From 6e340169ec030a1d3e38f016de58777b885a44f9 Mon Sep 17 00:00:00 2001 From: Stefan Bethke Date: Thu, 13 Jun 2024 23:16:43 +0200 Subject: [PATCH] Add deployment actions --- .forgejo/workflows/cleanup.yaml | 23 +++++++++++ .forgejo/workflows/deploy.yaml | 73 +++++++++++++++++++++++++++++++++ 2 files changed, 96 insertions(+) create mode 100644 .forgejo/workflows/cleanup.yaml create mode 100644 .forgejo/workflows/deploy.yaml diff --git a/.forgejo/workflows/cleanup.yaml b/.forgejo/workflows/cleanup.yaml new file mode 100644 index 0000000..bf17be8 --- /dev/null +++ b/.forgejo/workflows/cleanup.yaml @@ -0,0 +1,23 @@ +on: + pull_request: + types: + - closed + +jobs: + cleanup-staging: + runs-on: docker + container: + image: code.forgejo.org/oci/node:20-bookworm + steps: + - name: Pipeline info PR + run: | + echo "Run triggered by ${{ github.event_name }} (${{ github.event.action }}) on ref ${{ github.ref_name }}" + + - name: Staging Deployment - Prepare keys + run: | + echo "${{ secrets.SSH_DEPLOY_KEY }}" > deploykey.priv + chmod 400 deploykey.priv + echo "${{ secrets.SSH_KNOWN_HOSTS_FILE }}" > ./known_hosts + - name: Staging Deployment - Remove PR from staging + run: | + ssh -i deploykey.priv -o 'UserKnownHostsFile ./known_hosts' ccchh-website-deploy@public-web-static-intern.hamburg.ccc.de -t "rm -r /var/www/staging.hamburg.ccc.de/pr${{ github.event.pull_request.number }}/" diff --git a/.forgejo/workflows/deploy.yaml b/.forgejo/workflows/deploy.yaml new file mode 100644 index 0000000..6dd140e --- /dev/null +++ b/.forgejo/workflows/deploy.yaml @@ -0,0 +1,73 @@ +on: + push: + branches: + - main + pull_request: + +env: + TZ: Europe/Berlin + +jobs: + build: + runs-on: docker + container: + image: registry.gitlab.com/pages/hugo/hugo_extended:latest + steps: + - name: Pipeline info + run: | + echo "Run triggered by ${{ github.event_name }} (${{ github.event.action }}) on ref ${{ github.ref_name }}" + + - name: Install packages + run: | + apk update + # For CI actions. + apk add nodejs-current + # For website build. + apk add tzdata coreutils curl jq git + # For uploading. + apk add rsync openssh + + - uses: actions/checkout@v4 + with: + fetch-depth: 0 # pull full history for page lastmod by git commit date + + - name: Patch baseURL (staging only) + if: github.ref_name != 'main' + run: | + sed -i "s#baseURL: 'https://hacker.tours/'#baseURL: 'https://staging.hacker.tours/pr${{ github.event.pull_request.number }}/'#" hugo.yaml + - name: Build website + run: | + hugo + + - name: Deploy - Prepare keys + if: github.event_name == 'push' || github.event_name == 'pull_request' || github.event_name == 'schedule' + run: | + echo "${{ secrets.SSH_DEPLOY_KEY }}" > deploykey.priv + chmod 400 deploykey.priv + echo "${{ secrets.SSH_KNOWN_HOSTS_FILE }}" > ./known_hosts + + - name: Deploy - Upload PR to staging + if: github.event_name == 'pull_request' + run: | + echo "Deploying to staging.hamburg.ccc.de/pr${{ github.event.pull_request.number }}" + rsync -v -r --delete -e "ssh -i deploykey.priv -o 'UserKnownHostsFile ./known_hosts'" public/ ccchh-website-deploy@public-web-static-intern.hamburg.ccc.de:/var/www/staging.hacker.tours/pr${{ github.event.pull_request.number }}/ + - name: Deploy - Add comment to PR with staging URL + if: github.event_name == 'pull_request' && github.event.action == 'opened' + run: | + curl \ + -X POST \ + ${{ github.event.pull_request.base.repo.url }}/issues/${{ github.event.pull_request.number }}/comments \ + -H "Content-Type: application/json" \ + -H "Authorization: token $GITHUB_TOKEN" \ + --data '{ "body": "You can view your changes at https://staging.hamburg.ccc.de/pr${{ github.event.pull_request.number }}/" }' + + - name: Deploy - Upload to prod + if: (github.event_name == 'push' || github.event_name == 'schedule') && github.ref_name == 'main' + run: | + rsync -v -r --delete -e "ssh -i deploykey.priv -o 'UserKnownHostsFile ./known_hosts'" public/ ccchh-website-deploy@public-web-static-intern.hamburg.ccc.de:/var/www/hacker.tours/ + + - uses: actions/upload-artifact@v3 + if: github.event_name == 'pull_request' + with: + name: website-build + path: public/