11name : Build & Deploy to TEST
22
33env :
4- # 🖊️ EDIT your repository secrets to log into your OpenShift cluster and set up the context.
4+ # EDIT your repository secrets to log into your OpenShift cluster and set up the context.
55 # See https://github.com/redhat-actions/oc-login#readme for how to retrieve these values.
66 # To get a permanent token, refer to https://github.com/redhat-actions/oc-login/wiki/Using-a-Service-Account-for-GitHub-Actions
77 OPENSHIFT_SERVER : ${{ secrets.OPENSHIFT_SERVER }}
1313 DB_USER : ${{ secrets.DB_USER }}
1414 SPLUNK_TOKEN : ${{ secrets.SPLUNK_TOKEN }}
1515
16- # 🖊️ EDIT to change the image registry settings.
16+ # EDIT to change the image registry settings.
1717 # Registries such as GHCR, Quay.io, and Docker Hub are supported.
1818 IMAGE_REGISTRY : ghcr.io/${{ github.repository_owner }}
1919 IMAGE_REGISTRY_USER : ${{ github.actor }}
2020 IMAGE_REGISTRY_PASSWORD : ${{ github.token }}
2121
22- # 🖊️ EDIT to specify custom tags for the container image, or default tags will be generated below.
22+ # EDIT to specify custom tags for the container image, or default tags will be generated below.
2323 IMAGE_TAGS : " "
2424
2525 SPRING_BOOT_IMAGE_NAME : pen-request-api-master
2828
2929 APP_NAME : ' pen-request-api'
3030 REPO_NAME : " educ-pen-request-api"
31- BRANCH : " master "
31+ BRANCH : " ${{ github.ref_name }} "
3232 APP_NAME_FULL : " pen-request-api-master"
3333 NAMESPACE : ${{ secrets.COMMON_NAMESPACE_NO_ENV }}
3434 COMMON_NAMESPACE : ${{ secrets.COMMON_NAMESPACE_NO_ENV }}
@@ -84,19 +84,19 @@ jobs:
8484 core.error(`Secret "${name}" is not set`);
8585 return true;
8686 }
87- core.info(`✔️ Secret "${name}" is set`);
87+ core.info(`Secret "${name}" is set`);
8888 return false;
8989 });
9090
9191 if (missingSecrets.length > 0) {
92- core.setFailed(`❌ At least one required secret is not set in the repository. \n` +
92+ core.setFailed(`At least one required secret is not set in the repository. \n` +
9393 "You can add it using:\n" +
9494 "GitHub UI: https://docs.github.com/en/actions/reference/encrypted-secrets#creating-encrypted-secrets-for-a-repository \n" +
9595 "GitHub CLI: https://cli.github.com/manual/gh_secret_set \n" +
9696 "Also, refer to https://github.com/redhat-actions/oc-login#getting-started-with-the-action-or-see-example");
9797 }
9898 else {
99- core.info(`✅ All the required secrets are set`);
99+ core.info(`All the required secrets are set`);
100100 }
101101
102102name : Check out repository
@@ -110,27 +110,53 @@ jobs:
110110 - name : Deploy API
111111 run : |
112112 set -eu
113+
113114 # Login to OpenShift and select project
114115 oc login --token=${{ env.OPENSHIFT_TOKEN }} --server=${{ env.OPENSHIFT_SERVER }}
115116 oc project ${{ env.OPENSHIFT_NAMESPACE_TEST }}
117+
116118 # Cancel any rollouts in progress
117- oc rollout cancel dc /${{ env.SPRING_BOOT_IMAGE_NAME }} 2> /dev/null \
118- || true && echo "No rollout in progress"
119+ oc rollout cancel deployment /${{ env.SPRING_BOOT_IMAGE_NAME }} 2> /dev/null \
120+ || true && echo "No rollout in progress"
119121
120- oc tag ${{ env.NAMESPACE }}-dev/${{ env.REPO_NAME }}-${{ env.BRANCH }}:${{ env.TAG }} ${{ env.NAMESPACE }}-test/${{ env.REPO_NAME }}-${{ env.BRANCH }}:${{ env.TAG }}
122+ oc tag \
123+ ${{ env.NAMESPACE }}-dev/${{ env.REPO_NAME }}-${{ env.BRANCH }}:${{ env.TAG }} \
124+ ${{ env.NAMESPACE }}-test/${{ env.REPO_NAME }}-${{ env.BRANCH }}:${{ env.TAG }}
121125
122126 # Process and apply deployment template
123- oc process -f tools/openshift/api.dc.yaml -p APP_NAME=${{ env.APP_NAME }} -p REPO_NAME=${{ env.REPO_NAME }} -p BRANCH=${{ env.BRANCH }} -p NAMESPACE=${{ env.OPENSHIFT_NAMESPACE_TEST }} -p TAG=${{ env.TAG }} -p MIN_REPLICAS=${{ env.MIN_REPLICAS_TEST }} -p MAX_REPLICAS=${{ env.MAX_REPLICAS_TEST }} -p MIN_CPU=${{ env.MIN_CPU }} -p MAX_CPU=${{ env.MAX_CPU }} -p MIN_MEM=${{ env.MIN_MEM }} -p MAX_MEM=${{ env.MAX_MEM }} \
124- | oc apply -f -
125-
126- curl -s https://raw.githubusercontent.com/bcgov/${{ env.REPO_NAME }}/master/tools/config/update-configmap.sh | bash /dev/stdin test ${{ env.APP_NAME }} ${{ env.NAMESPACE }} ${{ env.COMMON_NAMESPACE }} ${{ env.DB_JDBC_CONNECT_STRING }} ${{ env.DB_PWD }} ${{ env.DB_USER }} ${{ env.SPLUNK_TOKEN }}
127+ oc process -f tools/openshift/api.deployment.yaml -p APP_NAME=\
128+ ${{ env.APP_NAME }} -p REPO_NAME=\
129+ ${{ env.REPO_NAME }} -p BRANCH=\
130+ ${{ env.BRANCH }} -p NAMESPACE=\
131+ ${{ env.OPENSHIFT_NAMESPACE_TEST }} -p TAG=\
132+ ${{ env.TAG }} -p MIN_REPLICAS=\
133+ ${{ env.MIN_REPLICAS_TEST }} -p MAX_REPLICAS=\
134+ ${{ env.MAX_REPLICAS_TEST }} -p MIN_CPU=\
135+ ${{ env.MIN_CPU }} -p MAX_CPU=\
136+ ${{ env.MAX_CPU }} -p MIN_MEM=\
137+ ${{ env.MIN_MEM }} -p MAX_MEM=\
138+ ${{ env.MAX_MEM }} \
139+ k oc apply -f -
140+
141+ curl -s https://raw.githubusercontent.com/bcgov/${{ env.REPO_NAME }}/${{ env.BRANCH }}/tools/config/update-configmap.sh \
142+ | bash /dev/stdin test \
143+ ${{ env.APP_NAME }} \
144+ ${{ env.NAMESPACE }} \
145+ ${{ env.COMMON_NAMESPACE }} \
146+ ${{ env.DB_JDBC_CONNECT_STRING }} \
147+ ${{ env.DB_PWD }} \
148+ ${{ env.DB_USER }} \
149+ ${{ env.SPLUNK_TOKEN }} \
150+ ${{ env.BRANCH }}
127151
128152 # Start rollout (if necessary) and follow it
129- oc rollout latest dc/${{ env.SPRING_BOOT_IMAGE_NAME }} 2> /dev/null \
130- || true && echo "Rollout in progress"
131- oc logs -f dc/${{ env.SPRING_BOOT_IMAGE_NAME }}
153+ oc rollout latest deployment/${{ env.SPRING_BOOT_IMAGE_NAME }} 2> /dev/null \
154+ || true && echo "Rollout in progress"
155+
156+ oc logs -f deployment/${{ env.SPRING_BOOT_IMAGE_NAME }}
157+
132158 # Get status, returns 0 if rollout is successful
133- oc rollout status dc /${{ env.SPRING_BOOT_IMAGE_NAME }}
159+ oc rollout status deployment /${{ env.SPRING_BOOT_IMAGE_NAME }}
134160
135161name : ZAP Scan
136162 uses : zaproxy/action-api-scan@v0.8.0
0 commit comments