-
Notifications
You must be signed in to change notification settings - Fork 461
88 lines (82 loc) · 2.52 KB
/
deploy_ui_production.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
name: Deploy UI to Production
on:
workflow_dispatch:
inputs:
commit:
description: "Leave blank to use current HEAD, or provide an override commit SHA"
type: string
required: false
jobs:
ref:
name: Load Commit Ref
runs-on: ubuntu-latest
steps:
- id: ref
uses: passportxyz/gh-workflows/.github/actions/load_commit_ref@v1
with:
commit: ${{ inputs.commit }}
outputs:
version_tag: ${{ steps.ref.outputs.version_tag }}
docker_tag: ${{ steps.ref.outputs.docker_tag }}
refspec: ${{ steps.ref.outputs.refspec }}
run-tests:
runs-on: ubuntu-latest
# Run a local ceramic nod to test against
services:
ceramic:
image: gitcoinpassport/js-ceramic:3.2.0
ports:
- 7007:7007
steps:
- uses: actions/checkout@v3
- name: Use Node.js 20
uses: actions/setup-node@v3
with:
node-version: 20.8.1
cache: "yarn"
- name: Install Packages
run: yarn install
- name: Run Tests
run: yarn test
- name: Run Linter
run: yarn lint
- name: Workarround for build error
run: rm -rf node_modules/@tendermint
- name: Run Build (ensure that build succeeds)
run: yarn build
- name: Load Secrets
id: op-load-secret
uses: 1password/load-secrets-action@v1
with:
export-env: true
env:
OP_SERVICE_ACCOUNT_TOKEN: ${{ secrets.OP_SERVICE_ACCOUNT_TOKEN }}
CERAMIC_PRIVATE_KEY: op://DevOps/passport-review-secrets/ci/CERAMIC_PRIVATE_KEY
- name: Deploy Ceramic Models
working-directory: ./schemas
run: yarn models:deploy-composite
env:
CERAMIC_URL: http://localhost:7007
PRIVATE_KEY: ${{env.CERAMIC_PRIVATE_KEY}}
- name: Run Ceramic Integration Tests
run: yarn test:ceramic-integration
env:
CERAMIC_CLIENT_URL: http://localhost:7007
deploy-ui:
name: Deploy UI to Production - Push to Branch
runs-on: ubuntu-latest
needs: [ref, run-tests]
permissions:
contents: write
steps:
- name: Checkout
uses: actions/checkout@v3
with:
ref: ${{ needs.ref.outputs.refspec }}
fetch-depth: 0
- name: Push code to branch
uses: passportxyz/gh-workflows/.github/actions/push_to_branch@v1
with:
commit: ${{ needs.ref.outputs.refspec }}
github-token: ${{ secrets.GITHUB_TOKEN }}
branch: production-app