update deploy

jjincer · jjincer · commit 166dc490a54f · 2022-07-21T23:21:53.000+03:00
diff --git a/.github/workflows/build-deploy-devnet-auth-provider.yaml b/.github/workflows/build-deploy-devnet-auth-provider.yaml
@@ -3,6 +3,8 @@ on:
   push:
     branches: [feature/vaccount_auth_provider]
 
+
+
 jobs:
   docker-build:
     # Name the Job
@@ -13,66 +15,53 @@ jobs:
       image_tag: ${{ steps.build.outputs.image_tag }}
     steps:
       - uses: actions/checkout@v2
-      - name: Configure AWS credentials
-        id: checkout
-        uses: aws-actions/configure-aws-credentials@v1
+      - name: Login to Docker Hub
+        uses: docker/login-action@v2
         with:
-          aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
-          aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
-          aws-region: ${{ secrets.AWS_REGION }}
-      - name: Login to Amazon ECR
-        id: login-ecr
-        uses: aws-actions/amazon-ecr-login@v1
+          username: ${{ secrets.REGISTRY_USER }}
+          password: ${{ secrets.REGISTRY_PASS }}
+          registry: ${{ secrets.REGISTRY_HOST }}
       - name: Build, tag, and push image to AWS ECR
         id: build
         env:
-          ECR_REGISTRY: ${{ steps.login-ecr.outputs.registry }}
-          ECR_REPOSITORY: velas-synapse
+          REGISTRY: ${{ secrets.REGISTRY_HOST}}/velas
+          REPOSITORY: velas-synapse
           IMAGE_TAG: ${{github.sha}}
         run: |
-          docker build -t $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG --no-cache -f docker/Dockerfile .
-          docker push $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG
-          echo "::set-output name=repository::$ECR_REPOSITORY"
-          echo "::set-output name=image_tag::$IMAGE_TAG"
-
+          docker build -t $REGISTRY/$REPOSITORY:$IMAGE_TAG --no-cache -f docker/Dockerfile .
+          docker push $REGISTRY/$REPOSITORY:$IMAGE_TAG
   deploy:
     name: Deploy via Helmfile
     runs-on: deployer
     needs: docker-build
     container:
       image: quay.io/roboll/helmfile:v0.142.0
     steps:
-      - name: Configure AWS credentials
-        id: checkout
-        uses: aws-actions/configure-aws-credentials@v1
-        with:
-          aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
-          aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
-          aws-region: ${{ secrets.AWS_REGION }}
+      - name: Install ssh
+        run: apk --update add openssh-client
       - name: Check out velas-infra
         uses: actions/checkout@master
         with:
           repository: velas/velas-infra
-          token: ${{ secrets.INFRA_PULL_TOKEN }}
+          ref: master
+          ssh-key: ${{ secrets.SSH_KEY_INFRA }}
       - uses: azure/k8s-set-context@v2
         with:
           method: kubeconfig
-          kubeconfig: ${{ secrets.KUBE_CONFIG_DATA_AWS_RAW }}
-          context: "eks_prod-prod"
+          kubeconfig: ${{ secrets.KUBE_CONFIG_DATA_EU_MONSTER1_RAW }}
+          context: "prod-eu-monster1"
       - name: Sops Binary Installer
         uses: mdgreenwald/mozilla-sops-action@v1.1.0
-      - uses: prepor/action-aws-iam-authenticator@master
+      - uses: adnsio/setup-age-action@v1.2.0
       - name: Deploy via helmfile
         id: deploy
         env:
-          ECR_REPOSITORY: ${{ needs.docker-build.outputs.repository }}
-          IMAGE_TAG: ${{ needs.docker-build.outputs.image_tag }}
-          ECR_REGION: ${{ secrets.AWS_REGION }}
-          NAMESPACE: devnet
+          REGISTRY: ${{ secrets.REGISTRY_HOST }}/velas
+          REPOSITORY: velas-synapse
+          IMAGE_TAG: ${{github.sha}}
+          SOPS_AGE_KEY: ${{ secrets.INFRA_AGE }}
         run: |
           helm plugin install https://github.com/jkroepke/helm-secrets --version v3.11.0 || true
           helm plugin install https://github.com/databus23/helm-diff || true
-          cd deploy
-          account_id=$(curl -s http://169.254.169.254/latest/dynamic/instance-identity/document | jq -r .accountId)
-          ECR_REGISTRY=${account_id}.dkr.ecr.${ECR_REGION}.amazonaws.com
-          helmfile -e prod -l namespace=${NAMESPACE},name=velas-synapse-auth-provider apply  --set image.tag=$IMAGE_TAG,image.repository=$ECR_REGISTRY/$ECR_REPOSITORY --skip-deps
+          cd deploy/prod-eu-monster1
+          helmfile -l namespace=devnet,name=velas-synapse-auth-provider apply  --set image.tag=$IMAGE_TAG,image.repository=$REGISTRY/$REPOSITORY --skip-deps
