workflow

muhammadadilnaeem · muhammadadilnaeem · commit 98b96997f9c3 · 2024-11-20T19:13:09.000+05:00
diff --git a/.github/workflows/main.yaml b/.github/workflows/main.yaml
@@ -0,0 +1,103 @@
+name: workflow
+
+# Define when the workflow will run
+on:
+  push:
+    branches:
+      - main  # Trigger the workflow on pushes to the 'main' branch
+    paths-ignore:
+      - 'README.md'  # Ignore changes to README.md to prevent unnecessary runs
+
+# Set permissions for the workflow
+permissions:
+  id-token: write  # Allow writing ID tokens
+  contents: read    # Allow reading repository contents
+
+jobs:
+  # Job for Continuous Integration
+  integration:
+    name: Continuous Integration
+    runs-on: ubuntu-latest  # Run the job on the latest Ubuntu environment
+    steps:
+      - name: Checkout Code
+        uses: actions/checkout@v3  # Check out the repository code
+
+      - name: Lint code
+        run: echo "Linting repository"  # Placeholder for linting step
+
+      - name: Run unit tests
+        run: echo "Running unit tests"  # Placeholder for running tests
+
+  # Job for building and pushing the Docker image to Amazon ECR
+  build-and-push-ecr-image:
+    name: Continuous Delivery
+    needs: integration  # This job depends on the completion of the 'integration' job
+    runs-on: ubuntu-latest  # Run this job on the latest Ubuntu environment
+    steps:
+      - name: Checkout Code
+        uses: actions/checkout@v3  # Check out the repository code
+
+      - name: Install Utilities
+        run: |
+          sudo apt-get update  # Update the package list
+          sudo apt-get install -y jq unzip  # Install 'jq' and 'unzip' utilities
+
+      - name: Configure AWS credentials
+        uses: aws-actions/configure-aws-credentials@v1
+        with:
+          aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}  # Use secrets for AWS access key
+          aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}  # Use secrets for AWS secret key
+          aws-region: ${{ secrets.AWS_REGION }}  # Use secrets for AWS region
+
+      - name: Login to Amazon ECR
+        id: login-ecr
+        uses: aws-actions/amazon-ecr-login@v1  # Log in to Amazon ECR
+
+      - name: Build, tag, and push image to Amazon ECR
+        id: build-image
+        env:
+          ECR_REGISTRY: ${{ steps.login-ecr.outputs.registry }}  # Set ECR registry from login step
+          ECR_REPOSITORY: ${{ secrets.ECR_REPOSITORY_NAME }}  # Use secret for ECR repository name
+          IMAGE_TAG: latest  # Set the image tag to 'latest'
+        run: |
+          # Build a Docker image and push it to ECR for deployment
+          docker build -t $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG .  # Build the Docker image
+          docker push $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG  # Push the image to ECR
+          echo "::set-output name=image::$ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG"  # Set output variable
+
+  # Job for Continuous Deployment
+  Continuous-Deployment:
+    needs: build-and-push-ecr-image  # This job depends on the completion of the 'build-and-push-ecr-image' job
+    runs-on: self-hosted  # Run this job on a self-hosted runner
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v3  # Check out the repository code
+
+      - name: Configure AWS credentials
+        uses: aws-actions/configure-aws-credentials@v1
+        with:
+          aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}  # Use secrets for AWS access key
+          aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}  # Use secrets for AWS secret key
+          aws-region: ${{ secrets.AWS_REGION }}  # Use secrets for AWS region
+
+      - name: Login to Amazon ECR
+        id: login-ecr
+        uses: aws-actions/amazon-ecr-login@v1  # Log in to Amazon ECR
+      
+      - name: Pull latest images
+        run: |
+          docker pull ${{ secrets.AWS_ECR_LOGIN_URI }}/${{ secrets.ECR_REPOSITORY_NAME }}:latest  # Pull the latest Docker image from ECR
+         
+      # Uncomment to stop and remove the container if it's running
+      # - name: Stop and remove container if running
+      #   run: |
+      #    docker ps -q --filter "name=cnncls" | grep -q . && docker stop cnncls && docker rm -fv cnncls
+       
+      - name: Run Docker Image to serve users
+        run: |
+          # Run the Docker container and serve the application
+          docker run -d -p 8080:8080 --name=cnncls -e 'AWS_ACCESS_KEY_ID=${{ secrets.AWS_ACCESS_KEY_ID }}' -e 'AWS_SECRET_ACCESS_KEY=${{ secrets.AWS_SECRET_ACCESS_KEY }}' -e 'AWS_REGION=${{ secrets.AWS_REGION }}' ${{ secrets.AWS_ECR_LOGIN_URI }}/${{ secrets.ECR_REPOSITORY_NAME }}:latest
+          
+      - name: Clean previous images and containers
+        run: |
+          docker system prune -f  # Clean up unused Docker images and containers
