-
Notifications
You must be signed in to change notification settings - Fork 90
159 lines (136 loc) · 4.54 KB
/
push.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
name: Push
concurrency:
group: push_on_master
cancel-in-progress: false
on:
push:
branches:
- master
paths-ignore:
- 'README.md'
- 'LICENSE'
env:
CHART_NAME: "application"
jobs:
helm-dry-run:
name: helm-dry-run
if: "! contains(toJSON(github.event.commits.*.message), '[skip-ci]')"
runs-on: stakater-nonprod
steps:
- name: Check out code
uses: actions/checkout@v4
with:
persist-credentials: false # otherwise, the token used is the GITHUB_TOKEN, instead of your personal token
fetch-depth: 0 # otherwise, you will fail to push refs to dest repo
# Set Up Helm
- name: Set up Helm
uses: azure/setup-helm@v4
with:
version: v3.8.2
# Lint
- name: Helm Lint
run: |
helm lint ${CHART_NAME}
helm lint ${CHART_NAME} -f ${CHART_NAME}/values-test.yaml
- name: Install kubectl
uses: azure/setup-kubectl@v4
with:
version: v1.26.0
- name: Install OpenShift CLI
uses: redhat-actions/oc-installer@v1
with:
oc_version: "https://mirror.openshift.com/pub/openshift-v4/x86_64/clients/ocp/stable-4.7/openshift-client-linux.tar.gz"
# This is used to setup kubeconfig, required by Tilt
- name: Login to cluster
run: oc login --token=$(cat /var/run/secrets/kubernetes.io/serviceaccount/token) --server=https://kubernetes.default.svc --insecure-skip-tls-verify=true
# This is required for adding ghcr helm registry
- name: Login to Container Registry
uses: docker/login-action@v3
with:
registry: ghcr.io/stakater
username: ${{ github.actor }}
password: ${{ secrets.GITHUB_TOKEN }}
# Dry run to ensure that manifests are generated successfully
- name: Dry Run Chart
run: |
helm install ${CHART_NAME} ${CHART_NAME} -f ${CHART_NAME}/values-test.yaml -n stakater-chart-pipeline-test --dry-run --debug
- name: Notify Slack
uses: 8398a7/action-slack@v3
if: failure() # Pick up events only if the job fails
with:
status: ${{ job.status }}
fields: repo,author,action,eventName,ref,workflow
env:
SLACK_WEBHOOK_URL: ${{ secrets.STAKATER_DELIVERY_SLACK_WEBHOOK }}
push-changes:
runs-on: ubuntu-latest
needs:
- helm-dry-run
steps:
- name: Check out code
uses: actions/checkout@v4
with:
persist-credentials: false # otherwise, the token used is the GITHUB_TOKEN, instead of your personal token
fetch-depth: 0 # otherwise, you will fail to push refs to dest repo
# Generate tag for chart without "v" prefix
- name: Generate Tag
id: generate_tag
uses: anothrNick/[email protected]
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
WITH_V: false
DEFAULT_BUMP: patch
DRY_RUN: true
# Update chart tag to the latest semver tag
- name: Update Chart Version
env:
VERSION: ${{ steps.generate_tag.outputs.new_tag }}
run: |
make bump-chart
# Set Up Helm
- name: Set up Helm
uses: azure/setup-helm@v4
with:
version: v3.8.2
# Publish helm chart
- name: Publish Helm chart
uses: stefanprodan/helm-gh-pages@master
with:
branch: master
repository: stakater-charts
target_dir: docs
token: ${{ secrets.PUBLISH_TOKEN }}
charts_dir: .
charts_url: https://stakater.github.io/stakater-charts
owner: stakater
linting: off
commit_username: stakater-user
commit_email: [email protected]
# Commit back changes
- name: Commit files
run: |
git config --local user.email "[email protected]"
git config --local user.name "stakater-user"
git status
git add application/Chart.yaml
git commit -m "[skip-ci] Update artifacts"
# Push Chart.yaml with Updated Version
- name: Push changes
uses: ad-m/github-push-action@master
with:
github_token: ${{ secrets.PUBLISH_TOKEN }}
branch: ${{ inputs.RELEASE_BRANCH }}
- name: Push Latest Tag
uses: anothrNick/[email protected]
env:
GITHUB_TOKEN: ${{ secrets.PUBLISH_TOKEN }}
WITH_V: true
DEFAULT_BUMP: patch
- name: Notify Slack
uses: 8398a7/action-slack@v3
if: always() # Pick up events even if the job fails or is canceled.
with:
status: ${{ job.status }}
fields: repo,author,action,eventName,ref,workflow
env:
SLACK_WEBHOOK_URL: ${{ secrets.STAKATER_DELIVERY_SLACK_WEBHOOK }}