Pull image and reference in ecs #27
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| on: | |
| push: | |
| branches: | |
| - "33-Scaffold-and-use-ECR" | |
| permissions: | |
| pull-requests: write | |
| name: ✨ Build Test 🧐 | |
| jobs: | |
| TF-Apply: | |
| name: 🏗️ Apply Infra | |
| runs-on: ubuntu-latest | |
| # https://stackoverflow.com/questions/59175332/using-output-from-a-previous-job-in-a-new-one-in-a-github-action | |
| outputs: | |
| apigw: ${{steps.APIGW.outputs.NEXT_PUBLIC_APIGW}} | |
| steps: | |
| - name: Check Out | |
| uses: actions/checkout@v4 | |
| - name: Setup Terraform | |
| uses: hashicorp/setup-terraform@v3 | |
| with: | |
| cli_config_credentials_token: ${{ secrets.TF_API_TOKEN }} | |
| terraform_version: 1.9.2 | |
| - name: Look around nd Init 👁️👁️ | |
| run: | | |
| echo Looking around 👁️👁️ | |
| ls | |
| cd terraform | |
| echo Looking around 👁️👁️ | |
| ls | |
| terraform init | |
| - name: 🏗️ Terraform Apply | |
| run: | | |
| cd terraform | |
| terraform apply -var="bucket-name=${{ secrets.S3_BUCKET }}" -var="db-name=${{ secrets.DB_NAME }}" -var="db-username=${{ secrets.DB_USER }}" -auto-approve | |
| # - run: echo ${{ steps.plan.outputs.stdout }} | |
| # - run: echo ${{ steps.plan.outputs.stderr }} | |
| # - run: echo ${{ steps.plan.outputs.exitcode }} | |
| - name: Fetch API GW | |
| id: APIGW | |
| run: | | |
| cd terraform | |
| echo "NEXT_PUBLIC_APIGW=$(terraform output -raw api-route)" >> $GITHUB_OUTPUT | |
| web-deploy: | |
| name: 💫 Deploy | |
| runs-on: ubuntu-latest | |
| env: | |
| AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }} | |
| AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }} | |
| needs: ["TF-Apply"] | |
| steps: | |
| - name: Check Out | |
| uses: actions/checkout@v4 | |
| - name: Set up Docker Buildx | |
| uses: docker/setup-buildx-action@v3 | |
| - name: Use Node.js | |
| uses: actions/setup-node@v4 | |
| - name: Configure AWS Credentials | |
| uses: aws-actions/configure-aws-credentials@v4.0.2 | |
| with: | |
| aws-region: us-west-2 | |
| aws-access-key-id: ${{secrets.AWS_ACCESS_KEY_ID}} | |
| aws-secret-access-key: ${{secrets.AWS_SECRET_ACCESS_KEY}} | |
| - name: 😪 Installing Dependencies | |
| run: | | |
| cd web | |
| npm install | |
| - name: ⚗️ Write env variables | |
| run: | | |
| cd web | |
| echo "NEXT_PUBLIC_APIGW=${{needs.TF-Apply.outputs.apigw}}" > .env | |
| - name: 🔨 Build Static Project | |
| run: | | |
| cd web | |
| STATIC=1 npm run build | |
| - name: 🚀 Upload Package | |
| run: | | |
| aws s3 sync ./web/out s3://${{ secrets.S3_BUCKET }}/ --region us-west-2 | |
| aws s3 sync ./web/out s3://${{ secrets.S3_BUCKET }}-failover/ --region us-west-2 | |
| # https://octopus.com/blog/githubactions-docker-ecr | |
| - name: Login to Amazon ECR | |
| id: login-ecr | |
| uses: aws-actions/amazon-ecr-login@v2.0.1 | |
| - name: 🐳 Build Image | |
| env: | |
| ECR_REPOSITORY: ecr-ex-config | |
| IMAGE_TAG: latest | |
| run: | | |
| echo "Building a docker image" | |
| cd web | |
| docker build -t ${{steps.login-ecr.outputs.registry}}/${{env.ECR_REPOSITORY}}:${{env.IMAGE_TAG}} . | |
| echo "Pushing image to ECR..." | |
| docker push ${{steps.login-ecr.outputs.registry}}/${{env.ECR_REPOSITORY}}:${{env.IMAGE_TAG}} | |
| echo "artifact-url=${{steps.login-ecr.outputs.registry}}/${{env.ECR_REPOSITORY}}:${{env.IMAGE_TAG}}" >> $GITHUB_OUTPUT | |
| - name: Send artifact url to SSM parameter | |
| env: | |
| ECR_REPOSITORY: ecr-ex-config | |
| IMAGE_TAG: latest | |
| run: | | |
| aws ssm put-parameter --name "ecr_artifact_url" --value "${{steps.login-ecr.outputs.registry}}/${{env.ECR_REPOSITORY}}:${{env.IMAGE_TAG}}" --type String --overwrite |