Skip to content

Commit

Permalink
chore: deploy
Browse files Browse the repository at this point in the history
  • Loading branch information
@seaerchin
seaerchin committed Jul 23, 2024
1 parent 56ce8f6 commit 025148f
Show file tree
Hide file tree
Showing 2 changed files with 279 additions and 0 deletions.
161 changes: 161 additions & 0 deletions .github/workflows/aws_deploy.yml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,161 @@
name: AWS Deploy

on:
workflow_call:
inputs:
environment:
description: 'Deployment environment'
required: true
type: string
shortEnv:
description: 'Deployment environment, the short version (one of [dev, prod, stg, test, uat, vapt])'
required: true
type: string
aws-account-id:
description: 'AWS account ID to use'
required: true
type: string
aws-region:
description: 'AWS region to use'
required: true
default: 'ap-southeast-1'
type: string
cicd-role:
description: 'AWS IAM role to assume by GitHub action runner'
required: true
type: string
ecr-repository:
description: 'ECR repository to push image to'
required: true
type: string
ecs-cluster-name:
description: 'ECS cluster to deploy to'
required: true
type: string
ecs-task-definition:
description: 'ECS task definition to use'
required: true
type: string
ecs-task-definition-path:
description: 'ECS task definition path'
default: 'ecs-task-definition.json'
type: string
ecs-service-name:
description: 'ECS service to deploy to'
required: true
type: string
ecs-container-name:
description: 'Name of container in ECS task definition'
required: true
type: string
codedeploy-application:
description: 'CodeDeploy application to use'
required: true
type: string
codedeploy-appspec-path:
description: 'CodeDeploy appspec.json/yml file path'
default: 'appspec.json'
type: string
codedeploy-deployment-group:
description: 'CodeDeploy deployment group to use'
required: true
type: string
secrets:
DATADOG_API_KEY:
description: 'Datadog API key for uploading sourcemaps'
required: false

permissions:
id-token: write
contents: read

jobs:
deploy staging:
name: Deploy staging
runs-on: ubuntu-latest
env:
DATADOG_API_KEY: ${{ secrets.DATADOG_API_KEY }}
steps:
- name: Checkout source code
uses: actions/checkout@v3

- name: Set up QEMU
uses: docker/setup-qemu-action@v2

- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v2
with:
driver-opts: network=host

- name: Configure AWS credentials
uses: aws-actions/configure-aws-credentials@v1
with:
role-to-assume: ${{ inputs.cicd-role }}
role-session-name: github-action-application-deploy
aws-region: ${{ inputs.aws-region }}

- name: Login to Amazon ECR
id: login-ecr
uses: aws-actions/amazon-ecr-login@v1
with:
mask-password: 'true'

- name: Build and push image to ECR
uses: docker/build-push-action@v3
env:
ECR_REGISTRY: ${{ steps.login-ecr.outputs.registry }}
ECR_REPOSITORY: ${{ inputs.ecr-repository }}
ENV: ${{ inputs.environment }}
IMAGE_TAG: ${{ github.sha }}
with:
context: .
push: true
tags: |
${{ env.ECR_REGISTRY }}/${{ env.ECR_REPOSITORY }}:${{ env.IMAGE_TAG }}
build-args: |
ENV=${{env.ENV}}
- name: Replace AWS_ACCOUNT_ID/ENV in task definition file
id: replace-variables
run: |
sed -i 's/<AWS_ACCOUNT_ID>/${{ inputs.aws-account-id }}/g' ${{ inputs.ecs-task-definition-path }}
sed -i 's/<ENV>/${{ inputs.environment }}/g' ${{ inputs.ecs-task-definition-path }}
sed -i 's/<SHORT_ENV>/${{ inputs.shortEnv }}/g' ${{ inputs.ecs-task-definition-path }}
sed -i 's/<CPU>/${{ inputs.environment == 'production' && 1024 || 512 }}/g' ${{ inputs.ecs-task-definition-path }}
sed -i 's/<MEMORY>/${{ inputs.environment == 'production' && 2048 || 1024 }}/g' ${{ inputs.ecs-task-definition-path }}
- name: Fill in the new image ID in the Amazon ECS task definition
id: task-def
uses: aws-actions/amazon-ecs-render-task-definition@v1
env:
ECR_REGISTRY: ${{ steps.login-ecr.outputs.registry }}
ECR_REPOSITORY: ${{ inputs.ecr-repository }}
ENV: ${{ inputs.environment }}
IMAGE_TAG: ${{ github.sha }}
with:
task-definition: ${{ inputs.ecs-task-definition-path }}
container-name: ${{ inputs.ecs-container-name }}
image: ${{ env.ECR_REGISTRY }}/${{ env.ECR_REPOSITORY }}:${{ env.IMAGE_TAG }}

- name: Deploy Amazon ECS task definition
uses: aws-actions/amazon-ecs-deploy-task-definition@v1
with:
task-definition: ${{ steps.task-def.outputs.task-definition }}
cluster: ${{ inputs.ecs-cluster-name }}
service: ${{ inputs.ecs-service-name }}
wait-for-service-stability: true
codedeploy-appspec: ${{ inputs.codedeploy-appspec-path }}
codedeploy-application: ${{ inputs.codedeploy-application }}
codedeploy-deployment-group: ${{ inputs.codedeploy-deployment-group }}

# - name: Upload sourcemaps to Datadog
# if: ${{ env.DATADOG_API_KEY != '' }}
# env:
# IMAGE_TAG: ${{ env.LOCAL_IMAGE_TAG }}
# shell: bash
# run: |
# npm install -g @datadog/datadog-ci
# rm -rf assets
# docker cp $(docker create ${IMAGE_TAG}):/opt/nemsw/services/frontend/build/assets assets
# datadog-ci sourcemaps upload assets \
# --service=bright --release-version=${{ github.sha }} --minified-path-prefix=/assets/
118 changes: 118 additions & 0 deletions apps/studio/deploy/task-definition.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,118 @@
{
"containerDefinitions": [
{
"name": "app-server",
"portMappings": [
{
"containerPort": 8080,
"hostPort": 8080,
"protocol": "tcp"
}
],
"essential": true,
"environment": [
{
"name": "NODE_ENV",
"value": "production"
}
],
"mountPoints": [],
"volumesFrom": [],
"secrets": [
{
"name": "DATABASE_URL",
"valueFrom": "/<ENV>/DATABASE_URL"
}
],
"logConfiguration": {
"logDriver": "awslogs",
"options": {
"awslogs-group": "isomer/ecs/app-server",
"awslogs-region": "ap-southeast-1",
"awslogs-stream-prefix": "ecs"
}
}
},
{
"name": "dd-agent",
"image": "public.ecr.aws/datadog/agent:latest",
"portMappings": [
{
"containerPort": 8126,
"hostPort": 8126,
"protocol": "tcp"
},
{
"containerPort": 8125,
"hostPort": 8125,
"protocol": "udp"
}
],
"essential": true,
"environment": [
{
"name": "TZ",
"value": "Asia/Singapore"
},
{
"name": "DD_APM_NON_LOCAL_TRAFFIC",
"value": "true"
},
{
"name": "DD_DOGSTATSD_NON_LOCAL_TRAFFIC",
"value": "true"
},
{
"name": "ECS_FARGATE",
"value": "true"
},
{
"name": "DD_APM_ENABLED",
"value": "true"
},
{
"name": "DD_SITE",
"value": "datadoghq.com"
}
],
"mountPoints": [],
"volumesFrom": [],
"secrets": [
{
"name": "DD_API_KEY",
"valueFrom": "/<ENV>/DD_API_KEY"
},
{
"name": "DD_SERVICE",
"valueFrom": "/<ENV>/DD_SERVICE"
},
{
"name": "DD_TAGS",
"valueFrom": "/<ENV>/DD_TAGS"
}
],
"logConfiguration": {
"logDriver": "awslogs",
"options": {
"awslogs-group": "isomer/ecs/app-server-dd-agent",
"awslogs-region": "ap-southeast-1",
"awslogs-stream-prefix": "ecs"
}
}
}
],
"family": "isomer",
"networkMode": "awsvpc",
"volumes": [],
"placementConstraints": [],
"runtimePlatform": {
"operatingSystemFamily": "LINUX"
},
"requiresCompatibilities": [
"FARGATE"
],
"taskRoleArn": "arn:aws:iam::<AWS_ACCOUNT_ID>:role/isomer-next-infra-ecs-task-role",
"executionRoleArn": "arn:aws:iam::<AWS_ACCOUNT_ID>:role/isomer-next-infra-ecs-task-exec-role",
"cpu": "<CPU>",
"memory": "<MEMORY>"
}

0 comments on commit 025148f

Please sign in to comment.