mirror of
https://github.com/PostHog/posthog.git
synced 2024-11-28 18:26:15 +01:00
ae21d9c1fe
Co-authored-by: xneyder <xneyder@gmail.com>
182 lines
7.4 KiB
YAML
182 lines
7.4 KiB
YAML
name: Build and deploy rust container images
|
|
|
|
on:
|
|
workflow_dispatch:
|
|
push:
|
|
paths:
|
|
- 'rust/**'
|
|
- '.github/workflows/rust-docker-build.yml'
|
|
branches:
|
|
- 'master'
|
|
|
|
jobs:
|
|
build:
|
|
name: build ${{ matrix.image }}
|
|
strategy:
|
|
matrix:
|
|
include:
|
|
- image: capture
|
|
dockerfile: ./rust/Dockerfile
|
|
- image: hook-api
|
|
dockerfile: ./rust/Dockerfile
|
|
- image: hook-janitor
|
|
dockerfile: ./rust/Dockerfile
|
|
- image: hook-worker
|
|
dockerfile: ./rust/Dockerfile
|
|
- image: hook-migrator
|
|
dockerfile: ./rust/Dockerfile.migrate-hooks
|
|
- image: cyclotron-janitor
|
|
dockerfile: ./rust/Dockerfile
|
|
- image: cyclotron-fetch
|
|
dockerfile: ./rust/Dockerfile
|
|
- image: property-defs-rs
|
|
dockerfile: ./rust/Dockerfile
|
|
- image: cymbal
|
|
dockerfile: ./rust/Dockerfile
|
|
runs-on: depot-ubuntu-22.04-4
|
|
permissions:
|
|
id-token: write # allow issuing OIDC tokens for this workflow run
|
|
contents: read # allow reading the repo contents
|
|
packages: write # allow push to ghcr.io
|
|
|
|
outputs:
|
|
capture_digest: ${{ steps.digest.outputs.capture_digest }}
|
|
cyclotron-fetch_digest: ${{ steps.digest.outputs.cyclotron-fetch_digest }}
|
|
cyclotron-janitor_digest: ${{ steps.digest.outputs.cyclotron-janitor_digest }}
|
|
property-defs-rs_digest: ${{ steps.digest.outputs.property-defs-rs_digest }}
|
|
hook-api_digest: ${{ steps.digest.outputs.hook-api_digest }}
|
|
hook-janitor_digest: ${{ steps.digest.outputs.hook-janitor_digest }}
|
|
hook-worker_digest: ${{ steps.digest.outputs.hook-worker_digest }}
|
|
hook-migrator_digest: ${{ steps.digest.outputs.hook-migrator_digest }}
|
|
cymbal_digest: ${{ steps.digest.outputs.cymbal_digest }}
|
|
|
|
defaults:
|
|
run:
|
|
working-directory: rust
|
|
|
|
steps:
|
|
- name: Check Out Repo
|
|
# Checkout project code
|
|
# Use sparse checkout to only select files in rust directory
|
|
# Turning off cone mode ensures that files in the project root are not included during checkout
|
|
uses: actions/checkout@v3
|
|
with:
|
|
sparse-checkout: 'rust/'
|
|
sparse-checkout-cone-mode: false
|
|
|
|
- name: Set up Depot CLI
|
|
uses: depot/setup-action@v1
|
|
|
|
- name: Set up QEMU
|
|
uses: docker/setup-qemu-action@v3
|
|
with:
|
|
image: tonistiigi/binfmt:latest
|
|
platforms: all
|
|
|
|
- name: Login to ghcr.io
|
|
uses: docker/login-action@v3
|
|
with:
|
|
registry: ghcr.io
|
|
username: ${{ github.actor }}
|
|
password: ${{ secrets.GITHUB_TOKEN }}
|
|
logout: false
|
|
|
|
- name: Docker meta
|
|
id: meta
|
|
uses: docker/metadata-action@v5
|
|
with:
|
|
images: ghcr.io/posthog/posthog/${{ matrix.image }}
|
|
tags: |
|
|
type=ref,event=pr
|
|
type=ref,event=branch
|
|
type=semver,pattern={{version}}
|
|
type=semver,pattern={{major}}.{{minor}}
|
|
type=sha
|
|
|
|
- name: Set up Docker Buildx
|
|
id: buildx
|
|
uses: docker/setup-buildx-action@v2
|
|
|
|
- name: Build and push image
|
|
id: docker_build
|
|
uses: depot/build-push-action@v1
|
|
with:
|
|
context: ./rust/
|
|
file: ${{ matrix.dockerfile }}
|
|
push: true
|
|
tags: ${{ steps.meta.outputs.tags }}
|
|
labels: ${{ steps.meta.outputs.labels }}
|
|
platforms: linux/arm64,linux/amd64
|
|
build-args: BIN=${{ matrix.image }}
|
|
|
|
- name: Container image digest
|
|
id: digest
|
|
run: |
|
|
echo ${{ steps.docker_build.outputs.digest }}
|
|
echo "${{matrix.image}}_digest=${{ steps.docker_build.outputs.digest }}" >> $GITHUB_OUTPUT
|
|
cat $GITHUB_OUTPUT
|
|
|
|
deploy:
|
|
name: deploy ${{ matrix.release }}
|
|
runs-on: ubuntu-latest
|
|
needs: build
|
|
if: github.ref == 'refs/heads/master'
|
|
strategy:
|
|
matrix:
|
|
include:
|
|
- release: capture
|
|
values:
|
|
image:
|
|
sha: '${{ needs.build.outputs.capture_digest }}'
|
|
- release: capture-replay
|
|
values:
|
|
image:
|
|
sha: '${{ needs.build.outputs.capture_digest }}'
|
|
- release: cyclotron
|
|
values:
|
|
fetch_image:
|
|
sha: '${{ needs.build.outputs.cyclotron-fetch_digest }}'
|
|
janitor_image:
|
|
sha: '${{ needs.build.outputs.cyclotron-janitor_digest }}'
|
|
- release: property-defs-rs
|
|
values:
|
|
image:
|
|
sha: '${{ needs.build.outputs.property-defs-rs_digest }}'
|
|
# - release: cymbal - disabled until a charts in place, for now we just build
|
|
# values:
|
|
# image:
|
|
# sha: '${{ needs.build.outputs.cymbal_digest }}'
|
|
- release: hoghooks
|
|
values:
|
|
api_image:
|
|
sha: '${{ needs.build.outputs.hook-api_digest }}'
|
|
janitor_image:
|
|
sha: '${{ needs.build.outputs.hook-janitor_digest }}'
|
|
worker_image:
|
|
sha: '${{ needs.build.outputs.hook-worker_digest }}'
|
|
migrator_image:
|
|
sha: '${{ needs.build.outputs.hook-migrator_digest }}'
|
|
steps:
|
|
- name: get deployer token
|
|
id: deployer
|
|
uses: getsentry/action-github-app-token@v3
|
|
with:
|
|
app_id: ${{ secrets.DEPLOYER_APP_ID }}
|
|
private_key: ${{ secrets.DEPLOYER_APP_PRIVATE_KEY }}
|
|
|
|
- name: trigger ${{ matrix.release }} deployment
|
|
uses: peter-evans/repository-dispatch@v3
|
|
with:
|
|
token: ${{ steps.deployer.outputs.token }}
|
|
repository: PostHog/charts
|
|
event-type: commit_state_update
|
|
client-payload: |
|
|
{
|
|
"values": ${{ toJson(matrix.values) }},
|
|
"release": "${{ matrix.release }}",
|
|
"commit": ${{ toJson(github.event.head_commit) }},
|
|
"repository": ${{ toJson(github.repository) }},
|
|
"labels": [],
|
|
"timestamp": "${{ github.event.head_commit.timestamp }}"
|
|
}
|