AztecProtocol
diff --git a/‎.github/workflows/deploy-aztec-infra.yml‎
Lines changed: 268 additions & 0 deletions b/‎.github/workflows/deploy-aztec-infra.yml‎
Lines changed: 268 additions & 0 deletions
diff --git a/‎.github/workflows/deploy-eth-devnet.yml‎
Lines changed: 24 additions & 23 deletions b/‎.github/workflows/deploy-eth-devnet.yml‎
Lines changed: 24 additions & 23 deletions
@@ -0,0 +1,268 @@
+name: Deploy Aztec Infra
+
+on:
+  workflow_call:
+    inputs:
+      cluster:
+        description: The cluster to deploy to, e.g. aztec-gke-private or kind
+        required: true
+        type: string
+      namespace:
+        description: The namespace to deploy to
+        required: true
+        type: string
+      ref:
+        description: The branch name to deploy from.
+        required: true
+        type: string
+      run_terraform_destroy:
+        description: Whether to run terraform destroy
+        required: true
+        type: boolean
+        default: false
+      aztec_docker_image:
+        description: The Aztec Docker image to deploy
+        required: true
+        type: string
+      l1_rpc_urls:
+        description: L1 RPC URLs as JSON array
+        required: true
+        type: string
+      l1_consensus_host_urls:
+        description: L1 consensus host URLs as JSON array
+        required: true
+        type: string
+      l1_consensus_host_api_keys:
+        description: L1 consensus host API keys as JSON array
+        required: true
+        type: string
+      l1_consensus_host_api_key_headers:
+        description: L1 consensus host API key headers as JSON array
+        required: true
+        type: string
+      l1_chain_id:
+        description: L1 chain ID
+        required: true
+        type: string
+      registry_address:
+        description: Registry contract address
+        required: true
+        type: string
+      slash_factory_address:
+        description: Slash factory contract address
+        required: true
+        type: string
+      fee_asset_handler_address:
+        description: Fee asset handler contract address
+        required: true
+        type: string
+      validator_mnemonic:
+        description: Validator mnemonic phrase
+        required: true
+        type: string
+      validator_mnemonic_start_index:
+        description: Validator mnemonic start index
+        required: true
+        type: number
+      validators_per_node:
+        description: Number of validators per node
+        required: true
+        type: number
+      validator_replicas:
+        description: Number of validator replicas
+        required: true
+        type: number
+      prover_mnemonic:
+        description: Prover mnemonic phrase
+        required: true
+        type: string
+      prover_mnemonic_start_index:
+        description: Prover mnemonic start index
+        required: true
+        type: number
+      p2p_bootstrap_resource_profile:
+        description: P2P bootstrap resource profile
+        required: true
+        type: string
+      validator_resource_profile:
+        description: Validator resource profile
+        required: true
+        type: string
+      prover_resource_profile:
+        description: Prover resource profile
+        required: true
+        type: string
+      rpc_resource_profile:
+        description: RPC resource profile
+        required: true
+        type: string
+      rpc_external_ingress:
+        description: Whether to use an external ingress for the rpc
+        required: true
+        type: boolean
+    secrets:
+      GCP_SA_KEY:
+        description: The GCP service account key
+        required: true
+      KUBECONFIG_B64:
+        description: The base64 encoded kubeconfig
+        required: true
+
+  workflow_dispatch:
+    inputs:
+      cluster:
+        description: The cluster to deploy to, e.g. aztec-gke-private or kind
+        required: true
+        type: string
+      namespace:
+        description: The namespace to deploy to
+        required: true
+        type: string
+      ref:
+        description: The branch name to deploy from.
+        required: true
+        type: string
+      run_terraform_destroy:
+        description: Whether to run terraform destroy
+        required: true
+        type: boolean
+        default: false
+      aztec_docker_image:
+        description: The Aztec Docker image to deploy
+        required: true
+        type: string
+      l1_rpc_urls:
+        description: L1 RPC URLs as JSON array. Format, e.g. ["http://10.96.142.184:8545"]
+        required: true
+        type: string
+      l1_consensus_host_urls:
+        description: L1 consensus host URLs as JSON array. Format, e.g. ["http://10.96.36.205:5052"]
+        required: true
+        type: string
+      l1_consensus_host_api_keys:
+        description: L1 consensus host API keys as JSON array. Format, e.g. ["1234567890"]
+        required: true
+        type: string
+      l1_consensus_host_api_key_headers:
+        description: L1 consensus host API key headers as JSON array. Format, e.g. ["X-API-Key"]
+        required: true
+        type: string
+      l1_chain_id:
+        description: L1 chain ID
+        required: true
+        type: string
+      registry_address:
+        description: Registry contract address
+        required: true
+        type: string
+      slash_factory_address:
+        description: Slash factory contract address
+        required: true
+        type: string
+      fee_asset_handler_address:
+        description: Fee asset handler contract address
+        required: true
+        type: string
+      validator_mnemonic:
+        description: Validator mnemonic phrase
+        required: true
+        type: string
+      validator_mnemonic_start_index:
+        description: Validator mnemonic start index
+        required: true
+        type: number
+      validators_per_node:
+        description: Number of validators per node
+        required: true
+        type: number
+      validator_replicas:
+        description: Number of validator replicas
+        required: true
+        type: number
+      prover_mnemonic:
+        description: Prover mnemonic phrase
+        required: true
+        type: string
+      prover_mnemonic_start_index:
+        description: Prover mnemonic start index
+        required: true
+        type: number
+      p2p_bootstrap_resource_profile:
+        description: P2P bootstrap resource profile
+        required: true
+        type: string
+      validator_resource_profile:
+        description: Validator resource profile
+        required: true
+        type: string
+      prover_resource_profile:
+        description: Prover resource profile
+        required: true
+        type: string
+      rpc_resource_profile:
+        description: RPC resource profile
+        required: true
+        type: string
+      rpc_external_ingress:
+        description: Whether to use an external ingress for the rpc
+        required: true
+        type: boolean
+
+jobs:
+  deploy_aztec_infra:
+    runs-on: ubuntu-latest
+    env:
+      TF_VAR_RELEASE_PREFIX: aztec-infra
+      TF_VAR_GCP_PROJECT: "testnet-440309"
+      TF_VAR_GCP_REGION: us-west1
+      TF_VAR_K8S_CLUSTER_CONTEXT: ${{ inputs.cluster }}
+      TF_VAR_NAMESPACE: ${{ inputs.namespace }}
+      TF_VAR_AZTEC_DOCKER_IMAGE: ${{ inputs.aztec_docker_image }}
+      TF_VAR_L1_RPC_URLS: ${{ inputs.l1_rpc_urls }}
+      TF_VAR_L1_CONSENSUS_HOST_URLS: ${{ inputs.l1_consensus_host_urls }}
+      TF_VAR_L1_CONSENSUS_HOST_API_KEYS: ${{ inputs.l1_consensus_host_api_keys }}
+      TF_VAR_L1_CONSENSUS_HOST_API_KEY_HEADERS: ${{ inputs.l1_consensus_host_api_key_headers }}
+      TF_VAR_L1_CHAIN_ID: ${{ inputs.l1_chain_id }}
+      TF_VAR_REGISTRY_CONTRACT_ADDRESS: ${{ inputs.registry_address }}
+      TF_VAR_SLASH_FACTORY_CONTRACT_ADDRESS: ${{ inputs.slash_factory_address }}
+      TF_VAR_FEE_ASSET_HANDLER_CONTRACT_ADDRESS: ${{ inputs.fee_asset_handler_address }}
+      TF_VAR_VALIDATOR_MNEMONIC: ${{ inputs.validator_mnemonic }}
+      TF_VAR_VALIDATOR_MNEMONIC_START_INDEX: ${{ inputs.validator_mnemonic_start_index }}
+      TF_VAR_VALIDATORS_PER_NODE: ${{ inputs.validators_per_node }}
+      TF_VAR_VALIDATOR_REPLICAS: ${{ inputs.validator_replicas }}
+      TF_VAR_PROVER_MNEMONIC: ${{ inputs.prover_mnemonic }}
+      TF_VAR_PROVER_MNEMONIC_START_INDEX: ${{ inputs.prover_mnemonic_start_index }}
+      TF_VAR_P2P_BOOTSTRAP_RESOURCE_PROFILE: ${{ inputs.p2p_bootstrap_resource_profile }}
+      TF_VAR_VALIDATOR_RESOURCE_PROFILE: ${{ inputs.validator_resource_profile }}
+      TF_VAR_PROVER_RESOURCE_PROFILE: ${{ inputs.prover_resource_profile }}
+      TF_VAR_RPC_RESOURCE_PROFILE: ${{ inputs.rpc_resource_profile }}
+      TF_VAR_RPC_EXTERNAL_INGRESS: ${{ inputs.rpc_external_ingress }}
+
+    steps:
+      - name: Debug inputs
+        run: |
+          echo "cluster: ${{ inputs.cluster }}"
+          echo "namespace: ${{ inputs.namespace }}"
+
+      - name: Setup K8s and Terraform
+        uses: ./.github/actions/setup-k8s-terraform
+        with:
+          cluster: ${{ inputs.cluster }}
+          namespace: ${{ inputs.namespace }}
+          ref: ${{ inputs.ref || github.ref }}
+          gcp_sa_key: ${{ secrets.GCP_SA_KEY }}
+          kubeconfig_b64: ${{ secrets.KUBECONFIG_B64 }}
+          terraform_dir: ./spartan/terraform/deploy-aztec-infra
+          tf_state_prefix: deploy-aztec-infra
+          run_terraform_destroy: ${{ inputs.run_terraform_destroy }}
+
+      - name: Terraform Plan
+        working-directory: ./spartan/terraform/deploy-aztec-infra
+        run: |
+          # All variables are now set as TF_VAR_ environment variables
+          terraform plan -out=tfplan
+
+      - name: Terraform Apply
+        working-directory: ./spartan/terraform/deploy-aztec-infra
+        run: |
+          terraform apply tfplan
@@ -26,9 +26,8 @@ on:
         type: string
       ref:
         description: The branch name to deploy from
-        required: false
+        required: true
         type: string
-        default: "next"
       chain_id:
         description: Ethereum chain ID for genesis generation
         required: false
@@ -46,14 +45,12 @@ on:
         default: "32000000"
       resource_profile:
         description: Resource profile to use (dev or prod)
-        required: false
+        required: true
         type: string
-        default: "prod"
       create_static_ips:
         description: Whether to create static IPs as part of the eth devnet for the execution and beacon nodes
-        required: false
+        required: true
         type: string
-        default: "false"
       run_terraform_destroy:
         description: Whether to run the terraform destroy
         required: false
@@ -64,6 +61,11 @@ on:
         required: false
         type: string
         default: "test test test test test test test test test test test junk"
+      prefunded_mnemonic_indices:
+        description: The indices of the prefunded mnemonic to use for the devnet
+        required: false
+        type: string
+        default: "0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,1000,1001,1002,1003"
     secrets:
       GCP_SA_KEY:
         description: The JSON key for the GCP service account
@@ -89,19 +91,16 @@ on:
     inputs:
       cluster:
         description: The cluster to deploy to, e.g. aztec-gke-private or kind
-        required: false
+        required: true
         type: string
-        default: "kind"
       namespace:
         description: The namespace to deploy to
-        required: false
+        required: true
         type: string
-        default: "eth-devnet"
       ref:
         description: The branch name to deploy from.
-        required: false
+        required: true
         type: string
-        default: "next"
       chain_id:
         description: Ethereum chain ID for genesis generation
         required: false
@@ -119,14 +118,12 @@ on:
         default: "32000000"
       resource_profile:
         description: Resource profile to use (dev or prod)
-        required: false
+        required: true
         type: string
-        default: "prod"
       create_static_ips:
         description: Whether to create static IPs as part of the eth devnet for the execution and beacon nodes
-        required: false
+        required: true
         type: string
-        default: "false"
       run_terraform_destroy:
         description: Whether to run the terraform destroy
         required: false
@@ -137,6 +134,11 @@ on:
         required: false
         type: string
         default: "test test test test test test test test test test test junk"
+      prefunded_mnemonic_indices:
+        description: The indices of the prefunded mnemonic to use for the devnet
+        required: false
+        type: string
+        default: "0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,1000,1001,1002,1003"
 
 jobs:
   deploy_eth_devnet:
@@ -150,13 +152,12 @@ jobs:
       TF_STATE_BUCKET: aztec-terraform
       REGION: us-west1-a
       # Common Terraform variables as environment variables
-      TF_VAR_NAMESPACE: ${{ inputs.namespace || 'eth-devnet' }}
-      TF_VAR_CHAIN_ID: ${{ inputs.chain_id || 1337 }}
-      TF_VAR_BLOCK_TIME: ${{ inputs.block_time || 12 }}
-      TF_VAR_GAS_LIMIT: ${{ inputs.gas_limit || '32000000' }}
-      TF_VAR_MNEMONIC_SECRET_NAME: eth-devnet-genesis-mnemonic
-      TF_VAR_PREFUNDED_MNEMONIC_INDICES: "0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,1000,1001,1002,1003"
-      TF_VAR_RESOURCE_PROFILE: ${{ inputs.resource_profile || 'prod' }}
+      TF_VAR_NAMESPACE: ${{ inputs.namespace }}
+      TF_VAR_CHAIN_ID: ${{ inputs.chain_id }}
+      TF_VAR_BLOCK_TIME: ${{ inputs.block_time }}
+      TF_VAR_GAS_LIMIT: ${{ inputs.gas_limit }}
+      TF_VAR_PREFUNDED_MNEMONIC_INDICES: ${{ inputs.prefunded_mnemonic_indices }}
+      TF_VAR_RESOURCE_PROFILE: ${{ inputs.resource_profile }}
 
     steps:
       - name: Mask the mnemonic