Build files, cleanup if statements with an env variable #52
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Runs when master branch is updated. | |
# Does all the builds things & creates a new latest build. | |
# Then updates production to be running this new latest build. | |
name: Master Branch Build - Build Docker Container | |
on: | |
pull_request: | |
push: | |
branches: | |
- master | |
jobs: | |
build: | |
env: | |
IS_MASTER_BUILD: ${{ github.event_name == 'push' && github.ref == 'refs/heads/master' }} | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
- name: Set up JDK 11 | |
uses: actions/setup-java@v4 | |
with: | |
distribution: temurin | |
java-version: 11 | |
- name: Run Build Checks | |
# We skip 'spotlessApply' such that only 'spotlessCheck' will run to validate formatting. | |
# This is a good setup for a CI server, meanwhile if a developer runs 'verify', they | |
# will have the 'spotlessApply' task run to automatically format the code. | |
run: ./verify.sh --exclude-task spotlessApply | |
env: | |
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
- name: Login to GitHub Container Registry | |
if: ${{ env.IS_MASTER_BUILD }} | |
uses: docker/login-action@v1 | |
with: | |
registry: ghcr.io | |
username: ${{ github.actor }} | |
password: ${{ secrets.GITHUB_TOKEN }} | |
- name: build database docker container | |
if: ${{ env.IS_MASTER_BUILD }} | |
run: | | |
docker build database/sql --tag ghcr.io/triplea-game/lobby/flyway:latest | |
docker push ghcr.io/triplea-game/lobby/flyway:latest | |
- name: build server docker container | |
if: ${{ env.IS_MASTER_BUILD }} | |
run: | | |
docker build . --tag ghcr.io/triplea-game/lobby/server:latest | |
docker push ghcr.io/triplea-game/lobby/server:latest | |
# - name: Load SSH private key into ssh-agent | |
# uses: webfactory/[email protected] | |
# with: | |
# ssh-private-key: ${{ secrets.ANSIBLE_SSH_PRIVATE_KEY }} | |
# - name: Run Ansible to Deploy (or do something here like invoke infrastructure, or do a quick SSH command for a service restart) | |
# run: | | |
# pip install ansible==2.9.13 | |
# cd infrastructure | |
# echo "$ANSIBLE_VAULT_PASSWORD" > vault_password | |
# ./run_ansible --environment production | |
# env: | |
# ANSIBLE_VAULT_PASSWORD: ${{ secrets.ANSIBLE_VAULT_PASSWORD }} |