testing github actions

git-user-9 · git-user-9 · commit 4138e4a8f3e5 · 2025-07-09T11:49:56.000+05:30
diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml
@@ -0,0 +1,86 @@
+name: Deploy to EC2
+
+on:
+  push:
+    branches:
+      - devops/a3
+    tags:
+      - 'deploy-*'    # Matches tags like deploy-dev, deploy-qa, deploy-prod
+  workflow_dispatch:
+    inputs:
+      stage:
+        description: 'Deployment stage (dev, qa, prod)'
+        required: true
+        default: 'dev'
+        type: choice
+        options:
+          - dev
+          - qa
+          - prod
+
+env:
+  AWS_REGION: ap-south-1
+
+jobs:
+  deploy:
+    runs-on: ubuntu-latest
+
+    steps:
+    - name: Determine Stage
+      id: set_stage
+      run: |
+        STAGE_INPUT="${{ github.event.inputs.stage }}"
+        STAGE=""
+
+        if [[ "${GITHUB_REF}" == refs/tags/deploy-* ]]; then
+          STAGE="${GITHUB_REF#refs/tags/deploy-}"
+          echo "Tag trigger detected. Stage set to: $STAGE"
+        elif [[ -n "$STAGE_INPUT" ]]; then
+          STAGE="$STAGE_INPUT"
+          echo "Manual trigger detected. Stage set to: $STAGE"
+        else
+          echo "Branch trigger detected (main). Defaulting stage to dev."
+          STAGE="dev"
+        fi
+
+        # Validate stage
+        if [[ "$STAGE" != "dev" && "$STAGE" != "qa" && "$STAGE" != "prod" ]]; then
+          echo "Invalid stage: $STAGE. Must be dev, qa, or prod."
+          exit 1
+        fi
+
+        echo "STAGE=$STAGE" >> $GITHUB_ENV
+
+    # Checkout Code
+    - name: Checkout repository
+      uses: actions/checkout@v4
+
+    # Configure AWS Credentials
+    - name: Configure AWS Credentials
+      uses: aws-actions/configure-aws-credentials@v4
+      with:
+        aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+        aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+        aws-region: ${{ env.AWS_REGION }}
+
+    # Install Dependencies
+    - name: Install dependencies
+      run: |
+        sudo apt update
+        sudo apt install -y unzip curl terraform
+
+    # Setup SSH Private Key
+    - name: Setup SSH Private Key
+      run: |
+        echo "${{ secrets.SSH_PRIVATE_KEY }}" > ec2_key.pem
+        chmod 400 ec2_key.pem
+
+    # Make deploy.sh executable
+    - name: Make deploy.sh executable
+      run: chmod +x scripts/deploy.sh
+
+    # Run deploy.sh with detected stage
+    - name: Run deploy.sh
+      run: |
+        export PRIVATE_KEY_PATH="./ec2_key.pem"
+        ./scripts/deploy.sh $STAGE
diff --git a/scripts/deploy.sh b/scripts/deploy.sh
@@ -53,7 +53,13 @@ echo "Verified Public IP: $VERIFIER_IP"
 echo "Wait 100 seconds for verifier ec2 (read only) to pull the logs from s3 to local environment"
 sleep 100
 cd .. # to save logs at root level
-PRIVATE_KEY_PATH="/Users/default/CS/DevOps/AWS/ssh-key-ec2.pem" #change this to your ssh private key path, also make sure to use `chmod 400` on your key before using
+if [ -n "$GITHUB_ACTIONS" ]; then
+  PRIVATE_KEY_PATH="./ec2_key.pem"
+else
+  PRIVATE_KEY_PATH="/Users/default/CS/DevOps/AWS/ssh-key-ec2.pem"
+fi
+
+# PRIVATE_KEY_PATH="/Users/default/CS/DevOps/AWS/ssh-key-ec2.pem" #change this to your ssh private key path, also make sure to use `chmod 400` on your key before using
 echo "trying to scp logs to local"
 scp -r -i "$PRIVATE_KEY_PATH" -o StrictHostKeyChecking=no ubuntu@$VERIFIER_IP:/mylogs/ .   #to pull logs from readonly ec2 to your local directory /mylogs/
 cd $TERRAFORM_DIR # to run destroy need to go to terraform directory
