needs: copilot_build
secrets:
E2E_PAT: ${{secrets.E2E_PAT}}
uses: communitiesuk/funding-service-design-workflows/.github/workflows/post-deploy.yml@main
with:
run_performance_tests: ${{ inputs.run_performance_tests }}
run_e2e_tests: ${{ inputs.run_e2e_tests }}
app_name: authenticator
62 changes: 1 addition & 61 deletions .github/workflows/deploy.yml
Original file line number Diff line number Diff line change
@@ -10,11 +10,6 @@ on:
options:
- test
- uat
copilot:
description: Whether to deploy to AWS?
type: boolean
required: false
default: false
deploy_to_dev:
required: false
default: false
@@ -26,7 +21,7 @@ on:

jobs:
test_and_deploy:
if: ${{ github.actor != 'dependabot[bot]' && !github.event.inputs.copilot }}
if: ${{ github.actor != 'dependabot[bot]' }}
uses: communitiesuk/funding-service-design-workflows/.github/workflows/deploy.yml@main
with:
app_name: ${{ github.event.repository.name }}
@@ -49,58 +44,3 @@ jobs:
AZURE_AD_CLIENT_SECRET: ${{secrets.AZURE_AD_CLIENT_SECRET}}
SECRET_KEY: ${{secrets.SECRET_KEY}}
SESSION_COOKIE_NAME: ${{secrets.SESSION_COOKIE_NAME}}
paketo_build:
permissions:
packages: write
uses: communitiesuk/funding-service-design-workflows/.github/workflows/package.yml@main
with:
version_to_build: $(echo "${{ github.ref }}" | sed -e 's,.*/\(.*\),\1,')
owner: ${{ github.repository_owner }}
application: funding-service-design-authenticator
assets_required: true
pre_deploy_tests:
if: ${{ github.event.inputs.copilot }}
secrets:
E2E_PAT: ${{secrets.E2E_PAT}}
uses: communitiesuk/funding-service-design-workflows/.github/workflows/pre-deploy.yml@main
with:
postgres_unit_testing: false
assets_required: true
copilot_build:
if: ${{ github.event.inputs.copilot }}
concurrency: deploy-${{ inputs.environment || 'test' }}
permissions:
id-token: write # This is required for requesting the JWT
contents: read # This is required for actions/checkout
runs-on: ubuntu-latest
environment: ${{ inputs.environment || 'test' }}
steps:
- name: Git clone the repository
uses: actions/checkout@v3

- name: Get current date
id: currentdatetime
run: echo "datetime=$(date +'%Y%m%d%H%M%S')" >> $GITHUB_OUTPUT

- name: configure aws credentials
uses: aws-actions/configure-aws-credentials@v2
with:
role-to-assume: arn:aws:iam::${{ secrets.AWS_ACCOUNT }}:role/GithubCopilotDeploy
role-session-name: AUTHENTICATOR_COPILOT_${{ steps.currentdatetime.outputs.datetime }}
aws-region: eu-west-2

- name: Install AWS Copilot CLI
run: |
curl -Lo aws-copilot https://github.com/aws/copilot-cli/releases/latest/download/copilot-linux && chmod +x aws-copilot && sudo mv aws-copilot /usr/local/bin/copilot
- name: Inject Git SHA into manifest
run: |
yq -i '.variables.GITHUB_SHA = "${{ github.sha }}"' copilot/fsd-authenticator/manifest.yml
- name: Inject replacement image into manifest
run: |
yq -i '.image.location = "ghcr.io/communitiesuk/funding-service-design-authenticator:${{ github.ref_name }}"' copilot/fsd-authenticator/manifest.yml
- name: Copilot deploy
run: |
copilot deploy --env ${{ inputs.environment || 'test' }}

0 comments on commit 91633b4

Please sign in to comment.