⭐︎ Deploy CMS production #14
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: ⭐︎ Deploy CMS production | |
| on: | |
| workflow_dispatch: | |
| inputs: | |
| web_run_id: | |
| type: string | |
| description: Deploy the specific version of web to specify the run ID. If specified, deployment of the server will be skipped. (Optional) | |
| required: false | |
| env: | |
| CMS_IMAGE_NAME_GHCR: ghcr.io/eukarya-inc/plateau-view-3.0/reearth-cms:latest | |
| CMS_IMAGE_NAME_GCP: asia-northeast1-docker.pkg.dev/reearth-plateau/reearth-plateau/reearth-cms:latest | |
| CMS_IMAGE_NAME_HUB: eukarya/plateauview2-reearth-cms:latest | |
| CMS_WEB_IMAGE_NAME_GHCR: ghcr.io/eukarya-inc/plateau-view-3.0/reearth-cms-web:latest | |
| CMS_WEB_IMAGE_NAME_GCP: asia-northeast1-docker.pkg.dev/reearth-plateau/reearth-plateau/reearth-cms-web:latest | |
| CMS_WEB_IMAGE_NAME_HUB: eukarya/plateauview2-reearth-cms-web:latest | |
| WORKER_IMAGE_NAME_GHCR: ghcr.io/eukarya-inc/plateau-view-3.0/reearth-cms-worker:latest | |
| WORKER_IMAGE_NAME_GCP: asia-northeast1-docker.pkg.dev/reearth-plateau/reearth-plateau/reearth-cms-worker:latest | |
| WORKER_IMAGE_NAME_HUB: eukarya/plateauview2-reearth-cms-worker:latest | |
| concurrency: | |
| group: ${{ github.workflow }} | |
| jobs: | |
| deploy_web: | |
| runs-on: ubuntu-latest | |
| environment: prod | |
| permissions: | |
| contents: read | |
| id-token: write | |
| packages: read | |
| if: github.event.repository.full_name == 'eukarya-inc/PLATEAU-VIEW-3.0' | |
| steps: | |
| - uses: google-github-actions/auth@v2 | |
| with: | |
| workload_identity_provider: ${{ secrets.GCP_WORKLOAD_IDENTITY_PROVIDER }} | |
| service_account: ${{ secrets.GCP_SERVICE_ACCOUNT }} | |
| - name: Set up Cloud SDK | |
| uses: google-github-actions/setup-gcloud@v2 | |
| - name: Configure docker | |
| run: gcloud auth configure-docker asia-northeast1-docker.pkg.dev --quiet | |
| - name: Log in to GitHub Container Registry | |
| uses: docker/login-action@v2 | |
| with: | |
| registry: ghcr.io | |
| username: ${{ github.actor }} | |
| password: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Pull docker image | |
| run: docker pull $CMS_WEB_IMAGE_NAME_GHCR | |
| - name: Push docker image | |
| run: | | |
| docker tag $CMS_WEB_IMAGE_NAME_GHCR $CMS_WEB_IMAGE_NAME_GCP \ | |
| && docker push $CMS_WEB_IMAGE_NAME_GCP | |
| - name: Deploy | |
| run: | | |
| gcloud run deploy reearth-cms-web \ | |
| --image $CMS_WEB_IMAGE_NAME_GCP \ | |
| --region $GCP_REGION \ | |
| --platform managed \ | |
| --quiet | |
| env: | |
| GCP_REGION: ${{ vars.GCP_REGION }} | |
| deploy_server: | |
| runs-on: ubuntu-latest | |
| environment: prod | |
| permissions: | |
| contents: read | |
| id-token: write | |
| packages: read | |
| if: github.event.repository.full_name == 'eukarya-inc/PLATEAU-VIEW-3.0' | |
| steps: | |
| - uses: google-github-actions/auth@v2 | |
| with: | |
| workload_identity_provider: ${{ secrets.GCP_WORKLOAD_IDENTITY_PROVIDER }} | |
| service_account: ${{ secrets.GCP_SERVICE_ACCOUNT }} | |
| - name: Set up Cloud SDK | |
| uses: google-github-actions/setup-gcloud@v2 | |
| - name: Configure docker | |
| run: gcloud auth configure-docker asia-northeast1-docker.pkg.dev --quiet | |
| - name: Log in to GitHub Container Registry | |
| uses: docker/login-action@v2 | |
| with: | |
| registry: ghcr.io | |
| username: ${{ github.actor }} | |
| password: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Pull docker image | |
| run: docker pull $CMS_IMAGE_NAME_GHCR && docker pull $WORKER_IMAGE_NAME_GHCR | |
| - name: Push docker image | |
| run: | | |
| docker tag $CMS_IMAGE_NAME_GHCR $CMS_IMAGE_NAME_GCP \ | |
| && docker push $CMS_IMAGE_NAME_GCP \ | |
| && docker tag $WORKER_IMAGE_NAME_GHCR $WORKER_IMAGE_NAME_GCP \ | |
| && docker push $WORKER_IMAGE_NAME_GCP | |
| - name: Deploy | |
| run: | | |
| gcloud run deploy reearth-cms-api \ | |
| --image $CMS_IMAGE_NAME_GCP \ | |
| --region $GCP_REGION \ | |
| --platform managed \ | |
| --quiet | |
| gcloud run deploy reearth-cms-worker \ | |
| --image $WORKER_IMAGE_NAME_GCP \ | |
| --region $GCP_REGION \ | |
| --platform managed \ | |
| --quiet | |
| env: | |
| GCP_REGION: ${{ vars.GCP_REGION }} | |
| push_hub: | |
| runs-on: ubuntu-latest | |
| permissions: | |
| packages: read | |
| steps: | |
| - name: Log in to GitHub Container Registry | |
| uses: docker/login-action@v2 | |
| with: | |
| registry: ghcr.io | |
| username: ${{ github.actor }} | |
| password: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Pull docker image | |
| run: docker pull $CMS_IMAGE_NAME_GHCR && docker pull $CMS_WEB_IMAGE_NAME_GHCR && docker pull $WORKER_IMAGE_NAME_GHCR | |
| - name: Log in to DockerHub | |
| uses: docker/login-action@v2 | |
| with: | |
| username: ${{ secrets.DOCKERHUB_USER }} | |
| password: ${{ secrets.DOCKERHUB_PASSWORD }} | |
| - name: Push cms image | |
| run: docker tag $CMS_IMAGE_NAME_GHCR $CMS_IMAGE_NAME_HUB && docker push $CMS_IMAGE_NAME_HUB | |
| - name: Push cms web image | |
| run: docker tag $CMS_WEB_IMAGE_NAME_GHCR $CMS_WEB_IMAGE_NAME_HUB && docker push $CMS_WEB_IMAGE_NAME_HUB | |
| - name: Push worker image | |
| run: docker tag $WORKER_IMAGE_NAME_GHCR $WORKER_IMAGE_NAME_HUB && docker push $WORKER_IMAGE_NAME_HUB |