Build Infra #38

Summary
Jobs
- run
Run details
- Usage
- Workflow file

Workflow file for this run

.github/workflows/build-infra.yaml at 4bf310a

	name: Build Infra

	on:
	push:
	branches:
	- main
	workflow_dispatch: {}

	permissions:
	id-token: write # This is required for requesting the JWT
	contents: read # Required to use the auth.sh script

	jobs:
	run:
	name: run
	runs-on: ubuntu-latest
	environment: production
	steps:
	- uses: actions/checkout@v3

	# Install the terraform and terragrunt
	- uses: alexellis/setup-arkade@v1
	- uses: alexellis/arkade-get@master
	with:
	terraform: latest
	terragrunt: latest

	- name: Configure AWS credentials
	uses: aws-actions/configure-aws-credentials@v3
	with:
	# aws-access-key-id: ${{ secrets.PERSONAL_ACCESS_KEY }}
	# aws-secret-access-key: ${{ secrets.PERSONAL_SECRET_ACCESS_KEY }}
	role-to-assume: ${{ secrets.ROLE_TO_ASSUME }}
	# role-to-assume: ${{ vars.OIDC_ROLE }}
	aws-region: ${{ vars.AWS_REGION }}
	role-skip-session-tagging: true

	# Display IAM Identity
	- name: Display IAM Identity
	run: \|
	aws sts get-caller-identity

	- name: Install jq
	run: \|
	sudo apt install jq tree

	## Fetch output from our terraform
	- name: Pull Terraform output into GitHub Action ENV
	run: \|
	terragrunt output --json > tmp_output.json
	echo "ecr_repository_url=$(jq .ecr_repository_url.value -r < tmp_output.json)" >> $GITHUB_ENV
	echo "ecs_task_arn=$(jq .ecs_task_arn.value -r < tmp_output.json)" >> $GITHUB_ENV
	echo "ecs_service_arn=$(jq .ecs_service_arn.value -r < tmp_output.json)" >> $GITHUB_ENV
	echo "ecs_cluster_arn=$(jq .ecs_cluster_arn.value -r < tmp_output.json)" >> $GITHUB_ENV
	echo "ecs_service_name=$(jq .ecs_service_name.value -r < tmp_output.json)" >> $GITHUB_ENV
	rm tmp_output.json
	working-directory: terraform

	# Build docker image
	- name: Set up Docker Buildx
	uses: docker/setup-buildx-action@v2

	- name: Login to Amazon ECR
	id: login-ecr
	uses: aws-actions/amazon-ecr-login@v1

	- name: Build and push
	uses: docker/build-push-action@v4
	with:
	push: true
	tags: ${{ env.ecr_repository_url }}:latest , ${{ env.ecr_repository_url }}:${{ github.sha }}

	- name: Pull task-definition.json to update ECS cluster
	id: pull-ecs-task-definition
	run: \|
	aws ecs describe-task-definition --task-definition ${{ env.ecs_task_arn }} --region ${{ env.AWS_REGION }} --output json \| jq .taskDefinition >> task-definition.json

	- name: Check what task-definition.json looks like
	run: \|
	cat task-definition.json

	- name: Render Amazon ECS task definition
	id: render-web-container
	uses: aws-actions/amazon-ecs-render-task-definition@v1
	with:
	task-definition: task-definition.json
	container-name: knowledgeshare-ui
	image: ${{ env.ecr_repository_url }}:${{ github.sha }}
	environment-variables: "LOG_LEVEL=info"

	- name: Deploy to Amazon ECS service
	uses: aws-actions/amazon-ecs-deploy-task-definition@v1
	with:
	task-definition: ${{ steps.render-web-container.outputs.task-definition }}
	service: ${{ env.ecs_service_arn }}
	cluster: ${{ env.ecs_cluster_arn }}
	force-new-deployment: true

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Build Infra #38

Workflow file

Build Infra #38

Jobs

Run details

Workflow file for this run