Checkpoint for stacking hiveflow tickets #239

Workflow file for this run

.github/workflows/infrastructure-staging.yml at 79d3af0

	name: HiveFlow Infrastructure

	on:
	push:
	branches:
	- staging
	- next
	- master
	paths: ["packages/app/", "packages/infrastructure/", "packages/integrations/**", ".github/workflows/infrastructure-staging.yml"]

	concurrency: hiveflow-infra-${{ github.ref }}

	jobs:
	build_server:
	runs-on: ubuntu-latest
	steps:
	- name: checkout
	uses: actions/checkout@v2

	- name: Docker meta
	id: meta
	uses: docker/metadata-action@v3
	with:
	# list of Docker images to use as base name for tags
	images: \|
	thetechcompany/hiveflow-backend
	# generate Docker tags based on the following events/attributes
	tags: \|
	type=ref,event=branch
	type=ref,event=pr
	type=semver,pattern={{version}}
	type=semver,pattern={{major}}.{{minor}}
	type=semver,pattern={{major}}
	type=sha

	- name: Setup QEMU
	uses: docker/setup-qemu-action@v1

	- name: Setup docker buildx
	uses: docker/setup-buildx-action@v1

	- name: Login to dockerhub
	uses: docker/login-action@v1
	with:
	username: ${{ secrets.DOCKER_USERNAME }}
	password: ${{ secrets.DOCKER_TOKEN }}

	- name: Build and push
	id: docker_build
	uses: docker/build-push-action@v2
	with:
	context: .
	file: ./packages/app/hiveflow-backend/Dockerfile
	push: true
	tags: ${{ steps.meta.outputs.tags }}
	labels: ${{ steps.meta.outputs.labels }}
	build-args: \|
	BUILD_ENV=github

	- name: Image digest
	run: echo ${{ steps.docker_build.outputs.digest }}

	push_infra:
	name: Update Pulumi Infra
	runs-on: ubuntu-latest
	needs: [ build_server ]
	env:
	HEXHIVE_SECRET: ${{ secrets.HEXHIVE_SECRET }}
	steps:
	- name: checkout
	uses: actions/checkout@v2

	- uses: actions/setup-node@v2
	with:
	node-version: 18.x

	- run: echo "IMAGE_TAG=sha-$(echo $GITHUB_SHA \| cut -c1-7)" >> $GITHUB_ENV

	- name: Configure AWS Credentials
	uses: aws-actions/configure-aws-credentials@v1
	with:
	aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
	aws-region: ap-southeast-2
	aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}

	- run: yarn
	working-directory: ./packages/infrastructure

	- name: Setup stack
	run: \|
	echo "STACK_NAME=ultraviolet/hiveflow-staging" >> $GITHUB_ENV
	echo "INTEGRATION_KEY=${{ secrets.STAGING_INTEGRATION_KEY }}" >> $GITHUB_ENV
	echo "ROOT_SERVER=${{ secrets.STAGING_API }}" >> $GITHUB_ENV

	echo "SQL_SERVER=${{secrets.SQL_SERVER}}" >> $GITHUB_ENV
	echo "SQL_USER=${{secrets.SQL_USER}}" >> $GITHUB_ENV
	echo "SQL_PASSWORD=${{secrets.SQL_PASSWORD}}" >> $GITHUB_ENV
	echo "SQL_DB=${{secrets.SQL_DB}}" >> $GITHUB_ENV
	echo "SQL_TRUST_CERT=${{secrets.SQL_TRUST_CERT}}" >> $GITHUB_ENV

	if: ${{ github.ref == 'refs/heads/staging' }}

	- name: Setup stack
	run: \|
	echo "STACK_NAME=ultraviolet/hiveflow-next" >> $GITHUB_ENV
	echo "INTEGRATION_KEY=${{ secrets.STAGING_INTEGRATION_KEY }}" >> $GITHUB_ENV
	echo "ROOT_SERVER=${{ secrets.STAGING_API }}" >> $GITHUB_ENV

	echo "SQL_SERVER=${{secrets.SQL_SERVER}}" >> $GITHUB_ENV
	echo "SQL_USER=${{secrets.SQL_USER}}" >> $GITHUB_ENV
	echo "SQL_PASSWORD=${{secrets.SQL_PASSWORD}}" >> $GITHUB_ENV
	echo "SQL_DB=${{secrets.SQL_DB}}" >> $GITHUB_ENV
	echo "SQL_TRUST_CERT=${{secrets.SQL_TRUST_CERT}}" >> $GITHUB_ENV
	if: ${{ github.ref == 'refs/heads/next' }}

	- name: Setup stack
	run: \|
	echo "STACK_NAME=ultraviolet/hiveflow-prod" >> $GITHUB_ENV
	echo "INTEGRATION_KEY=${{ secrets.PROD_INTEGRATION_KEY }}" >> $GITHUB_ENV
	echo "ROOT_SERVER=${{ secrets.PROD_API }}" >> $GITHUB_ENV

	echo "SQL_SERVER=${{secrets.SQL_SERVER}}" >> $GITHUB_ENV
	echo "SQL_USER=${{secrets.SQL_USER}}" >> $GITHUB_ENV
	echo "SQL_PASSWORD=${{secrets.SQL_PASSWORD}}" >> $GITHUB_ENV
	echo "SQL_DB=${{secrets.SQL_DB}}" >> $GITHUB_ENV
	echo "SQL_TRUST_CERT=${{secrets.SQL_TRUST_CERT}}" >> $GITHUB_ENV
	if: ${{ github.ref == 'refs/heads/master' }}

	- name: Update infrastructure
	uses: pulumi/actions@v3
	with:
	command: up
	stack-name: ${{ env.STACK_NAME }}
	work-dir: ./packages/infrastructure
	env:
	INTEGRATION_TASK: ${{ secrets.INTEGRATION_TASK }}
	PULUMI_ACCESS_TOKEN: ${{ secrets.PULUMI_ACCESS_TOKEN }}

	deploy-db:
	name: Deploy DB Migration
	runs-on: ubuntu-latest
	needs: [build_server]
	env:
	PULUMI_ACCESS_TOKEN: ${{ secrets.PULUMI_ACCESS_TOKEN }}
	steps:
	- uses: actions/checkout@v2

	- uses: actions/setup-node@v2
	with:
	node-version: 18.x

	- name: Install Pulumi CLI
	uses: pulumi/setup-pulumi@v2

	- run: pulumi stack select ultraviolet/hiveflow-staging
	working-directory: ./packages/infrastructure

	- run: mkdir ~/.kube/

	- name: Setup DB stack
	run: \|
	echo "DB_NAME=ultraviolet/hexhive-db/db-staging" >> $GITHUB_ENV
	echo "DB=db-staging" >> $GITHUB_ENV
	if: ${{ github.ref == 'refs/heads/staging' }}

	- name: Setup stack
	run: \|
	echo "DB_NAME=ultraviolet/hexhive-db/db-prod" >> $GITHUB_ENV
	echo "DB=db-prod" >> $GITHUB_ENV

	if: ${{ github.ref == 'refs/heads/next' }}

	- name: Setup stack
	run: \|
	echo "DB_NAME=ultraviolet/hexhive-db/db-prod" >> $GITHUB_ENV
	echo "DB=db-prod" >> $GITHUB_ENV

	if: ${{ github.ref == 'refs/heads/master' }}


	- run: pulumi stack -s ultraviolet/base-infrastructure/prod output k3sconfig > ~/.kube/config
	working-directory: ./packages/infrastructure
	id: kube_config

	- run: echo "::set-output name=postgres::$(pulumi stack -s ${{ env.DB_NAME }} output postgres_name)"
	working-directory: ./packages/infrastructure
	id: postgres_url

	- run: echo "::set-output name=pass::$(pulumi stack -s ${{ env.DB_NAME }} output postgres_pass)"
	working-directory: ./packages/infrastructure
	id: postgres_pass

	- name: Configure AWS Credentials
	uses: aws-actions/configure-aws-credentials@v1
	with:
	aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
	aws-region: ap-southeast-2
	aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}

	- uses: azure/setup-kubectl@v2.0
	with:
	version: "v1.23.5"

	# - run: aws eks update-kubeconfig --name hexhive-cluster-eksCluster-506b63f

	- run: kubectl --kubeconfig ~/.kube/config -n ${{ env.DB }} port-forward service/${{ steps.postgres_url.outputs.postgres }} 5432:5432 &

	- run: sleep 30s

	- run: npx prisma migrate deploy
	env:
	DATABASE_URL: postgresql://postgres:${{ steps.postgres_pass.outputs.pass }}@localhost:5432/hiveflow
	working-directory: ./packages/app/hiveflow-backend/

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Checkpoint for stacking hiveflow tickets #239

Workflow file

Checkpoint for stacking hiveflow tickets #239

Uh oh!

Workflow file for this run