fix(ci): Secrets unavailable for deploy jobs (#4215) #7
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Platform Build Docker Images, Test, and Publish | |
on: | |
push: | |
branches: | |
- main | |
release: | |
types: | |
- released | |
jobs: | |
docker-build-api: | |
name: Build API Image | |
uses: ./.github/workflows/.reusable-docker-build.yml | |
with: | |
target: oss-api | |
image-name: flagsmith-api | |
docker-build-frontend: | |
name: Build Frontend Image | |
uses: ./.github/workflows/.reusable-docker-build.yml | |
with: | |
target: oss-frontend | |
image-name: flagsmith-frontend | |
docker-build-unified: | |
name: Build Unified Image | |
uses: ./.github/workflows/.reusable-docker-build.yml | |
with: | |
target: oss-unified | |
image-name: flagsmith | |
docker-build-private-cloud-api: | |
name: Build Private Cloud API Image | |
uses: ./.github/workflows/.reusable-docker-build.yml | |
with: | |
target: private-cloud-api | |
image-name: flagsmith-private-cloud-api | |
secrets: | |
secrets: | | |
github_private_cloud_token=${{ secrets.GH_PRIVATE_ACCESS_TOKEN }} | |
docker-build-private-cloud: | |
name: Build Private Cloud Image | |
uses: ./.github/workflows/.reusable-docker-build.yml | |
with: | |
target: private-cloud-unified | |
image-name: flagsmith-private-cloud | |
secrets: | |
secrets: | | |
github_private_cloud_token=${{ secrets.GH_PRIVATE_ACCESS_TOKEN }} | |
docker-build-e2e: | |
name: Build E2E Image | |
uses: ./.github/workflows/.reusable-docker-build.yml | |
with: | |
file: frontend/Dockerfile.e2e | |
image-name: flagsmith-e2e | |
scan: false | |
run-e2e-tests: | |
needs: [docker-build-api, docker-build-private-cloud-api, docker-build-e2e] | |
uses: ./.github/workflows/.reusable-docker-e2e-tests.yml | |
with: | |
api-image: ${{ matrix.api-image }} | |
e2e-image: ${{ needs.docker-build-e2e.outputs.image }} | |
strategy: | |
matrix: | |
api-image: | |
- ${{ needs.docker-build-api.outputs.image }} | |
- ${{ needs.docker-build-private-cloud-api.outputs.image }} | |
docker-publish-api: | |
needs: [docker-build-api, run-e2e-tests] | |
uses: ./.github/workflows/.reusable-docker-publish.yml | |
if: github.event_name == 'release' | |
with: | |
source-images: ${{ needs.docker-build-api.outputs.image }} | |
target-images: flagsmith/flagsmith-api | |
docker-publish-frontend: | |
needs: [docker-build-frontend, run-e2e-tests] | |
uses: ./.github/workflows/.reusable-docker-publish.yml | |
if: github.event_name == 'release' | |
with: | |
source-images: ${{ needs.docker-build-frontend.outputs.image }} | |
target-images: flagsmith/flagsmith-frontend | |
docker-publish-unified: | |
needs: [docker-build-unified, run-e2e-tests] | |
uses: ./.github/workflows/.reusable-docker-publish.yml | |
if: github.event_name == 'release' | |
with: | |
source-images: ${{ needs.docker-build-unified.outputs.image }} | |
target-images: flagsmith/flagsmith | |
docker-publish-private-cloud-api: | |
needs: [docker-build-private-cloud-api, run-e2e-tests] | |
uses: ./.github/workflows/.reusable-docker-publish.yml | |
if: github.event_name == 'release' | |
with: | |
source-images: ${{ needs.docker-build-private-cloud-api.outputs.image }} | |
target-images: flagsmith/flagsmith-private-cloud-api | |
docker-publish-private-cloud: | |
needs: [docker-build-private-cloud, run-e2e-tests] | |
uses: ./.github/workflows/.reusable-docker-publish.yml | |
if: github.event_name == 'release' | |
with: | |
source-images: ${{ needs.docker-build-private-cloud.outputs.image }} | |
target-images: flagsmith/flagsmith-private-cloud | |
update-charts: | |
needs: [docker-publish-api, docker-publish-frontend, docker-publish-unified] | |
runs-on: ubuntu-latest | |
steps: | |
- name: Checkout Target Charts Repository to update yaml | |
uses: actions/checkout@v4 | |
with: | |
repository: flagsmith/flagsmith-charts | |
path: chart | |
token: ${{ secrets.GITHUB_TOKEN }} | |
- name: Set up release tag variables | |
id: version-trim | |
run: | | |
TAG=${{github.ref_name}} | |
echo "version=${TAG#v}" >> $GITHUB_OUTPUT | |
- name: Run YAML to Github Output Action | |
id: yaml-output | |
uses: christian-ci/action-yaml-github-output@v2 | |
with: | |
file_path: './chart/charts/flagsmith/Chart.yaml' | |
- uses: us-ignite/action-bump-semver@main | |
id: bump-semver | |
with: | |
current_version: ${{ steps.yaml-output.outputs.version }} | |
level: minor | |
- name: Update flagsmith-charts values.yaml with latest docker version | |
uses: fjogeleit/yaml-update-action@main | |
with: | |
token: ${{ secrets.FLAGSMITH_CHARTS_GITHUB_TOKEN }} | |
repository: flagsmith/flagsmith-charts | |
workDir: chart | |
masterBranchName: 'main' | |
targetBranch: 'main' | |
branch: docker-image-version-bump-${{ steps.version-trim.outputs.version }} | |
commitChange: true | |
createPR: true | |
message: 'Flagsmith docker image version bump' | |
description: 'Automated PR generated by a release event in https://github.com/Flagsmith/flagsmith' | |
valueFile: 'charts/flagsmith/Chart.yaml' | |
changes: | | |
{ | |
"appVersion": "${{ steps.version-trim.outputs.version }}", | |
"version": "${{ steps.bump-semver.outputs.new_version }}" | |
} |