Skip to content

Merge pull request #34 from hypersign-protocol/CD #29

Merge pull request #34 from hypersign-protocol/CD

Merge pull request #34 from hypersign-protocol/CD #29

name: Vault Service Build and Publish to google artifact repository
on:
push:
branches:
- "master"
jobs:
Build-and-Publish-to-google-artifact-repository:
runs-on: ubuntu-latest
environment: production
steps:
- name: code checkout
uses: actions/checkout@v3
- id: "auth"
uses: "google-github-actions/auth@v1"
with:
credentials_json: "${{ secrets.GOOGLE_APPLICATION_CREDENTIALS }}"
- name: install gcloud cli tools
uses: google-github-actions/setup-gcloud@v1
with:
project_id: ${{secrets.GOOGLE_PROJECT_ID}}
service_account_key: ${{secrets.GOOGLE_APPLICATION_CREDENTIALS}}
install_components: "gke-gcloud-auth-plugin"
export_default_credentials: true
- name: "Use gcloud CLI"
run: "gcloud info"
- name: "Docker Auth"
run: gcloud auth configure-docker asia-south1-docker.pkg.dev
- name: "Docker Build and Push"
env:
GOOGLE_PROJECT_ID: ${{secrets.GOOGLE_PROJECT_ID}}
GOOGLE_ARTIFACT_URL: ${{secrets.GOOGLE_ARTIFACT_URL}}
GOOGLE_ARTIFACT_REPO: ${{secrets.GOOGLE_ARTIFACT_REPO}}
run:
docker build -t $GOOGLE_ARTIFACT_URL/$GOOGLE_PROJECT_ID/$GOOGLE_ARTIFACT_REPO/vault-service:latest .
docker push $GOOGLE_ARTIFACT_URL/$GOOGLE_PROJECT_ID/$GOOGLE_ARTIFACT_REPO/vault-service:latest
- name: "Configure kubectl"
run: gcloud container clusters get-credentials hypermine-gke --region=asia-south1
- name: "Replace secrets"
uses: cschleiden/replace-tokens@v1
with:
files: '["**/deployment.yaml"]'
tokenPrefix: __
tokenSuffix: __
env:
HOST: ${{secrets.HOST}}
ABSOLUTE_URL: ${{secrets.ABSOLUTE_URL}}
DATA_VAULT: ${{secrets.DATA_VAULT}}
DB_URL: ${{secrets.DB_URL}}
PORT: ${{ secrets.PORT }}
LOG_LEVEL: ${{secrets.LOG_LEVEL}}
SSL: ${{secrets.SSL}}
GOOGLE_ARTIFACT_URL: ${{secrets.GOOGLE_ARTIFACT_URL}}
GOOGLE_ARTIFACT_REPO: ${{secrets.GOOGLE_ARTIFACT_REPO}}
GOOGLE_PROJECT_ID: ${{secrets.GOOGLE_PROJECT_ID}}
- name: "Deploy to GKE"
run: kubectl apply -f .deploy/deployment.yaml