-
Notifications
You must be signed in to change notification settings - Fork 2
119 lines (119 loc) · 5.02 KB
/
cloud.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
name: cloud
"on":
push:
branches: main
paths:
- cloud/**
- cue.mod/**
- cue.lib/**
concurrency: augustfeng.app
jobs:
configure:
name: configure
runs-on: ubuntu-latest
steps:
- name: Checkout code
uses: actions/checkout@v3
- name: decrypt secrets
run: cue cmd decrypt github.com/augustfengd/augustfeng.app/secrets
env:
SOPS_AGE_KEY: ${{ secrets.SOPS_AGE_KEY }}
- name: import secrets
run: cue cmd convert github.com/augustfengd/augustfeng.app/secrets
- name: cue cmd configure github.com/augustfengd/augustfeng.app/cloud/terraform:augustfeng_app
run: cue cmd configure github.com/augustfengd/augustfeng.app/cloud/terraform:augustfeng_app
container:
image: ghcr.io/augustfengd/augustfeng.app/toolchain:latest
terraform:
name: terraform apply
needs:
- configure
runs-on: ubuntu-latest
if: github.event_name =='push'
steps:
- name: Checkout code
uses: actions/checkout@v3
- name: decrypt secrets
run: cue cmd decrypt github.com/augustfengd/augustfeng.app/secrets
env:
SOPS_AGE_KEY: ${{ secrets.SOPS_AGE_KEY }}
- name: import secrets
run: cue cmd convert github.com/augustfengd/augustfeng.app/secrets
- name: cue cmd build github.com/augustfengd/augustfeng.app/cloud/terraform:augustfeng_app
run: cue cmd build github.com/augustfengd/augustfeng.app/cloud/terraform:augustfeng_app
- name: cue cmd init github.com/augustfengd/augustfeng.app/cloud/terraform:augustfeng_app
run: cue cmd init github.com/augustfengd/augustfeng.app/cloud/terraform:augustfeng_app
- name: cue cmd apply github.com/augustfengd/augustfeng.app/cloud/terraform:augustfeng_app
run: cue cmd apply github.com/augustfengd/augustfeng.app/cloud/terraform:augustfeng_app
container:
image: ghcr.io/augustfengd/augustfeng.app/toolchain:latest
traefik:
name: traefik
needs:
- terraform
runs-on: ubuntu-latest
if: github.event_name =='push'
steps:
- name: Checkout code
uses: actions/checkout@v3
- name: configure google application credentials
uses: google-github-actions/auth@v1
with:
credentials_json: ${{ secrets.GOOGLE_CREDENTIALS }}
- name: install gcloud
uses: google-github-actions/setup-gcloud@v1
- name: gcloud components install gke-gcloud-auth-plugin
run: 'gcloud components install gke-gcloud-auth-plugin '
- name: gcloud container clusters get-credentials augustfeng-app
run: gcloud container clusters get-credentials augustfeng-app --zone=us-east1-b
- name: decrypt secrets
run: cue cmd decrypt github.com/augustfengd/augustfeng.app/secrets
env:
SOPS_AGE_KEY: ${{ secrets.SOPS_AGE_KEY }}
- name: import secrets
run: cue cmd convert github.com/augustfengd/augustfeng.app/secrets
- name: decrypt secrets
run: cue cmd decrypt github.com/augustfengd/augustfeng.app/cloud/kubernetes/traefik
env:
SOPS_AGE_KEY: ${{ secrets.SOPS_AGE_KEY }}
- name: import secrets
run: cue cmd convert github.com/augustfengd/augustfeng.app/cloud/kubernetes/traefik
- name: cue cmd apply github.com/augustfengd/augustfeng.app/cloud/kubernetes/traefik
run: cue cmd apply github.com/augustfengd/augustfeng.app/cloud/kubernetes/traefik
container:
image: ghcr.io/augustfengd/augustfeng.app/toolchain:latest
prometheus:
name: prometheus
needs:
- terraform
runs-on: ubuntu-latest
if: github.event_name =='push'
steps:
- name: Checkout code
uses: actions/checkout@v3
- name: configure google application credentials
uses: google-github-actions/auth@v1
with:
credentials_json: ${{ secrets.GOOGLE_CREDENTIALS }}
- name: install gcloud
uses: google-github-actions/setup-gcloud@v1
- name: gcloud components install gke-gcloud-auth-plugin
run: 'gcloud components install gke-gcloud-auth-plugin '
- name: gcloud container clusters get-credentials augustfeng-app
run: gcloud container clusters get-credentials augustfeng-app --zone=us-east1-b
- name: decrypt secrets
run: cue cmd decrypt github.com/augustfengd/augustfeng.app/secrets
env:
SOPS_AGE_KEY: ${{ secrets.SOPS_AGE_KEY }}
- name: import secrets
run: cue cmd convert github.com/augustfengd/augustfeng.app/secrets
- name: decrypt secrets
run: cue cmd decrypt github.com/augustfengd/augustfeng.app/cloud/kubernetes/prometheus
env:
SOPS_AGE_KEY: ${{ secrets.SOPS_AGE_KEY }}
- name: import secrets
run: cue cmd convert github.com/augustfengd/augustfeng.app/cloud/kubernetes/prometheus
- name: cue cmd apply github.com/augustfengd/augustfeng.app/cloud/kubernetes/prometheus
run: cue cmd apply github.com/augustfengd/augustfeng.app/cloud/kubernetes/prometheus
container:
image: ghcr.io/augustfengd/augustfeng.app/toolchain:latest