-
Notifications
You must be signed in to change notification settings - Fork 7
137 lines (135 loc) · 4.85 KB
/
ci.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
name: platform-e2e-tests
on:
pull_request:
types: [ready_for_review]
push:
tags:
- "*"
workflow_dispatch:
inputs:
debug_enabled:
description: "Run the build with tmate debugging enabled (https://github.com/marketplace/actions/debugging-with-tmate)"
required: false
default: false
jobs:
provision-e2e-server:
runs-on: ubuntu-20.04
timeout-minutes: 15
env:
TF_VAR_PROJECT_NAME: platform-e2e-tests-${{ github.run_id }}
TF_VAR_INSTANCE_COUNT: 1
TF_VAR_PUBLIC_KEY_PATH: key.pub
TF_VAR_HOSTED_ZONE_ID: Z00782582NSP6D0VHBCMI
TF_VAR_DOMAIN_NAME: ${{ github.run_id }}.jembi.cloud
TF_VAR_INSTANCE_TYPE: r5.2xlarge
TF_VAR_SUBNET_ID: subnet-0004b0dacb5862d59
TF_VAR_VPC_ID: vpc-067ab69f374ac9f47
AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
defaults:
run:
working-directory: ./infrastructure/terraform
steps:
- uses: actions/checkout@v3
- uses: hashicorp/setup-terraform@v2
- run: 'pwd && echo "$SSH_KEY" > key.pub'
shell: bash
env:
SSH_KEY: ${{ secrets.DEPLOY_KEY_PUB }}
- run: terraform init
- run: terraform apply -auto-approve
- name: Upload terraform state
if: always()
uses: actions/upload-artifact@v3
with:
name: tfstate
path: infrastructure/terraform/terraform.tfstate
configure-e2e-server:
runs-on: ubuntu-20.04
needs: provision-e2e-server
timeout-minutes: 15
steps:
- uses: actions/checkout@v3
- name: Run playbook
uses: dawidd6/action-ansible-playbook@v2
with:
playbook: playbooks/provision.yml
directory: ./infrastructure/ansible
key: ${{ secrets.DEPLOY_KEY }}
vault_password: ${{ secrets.VAULT_PASSWORD }}
inventory: |
[leader]
${{ github.run_id }}.jembi.cloud name=node-1
[managers]
[workers]
options: |
--become
--user=ubuntu
--extra-vars @./inventories/development/group_vars/all.yml
run-e2e-tests:
runs-on: ubuntu-20.04
needs: configure-e2e-server
timeout-minutes: 80
steps:
- uses: actions/checkout@v3
with:
fetch-depth: 0
- name: Get changed files
id: changed-files
uses: tj-actions/[email protected]
with:
since_last_remote_commit: "true"
dir_names: "true"
- run: ./get-cli.sh linux
- run: sudo sh -c 'echo " ServerAliveInterval 30" >> /etc/ssh/ssh_config'
- run: sudo sh -c 'echo " ServerAliveCountMax 999" >> /etc/ssh/ssh_config'
- run: sudo service ssh restart
- uses: webfactory/[email protected]
with:
ssh-private-key: ${{ secrets.DEPLOY_KEY }}
- run: ssh-keyscan -H ${{ github.run_id }}.jembi.cloud >> ~/.ssh/known_hosts
- run: ./remote-img-load.sh ${{ github.run_id }}.jembi.cloud
- run: sed -i 's/OPENHIM_CORE_MEDIATOR_HOSTNAME=localhost/OPENHIM_CORE_MEDIATOR_HOSTNAME=openhimcomms.domain/g' .env.local
- run: sed -i 's/OPENHIM_MEDIATOR_API_PORT=8080/OPENHIM_MEDIATOR_API_PORT=443/g' .env.local
- run: sed -i 's/INSECURE=true/INSECURE=false/g' .env.local
- run: sed -i 's/domain/${{ github.run_id }}.jembi.cloud/g' .env.local
- name: Install dependencies
working-directory: ./test/cucumber
run: yarn
- name: Run Cucumber tests in single node mode
working-directory: ./.github/workflows
run: ./run-tests.sh ${{ github.run_id }} "single" ${{ steps.changed-files.outputs.all_changed_files }}
shell: bash
destroy-e2e-server:
runs-on: ubuntu-20.04
if: always()
needs: [provision-e2e-server, configure-e2e-server, run-e2e-tests]
timeout-minutes: 15
env:
TF_VAR_PROJECT_NAME: platform-e2e-tests-${{ github.run_id }}
TF_VAR_INSTANCE_COUNT: 1
TF_VAR_PUBLIC_KEY_PATH: key.pub
TF_VAR_HOSTED_ZONE_ID: Z00782582NSP6D0VHBCMI
TF_VAR_DOMAIN_NAME: ${{ github.run_id }}.jembi.cloud
TF_VAR_INSTANCE_TYPE: r5.2xlarge
TF_VAR_SUBNET_ID: subnet-0004b0dacb5862d59
TF_VAR_VPC_ID: vpc-067ab69f374ac9f47
AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
defaults:
run:
working-directory: ./infrastructure/terraform
steps:
- uses: actions/checkout@v3
- uses: hashicorp/setup-terraform@v2
- run: 'echo "$SSH_KEY" > key.pub'
shell: bash
env:
SSH_KEY: ${{secrets.DEPLOY_KEY_PUB}}
- name: Download terraform state
uses: actions/download-artifact@v3
with:
name: tfstate
path: infrastructure/terraform/
- run: terraform init
- run: terraform destroy -auto-approve