Merge pull request #361 from silvenon/dependabot/github_actions/docke… #177
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Deploy | |
on: | |
push: | |
branches: | |
- main | |
- dev | |
pull_request: {} | |
permissions: | |
actions: write | |
contents: read | |
jobs: | |
lint: | |
name: ESLint | |
runs-on: ubuntu-latest | |
steps: | |
- name: Cancel Previous Runs | |
uses: styfle/cancel-workflow-action@0.11.0 | |
- name: Checkout repo | |
uses: actions/checkout@v4 | |
- name: Setup node | |
uses: actions/setup-node@v4 | |
with: | |
node-version-file: package.json | |
- name: Download deps | |
uses: bahmutov/npm-install@v1 | |
with: | |
useLockFile: false | |
- name: Lint | |
run: npm run lint | |
typecheck: | |
name: TypeScript | |
runs-on: ubuntu-latest | |
steps: | |
- name: Cancel Previous Runs | |
uses: styfle/cancel-workflow-action@0.11.0 | |
- name: Checkout repo | |
uses: actions/checkout@v4 | |
- name: Setup node | |
uses: actions/setup-node@v4 | |
with: | |
node-version-file: package.json | |
- name: Download deps | |
uses: bahmutov/npm-install@v1 | |
with: | |
useLockFile: false | |
- name: Type check | |
run: npm run typecheck --if-present | |
vitest: | |
name: Vitest | |
runs-on: ubuntu-latest | |
steps: | |
- name: Cancel Previous Runs | |
uses: styfle/cancel-workflow-action@0.11.0 | |
- name: Checkout repo | |
uses: actions/checkout@v4 | |
- name: Setup node | |
uses: actions/setup-node@v4 | |
with: | |
node-version-file: package.json | |
- name: Download deps | |
uses: bahmutov/npm-install@v1 | |
with: | |
useLockFile: false | |
- name: Compile posts | |
run: npm run build:posts | |
env: | |
CLOUDINARY_URL: ${{ secrets.CLOUDINARY_URL }} | |
- name: Run vitest | |
run: npm run test:unit -- --coverage | |
env: | |
CLOUDINARY_URL: ${{ secrets.CLOUDINARY_URL }} | |
playwright: | |
name: Playwright | |
timeout-minutes: 60 | |
runs-on: ubuntu-latest | |
steps: | |
- name: Cancel Previous Runs | |
uses: styfle/cancel-workflow-action@0.11.0 | |
- name: Checkout repo | |
uses: actions/checkout@v4 | |
- name: Setup node | |
uses: actions/setup-node@v4 | |
with: | |
node-version-file: package.json | |
# https://playwrightsolutions.com/playwright-github-action-to-cache-the/ | |
- name: Cache Playwright binaries | |
uses: actions/cache@v3 | |
id: playwright-cache | |
with: | |
path: ~/.cache/ms-playwright | |
key: ${{ runner.os }}-playwright-${{ hashFiles('package-lock.json') }} | |
- name: Download deps | |
uses: bahmutov/npm-install@v1 | |
with: | |
useLockFile: false | |
- name: Install Playwright Browsers | |
run: npx playwright install --with-deps | |
- name: Build | |
run: npm run build | |
env: | |
CLOUDINARY_URL: ${{ secrets.CLOUDINARY_URL }} | |
- name: Playwright run | |
run: npm run test:e2e | |
env: | |
CLOUDINARY_URL: ${{ secrets.CLOUDINARY_URL }} | |
SESSION_SECRET: ${{ secrets.SESSION_SECRET }} | |
- uses: actions/upload-artifact@v3 | |
if: always() | |
with: | |
name: playwright-report | |
path: playwright-report/ | |
retention-days: 30 | |
build: | |
name: Build | |
# only build/deploy main branch on pushes | |
if: ${{ (github.ref == 'refs/heads/main' || github.ref == 'refs/heads/dev') && github.event_name == 'push' }} | |
runs-on: ubuntu-latest | |
steps: | |
- name: Cancel Previous Runs | |
uses: styfle/cancel-workflow-action@0.11.0 | |
- name: Checkout repo | |
uses: actions/checkout@v4 | |
- name: Read app name | |
uses: SebRollen/toml-action@v1.0.2 | |
id: app_name | |
with: | |
file: "fly.toml" | |
field: "app" | |
- name: Set up Docker Buildx | |
uses: docker/setup-buildx-action@v3 | |
# Setup cache | |
- name: Cache Docker layers | |
uses: actions/cache@v3 | |
with: | |
path: /tmp/.buildx-cache | |
key: ${{ runner.os }}-buildx-${{ github.sha }} | |
restore-keys: | | |
${{ runner.os }}-buildx- | |
- name: Fly Registry Auth | |
uses: docker/#-action@v2 | |
with: | |
registry: registry.fly.io | |
username: x | |
password: ${{ secrets.FLY_API_TOKEN }} | |
- name: Docker build | |
uses: docker/build-push-action@v5 | |
with: | |
context: . | |
push: true | |
tags: registry.fly.io/${{ steps.app_name.outputs.value }}:${{ github.ref_name }}-${{ github.sha }} | |
# CLOUDINARY_URL is needed for building posts | |
secrets: | | |
"CLOUDINARY_URL=${{ secrets.CLOUDINARY_URL }}" | |
build-args: | | |
COMMIT_SHA=${{ github.sha }} | |
cache-from: type=local,src=/tmp/.buildx-cache | |
cache-to: type=local,mode=max,dest=/tmp/.buildx-cache-new | |
# This ugly bit is necessary if you don't want your cache to grow forever | |
# till it hits GitHub's limit of 5GB. | |
# Temp fix | |
# https://github.com/docker/build-push-action/issues/252 | |
# https://github.com/moby/buildkit/issues/1896 | |
- name: Move cache | |
run: | | |
rm -rf /tmp/.buildx-cache | |
mv /tmp/.buildx-cache-new /tmp/.buildx-cache | |
deploy: | |
name: Deploy | |
runs-on: ubuntu-latest | |
needs: [lint, typecheck, vitest, playwright, build] | |
# only build/deploy main branch on pushes | |
if: ${{ (github.ref == 'refs/heads/main' || github.ref == 'refs/heads/dev') && github.event_name == 'push' }} | |
steps: | |
- name: Cancel Previous Runs | |
uses: styfle/cancel-workflow-action@0.11.0 | |
- name: Checkout repo | |
uses: actions/checkout@v4 | |
- name: Read app name | |
uses: SebRollen/toml-action@v1.0.2 | |
id: app_name | |
with: | |
file: "fly.toml" | |
field: "app" | |
- name: Set up Fly | |
uses: superfly/flyctl-actions/setup-flyctl@master | |
- name: Deploy Staging | |
if: ${{ github.ref == 'refs/heads/dev' }} | |
run: flyctl deploy --app ${{ steps.app_name.outputs.value }}-staging --image registry.fly.io/${{ steps.app_name.outputs.value }}:${{ github.ref_name }}-${{ github.sha }} | |
env: | |
FLY_API_TOKEN: ${{ secrets.FLY_API_TOKEN }} | |
- name: Deploy Production | |
if: ${{ github.ref == 'refs/heads/main' }} | |
run: flyctl deploy --image registry.fly.io/${{ steps.app_name.outputs.value }}:${{ github.ref_name }}-${{ github.sha }} | |
env: | |
FLY_API_TOKEN: ${{ secrets.FLY_API_TOKEN }} |