Release #53
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Release | |
| permissions: | |
| packages: write | |
| contents: write | |
| on: | |
| # Triggered on new GitHub Release | |
| release: | |
| types: [published] | |
| # Triggered on every successful Build action | |
| workflow_run: | |
| workflows: ["Build"] | |
| branches: [main,master] | |
| types: | |
| - completed | |
| # Manual trigger for rollback to specific release or redeploy latest | |
| workflow_dispatch: | |
| inputs: | |
| version: | |
| default: latest | |
| description: Tag you want to release. | |
| required: true | |
| jobs: | |
| push_to_registry: | |
| runs-on: ubuntu-22.04 | |
| if: ${{ github.event.workflow_run.conclusion != 'failure' }} | |
| steps: | |
| # Checkout latest or specific tag | |
| - name: checkout | |
| if: ${{ github.event.inputs.version == '' || github.event.inputs.version == 'latest' }} | |
| uses: actions/checkout@v3 | |
| - name: checkout tag | |
| if: ${{ github.event.inputs.version != '' && github.event.inputs.version != 'latest' }} | |
| uses: actions/checkout@v3 | |
| with: | |
| ref: refs/tags/${{ github.event.inputs.version }} | |
| # Assign environment variables used in subsequent steps | |
| - name: Env variable assignment | |
| run: echo "image_repository_name=$(echo ${{ github.repository }} | tr '[:upper:]' '[:lower:]')" >> $GITHUB_ENV | |
| # TAG_NAME defaults to 'latest' if not a release or manual deployment | |
| - name: Assign version | |
| run: | | |
| echo "TAG_NAME=latest" >> $GITHUB_ENV | |
| if [ "${{ github.event.release.tag_name }}" != "" ]; then | |
| echo "TAG_NAME=${{ github.event.release.tag_name }}" >> $GITHUB_ENV | |
| fi; | |
| if [ "${{ github.event.inputs.version }}" != "" ]; then | |
| echo "TAG_NAME=${{ github.event.inputs.version }}" >> $GITHUB_ENV | |
| fi; | |
| - name: setup .net core | |
| uses: actions/setup-dotnet@v3 | |
| with: | |
| dotnet-version: '6.0' | |
| - name: Install x tool | |
| run: dotnet tool install -g x | |
| - name: Apply Production AppSettings | |
| working-directory: ./CreatorKit | |
| run: | | |
| cat <<EOF >> appsettings.json.patch | |
| ${{ secrets.APPSETTINGS_PATCH }} | |
| EOF | |
| x patch appsettings.json.patch | |
| - name: Login to GitHub Container Registry | |
| uses: docker/login-action@v2 | |
| with: | |
| registry: ghcr.io | |
| username: ${{ github.actor }} | |
| password: ${{ secrets.GITHUB_TOKEN }} | |
| # Build and push new docker image, skip for manual redeploy other than 'latest' | |
| - name: Build and push Docker images | |
| uses: docker/build-push-action@v3 | |
| if: ${{ github.event.inputs.version == '' || github.event.inputs.version == 'latest' }} | |
| with: | |
| file: Dockerfile | |
| context: . | |
| push: true | |
| tags: ghcr.io/${{ env.image_repository_name }}:${{ env.TAG_NAME }} | |
| deploy_via_ssh: | |
| needs: push_to_registry | |
| runs-on: ubuntu-22.04 | |
| if: ${{ github.event.workflow_run.conclusion != 'failure' }} | |
| steps: | |
| # Checkout latest or specific tag | |
| - name: checkout | |
| if: ${{ github.event.inputs.version == '' || github.event.inputs.version == 'latest' }} | |
| uses: actions/checkout@v3 | |
| - name: checkout tag | |
| if: ${{ github.event.inputs.version != '' && github.event.inputs.version != 'latest' }} | |
| uses: actions/checkout@v3 | |
| with: | |
| ref: refs/tags/${{ github.event.inputs.version }} | |
| - name: repository name fix and env | |
| run: | | |
| echo "image_repository_name=$(echo ${{ github.repository }} | tr '[:upper:]' '[:lower:]')" >> $GITHUB_ENV | |
| echo "domain=${{ secrets.DEPLOY_HOST }}" >> $GITHUB_ENV | |
| echo "letsencrypt_email=${{ secrets.LETSENCRYPT_EMAIL }}" >> $GITHUB_ENV | |
| echo "TAG_NAME=latest" >> $GITHUB_ENV | |
| if [ "${{ github.event.release.tag_name }}" != "" ]; then | |
| echo "TAG_NAME=${{ github.event.release.tag_name }}" >> $GITHUB_ENV | |
| fi; | |
| if [ "${{ github.event.inputs.version }}" != "" ]; then | |
| echo "TAG_NAME=${{ github.event.inputs.version }}" >> $GITHUB_ENV | |
| fi; | |
| # Populate docker-compose.yml with variables from build process, including TAG_NAME. | |
| - name: docker-compose file prep | |
| uses: danielr1996/envsubst-action@1.1.0 | |
| env: | |
| RELEASE_VERSION: ${{ env.TAG_NAME }} | |
| IMAGE_REPO: ${{ env.image_repository_name }} | |
| APP_NAME: ${{ github.event.repository.name }} | |
| HOST_DOMAIN: ${{ env.domain }} | |
| LETSENCRYPT_EMAIL: ${{ env.letsencrypt_email }} | |
| with: | |
| input: .deploy/docker-compose-template.yml | |
| output: .deploy/${{ github.event.repository.name }}-docker-compose.yml | |
| # Copy only the docker-compose.yml to remote server home folder | |
| - name: copy compose file via scp | |
| uses: appleboy/scp-action@v0.1.3 | |
| with: | |
| host: ${{ secrets.DEPLOY_HOST }} | |
| username: ${{ secrets.DEPLOY_USERNAME }} | |
| port: 22 | |
| key: ${{ secrets.DEPLOY_KEY }} | |
| source: ".deploy/${{ github.event.repository.name }}-docker-compose.yml" | |
| target: "~/" | |
| # Populate litestream.yml with variables from build process, including TAG_NAME. | |
| - name: litestream.yml file prep | |
| uses: danielr1996/envsubst-action@1.1.0 | |
| env: | |
| R2_ACCESS_KEY_ID: ${{ secrets.R2_ACCESS_KEY_ID }} | |
| R2_SECRET_ACCESS_KEY: ${{ secrets.R2_SECRET_ACCESS_KEY }} | |
| R2_BUCKET: ${{ secrets.R2_BUCKET }} | |
| R2_ENDPOINT: ${{ secrets.R2_ENDPOINT }} | |
| with: | |
| input: .deploy/litestream-template.yml | |
| output: .deploy/litestream.yml | |
| - name: copy litestream.yml file via scp | |
| uses: appleboy/scp-action@v0.1.3 | |
| with: | |
| host: ${{ secrets.DEPLOY_HOST }} | |
| username: ${{ secrets.DEPLOY_USERNAME }} | |
| port: 22 | |
| strip_components: 1 | |
| key: ${{ secrets.DEPLOY_KEY }} | |
| source: ".deploy/litestream.yml" | |
| target: "~/.deploy/${{ github.event.repository.name }}/config" | |
| - name: Run remote db migrations | |
| uses: appleboy/ssh-action@v0.1.5 | |
| env: | |
| APPTOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| USERNAME: ${{ secrets.DEPLOY_USERNAME }} | |
| with: | |
| host: ${{ secrets.DEPLOY_HOST }} | |
| username: ${{ secrets.DEPLOY_USERNAME }} | |
| key: ${{ secrets.DEPLOY_KEY }} | |
| port: 22 | |
| envs: APPTOKEN,USERNAME | |
| script: | | |
| echo $APPTOKEN | docker login ghcr.io -u $USERNAME --password-stdin | |
| docker compose -f ~/.deploy/${{ github.event.repository.name }}-docker-compose.yml pull | |
| docker compose -f ~/.deploy/${{ github.event.repository.name }}-docker-compose.yml up ${{ github.event.repository.name }}-migration --exit-code-from ${{ github.event.repository.name }}-migration | |
| # Deploy Docker image with ServiceStack application using `docker compose up` remotely | |
| - name: remote docker-compose up via ssh | |
| uses: appleboy/ssh-action@v0.1.5 | |
| env: | |
| APPTOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| USERNAME: ${{ secrets.DEPLOY_USERNAME }} | |
| with: | |
| host: ${{ secrets.DEPLOY_HOST }} | |
| username: ${{ secrets.DEPLOY_USERNAME }} | |
| key: ${{ secrets.DEPLOY_KEY }} | |
| port: 22 | |
| envs: APPTOKEN,USERNAME | |
| script: | | |
| echo $APPTOKEN | docker login ghcr.io -u $USERNAME --password-stdin | |
| docker compose -f ~/.deploy/${{ github.event.repository.name }}-docker-compose.yml pull | |
| docker compose -f ~/.deploy/${{ github.event.repository.name }}-docker-compose.yml --profile litestream-backup up -d |