fix(deps): update core #231
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Build and Deploy | |
on: | |
push: | |
branches: [main] | |
pull_request: | |
branches: [main] | |
concurrency: | |
group: ${{ github.workflow }}-${{ github.ref }} | |
cancel-in-progress: true | |
env: | |
tofu_version: '1.7.1' | |
tg_version: '0.69.0' | |
ENVIRONMENT: ${{ github.ref == 'refs/heads/main' && 'prod' || 'dev' }} | |
jobs: | |
build: | |
strategy: | |
matrix: | |
name: [backend, frontend] | |
name: Build ${{ matrix.name }} | |
runs-on: ubuntu-latest | |
defaults: | |
run: | |
working-directory: ./${{ matrix.name }} | |
steps: | |
- name: Checkout code | |
uses: actions/checkout@v4 | |
- name: Setup Node | |
uses: actions/setup-node@v4 | |
with: | |
node-version-file: './${{ matrix.name }}/.nvmrc' | |
- name: Run npm install | |
run: npm ci | |
- name: Run build | |
run: npm run build | |
- name: Upload build output | |
uses: actions/upload-artifact@v4 | |
with: | |
name: build-output-${{ matrix.name }} | |
if-no-files-found: error | |
path: dist | |
retention-days: 1 | |
merge: | |
name: Merge Artifacts | |
runs-on: ubuntu-latest | |
needs: build | |
steps: | |
- name: Merge Artifacts | |
uses: actions/upload-artifact/merge@v4 | |
with: | |
name: build-output | |
retention-days: 1 | |
deploy: | |
name: Deploy | |
runs-on: ubuntu-latest | |
needs: merge | |
env: | |
TF_VAR_dist_dir: ${{ github.workspace }}/dist | |
TF_VAR_stage: ${{ github.event_name == 'pull_request' && format('pr-{0}', github.event.number) || '' }} | |
TF_VAR_pages_branch: ${{ github.event_name == 'pull_request' && format('pr-{0}', github.event.number) || github.ref_name }} | |
OP_SERVICE_ACCOUNT_TOKEN: ${{ github.ref == 'refs/heads/main' && secrets.OP_TF_PROD_ENV || secrets.OP_TF_DEV_ENV }} | |
working_dir: 'deployment' | |
steps: | |
- name: Checkout code | |
uses: actions/checkout@v4 | |
- name: 'Get build artifact' | |
uses: actions/download-artifact@v4 | |
with: | |
name: build-output | |
path: '${{ github.workspace }}/dist' | |
- name: Install 1Password CLI | |
uses: 1password/install-cli-action@v1 | |
- name: Install Terragrunt | |
uses: eLco/setup-terragrunt@v1 | |
with: | |
terragrunt_version: ${{ env.tg_version }} | |
- name: 'Install OpenTofu' | |
uses: opentofu/setup-opentofu@v1 | |
with: | |
tofu_version: ${{ env.tofu_version }} | |
tofu_wrapper: false | |
- name: Deploy All | |
working-directory: ${{ env.working_dir }} | |
run: op run --env-file=".env" -- terragrunt run-all apply --terragrunt-non-interactive | |
- name: Deploy Backend Output | |
id: deploy-backend-output | |
working-directory: ${{ env.working_dir }}/modules/cloudflare/backend | |
run: | | |
echo "output=$(op run --no-masking --env-file='../../../.env' -- terragrunt output -json | jq -c .)" >> $GITHUB_OUTPUT | |
- name: Deploy Frontend Output | |
id: deploy-frontend-output | |
working-directory: ${{ env.working_dir }}/modules/cloudflare/frontend | |
run: | | |
echo "output=$(op run --no-masking --env-file='../../../.env' -- terragrunt output -json | jq -c .)" >> $GITHUB_OUTPUT | |
- name: Publish Frontend to Cloudflare Pages | |
uses: cloudflare/pages-action@v1 | |
with: | |
apiToken: ${{ secrets.CLOUDFLARE_API_TOKEN_PAGES_UPLOAD }} | |
accountId: ${{ secrets.CLOUDFLARE_ACCOUNT_ID }} | |
projectName: ${{ fromJson(steps.deploy-frontend-output.outputs.output).pages_project_name.value }} | |
directory: 'dist/frontend' | |
branch: ${{ fromJson(steps.deploy-frontend-output.outputs.output).pages_branch.value }} | |
wranglerVersion: '3' | |
- name: Comment | |
uses: actions-cool/maintain-one-comment@v3 | |
if: ${{ github.event_name == 'pull_request' }} | |
with: | |
number: ${{ github.event.number }} | |
body: | | |
🚀 Preview deployed to: | |
- Frontend URL: https://${{ fromJson(steps.deploy-frontend-output.outputs.output).immich_subdomain.value }} | |
- Backend URL: ${{ fromJson(steps.deploy-backend-output.outputs.output).data_api_url.value }} | |
emojis: 'rocket' | |
body-include: '<!-- web PR URL -->' |