Skip to content
Deploy to Development

Issue #516: Add more detail to the "review needed" email. #31

Sign in to view logs

Issue #516: Add more detail to the "review needed" email.

Issue #516: Add more detail to the "review needed" email. #31

Workflow file for this run

.github/workflows/dev.yml at 265f41b
name: Deploy to Development
on:
push:
tags:
- '*'
paths-ignore:
- 'README.md'
env:
COMPOSER_MEMORY_LIMIT: -1
CONTAINER_IMAGE_NAME: mfin-data-catalogue
CONTAINER_REGISTRY: ${{ secrets.CONTAINER_REGISTRY }}
CONTAINER_REGISTRY_USERNAME: ${{ secrets.CONTAINER_REGISTRY_USERNAME }}
CONTAINER_REGISTRY_PASSWORD: ${{ secrets.CONTAINER_REGISTRY_PASSWORD }}
jobs:
build:
runs-on: ubuntu-22.04
steps:
- uses: actions/checkout@master
- name: Export github reference var
run: echo "GITHUB_REFERENCE=$(echo ${GITHUB_REF#refs/tags/})" >> $GITHUB_ENV
- name: Update Data Catalogue version
uses: mikefarah/[email protected]
with:
cmd: |
yq eval '.version = strenv(GITHUB_REFERENCE)' -i html/modules/custom/bc_dc/bc_dc.info.yml
- name: Build out the Drupal infrastructure
run: |
export DB_TYPE=mysql
export DB_PORT=3306
git clone --branch 10.2.x-php8.2 https://github.com/drupalwxt/docker-scaffold.git docker
make build
docker compose -f docker-compose.ci.yml up -d
docker ps -a
sleep 10
- name: Run installation
run: |
export DB_TYPE=mysql
export DB_PORT=3306
make drupal_install
- name: Run tests
run: |
export DB_TYPE=mysql
export DB_PORT=3306
./docker/bin/phpcs --standard=/var/www/html/core/phpcs.xml \
--extensions=php,module,inc,install,test,profile,theme \
--report=full \
--colors \
/var/www/html/modules/contrib/bcbb \
/var/www/html/modules/custom/bc_dc \
/var/www/html/themes/contrib/bcbb_theme \
/var/www/html/themes/custom/dc_theme
- name: Scan PHP-FPM image for vulnerabilities
uses: aquasecurity/[email protected]
with:
image-ref: 'mfin-data-catalogue-web:latest'
format: 'table'
exit-code: '0'
ignore-unfixed: true
vuln-type: 'os,library'
severity: 'CRITICAL,HIGH,MEDIUM'
- name: Scan Nginx image for vulnerabilities
uses: aquasecurity/[email protected]
with:
image-ref: 'mfin-data-catalogue-nginx:latest'
format: 'table'
exit-code: '0'
ignore-unfixed: true
vuln-type: 'os,library'
severity: 'CRITICAL,HIGH,MEDIUM'
- name: Login to Container Registry 🐸
uses: docker/login-action@v2
with:
registry: ${{ env.CONTAINER_REGISTRY }}
username: ${{ env.CONTAINER_REGISTRY_USERNAME }}
password: ${{ env.CONTAINER_REGISTRY_PASSWORD }}
- name: Build and push PHP-FPM 🐳
run: |
docker tag mfin-data-catalogue-web:latest ${{ env.CONTAINER_REGISTRY }}/${{ env.CONTAINER_IMAGE_NAME }}:${{ env.GITHUB_REFERENCE }}
docker push ${{ env.CONTAINER_REGISTRY }}/${{ env.CONTAINER_IMAGE_NAME }}:${{ env.GITHUB_REFERENCE }}
- name: Build and push Nginx 🐳
run: |
docker tag mfin-data-catalogue-nginx:latest ${{ env.CONTAINER_REGISTRY }}/${{ env.CONTAINER_IMAGE_NAME }}-nginx:${{ env.GITHUB_REFERENCE }}
docker push ${{ env.CONTAINER_REGISTRY }}/${{ env.CONTAINER_IMAGE_NAME }}-nginx:${{ env.GITHUB_REFERENCE }}
- name: Checkout Tenant GitOps Repo
uses: actions/checkout@v4
with:
repository: bcgov-c/tenant-gitops-ea352d
path: tenant-gitops
ssh-key: ${{ secrets.SSH_KEY }}
persist-credentials: true
- name: Update Argo CD
uses: mikefarah/[email protected]
with:
cmd: |
yq -i '.drupal.tag = strenv(GITHUB_REFERENCE) |
.nginx.tag = strenv(GITHUB_REFERENCE) ' tenant-gitops/helm-drupal/charts/drupal/values-mfin-data-catalogue-dev.yaml
- name: Commit files
run: |
cd tenant-gitops
git config --local user.email "github-actions[bot]@users.noreply.github.com"
git config --local user.name "github-actions[bot]"
git commit -a -m "feat(helm): Update container images to ${{ env.GITHUB_REFERENCE }}"
- name: Push changes
uses: ad-m/github-push-action@master
with:
ssh: true
branch: main
directory: tenant-gitops
repository: bcgov-c/tenant-gitops-ea352d