CI/CD Pipeline to deploy in Embassy Cloud EBI Openstack platform #40
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: CI/CD Pipeline to deploy in Embassy Cloud EBI Openstack platform | |
on: | |
push: | |
branches: | |
- pride | |
workflow_dispatch: | |
env: | |
IMAGE_NAME: ${{ vars.IMAGE_NAME }} | |
USERNAME: ${{ secrets.GHCR_USER }} | |
IMAGE_TAG: ${{ github.sha }} | |
jobs: | |
docker_build: | |
environment: prod | |
env: | |
PORT: ${{ vars.PORT }} | |
runs-on: ubuntu-latest | |
steps: | |
- name: Checkout repository | |
uses: actions/checkout@v2 | |
- name: create Dockerfile with environment variables | |
run: envsubst < .Dockerfile > Dockerfile | |
- name: Print Dockerfile | |
run: cat Dockerfile | |
- name: Set up Docker Buildx | |
uses: docker/setup-buildx-action@v1 | |
- name: Login to GHCR | |
uses: docker/login-action@v1 | |
with: | |
registry: ghcr.io | |
username: ${{ secrets.GHCR_USER }} | |
password: ${{ secrets.GHCR_TOKEN }} | |
- name: Print variables | |
run: echo $GITHUB_REPOSITORY $IMAGE_NAME $GITHUB_SHA | |
- name: Read Docker Image Identifiers | |
run: echo ::set-env name=IMAGE_REPOSITORY::$(echo ${{ github.repository }} | tr '[:upper:]' '[:lower:]') | |
- name: Print variables again | |
run: echo ${{ env.IMAGE_REPOSITORY }} | |
- name: Build and push Docker image | |
uses: docker/build-push-action@v2 | |
with: | |
context: . | |
push: true | |
tags: ghcr.io/${{ env.IMAGE_REPOSITORY }}/$IMAGE_NAME:$GITHUB_SHA | |
deploy: | |
needs: docker_build | |
environment: prod | |
runs-on: ubuntu-latest | |
env: | |
DOCKER_PULL_SECRET: pride-gitlab-docker-secret | |
DB_HOST : ${{ vars.DB_HOST }} | |
DB_DATABASE_NAME : ${{ vars.DB_DATABASE_NAME }} | |
DB_USER : ${{ vars.DB_USER }} | |
DB_PASSWORD : ${{ secrets.DB_PASSWORD }} | |
DB_PORT : ${{ vars.DB_PORT }} | |
PORT: ${{ vars.PORT }} | |
node_port: ${{ vars.NODE_PORT }} | |
app_name: ${{ vars.APP_NAME }} | |
k8s_replicas: ${{ vars.K8S_REPLICAS }} | |
K8S_NAMESPACE: ${{ vars.K8S_NAMESPACE }} | |
DATABASE_INI: ${{ vars.DATABASE_INI }} | |
IMAGE: ghcr.io/$GITHUB_REPOSITORY/$IMAGE_NAME:$GITHUB_SHA | |
steps: | |
- name: Checkout repository | |
uses: actions/checkout@v2 | |
- name: Install tools | |
run: sudo apt-get update && sudo apt-get install -y gettext tzdata coreutils | |
- name: Create kubeconfig | |
run: | | |
mkdir -p ~/.kube | |
echo ${{ secrets.KUBE_CONFIG }} > kubeconfig | |
base64 -d kubeconfig > ~/.kube/config | |
kubectl config get-contexts | |
- name: Create a Namespace if not exists | |
run: kubectl create namespace ${{ vars.K8S_NAMESPACE }} || true | |
- name: Delete the docker pull secrete if exist | |
run: kubectl -n ${{ vars.K8S_NAMESPACE }} delete secret ${{ env.DOCKER_PULL_SECRET }} || true | |
- name: Create a Docker registry secret with new image | |
run: | | |
kubectl -n ${{ vars.K8S_NAMESPACE }} create secret docker-registry ${{ env.DOCKER_PULL_SECRET }} \ | |
--docker-server=ghcr.io \ | |
--docker-username=${{ env.USERNAME }} \ | |
--docker-password=${{ secrets.GHCR_TOKEN }} | |
- name: Substitute database variables by environment variables or variables | |
run: envsubst < default.database.ini > database.ini | |
- name: Print database.ini | |
run: cat database.ini | |
- name: Create ConfigMap | |
run: kubectl -n ${{ vars.K8S_NAMESPACE }} create configmap ${{ vars.DATABASE_INI }} --from-file=database.ini || true | |
- name: Replace configmap if it already exists | |
run: kubectl -n ${{ vars.K8S_NAMESPACE }} create configmap ${{ vars.DATABASE_INI }} --from-file=database.ini -o yaml --dry-run=client | kubectl replace -f - | |
- name: Substitute kubernetes variables by environment variables or variables | |
run: envsubst <.kubernetes.yml > kubernetes.yml | |
- name: Print kubernetes.yml | |
run: cat kubernetes.yml | |
- name: Deploy to Kubernetes | |
run: kubectl -n ${{ vars.K8S_NAMESPACE }} apply -f kubernetes.yml | |
- name: restart Pod in case if not pulling latest image | |
run: kubectl rollout restart deploy ${{ vars.APP_NAME }} -n ${{ vars.K8S_NAMESPACE }} |