From 76a9bcf18bb8f664007655e10cbbbea1b1aeb550 Mon Sep 17 00:00:00 2001 From: hiondal Date: Mon, 3 Mar 2025 21:55:38 +0900 Subject: [PATCH] release --- .github/workflows/cicd.yaml | 320 +++++++++++++++++++++--------------- 1 file changed, 191 insertions(+), 129 deletions(-) diff --git a/.github/workflows/cicd.yaml b/.github/workflows/cicd.yaml index 1d4e1b7..c2006f3 100644 --- a/.github/workflows/cicd.yaml +++ b/.github/workflows/cicd.yaml @@ -1,140 +1,202 @@ name: Frontend CI/CD Pipeline -# Temporarily disabled -# on: -# push: -# branches: [ main ] -env: - PROJECT_FOLDER: "." - BUILD_FOLDER: "deployment" +on: + push: + branches: [ main ] + paths: + - '**' + - '!.github/**' + - '!**.md' jobs: - # Build stage build: - runs-on: ubuntu-latest - steps: - - uses: actions/checkout@v4 - - - name: Set up Node.js - uses: actions/setup-node@v4 - with: - node-version: '20' - cache: 'npm' - - - name: Install dependencies - run: npm ci - - - name: Build application - run: npm run build - - - name: Upload build artifact - uses: actions/upload-artifact@v4 - with: - name: build-files - path: build/ - retention-days: 1 - - # Release stage - release: - needs: build + name: Build runs-on: ubuntu-latest outputs: - image_tag: ${{ steps.set-tag.outputs.tag }} + image_tag: ${{ steps.set_outputs.outputs.image_tag }} + steps: - - uses: actions/checkout@v4 - - - name: Load environment variables - run: | - props=$(cat deployment/deploy_env_vars) - echo "$props" >> $GITHUB_ENV - - - name: Set image tag - id: set-tag - run: | - timestamp=$(date +'%Y%m%d%H%M%S') - echo "tag=${timestamp}" >> $GITHUB_OUTPUT - - - name: Download build artifact - uses: actions/download-artifact@v4 - with: - name: build-files - path: build/ - - - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v3 - - - name: Log in to Azure Container Registry - uses: azure/docker-login@v1 - with: - login-server: ${{ env.registry }} - username: ${{ secrets.ACR_USERNAME }} - password: ${{ secrets.ACR_PASSWORD }} - - - name: Build and push image - uses: docker/build-push-action@v5 - with: - context: . - file: deployment/Dockerfile-lifesub-web - push: true - tags: ${{ env.registry }}/${{ env.image_org }}/lifesub-web:${{ steps.set-tag.outputs.tag }} - build-args: | - PROJECT_FOLDER=${{ env.PROJECT_FOLDER }} - BUILD_FOLDER=${{ env.BUILD_FOLDER }} - EXPORT_PORT=${{ env.export_port }} - REACT_APP_MEMBER_URL=${{ env.react_app_member_url }} - REACT_APP_MYSUB_URL=${{ env.react_app_mysub_url }} - REACT_APP_RECOMMEND_URL=${{ env.react_app_recommend_url }} + - name: Checkout repository + uses: actions/checkout@v4 + + - name: Set up Node.js + uses: actions/setup-node@v4 + with: + node-version: '20' + cache: 'npm' + + - name: Install dependencies + run: npm ci + + - name: Run tests + run: npm test -- --coverage --passWithNoTests + + - name: SonarQube Scan + uses: SonarSource/sonarqube-scan-action@master + env: + SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} + SONAR_HOST_URL: ${{ secrets.SONAR_HOST_URL }} + with: + args: > + -Dsonar.projectKey=lifesub-web + -Dsonar.sources=src + -Dsonar.tests=src + -Dsonar.test.inclusions=src/**/*.test.js,src/**/*.test.jsx + -Dsonar.javascript.lcov.reportPaths=coverage/lcov.info + + - name: SonarQube Quality Gate check + uses: SonarSource/sonarqube-quality-gate-action@master + timeout-minutes: 5 + env: + SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} + + - name: Build application + run: npm run build + + - name: Upload build artifact + uses: actions/upload-artifact@v4 + with: + name: build + path: build/ + + - name: Load environment variables + run: | + env_vars=$(cat deployment/deploy_env_vars) + echo "$env_vars" >> $GITHUB_ENV + + - name: Generate image tag + id: set_outputs + run: | + IMAGE_TAG=$(date '+%Y%m%d%H%M%S') + echo "image_tag=${IMAGE_TAG}" >> $GITHUB_OUTPUT + echo "Image tag: ${IMAGE_TAG}" - # Deploy stage - deploy: - needs: release + release: + name: Release + needs: build runs-on: ubuntu-latest + steps: - - uses: actions/checkout@v4 - - - name: Load environment variables - run: | - props=$(cat deployment/deploy_env_vars) - echo "$props" >> $GITHUB_ENV - - - name: Azure login - uses: azure/login@v1 - with: - creds: ${{ secrets.AZURE_CREDENTIALS }} - - - name: Set AKS context - uses: azure/aks-set-context@v3 - with: - resource-group: ictcoe-edu - cluster-name: ${{ env.teamid }}-aks - - - name: Create namespace - run: | - kubectl create namespace ${{ env.teamid }}-${{ env.root_project }}-ns --dry-run=client -o yaml | kubectl apply -f - - - - name: Generate deployment manifest - run: | - export namespace=${{ env.teamid }}-${{ env.root_project }}-ns - export lifesub_web_image_path=${{ env.registry }}/${{ env.image_org }}/lifesub-web:${{ needs.release.outputs.image_tag }} - export replicas=${{ env.replicas }} - export export_port=${{ env.export_port }} - export resources_requests_cpu=${{ env.resources_requests_cpu }} - export resources_requests_memory=${{ env.resources_requests_memory }} - export resources_limits_cpu=${{ env.resources_limits_cpu }} - export resources_limits_memory=${{ env.resources_limits_memory }} - - envsubst < deployment/deploy.yaml.template > deployment/deploy.yaml - echo "Generated manifest:" - cat deployment/deploy.yaml - - - name: Deploy to AKS - run: | - kubectl apply -f deployment/deploy.yaml - echo "Waiting for deployment to be ready..." - kubectl -n ${{ env.teamid }}-${{ env.root_project }}-ns wait --for=condition=available deployment/lifesub-web --timeout=300s - - echo "Waiting for service external IP..." - while [[ -z $(kubectl -n ${{ env.teamid }}-${{ env.root_project }}-ns get svc lifesub-web -o jsonpath='{.status.loadBalancer.ingress[0].ip}') ]]; do - sleep 5 - done - echo "Service external IP: $(kubectl -n ${{ env.teamid }}-${{ env.root_project }}-ns get svc lifesub-web -o jsonpath='{.status.loadBalancer.ingress[0].ip}')" \ No newline at end of file + - name: Checkout repository + uses: actions/checkout@v4 + + - name: Download build artifact + uses: actions/download-artifact@v4 + with: + name: build + path: build/ + + - name: Load environment variables + run: | + env_vars=$(cat deployment/deploy_env_vars) + echo "$env_vars" >> $GITHUB_ENV + + - name: Set up Docker Buildx + uses: docker/setup-buildx-action@v3 + + - name: Login to ACR + uses: docker/login-action@v3 + with: + registry: ${{ env.registry }} + username: ${{ secrets.ACR_USERNAME }} + password: ${{ secrets.ACR_PASSWORD }} + + - name: Build and push image + uses: docker/build-push-action@v5 + with: + context: . + push: true + tags: ${{ env.registry }}/${{ env.image_org }}/lifesub-web:${{ needs.build.outputs.image_tag }} + build-args: | + PROJECT_FOLDER=. + REACT_APP_MEMBER_URL=${{ env.react_app_member_url }} + REACT_APP_MYSUB_URL=${{ env.react_app_mysub_url }} + REACT_APP_RECOMMEND_URL=${{ env.react_app_recommend_url }} + BUILD_FOLDER=deployment + EXPORT_PORT=${{ env.export_port }} + file: deployment/Dockerfile-lifesub-web + + deploy: + name: Deploy + needs: [build, release] + runs-on: ubuntu-latest + + steps: + - name: Checkout repository + uses: actions/checkout@v4 + + - name: Load environment variables + run: | + env_vars=$(cat deployment/deploy_env_vars) + echo "$env_vars" >> $GITHUB_ENV + + - name: Set up kubectl + uses: azure/setup-kubectl@v3 + + - name: Set AKS context + uses: azure/aks-set-context@v3 + with: + resource-group: ictcoe-edu + cluster-name: ${{ env.teamid }}-aks + admin: 'false' + use-kubelogin: 'true' + env: + AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + + - name: Create namespace if not exists + run: | + kubectl create namespace ${{ env.namespace }} --dry-run=client -o yaml | kubectl apply -f - + + - name: Install envsubst + run: | + sudo apt-get update + sudo apt-get install -y gettext-base + + - name: Generate manifest + env: + IMAGE_TAG: ${{ needs.build.outputs.image_tag }} + run: | + # Export variables for envsubst + export namespace=${{ env.namespace }} + export lifesub_web_image_path=${{ env.registry }}/${{ env.image_org }}/lifesub-web:${IMAGE_TAG} + export replicas=${{ env.replicas }} + export export_port=${{ env.export_port }} + export resources_requests_cpu=${{ env.resources_requests_cpu }} + export resources_requests_memory=${{ env.resources_requests_memory }} + export resources_limits_cpu=${{ env.resources_limits_cpu }} + export resources_limits_memory=${{ env.resources_limits_memory }} + + # Generate deployment file + envsubst < deployment/deploy.yaml.template > deployment/deploy.yaml + + # For debugging + echo "Generated manifest:" + cat deployment/deploy.yaml + + - name: Deploy to AKS + run: | + kubectl apply -f deployment/deploy.yaml + + echo "Waiting for deployment to be ready..." + kubectl -n ${{ env.namespace }} wait --for=condition=available deployment/lifesub-web --timeout=300s + + echo "Service details:" + kubectl -n ${{ env.namespace }} get svc lifesub-web -o wide + + - name: Wait for external IP + run: | + echo "Waiting for service external IP..." + for i in {1..30}; do + IP=$(kubectl -n ${{ env.namespace }} get svc lifesub-web -o jsonpath='{.status.loadBalancer.ingress[0].ip}') + if [ -n "$IP" ]; then + echo "Service external IP: $IP" + break + fi + echo "Waiting for external IP... attempt $i/30" + sleep 10 + done + + if [ -z "$IP" ]; then + echo "Failed to get external IP after 5 minutes" + exit 1 + fi \ No newline at end of file