Merge pull request #20 from GreenEarthX/develop #13
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Deploy Onboarding App | |
| on: | |
| push: | |
| branches: [main] | |
| paths: | |
| - 'src/**' | |
| - 'public/**' | |
| - 'package.json' | |
| - 'Dockerfile' | |
| - 'prisma/**' | |
| - '.github/workflows/deploy-onboarding.yml' | |
| workflow_dispatch: | |
| env: | |
| AWS_REGION: us-west-1 | |
| ECR_REPOSITORY: onboarding-app | |
| ECS_SERVICE: onboarding-service | |
| ECS_CLUSTER: onboarding-cluster | |
| jobs: | |
| deploy: | |
| name: Build and Deploy App | |
| runs-on: ubuntu-latest | |
| environment: production | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@v4 | |
| - name: Setup Node.js | |
| uses: actions/setup-node@v4 | |
| with: | |
| node-version: '18' | |
| cache: 'npm' | |
| - name: Install dependencies | |
| run: npm ci | |
| - name: Generate Prisma Client | |
| run: npx prisma generate | |
| - name: Build Next.js application | |
| env: | |
| MICROSOFT_CLIENT_ID: ${{ secrets.MICROSOFT_CLIENT_ID }} | |
| MICROSOFT_CLIENT_SECRET: ${{ secrets.MICROSOFT_CLIENT_SECRET }} | |
| MICROSOFT_TENANT_ID: ${{ secrets.MICROSOFT_TENANT_ID }} | |
| MICROSOFT_REFRESH_TOKEN: ${{ secrets.MICROSOFT_REFRESH_TOKEN }} | |
| NEXTAUTH_SECRET: ${{ secrets.NEXTAUTH_SECRET }} | |
| NEXTAUTH_URL: ${{ secrets.NEXTAUTH_URL }} | |
| run: | | |
| npm run build | |
| if [ $? -ne 0 ]; then | |
| echo "Build failed, stopping deployment" | |
| exit 1 | |
| fi | |
| - name: Configure AWS credentials | |
| uses: aws-actions/configure-aws-credentials@v4 | |
| with: | |
| aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} | |
| aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} | |
| aws-region: ${{ env.AWS_REGION }} | |
| - name: Login to Amazon ECR | |
| id: login-ecr | |
| uses: aws-actions/amazon-ecr-login@v2 | |
| - name: Build, tag, and push Docker image | |
| id: build-image | |
| env: | |
| ECR_REGISTRY: ${{ steps.login-ecr.outputs.registry }} | |
| IMAGE_TAG: latest | |
| run: | | |
| docker build \ | |
| --build-arg MICROSOFT_CLIENT_ID="${{ secrets.MICROSOFT_CLIENT_ID }}" \ | |
| --build-arg MICROSOFT_CLIENT_SECRET="${{ secrets.MICROSOFT_CLIENT_SECRET }}" \ | |
| --build-arg MICROSOFT_TENANT_ID="${{ secrets.MICROSOFT_TENANT_ID }}" \ | |
| --build-arg MICROSOFT_REFRESH_TOKEN="${{ secrets.MICROSOFT_REFRESH_TOKEN }}" \ | |
| --build-arg NEXTAUTH_SECRET="${{ secrets.NEXTAUTH_SECRET }}" \ | |
| --build-arg NEXTAUTH_URL="${{ secrets.NEXTAUTH_URL }}" \ | |
| -t $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG . | |
| docker push $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG | |
| echo "image=$ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG" >> $GITHUB_OUTPUT | |
| - name: Update ECS Service | |
| run: | | |
| aws ecs update-service \ | |
| --cluster ${{ env.ECS_CLUSTER }} \ | |
| --service ${{ env.ECS_SERVICE }} \ | |
| --force-new-deployment \ | |
| --region ${{ env.AWS_REGION }} | |
| aws ecs wait services-stable \ | |
| --cluster ${{ env.ECS_CLUSTER }} \ | |
| --services ${{ env.ECS_SERVICE }} \ | |
| --region ${{ env.AWS_REGION }} |