Update keycloak-core to 26.0.5 in scala-steward-dependencies #1207
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Tag and pre-deploy consignment export | |
on: | |
workflow_dispatch: | |
pull_request: | |
types: | |
- closed | |
permissions: | |
id-token: write | |
contents: write | |
env: | |
BRANCH_NAME: version-bump-${{ github.run_id }}${{ github.run_attempt }} | |
jobs: | |
pre-deploy: | |
runs-on: ubuntu-latest | |
if: ${{ github.base_ref == 'master' && github.event.pull_request.merged == true && !contains(github.event.pull_request.labels.*.name, 'Version bump') }} | |
steps: | |
- uses: actions/checkout@v3 | |
- name: Import GPG key | |
uses: crazy-max/ghaction-import-gpg@v4 | |
with: | |
git_user_signingkey: true | |
git_commit_gpgsign: true | |
gpg_private_key: ${{ secrets.GPG_PRIVATE_KEY }} | |
passphrase: ${{ secrets.GPG_PASSPHRASE }} | |
- id: build | |
run: | | |
git config --global user.email [email protected] | |
git config --global user.name tna-da-bot | |
git checkout -b $BRANCH_NAME | |
git push -u origin $BRANCH_NAME | |
sbt 'release with-defaults' | |
env: | |
GITHUB_TOKEN: ${{ secrets.WORKFLOW_PAT }} | |
- name: Configure AWS credentials from management account | |
uses: aws-actions/configure-aws-credentials@v1-node16 | |
with: | |
role-to-assume: arn:aws:iam::${{ secrets.MANAGEMENT_ACCOUNT }}:role/TDRGithubActionsRoleMgmt | |
aws-region: eu-west-2 | |
role-session-name: ExportPushImages | |
- name: Login to ECR | |
uses: docker/login-action@v1 | |
with: | |
registry: ${{ secrets.MANAGEMENT_ACCOUNT }}.dkr.ecr.eu-west-2.amazonaws.com | |
- run: | | |
gh release create --generate-notes ${{ steps.build.outputs.latest-tag}} bagit-export/target/universal/tdr-consignment-export.tgz export/target/universal/tdr-export.tgz | |
gh pr create --fill --label 'Version bump' | |
docker build --pull --no-cache -t ${{ secrets.MANAGEMENT_ACCOUNT }}.dkr.ecr.eu-west-2.amazonaws.com/consignment-export:${{ steps.build.outputs.latest-tag}} . | |
docker push ${{ secrets.MANAGEMENT_ACCOUNT }}.dkr.ecr.eu-west-2.amazonaws.com/consignment-export:${{ steps.build.outputs.latest-tag}} | |
gh workflow run deploy.yml -f environment=intg -f to-deploy=${{ steps.build.outputs.latest-tag}} | |
env: | |
GITHUB_TOKEN: ${{ secrets.WORKFLOW_PAT }} | |
- name: Send success message | |
uses: nationalarchives/tdr-github-actions/.github/actions/slack-send@main | |
with: | |
message: "*Consignment Export* :whale: Pushed version ${{ steps.build.outputs.latest-tag}} to AWS ECR" | |
slack-url: ${{ secrets.SLACK_WEBHOOK }} |