Update pull_request_template.md (#1382) #511
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: CI/CD Main | |
| on: | |
| push: | |
| branches: | |
| - main | |
| workflow_dispatch: | |
| concurrency: | |
| group: ${{ github.workflow }}-${{ github.ref_name }} | |
| permissions: | |
| actions: read | |
| contents: write | |
| pull-requests: write | |
| packages: write | |
| id-token: write | |
| security-events: write | |
| pages: write | |
| jobs: | |
| release-please: | |
| name: Release please | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: googleapis/release-please-action@v4 | |
| id: release | |
| with: | |
| token: ${{ secrets.RELEASE_PLEASE_PAT }} | |
| release-type: node | |
| generate-git-short-sha: | |
| name: Generate git short sha | |
| uses: ./.github/workflows/workflow-generate-git-short-sha.yml | |
| get-current-version: | |
| name: Get current version | |
| uses: ./.github/workflows/workflow-get-current-version.yml | |
| check-for-changes: | |
| name: Check for changes | |
| uses: ./.github/workflows/workflow-check-for-changes.yml | |
| build-and-test: | |
| uses: ./.github/workflows/workflow-build-and-test.yml | |
| needs: [check-for-changes] | |
| if: ${{ github.event_name == 'workflow_dispatch' || needs.check-for-changes.outputs.hasApplicationChanges == 'true' }} | |
| with: | |
| environment: test | |
| docker-build-and-push: | |
| name: Build and publish docker images | |
| if: ${{ github.event_name == 'workflow_dispatch' || needs.check-for-changes.outputs.hasApplicationChanges == 'true' }} | |
| uses: ./.github/workflows/workflow-docker-build-and-push.yml | |
| needs: | |
| [ | |
| check-for-changes, | |
| generate-git-short-sha, | |
| get-current-version, | |
| build-and-test, | |
| ] | |
| # todo: only run this if necessary (the appropriate files have changed) | |
| secrets: | |
| GCR_PASSWORD: ${{ secrets.GITHUB_TOKEN }} | |
| with: | |
| dockerImageBaseName: ghcr.io/digdir/dialogporten-frontend- | |
| version: ${{ needs.get-current-version.outputs.version }}-${{ needs.generate-git-short-sha.outputs.gitShortSha }} | |
| deploy-documentation: | |
| uses: ./.github/workflows/workflow-deploy-docs.yml | |
| deploy-infrastructure: | |
| uses: ./.github/workflows/workflow-deploy-infrastructure.yml | |
| needs: [generate-git-short-sha, check-for-changes, get-current-version] | |
| if: ${{ github.event_name == 'workflow_dispatch' || needs.check-for-changes.outputs.hasInfrastructureChanges == 'true' }} | |
| secrets: | |
| AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} | |
| AZURE_TENANT_ID: ${{ secrets.AZURE_TENANT_ID }} | |
| AZURE_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }} | |
| AZURE_SOURCE_KEY_VAULT_NAME: ${{ secrets.AZURE_SOURCE_KEY_VAULT_NAME }} | |
| AZURE_SOURCE_KEY_VAULT_SUBSCRIPTION_ID: ${{ secrets.AZURE_SOURCE_KEY_VAULT_SUBSCRIPTION_ID }} | |
| AZURE_SOURCE_KEY_VAULT_RESOURCE_GROUP: ${{ secrets.AZURE_SOURCE_KEY_VAULT_RESOURCE_GROUP }} | |
| AZURE_CERTIFICATE_KEY_VAULT_NAME: ${{ secrets.AZURE_CERTIFICATE_KEY_VAULT_NAME }} | |
| AZURE_SOURCE_KEY_VAULT_SSH_JUMPER_SSH_PUBLIC_KEY: ${{ secrets.AZURE_SOURCE_KEY_VAULT_SSH_JUMPER_SSH_PUBLIC_KEY }} | |
| with: | |
| environment: test | |
| region: norwayeast | |
| version: ${{ needs.get-current-version.outputs.version }}-${{ needs.generate-git-short-sha.outputs.gitShortSha }} | |
| deploy-apps: | |
| name: Deploy apps to test | |
| needs: | |
| [ | |
| get-current-version, | |
| check-for-changes, | |
| generate-git-short-sha, | |
| docker-build-and-push, | |
| deploy-infrastructure | |
| ] | |
| # we want deployment of apps to be dependent on deployment of infrastructure, but if infrastructure is skipped, we still want to deploy the apps | |
| if: ${{ always() && !failure() && !cancelled() && (github.event_name == 'workflow_dispatch' || needs.check-for-changes.outputs.hasApplicationChanges == 'true') }} | |
| uses: ./.github/workflows/workflow-deploy-apps.yml | |
| secrets: | |
| AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} | |
| AZURE_TENANT_ID: ${{ secrets.AZURE_TENANT_ID }} | |
| AZURE_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }} | |
| # todo: consider resolving these in another way since they are created in the infra-step | |
| AZURE_RESOURCE_GROUP_NAME: ${{ secrets.AZURE_RESOURCE_GROUP_NAME }} | |
| AZURE_ENVIRONMENT_KEY_VAULT_NAME: ${{ secrets.AZURE_ENVIRONMENT_KEY_VAULT_NAME }} | |
| AZURE_CONTAINER_APP_ENVIRONMENT_NAME: ${{ secrets.AZURE_CONTAINER_APP_ENVIRONMENT_NAME }} | |
| AZURE_APP_INSIGHTS_CONNECTION_STRING: ${{ secrets.AZURE_APP_INSIGHTS_CONNECTION_STRING }} | |
| AZURE_APPLICATION_INSIGHTS_INSTRUMENTATION_KEY: ${{ secrets.AZURE_APPLICATION_INSIGHTS_INSTRUMENTATION_KEY }} | |
| AZURE_APP_CONFIGURATION_NAME: ${{ secrets.AZURE_APP_CONFIGURATION_NAME }} | |
| with: | |
| environment: test | |
| region: norwayeast | |
| version: ${{ needs.get-current-version.outputs.version }}-${{ needs.generate-git-short-sha.outputs.gitShortSha }} | |
| runMigration: ${{ github.event_name == 'workflow_dispatch' || needs.check-for-changes.outputs.hasMigrationChanges == 'true' }} | |
| send-slack-message-on-failure: | |
| name: Send Slack message on failure | |
| needs: [ | |
| build-and-test, | |
| docker-build-and-push, | |
| deploy-infrastructure, | |
| deploy-apps, | |
| ] | |
| if: ${{ always() && failure() && !cancelled() }} | |
| uses: ./.github/workflows/workflow-send-ci-cd-status-slack-message.yml | |
| with: | |
| environment: test | |
| build_and_test_status: ${{ needs.build-and-test.result }} | |
| docker_build_and_push_status: ${{ needs.docker-build-and-push.result }} | |
| infra_status: ${{ needs.deploy-infrastructure.result }} | |
| apps_status: ${{ needs.deploy-apps.result }} | |
| secrets: | |
| SLACK_BOT_TOKEN: ${{ secrets.SLACK_BOT_TOKEN }} | |
| SLACK_CHANNEL_ID: ${{ secrets.SLACK_CHANNEL_ID_FOR_CI_CD_STATUS }} |