feat(deploy): Add CI/CD workflows

.dockerignore

@@ -0,0 +1,17 @@
+# Before the docker CLI sends the context to the docker daemon, it looks for a file
+# named .dockerignore in the root directory of the context. If this file exists, the
+# CLI modifies the context to exclude files and directories that match patterns in it.
+#
+# You may want to specify which files to include in the context, rather than which
+# to exclude. To achieve this, specify * as the first pattern, followed by one or
+# more ! exception patterns.
+#
+# https://docs.docker.com/engine/reference/builder/#dockerignore-file
+
+# Exclude everything:
+#
+*
+
+# Now un-exclude required files and folders:
+#
+!coredns

.github/workflows/cd-deploy-to-dev.yml

@@ -0,0 +1,49 @@
+name: Deploy to dev
+
+on:
+  pull_request:
+    types: [opened, synchronize, reopened, labeled]
+    paths:
+      - Corefile
+      - Dockerfile
+      - .github/workflows/cd-deploy-to-dev.yml
+      - .github/workflows/sub-cloudrun-deploy.yml
+
+concurrency:
+  # Ensures that only one workflow task will run at a time. Previous builds, if
+  # already in process, will get cancelled. Only the latest commit will be allowed
+  # to run, cancelling any workflows in between
+  group: ${{ github.workflow }}-${{ github.job }}-${{ github.head_ref || github.run_id }}
+  cancel-in-progress: true
+
+jobs:
+  test:
+    uses: ./.github/workflows/sub-unit-tests.yml
+    with:
+      node_env: development
+
+  build:
+    uses: ./.github/workflows/sub-build-docker-image.yml
+    with:
+      environment: dev
+      dockerfile_path: ./docker/Dockerfile
+      dockerfile_target: runner
+      app_name: ${{ vars.APP_NAME }}
+      registry: ${{ vars.GAR_BASE }}
+    secrets: inherit
+
+  deploy:
+    needs: [build]
+    uses: ./.github/workflows/sub-cloudrun-deploy.yml
+    with:
+      environment: dev
+      project_id: ${{ vars.GCP_PROJECT }}
+      region: ${{ vars.GCP_REGION }}
+      app_name: ${{ vars.APP_NAME }}
+      registry: ${{ vars.GAR_BASE }}
+      image_digest: ${{ needs.build.outputs.image_digest }}
+      min_instances: '0'
+      max_instances: '30'
+      cpu: '1'
+      memory: 1Gi
+    secrets: inherit

.github/workflows/cd-deploy-to-prod.yml

@@ -0,0 +1,46 @@
+name: Deploy to prod
+
+on:
+  release:
+    types:
+      - published
+
+concurrency:
+  # Ensures that only one workflow task will run at a time. Previous builds, if
+  # already in process, will get cancelled. Only the latest commit will be allowed
+  # to run, cancelling any workflows in between
+  group: ${{ github.workflow }}-${{ github.job }}-${{ github.head_ref || github.run_id }}
+  cancel-in-progress: true
+
+jobs:
+  test:
+    uses: ./.github/workflows/sub-unit-tests.yml
+    with:
+      node_env: production
+
+  build:
+    # needs: [test]
+    uses: ./.github/workflows/sub-build-docker-image.yml
+    with:
+      environment: prod
+      dockerfile_path: ./docker/Dockerfile
+      dockerfile_target: runner
+      app_name: ${{ vars.APP_NAME }}
+      registry: ${{ vars.GAR_BASE }}
+    secrets: inherit
+
+  deploy:
+    needs: [build]
+    uses: ./.github/workflows/sub-cloudrun-deploy.yml
+    with:
+      environment: prod
+      project_id: ${{ vars.GCP_PROJECT }}
+      region: ${{ vars.GCP_REGION }}
+      app_name: ${{ vars.APP_NAME }}
+      registry: ${{ vars.GAR_BASE }}
+      image_digest: ${{ needs.build.outputs.image_digest }}
+      min_instances: '1'
+      max_instances: '100'
+      cpu: '1'
+      memory: 1Gi
+    secrets: inherit

.github/workflows/cd-deploy-to-test.yml

@@ -0,0 +1,51 @@
+name: Deploy to test
+
+on:
+  push:
+    branches:
+      - main
+    paths:
+      - Corefile
+      - Dockerfile
+      - .github/workflows/cd-deploy-to-test.yml
+      - .github/workflows/sub-cloudrun-deploy.yml
+
+concurrency:
+  # Ensures that only one workflow task will run at a time. Previous builds, if
+  # already in process, will get cancelled. Only the latest commit will be allowed
+  # to run, cancelling any workflows in between
+  group: ${{ github.workflow }}-${{ github.job }}-${{ github.head_ref || github.run_id }}
+  cancel-in-progress: true
+
+jobs:
+  test:
+    uses: ./.github/workflows/sub-unit-tests.yml
+    with:
+      node_env: production
+
+  build:
+    needs: [test]
+    uses: ./.github/workflows/sub-build-docker-image.yml
+    with:
+      environment: test
+      dockerfile_path: ./docker/Dockerfile
+      dockerfile_target: runner
+      app_name: ${{ vars.APP_NAME }}
+      registry: ${{ vars.GAR_BASE }}
+    secrets: inherit
+
+  deploy:
+    needs: [build]
+    uses: ./.github/workflows/sub-cloudrun-deploy.yml
+    with:
+      environment: test
+      project_id: ${{ vars.GCP_PROJECT }}
+      region: ${{ vars.GCP_REGION }}
+      app_name: ${{ vars.APP_NAME }}
+      registry: ${{ vars.GAR_BASE }}
+      image_digest: ${{ needs.build.outputs.image_digest }}
+      min_instances: '0'
+      max_instances: '30'
+      cpu: '1'
+      memory: 1Gi
+    secrets: inherit

.github/workflows/chore-clean-dev.yml

@@ -0,0 +1,30 @@
+name: Clean dev instances
+
+on:
+  delete:
+  pull_request:
+    branches:
+      - main
+    types:
+      - closed
+
+jobs:
+  delete:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Inject slug/short variables
+        uses: rlespinasse/[email protected]
+
+      - name: Authenticate to Google Cloud
+        id: auth
+        uses: google-github-actions/[email protected]
+        with:
+          workload_identity_provider: '${{ vars.GCP_WIF }}'
+          service_account: '${{ vars.GCP_DEPLOYMENTS_SA }}'
+
+      - name: Set up Cloud SDK
+        uses: google-github-actions/[email protected]
+
+      - name: Removing CR service
+        run: |
+          gcloud run services delete ${{ vars.APP_NAME }}-${{ env.GITHUB_HEAD_REF_SLUG || env.GITHUB_REF_SLUG }} --region=${{ vars.GOOGLE_CLOUD_REGION }} --quiet

.github/workflows/ci-lint-codebase.patch.yml

@@ -0,0 +1,15 @@
+name: Lint Code Base
+
+on:
+  pull_request:
+    branches: [main]
+    paths-ignore:
+      - Corefile
+      - Dockerfile
+      - .github/workflows/ci-lint-codebase.yml
+
+jobs:
+  linter:
+    runs-on: ubuntu-latest
+    steps:
+      - run: echo "Job not required"

.github/workflows/ci-lint-codebase.yaml

@@ -0,0 +1,54 @@
+name: Lint Code Base
+
+on:
+  pull_request:
+    branches: [main]
+    paths:
+      - '**.js*'
+      - '**.ts*'
+      - Dockerfile
+      - package.json
+      - pnpm-lock.yaml
+      - .github/workflows/ci-lint-codebase.yml
+
+  push:
+    branches: [main]
+    paths:
+      - Corefile
+      - Dockerfile
+      - .github/workflows/ci-lint-codebase.yml
+
+concurrency:
+  # Ensures that only one workflow task will run at a time. Previous builds, if
+  # already in process, will get cancelled. Only the latest commit will be allowed
+  # to run, cancelling any workflows in between
+  group: ${{ github.workflow }}-${{ github.head_ref || github.run_id }}
+  cancel-in-progress: true
+
+jobs:
+  linter:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout Code Repository
+        uses: actions/[email protected]
+        with:
+          # Full git history is needed to get a proper
+          # list of changed files within `super-linter`
+          fetch-depth: 0
+
+      - name: Lint Code Base
+        uses: super-linter/super-linter/[email protected]
+        env:
+          LOG_LEVEL: ERROR
+          VALIDATE_ALL_CODEBASE: false
+          VALIDATE_SHELL_SHFMT: false
+          VALIDATE_JSCPD: false
+          VALIDATE_CSS: false
+          VALIDATE_EDITORCONFIG: false
+          VALIDATE_MARKDOWN: false
+          VALIDATE_DOCKERFILE_HADOLINT: false
+          LINTER_RULES_PATH: /
+          JAVASCRIPT_DEFAULT_STYLE: prettier
+          TYPESCRIPT_DEFAULT_STYLE: prettier
+          DEFAULT_BRANCH: ${{ github.event.repository.default_branch }}
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}