Merge branch 'main' of https://github.com/red-gate/Flyway-Sample-Pipelines

aguard-redgate · aguard-redgate · commit b2e88b86e72a · 2026-02-20T15:16:35.000-06:00
diff --git a/github-actions/workflows/deploy-build.yml b/github-actions/workflows/deploy-build.yml
@@ -15,8 +15,8 @@ env:
 
   # Repository Secrets - Create these in Project Settings > Secrets > Actions
   TOKEN: ${{ secrets.FLYWAY_TOKEN }}
-  DB_USER_Build: ${{ secrets.DB_USER_NAME_QA }}
-  DB_USER_PW_Build: ${{ secrets.DB_USER_PW_QA }}
+  DB_USER_BUILD: ${{ secrets.DB_USER_NAME_BUILD }}
+  DB_USER_PW_BUILD: ${{ secrets.DB_USER_PW_BUILD }}
   FIRST_UNDO_SCRIPT: ${{ secrets.FIRST_UNDO_SCRIPT }} # Validates all undo scripts up to and including the specified script
 
 # jobs are the steps executed in the workflow
@@ -26,7 +26,7 @@ jobs:
     # runs-on: ubuntu-latest
     defaults:
       run:
-        shell: cmd # Default shell. Use Windows Command Prompt
+        shell: cmd # Default shell. Use Windows Command Prompt. bash for linux.
     steps: # Steps are the individual tasks that are executed in the job
       - name: Checkout Repository # Step to check out the repository
         uses: actions/checkout@v4
@@ -38,13 +38,13 @@ jobs:
       # Runs the Flyway Clean command against the Build database
       - name: Clean Build DB
         run: |
-          flyway -email=${{ env.EMAIL }} -token=${{ env.TOKEN }} info clean info -cleanDisabled="false" -user=${{ env.DB_USER_Build }} -password=${{ env.DB_USER_PW_Build }} -url=${{ env.JDBC_BUILD }} -IAgreeToTheEula -locations="filesystem:${{ github.workspace }}/migrations" -configFiles="${{ github.workspace }}/flyway.toml" -baselineOnMigrate=true -errorOverrides=S0001:0:I-
+          flyway -email=${{ env.EMAIL }} -token=${{ env.TOKEN }} info clean info -cleanDisabled="false" -user=${{ env.DB_USER_BUILD }} -password=${{ env.DB_USER_PW_BUILD }} -url=${{ env.JDBC_BUILD }} -IAgreeToTheEula -locations="filesystem:${{ github.workspace }}/migrations" -configFiles="${{ github.workspace }}/flyway.toml" -baselineOnMigrate=true -errorOverrides=S0001:0:I-
 
       - name: Migrate Build # Step to run Flyway migrations
         # To use username and password instead of windows integrated security Ensure that SQL Server is configured to allow SQL Server authentication. You can check this in SQL Server Management Studio (SSMS) under the server properties -> Security -> Server authentication. Ensure "SQL Server and Windows Authentication mode" is selected.
-        run: flyway -email=${{ env.EMAIL }} -token=${{ env.TOKEN }} migrate -cleanDisabled="false" -user=${{ env.DB_USER_Build }} -password=${{ env.DB_USER_PW_Build }} -url=${{ env.JDBC_BUILD }} -IAgreeToTheEula -locations="filesystem:${{ github.workspace }}/migrations" -configFiles="${{ github.workspace }}/flyway.toml" -baselineOnMigrate=true -errorOverrides=S0001:0:I-
+        run: flyway -email=${{ env.EMAIL }} -token=${{ env.TOKEN }} migrate -cleanDisabled="false" -user=${{ env.DB_USER_BUILD }} -password=${{ env.DB_USER_PW_BUILD }} -url=${{ env.JDBC_BUILD }} -IAgreeToTheEula -locations="filesystem:${{ github.workspace }}/migrations" -configFiles="${{ github.workspace }}/flyway.toml" -baselineOnMigrate=true -errorOverrides=S0001:0:I-
         working-directory: ./migrations
 
       - name: Rollback Build # Step to run Flyway migrations
-        run: flyway -email=${{ env.EMAIL }} -token=${{ env.TOKEN }} undo -cleanDisabled="false" -user=${{ env.DB_USER_Build }} -password=${{ env.DB_USER_PW_Build }} -url=${{ env.JDBC_BUILD }} -target=${{ env.FIRST_UNDO_SCRIPT }} -IAgreeToTheEula -locations="filesystem:${{ github.workspace }}/migrations" -configFiles="${{ github.workspace }}/flyway.toml" -baselineOnMigrate=true -errorOverrides=S0001:0:I-
+        run: flyway -email=${{ env.EMAIL }} -token=${{ env.TOKEN }} undo -cleanDisabled="false" -user=${{ env.DB_USER_BUILD }} -password=${{ env.DB_USER_PW_BUILD }} -url=${{ env.JDBC_BUILD }} -target=${{ env.FIRST_UNDO_SCRIPT }} -IAgreeToTheEula -locations="filesystem:${{ github.workspace }}/migrations" -configFiles="${{ github.workspace }}/flyway.toml" -baselineOnMigrate=true -errorOverrides=S0001:0:I-
         working-directory: ./migrations
diff --git a/github-actions/workflows/deploy-prod.yml b/github-actions/workflows/deploy-prod.yml
@@ -13,12 +13,13 @@ env:
   JDBC_PROD1: ${{ vars.JDBC_PROD1 }}
   JDBC_PROD2: ${{ vars.JDBC_PROD2 }}
   JDBC_CHECK: ${{ vars.JDBC_CHECK }}
-  DB_PROD_2: ${{ vars.DB_NAME_PROD_2 }} # Used in report filename
+  DB_PROD_1: ${{ vars.DB_NAME_PROD_1 }} # Used in report filename
 
   # Repository Secrets - Create these in Project Settings > Secrets > Actions
   TOKEN: ${{ secrets.FLYWAY_TOKEN }}
-  DB_USER_PROD: ${{ secrets.DB_USER_NAME_QA }}
-  DB_USER_PW_PROD: ${{ secrets.DB_USER_PW_QA }}
+  DB_USER_PROD: ${{ secrets.DB_USER_NAME_PROD1 }}
+  DB_USER_PW_PROD: ${{ secrets.DB_USER_PW_PROD1 }}
+  # If PROD2 needs a different User & Password input here and replace paramaters in flyway-deploy-prod-2 run step.
   # End of Environment Secrets #
 
   generateDriftAndChangeReport: true
@@ -43,7 +44,7 @@ jobs:
 
       - name: Create Drift and Change Report
         run: |
-          flyway -email=${{ env.EMAIL }} -token=${{ env.TOKEN }} check -code -changes -drift -dryrun -cleanDisabled="false" -user=${{ env.DB_USER_PROD }} -password=${{ env.DB_USER_PW_PROD }} -url=${{ env.JDBC_PROD2 }} -check.buildUser=${{ env.DB_USER_PROD }} -check.buildPassword=${{ env.DB_USER_PW_PROD }} -check.buildUrl="${{ env.JDBC_CHECK }}" -reportFilename="${{ github.workspace }}\reports\${{ env.DB_PROD_2 }}-Run-${{ github.run_id }}-Check-Report.html" -IAgreeToTheEula -locations="filesystem:${{ github.workspace }}\migrations" -configFiles="${{ github.workspace }}/flyway.toml" -baselineOnMigrate=true -errorOverrides=S0001:0:I-
+          flyway -email=${{ env.EMAIL }} -token=${{ env.TOKEN }} check -code -changes -drift -dryrun -cleanDisabled="false" -user=${{ env.DB_USER_PROD }} -password=${{ env.DB_USER_PW_PROD }} -url=${{ env.JDBC_PROD2 }} -check.buildUser=${{ env.DB_USER_PROD }} -check.buildPassword=${{ env.DB_USER_PW_PROD }} -check.buildUrl="${{ env.JDBC_CHECK }}" -reportFilename="${{ github.workspace }}\reports\${{ env.DB_PROD_1 }}-Run-${{ github.run_id }}-Check-Report.html" -IAgreeToTheEula -locations="filesystem:${{ github.workspace }}\migrations" -configFiles="${{ github.workspace }}/flyway.toml" -baselineOnMigrate=true -errorOverrides=S0001:0:I-
         continue-on-error: true
 
       # Create a directory to stage the artifact files
@@ -57,7 +58,7 @@ jobs:
           name: flyway-reports
           path: reports/
 
-  # GitHub Actions doesn't natively support manual approval steps like some other CI/CD tools (e.g., Azure DevOps or GitLab).
+  # GitHub Actions can support manual approval steps like some other CI/CD tools (e.g., Azure DevOps or GitLab).
   # You can achieve similar functionality using environments with required reviewers or by integrating external approval mechanisms.
   # Alternatively maybe a Review Branch prior to pulling to Production or another downstream environment.
 
