Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add build-image.yml deployment workflow for the docker image #18

Merged
merged 3 commits into from
Dec 7, 2023
Merged

Add build-image.yml deployment workflow for the docker image #18

merged 3 commits into from
Dec 7, 2023

Conversation

batbattur
Copy link
Contributor

@batbattur batbattur commented Dec 5, 2023
edited
Loading

Summary

This is almost the same deployment workflow we use in data-pipelines repository to build,
tag, and push the image to ECR:
https://github.com/iFixit/data-pipelines/blob/main/.github/workflows/build-image.yml

Saved the role-to-assume value in the secrets.

QA notes

We probably have to merge this to test it (not really sure how to test without merging it).

qa_req 0

closes #15

@batbattur
Add build-image.yml deployment workflow for the docker image
9adf99f 
This is almost the same deployment workflow we use in data-pipelines
repository to build, tag and push the image to ECR:
https://github.com/iFixit/data-pipelines/blob/main/.github/workflows/build-image.yml

Saved the `role-to-assume` value in repository variables in the repo.
@batbattur batbattur added the QAE Quality Assurance Engineering label Dec 5, 2023
@batbattur batbattur self-assigned this Dec 5, 2023
@ghost
Copy link

ghost commented Dec 5, 2023
edited by ghost
Loading

👇 Click on the image for a new way to code review

Review these changes using an interactive CodeSee Map

Legend

CodeSee Map legend

@batbattur
Copy link
Contributor Author

deploy_block 🚛 on #17 going out first

ardelato
ardelato requested changes Dec 5, 2023
View reviewed changes
Copy link
Contributor

@ardelato ardelato left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

For added security we should use a secret instead of a variable for the IAM role arn.

@djmetzle is there anything else you can think of to make this workflow more secure?

@batbattur
Remove workflow_dispatch event from deployment
acf505f 
We don't want to trigger the deployment workflow for security reasons.
ardelato
ardelato previously approved these changes Dec 5, 2023
View reviewed changes
Copy link
Contributor

@ardelato ardelato left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

CR 👍 and un_dev_block ⚡

Base automatically changed from add-tsup-bundler to main December 7, 2023 21:39
@ardelato ardelato dismissed their stale review December 7, 2023 21:39

The base branch was changed.

ardelato
ardelato approved these changes Dec 7, 2023
View reviewed changes
Copy link
Contributor

@ardelato ardelato left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

un_deploy_block 👍 #17 has been merged

@ardelato ardelato merged commit 2af897a into main Dec 7, 2023
1 check passed
@ardelato ardelato deleted the add-deployment-workflow branch December 7, 2023 22:38
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ardelato ardelato ardelato approved these changes

Assignees

@batbattur batbattur

Labels
QAE Quality Assurance Engineering
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

GitHub Action: Create a Deployment Workflow for the Docker Image
2 participants
@batbattur @ardelato