Github actions workflow

Work flow with trigger events



name: BETA - Deploy Timesheet XXX service to K8S cluster
on:
    push:
        branches:
            - beta
        paths-ignore:
            - 'api/**'
            - 'deployment/XXX-api/**'
            - '.github/workflows/api-**'
jobs:
    BATCH-deployment-pipeline:
        name: Run batch deployment pipeline with the beta env
        uses: ./.github/workflows/xxx-deployment-pipeline.yml
        with:
            env: beta
            module-name: xxx
            namespace: XXX-batch-beta
            service-name: XXX-batch
            chart-path: deployment/XXX-batch/chart
            cluster-url: https://vks.com/v1/qwrehdfagsfhgbx
            branch: ${{github.ref}}
        secrets:
            harbor-pass: ${{ secrets.HARBOR_PASS }}
            vks-sa-token: ${{ secrets.VKS_SA_TOKEN }}
            redis-pass: ${{ secrets.XXX_REDIS_PASS }}
            mysql-pass: ${{ secrets.XXX_MYSQL_PASS }} 


Workflow with manual trigger



name: RELEASE - Deploy Timesheet XXX service to K8S cluster
on:
    workflow_dispatch:
        inputs:
            branch:
                description: "Branch to build and deploy"
                default: "master"

jobs:
    BATCH-deployment-pipeline:
        name: Run deployment pipeline with the release env
        uses: ./.github/workflows/xxx-deployment-pipeline.yml
        with:
            env: release
            module-name: batch
            namespace: xxx-batch-release
            service-name: xxx-api
            chart-path: deployment/xxx-batch/chart
            cluster-url: https://vks.com/v1/k8s/xxczvdfqwer
            branch: ${{inputs.branch}}
        secrets:
            harbor-pass: ${{ secrets.HARBOR_PASS }}
            vks-sa-token: ${{ secrets.VKS_SA_TOKEN }}
            redis-pass: ${{ secrets.XXX_REDIS_PASS }}
            mysql-pass: ${{ secrets.XXX_MYSQL_PASS }}


Pipeline




name: Pipeline for deploying XXX service to K8S cluster

on:
    workflow_call:
        inputs:
            env:
                required: true
                type: string
            cluster-url:
                required: true
                type: string
            namespace:
                required: true
                type: string
            chart-path:
                required: true
                type: string
            service-name:
                required: true
                type: string
            module-name:
                required: true
                type: string
            branch:
                required: true
                type: string
        secrets:
            harbor-pass:
                required: true
            vks-sa-token:
                required: true
            mysql-pass:
                required: true
            redis-pass:
                required: true
jobs:
    Checkout-build-and-push:
        name: Checkout repository, build jar and docker build images and push images to harbor
        environment: ${{ inputs.env }}
        runs-on: rocky
        steps:
            - name: Check out repository code
              uses: actions/checkout@v2.3.5
              with:
                  ref: ${{ inputs.branch }}

            - name: Set up Java 11
              uses: actions/setup-java@v3
              with:
                  java-version: '11'
                  distribution: 'temurin'
                  cache: gradle

            - name: Gradle Clean and Build
              run: ./gradlew clean -p ${{ inputs.module-name }} 
bootJar -x test -x check --build-cache

            - name: Login to Harbor
              uses: docker/login-action@v2
              with:
                  registry: harbor.google.com
                  username: harbor_user
                  password: ${{ secrets.harbor-pass }}

            - name: Build and push docker image
              uses: docker/build-push-action@v3
              with:
                  context: .
                  file: ${{ inputs.module-name }}/Dockerfile
                  push: true
                  tags: harbor.google.com/ltv-timesheet/
${{ inputs.service-name }}-${{ inputs.env }}:${{ github.sha }}

            - name: Cleaning old Docker images
              run:  docker image prune -f --all --filter "until=1h"

    Deploy-Beta:
        name: Deploy to VKS
        environment: ${{ inputs.env }}
        runs-on: rocky
        needs: [Checkout-build-and-push]
        steps:
            - name: Check out repository code
              uses: actions/checkout@v2.3.5
              with:
                  ref: ${{ inputs.branch }}

            - uses: yokawasa/action-setup-kube-tools@v0.9.2
              with:
                  kubectl: '1.19.1'
                  helm: '3.11.3'
            - name: Check kubectl version and helm version
              run: |
                  kubectl version --client
                  helm version
            - name: Set K8S authentication
              run: |
                  kubectl config set-cluster github-actions 
--server=${{ inputs.cluster-url }}
                  kubectl config set-context github-actions 
--cluster=github-actions
                  kubectl config set-credentials user 
--token=${{ secrets.vks-sa-token }}
                  kubectl config set-context github-actions --user=user
                  kubectl config use-context github-actions
            - name: Helm upgrade chart
              run: |
                  kubectl create namespace ${{ inputs.namespace }} 
--dry-run=client -o yaml | kubectl apply -f -
                  helm upgrade ${{ inputs.service-name }} ${{ inputs.chart-path }} \
                     -i \
                     -n ${{ inputs.namespace }} \
                     -f ${{ inputs.chart-path }}/values/${{ inputs.env }}/values.yml \
                     --timeout 10m0s \
                     --atomic \
                     --cleanup-on-fail \
                     --set image.tag=${{ github.sha }} \
                     --set mysql.pass=${{ secrets.mysql-pass }} \
                     --set redis.pass=${{ secrets.redis-pass }} 

            - name: Notify
              if: success() || failure()
              uses: an/ikameshi@1.0.0
              with:
                  if: success() || failure()
                  channel: channel_name
                  message: '[${{ github.workflow }}] <${{ github.server_url }}
/${{ github.repository }}/actions/runs/${{ github.run_id }}|#${{ github.run_number }}> by ${{ github.actor }}'
                  nickname: 'Github Actions'
                  color: ${{ fromJSON('["red", "green"]')['success' == job.status] }}
                  icon_emoji: github

Comments

Post a Comment

Popular posts from this blog

Fixing the DeepSpeed Import Error While Fine-Tuning the Qwen Model

While fine-tuning the Qwen model, I encountered an error in the finetune.py script: ImportError : cannot import name 'deepspeed' from 'transformers.deepspeed' After some investigation, I discovered the issue stems from a recent update in the Transformers library. The transformers.deepspeed module has been deprecated and replaced by transformers.integrations . To fix this, you need to update the import statement in your script. The Fix Replace this: from transformers.deepspeed import deepspeed With this: from transformers.integrations import deepspeed This small change resolved the error, allowing the fine-tuning process to proceed smoothly. Additional Resources For more details, refer to the discussion in the official Transformers GitHub repository: Issue #34582 Remember to keep your library versions up-to-date to avoid similar issues in the future! 
Read more

Amazon Linux 2023 - User data configuration for launch templates to connect to the EKS cluster

  Amazon Linux 2023 (AL2023) introduces a new node initialization process nodeadm that uses a YAML configuration schema. If you’re using self-managed node groups or an AMI with a launch template, you’ll now need to provide additional cluster metadata explicitly when creating a new node group MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="//" --// Content-Type: application/node.eks.aws --- apiVersion: node.eks.aws/v1alpha1 kind: NodeConfig spec: cluster: name: my-cluster-name-prd apiServerEndpoint: https://D59F.xyz.ap-northest-2.eks.amazonaws.com certificateAuthority: Y2VydGlmaWNhdGVBdXRob3JpdHk= cidr: 172.10.0.0/16 kubelet: config: clusterDNS: - 172.10.0.10 flags: - --node-labels=app=my-app,environment=production --// Content-Type: text/x-shellscript; charset="us-ascii" #!/bin/bash set -o errexit set -o pipefail set -o nounset # Install additional packages yum install -y htop jq iptables-services --//--
Read more

How to create ISM policy and rotate logs in opensearch

  { "id" : "k8s_ingress-nginx" , "policy" : { "policy_id" : "k8s_ingress-nginx" , "description" : "Move indices into a cold state after 30 days and delete them after a year." , "default_state" : "hot" , "states" : [ { "name" : "hot" , "actions" : [ { "replica_count" : { "number_of_replicas" : 1 } } ] , "transitions" : [ { "state_name" : "cold" , "conditions" : { "min_index_age" : "3d" } ...
Read more