Merge pull request #1301 from PADAS/release-2.117.1 #1727

Summary
Jobs
- build
Run details
- Usage
- Workflow file

Workflow file for this run

.github/workflows/develop-workflow.yml at 3834918

	name: Frontend build
	on:
	push:
	branches:
	- "release-..*"
	- "legacy-era-*"
	- "develop*"

	env:
	BUILD_BRANCH: ${{ github.ref_name }}
	BUILD_NUMBER: ${{ github.run_number }}
	BUILD_SHA: ${{ github.sha }}


	jobs:
	build:
	permissions:
	contents: 'read'
	id-token: 'write'
	runs-on: ubuntu-latest
	steps:
	- name: Checkout
	uses: actions/checkout@v4

	- name: Google Auth
	id: auth
	uses: 'google-github-actions/auth@v2'
	with:
	token_format: 'access_token'
	workload_identity_provider: '${{ secrets.WIF_PROVIDER }}'
	service_account: '${{ secrets.WIF_SERVICE_ACCOUNT }}'

	- name: Setup Node
	uses: actions/setup-node@v4
	with:
	node-version: 22

	- name: Setup Terraform
	uses: hashicorp/setup-terraform@v3
	with:
	terraform_version: "1.5.0"

	- name: "Configure python"
	uses: actions/setup-python@v5
	with:
	python-version: '3.10'

	- name: "Make version"
	run: ci-helpers/makeversion.py

	- name: Install dependencies
	run: yarn --ignore-scripts

	- name: Run tests
	run: yarn test-ci

	- name: 'Set up Cloud SDK'
	uses: 'google-github-actions/setup-gcloud@v2'

	- name: Validate existence of env
	id: validate_env
	run: \|-
	export SITE=${GITHUB_REF#refs/heads/}
	if [[ ${SITE} =~ release-..* ]]; then export SITE="stage"; else export SITE=$(echo ${SITE} \| tr '[:upper:]' '[:lower:]'); fi
	if $(wget -q --method=HEAD "https://${SITE}.pamdas.org"); then echo "::set-output name=site_exists::true"; else echo "::set-output name=site_exists::false"; fi

	- name: Yarn build
	if: steps.validate_env.outputs.site_exists == 'true'
	run: CI=false yarn build

	- name: UploadDownload to bucket
	if: steps.validate_env.outputs.site_exists == 'true'
	run: \|-
	gsutil -m cp -r build/static gs://er-static/
	gsutil -m cp -r gs://er-static/api/* build/static/

	- name: Build docker image
	if: steps.validate_env.outputs.site_exists == 'true'
	run: \|-
	gcloud auth configure-docker
	make build_and_push descriptive_gcr_path_stem="${GITHUB_REF#refs/heads/}" unique_gcr_tag="${GITHUB_SHA}"

	- name: Terraform config outputs & cluster
	if: steps.validate_env.outputs.site_exists == 'true'
	run: \|-
	cd terraform && terraform init
	terraform plan -out=tfplan
	terraform apply -auto-approve tfplan

	- name: Allowlist IP address
	if: steps.validate_env.outputs.site_exists == 'true'
	run: \|-
	gcloud compute firewall-rules create "k8s-gha-${GITHUB_SHA:0:8}-${{ github.run_number }}" --allow="tcp:443" --description="for GitHub Actions... delete by: $(date --date='tomorrow')" --direction=INGRESS --network="default" --priority=899 --source-ranges="$(curl --silent ifconfig.me)/32" --target-tags="k8s-proxy" --project="earthranger-78ca55ca" --quiet

	- name: Configure cluster connectivity
	if: steps.validate_env.outputs.site_exists == 'true'
	run: \|-
	export SITE=${GITHUB_REF#refs/heads/}
	if [[ ${SITE} =~ release-..* ]]; then export SITE="stage"; else export SITE=$(echo ${SITE} \| tr '[:upper:]' '[:lower:]'); fi
	export SITE_EXISTS=$(if wget -q --method=HEAD https://${SITE}.pamdas.org; then echo "true"; else echo "false"; fi)
	echo ${SITE_EXISTS}
	if [[ "${SITE_EXISTS}" = "false" ]]; then
	echo "Site doesn't exist, skipping deploy."
	exit 0
	fi
	gcloud components install gke-gcloud-auth-plugin
	export USE_GKE_GCLOUD_AUTH_PLUGIN=True
	echo "Getting credentials"
	gcloud container clusters get-credentials das-dev --zone us-west1-a
	echo "Configuring cluster"
	kubectl config set-cluster "$(kubectl config get-clusters \| tail -n 1)" --server="https://$(cd terraform && terraform output -raw cluster_proxy_endpoint)" \|\| false
	echo "Downloading the certificate"
	echo "$(cd terraform && terraform output -raw cluster_b64_encoded_proxy_ca_certificate)" \| base64 -d > proxy.crt
	echo "Setting cluster with certificate"
	kubectl config set-cluster "$(kubectl config get-clusters \| tail -n 1)" --certificate-authority="./proxy.crt" \|\| false
	echo "Updating the image"
	if [[ ${SITE} == "stage" ]]; then export IMAGE="${GITHUB_REF#refs/heads/}:${GITHUB_SHA}"; else export IMAGE="${SITE}:${GITHUB_SHA}"; fi
	kubectl set image -n ${SITE} deployment/web-react web-react=gcr.io/padas-app/circleci/das-web-react/${IMAGE}


	- name: Remove ip address
	if: always()
	continue-on-error: true
	run: \|-
	gcloud compute firewall-rules delete "k8s-gha-${GITHUB_SHA:0:8}-${{ github.run_number }}" --project="earthranger-78ca55ca" --quiet

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Merge pull request #1301 from PADAS/release-2.117.1 #1727

Workflow file

Merge pull request #1301 from PADAS/release-2.117.1 #1727

Uh oh!

Jobs

Run details

Workflow file for this run