david.wurm
/
InternetServicesBook
mirror of https://github.com/trimstray/the-book-of-secret-knowledge
1
0
Fork 0
Code Releases 0 Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1024 Commits
1 Branch
69 MiB
 
Tree: d453639b41
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'd453639b41'
${ noResults }
InternetServicesBook/.github/workflows/aws.yml

93 lines
4.3 KiB
Raw Blame History 

  1. # This workflow will build and push a new container image to Amazon ECR,

  2. # and then will deploy a new task definition to Amazon ECS, when there is a push to the master branch.

  3. #

  4. # To use this workflow, you will need to complete the following set-up steps:

  5. #

  6. # 1. Create an ECR repository to store your images.

  7. #    For example: `aws ecr create-repository --repository-name my-ecr-repo --region us-east-2`.

  8. #    Replace the value of the `ECR_REPOSITORY` environment variable in the workflow below with your repository's name.

  9. #    Replace the value of the `AWS_REGION` environment variable in the workflow below with your repository's region.

  10. #

  11. # 2. Create an ECS task definition, an ECS cluster, and an ECS service.

  12. #    For example, follow the Getting Started guide on the ECS console:

  13. #      https://us-east-2.console.aws.amazon.com/ecs/home?region=us-east-2#/firstRun

  14. #    Replace the value of the `ECS_SERVICE` environment variable in the workflow below with the name you set for the Amazon ECS service.

  15. #    Replace the value of the `ECS_CLUSTER` environment variable in the workflow below with the name you set for the cluster.

  16. #

  17. # 3. Store your ECS task definition as a JSON file in your repository.

  18. #    The format should follow the output of `aws ecs register-task-definition --generate-cli-skeleton`.

  19. #    Replace the value of the `ECS_TASK_DEFINITION` environment variable in the workflow below with the path to the JSON file.

  20. #    Replace the value of the `CONTAINER_NAME` environment variable in the workflow below with the name of the container

  21. #    in the `containerDefinitions` section of the task definition.

  22. #

  23. # 4. Store an IAM user access key in GitHub Actions secrets named `AWS_ACCESS_KEY_ID` and `AWS_SECRET_ACCESS_KEY`.

  24. #    See the documentation for each action used below for the recommended IAM policies for this IAM user,

  25. #    and best practices on handling the access key credentials.

  26. 

  27. name: Deploy to Amazon ECS

  28. 

  29. on:

  30.   push:

  31.     branches:

  32.       - master

  33. 

  34. env:

  35.   AWS_REGION: MY_AWS_REGION                   # set this to your preferred AWS region, e.g. us-west-1

  36.   ECR_REPOSITORY: MY_ECR_REPOSITORY           # set this to your Amazon ECR repository name

  37.   ECS_SERVICE: MY_ECS_SERVICE                 # set this to your Amazon ECS service name

  38.   ECS_CLUSTER: MY_ECS_CLUSTER                 # set this to your Amazon ECS cluster name

  39.   ECS_TASK_DEFINITION: MY_ECS_TASK_DEFINITION # set this to the path to your Amazon ECS task definition

  40.                                                # file, e.g. .aws/task-definition.json

  41.   CONTAINER_NAME: MY_CONTAINER_NAME           # set this to the name of the container in the

  42.                                                # containerDefinitions section of your task definition

  43. 

  44. jobs:

  45.   deploy:

  46.     name: Deploy

  47.     runs-on: ubuntu-latest

  48.     environment: production

  49. 

  50.     steps:

  51.     - name: Checkout

  52.       uses: actions/checkout@v2

  53. 

  54.     - name: Configure AWS credentials

  55.       uses: aws-actions/configure-aws-credentials@v1

  56.       with:

  57.         aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}

  58.         aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}

  59.         aws-region: ${{ env.AWS_REGION }}

  60. 

  61.     - name: Login to Amazon ECR

  62.       id: login-ecr

  63.       uses: aws-actions/amazon-ecr-login@v1

  64. 

  65.     - name: Build, tag, and push image to Amazon ECR

  66.       id: build-image

  67.       env:

  68.         ECR_REGISTRY: ${{ steps.login-ecr.outputs.registry }}

  69.         IMAGE_TAG: ${{ github.sha }}

  70.       run: |

  71.         # Build a docker container and

  72.         # push it to ECR so that it can

  73.         # be deployed to ECS.

  74.         docker build -t $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG .

  75.         docker push $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG

  76.         echo "::set-output name=image::$ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG"

  77. 

  78.     - name: Fill in the new image ID in the Amazon ECS task definition

  79.       id: task-def

  80.       uses: aws-actions/amazon-ecs-render-task-definition@v1

  81.       with:

  82.         task-definition: ${{ env.ECS_TASK_DEFINITION }}

  83.         container-name: ${{ env.CONTAINER_NAME }}

  84.         image: ${{ steps.build-image.outputs.image }}

  85. 

  86.     - name: Deploy Amazon ECS task definition

  87.       uses: aws-actions/amazon-ecs-deploy-task-definition@v1

  88.       with:

  89.         task-definition: ${{ steps.task-def.outputs.task-definition }}

  90.         service: ${{ env.ECS_SERVICE }}

  91.         cluster: ${{ env.ECS_CLUSTER }}

  92.         wait-for-service-stability: true