diff --git a/.github/pull_request_template.md b/.github/pull_request_template.md index 01aff37..c14850a 100644 --- a/.github/pull_request_template.md +++ b/.github/pull_request_template.md @@ -1,4 +1 @@ -## :warning: Checklist if your PR is changing anything else than documentation -- [ ] Posted the link to a successful manually triggered deployment workflow (successful including the resources destruction) - ## Merge request description diff --git a/.github/workflows/deploy.yaml b/.github/workflows/deploy.yaml index 1752765..d73e195 100644 --- a/.github/workflows/deploy.yaml +++ b/.github/workflows/deploy.yaml @@ -2,18 +2,32 @@ name: Deployment on: workflow_dispatch: + pull_request: + paths: + - "lib/**" + - "integration_tests/**" + - "package.json" + - "package-lock.json" jobs: build_package_and_deploy: name: Build, package and deploy runs-on: ubuntu-latest timeout-minutes: 90 + permissions: + id-token: write + contents: read env: - AWS_DEFAULT_REGION: ${{ secrets.AWS_DEFAULT_REGION_DEPLOY }} - AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID_DEPLOY }} - AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY_DEPLOY }} + AWS_ROLE_ARN: ${{ vars.AWS_ROLE_ARN }} AWS_DEFAULT_ACCOUNT: ${{ secrets.AWS_ACCOUNT_ID }} + AWS_DEFAULT_REGION: 'us-west-2' steps: + - name: Configure AWS credentials + uses: aws-actions/configure-aws-credentials@v4 + with: + role-to-assume: ${{ env.AWS_ROLE_ARN }} + aws-region: ${{ env.AWS_DEFAULT_REGION }} + - uses: actions/checkout@v4 - uses: actions/setup-node@v4 @@ -30,6 +44,7 @@ jobs: - name: Generate distribution packages run: npm run package + - name: Install uv uses: astral-sh/setup-uv@v3 with: diff --git a/package.json b/package.json index 06fbffa..f49ea7c 100644 --- a/package.json +++ b/package.json @@ -19,8 +19,8 @@ }, "keywords": [], "author": { - "name": "Anthony Lukach", - "email": "anthony@developmentseed.org" + "name": "DevelopmentSeed", + "email": "eoapi@developmentseed.org" }, "repository": { "type": "git",