-
Notifications
You must be signed in to change notification settings - Fork 6
87 lines (75 loc) · 3.32 KB
/
on_pr.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
# Based on https://docs.github.com/en/actions/deployment/deploying-to-your-cloud-provider/deploying-to-amazon-elastic-container-service
name: PR Updated triggers
on:
pull_request:
types: [labeled, unlabeled, synchronize, closed, reopened]
env:
AWS_REGION: us-east-1
permissions:
id-token: write
contents: read
jobs:
ci:
uses: ./.github/workflows/ci.yml
build-all:
uses: ./.github/workflows/ecrbuild-all.yml
secrets:
AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
e2e:
needs:
- build-all
# could theoretically be skipped, but in practice is always faster
# than waiting for the build-all job to finish anyway
- ci
uses: ./.github/workflows/e2e.yml
secrets:
AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
deploy-preview:
permissions:
contents: read
deployments: write
pull-requests: write
statuses: write
runs-on: ubuntu-latest
timeout-minutes: 30
needs:
- build-all
steps:
- uses: actions/checkout@v4
- name: Copy .env file
run: cp ./self-host/.env.example ./self-host/.env
- name: Configure pullpreview
env:
PLATFORM_IMAGE: ${{ needs.build-all.outputs.core-image }}
JOBS_IMAGE: ${{ needs.build-all.outputs.jobs-image }}
MIGRATIONS_IMAGE: ${{ needs.build-all.outputs.base-image }}
run: |
sed -i "s|image: PLATFORM_IMAGE|image: $PLATFORM_IMAGE|" docker-compose.preview.yml
sed -i "s|image: JOBS_IMAGE|image: $JOBS_IMAGE|" docker-compose.preview.yml
sed -i "s|image: MIGRATIONS_IMAGE|image: $MIGRATIONS_IMAGE|" docker-compose.preview.yml
sed -i "s|email [email protected]|email [email protected]|" self-host/caddy/Caddyfile
sed -i "s|example.com|{\$PUBLIC_URL}|" self-host/caddy/Caddyfile
- name: Get ECR token
id: ecrtoken
run: echo "value=$(aws ecr get-login-password --region us-east-1)" >> $GITHUB_OUTPUT
env:
AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
AWS_DEFAULT_REGION: "us-east-1"
- uses: pullpreview/action@v5
with:
label: preview
admins: 3mcd
compose_files: ./self-host/docker-compose.yml,docker-compose.preview.yml
default_port: 443
instance_type: small
ports: 80,443,9001
registries: docker://AWS:${{steps.ecrtoken.outputs.value}}@246372085946.dkr.ecr.us-east-1.amazonaws.com
github_token: ${{ secrets.GH_PAT_PR_PREVIEW_CLEANUP }}
env:
AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
AWS_REGION: ${{ env.AWS_REGION }}
PULLPREVIEW_LOGGER_LEVEL: DEBUG