Add deployment github action for VA provider

Alladin9393 · Alladin9393 · commit 2972aa53c812 · 2022-06-15T20:22:12.000+03:00
diff --git a/.github/workflows/build-deploy-devnet-auth-provider.yaml b/.github/workflows/build-deploy-devnet-auth-provider.yaml
@@ -0,0 +1,78 @@
+name: Deploy to dev(auth provider)
+on:
+  push:
+    branches: [feature/vaccount_auth_provider]
+
+jobs:
+  docker-build:
+    # Name the Job
+    name: Build and push
+    runs-on: build
+    outputs:
+      repository: ${{ steps.build.outputs.repository }}
+      image_tag: ${{ steps.build.outputs.image_tag }}
+    steps:
+      - uses: actions/checkout@v2
+      - name: Configure AWS credentials
+        id: checkout
+        uses: aws-actions/configure-aws-credentials@v1
+        with:
+          aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+          aws-region: ${{ secrets.AWS_REGION }}
+      - name: Login to Amazon ECR
+        id: login-ecr
+        uses: aws-actions/amazon-ecr-login@v1
+      - name: Build, tag, and push image to AWS ECR
+        id: build
+        env:
+          ECR_REGISTRY: ${{ steps.login-ecr.outputs.registry }}
+          ECR_REPOSITORY: velas-synapse
+          IMAGE_TAG: ${{github.sha}}
+        run: |
+          docker build -t $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG --no-cache -f docker/Dockerfile .
+          docker push $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG
+          echo "::set-output name=repository::$ECR_REPOSITORY"
+          echo "::set-output name=image_tag::$IMAGE_TAG"
+
+  deploy:
+    name: Deploy via Helmfile
+    runs-on: deployer
+    needs: docker-build
+    container:
+      image: quay.io/roboll/helmfile:v0.142.0
+    steps:
+      - name: Configure AWS credentials
+        id: checkout
+        uses: aws-actions/configure-aws-credentials@v1
+        with:
+          aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+          aws-region: ${{ secrets.AWS_REGION }}
+      - name: Check out velas-infra
+        uses: actions/checkout@master
+        with:
+          repository: velas/velas-infra
+          token: ${{ secrets.INFRA_PULL_TOKEN }}
+      - uses: azure/k8s-set-context@v2
+        with:
+          method: kubeconfig
+          kubeconfig: ${{ secrets.KUBE_CONFIG_DATA_AWS_RAW }}
+          context: "eks_prod-prod"
+      - name: Sops Binary Installer
+        uses: mdgreenwald/mozilla-sops-action@v1.1.0
+      - uses: prepor/action-aws-iam-authenticator@master
+      - name: Deploy via helmfile
+        id: deploy
+        env:
+          ECR_REPOSITORY: ${{ needs.docker-build.outputs.repository }}
+          IMAGE_TAG: ${{ needs.docker-build.outputs.image_tag }}
+          ECR_REGION: ${{ secrets.AWS_REGION }}
+          NAMESPACE: devnet
+        run: |
+          helm plugin install https://github.com/jkroepke/helm-secrets --version v3.11.0 || true
+          helm plugin install https://github.com/databus23/helm-diff || true
+          cd deploy
+          account_id=$(curl -s http://169.254.169.254/latest/dynamic/instance-identity/document | jq -r .accountId)
+          ECR_REGISTRY=${account_id}.dkr.ecr.${ECR_REGION}.amazonaws.com
+          helmfile -e prod -l namespace=${NAMESPACE},name=velas-synapse-auth-provider apply  --set image.tag=$IMAGE_TAG,image.repository=$ECR_REGISTRY/$ECR_REPOSITORY --skip-deps
