Skip to content

Commit b08ba21

Browse files
him-bhutani7him-bhutani7
authored
fix: actions deployment (#262)
1 parent 28bd2dc commit b08ba21

File tree

2 files changed

+27
-14
lines changed

2 files changed

+27
-14
lines changed

.github/workflows/build-deploy-prod.yml

+19-13
Original file line numberDiff line numberDiff line change
@@ -9,13 +9,19 @@ on:
99
tag:
1010
required: true
1111
type: string
12+
secrets:
13+
aws_region:
14+
required: true
15+
aws_account_id:
16+
required: true
17+
ecr_repo:
18+
required: true
19+
ecs_cluster:
20+
required: true
21+
ecs_service:
22+
required: true
1223

1324
env:
14-
AWS_REGION: ${{ secrets.AWS_REGION }}
15-
AWS_ACCOUNT_ID: ${{ secrets.AWS_ACCOUNT_ID }}
16-
ECR_REPO: ${{ secrets.AWS_ECR_REPO }}
17-
ECS_CLUSTER: ${{ secrets.AWS_ECS_CLUSTER }}
18-
ECS_SERVICE: ${{ secrets.AWS_ECS_SERVICE }}
1925
ENVIRONMENT: PROD
2026

2127
jobs:
@@ -37,18 +43,18 @@ jobs:
3743
run: echo ::set-output name=tag::${GITHUB_REF#refs/*/}
3844

3945
- name: Configure AWS credentials
40-
uses: aws-actions/configure-aws-credentials@v1
46+
uses: aws-actions/configure-aws-credentials@v4
4147
with:
42-
role-to-assume: arn:aws:iam::${{ env.AWS_ACCOUNT_ID }}:role/github-actions-role
43-
aws-region: ${{ env.AWS_REGION }}
48+
role-to-assume: arn:aws:iam::${{ secrets.aws_account_id }}:role/github-actions-role
49+
aws-region: ${{ secrets.aws_region }}
4450
role-session-name: GithubActions
4551

4652
# gather metadata from git & github actions to reference in docker
4753
- name: git & github metadata
4854
id: metadata
4955
uses: docker/metadata-action@v3
5056
with:
51-
images: ${{ env.AWS_ACCOUNT_ID }}.dkr.ecr.${{ env.AWS_REGION }}.amazonaws.com/${{ env.AWS_ECR_REPO }}
57+
images: ${{ secrets.aws_account_id }}.dkr.ecr.${{ secrets.aws_region }}.amazonaws.com/${{ secrets.ecr_repo }}
5258

5359
# login in docker repository
5460
- name: docker login
@@ -62,14 +68,14 @@ jobs:
6268
file: ./Dockerfile
6369
push: true
6470
tags: |
65-
${{ env.AWS_ACCOUNT_ID }}.dkr.ecr.${{ env.AWS_REGION }}.amazonaws.com/${{ env.ECR_REPO }}:latest
66-
${{ env.AWS_ACCOUNT_ID }}.dkr.ecr.${{ env.AWS_REGION }}.amazonaws.com/${{ env.ECR_REPO }}:${{ steps.vars.outputs.tag }}
71+
${{ secrets.aws_account_id }}.dkr.ecr.${{ secrets.aws_region }}.amazonaws.com/${{ secrets.ecr_repo }}:latest
72+
${{ secrets.aws_account_id }}.dkr.ecr.${{ secrets.aws_region }}.amazonaws.com/${{ secrets.ecr_repo }}:${{ steps.vars.outputs.tag }}
6773
6874
# deploy to AWS ECS
6975
- name: Deploy to Amazon ECS
7076
uses: aws-actions/amazon-ecs-deploy-task-definition@v1
7177
with:
7278
task-definition: infra/aws-ecs/task_definition_${{ env.ENVIRONMENT }}.json
73-
service: ${{ env.ECS_SERVICE }}
74-
cluster: ${{ env.ECS_CLUSTER }}
79+
service: ${{ secrets.ecs_service }}
80+
cluster: ${{ secrets.ecs_cluster }}
7581
wait-for-service-stability: true

.github/workflows/release.yml

+8-1
Original file line numberDiff line numberDiff line change
@@ -4,7 +4,7 @@ name: Deploy Release
44
on:
55
push:
66
branches:
7-
- main
7+
- main
88
jobs:
99
release:
1010
permissions: write-all
@@ -25,3 +25,10 @@ jobs:
2525
if: ${{ needs.release.outputs.release_created }}
2626
with:
2727
tag: ${{ needs.release.outputs.tag }}
28+
secrets:
29+
aws_region: ${{ secrets.AWS_REGION }}
30+
aws_account_id: ${{ secrets.AWS_ACCOUNT_ID }}
31+
ecr_repo: ${{ secrets.AWS_ECR_REPO }}
32+
ecs_cluster: ${{ secrets.AWS_ECS_CLUSTER }}
33+
ecs_service: ${{ secrets.AWS_ECS_SERVICE }}
34+

0 commit comments

Comments
 (0)