codebook env image | ci/cd

Author: drewyangdev

.github/.staging_workflows/anchored_docker_images.yaml

@@ -0,0 +1,86 @@
+#
+
+name: docker_images
+on:
+  push:
+  pull_request:
+
+### For act testing locally
+anchor-dev-if: &dev-if
+  if: |
+    github.event_name == 'push' &&
+    startsWith(github.ref, 'refs/tags') &&
+    github.repository_owner == 'yambottle'
+anchor-dev-workflow: &dev-workflow
+  uses: dj-sciops/djsciops-cicd/.github/workflows/u24_docker_images.yaml@main
+### For Github Action run in your own fork with release
+anchor-test-if: &test-if
+  if: |
+    github.event_name == 'push' &&
+    startsWith(github.ref, 'refs/tags') &&
+    github.repository_owner == 'yambottle'
+anchor-test-workflow: &test-workflow
+  uses: dj-sciops/djsciops-cicd/.github/workflows/u24_docker_images.yaml@main
+### For Github Action run in datajoint
+anchor-prod-if: &prod-if
+  if: |
+    github.event_name == 'push' &&
+    startsWith(github.ref, 'refs/tags') &&
+    github.repository_owner == 'datajoint'
+anchor-prod-workflow: &prod-workflow
+  uses: dj-sciops/djsciops-cicd/.github/workflows/u24_docker_images.yaml@main
+### Common anchor
+anchor-workflow-secrets: &workflow-secrets
+  secrets:
+    RAW_DEPLOY_KEY: ${{secrets.RAW_DEPLOY_KEY}}
+    REGISTRY_USERNAME: ${{secrets.REGISTRY_USERNAME}}
+    REGISTRY_PASSWORD: ${{secrets.REGISTRY_PASSWORD}}
+
+jobs:
+  get_meta:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v2
+      - id: get_version
+        name: Get build metadata
+        run: |
+          ## Get workflow version as codebook env image version
+          echo "::set-output name=workflow_version::$(cat workflow/version.py | tail -1 | awk -F\' '{print $2}')"
+      - id: create_release
+        name: Create release
+        !!merge <<: *$STAGE-if
+        uses: actions/create-release@v1
+        env:
+          GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
+        with:
+          tag_name: ${{steps.get_version.outputs.workflow_version}}
+          release_name: Release ${{steps.get_version.outputs.workflow_version}}
+          body: Release ${{steps.get_version.outputs.workflow_version}}
+          draft: false
+          prerelease: false
+    outputs:
+      workflow_version: ${{steps.get_version.outputs.workflow_version}}
+      release_upload_url: ${{steps.create_release.outputs.upload_url}}
+  
+  call_u24_docker_image_py39:
+    needs: [get_meta]
+    !!merge <<: *$STAGE-workflow
+    with:
+      jhub_ver: 1.4.2
+      py_ver: 3.9
+      dist: debian
+      workflow_version: ${{needs.get_meta.outputs.workflow_version}}
+      release_upload_url: ${{needs.get_meta.outputs.release_upload_url}}
+    !!merge <<: *workflow-secrets
+  call_u24_docker_image_py38:
+    needs: [get_meta]
+    !!merge <<: *$STAGE-workflow
+    with:
+      jhub_ver: 1.4.2
+      py_ver: 3.8
+      dist: debian
+      workflow_version: ${{needs.get_meta.outputs.workflow_version}}
+      release_upload_url: ${{needs.get_meta.outputs.release_upload_url}}
+    !!merge <<: *workflow-secrets
+
+#

.github/.staging_workflows/normalize.sh

@@ -0,0 +1,14 @@
+#!/bin/bash
+# For Github Action that doesn't support anchor yet...
+# https://github.com/actions/runner/issues/1182
+
+STAGE=$1
+# .yaml in .staging_workflows has to be named using a prefix 'anchored_', this will be removed when normalizing
+PREFIX="anchored_" 
+SCRIPT_DIR=$( cd -- "$( dirname -- "${BASH_SOURCE[0]}" )" &> /dev/null && pwd )
+for source in $(ls $SCRIPT_DIR | grep yaml)
+do
+    target=${source#$PREFIX}
+    export STAGE
+    envsubst '${STAGE}' < $SCRIPT_DIR/$source | yq e 'explode(.) | del(.anchor-*)' > $SCRIPT_DIR/../workflows/$target
+done

.github/.test/.secrets

@@ -0,0 +1,4 @@
+RAW_DEPLOY_KEY=
+GITHUB_TOKEN=
+REGISTRY_USERNAME=
+REGISTRY_PASSWORD=

.github/.test/README.md

@@ -0,0 +1,3 @@
+For local testing using act, you need to create few things: 
+- make a `.test/artifacts` dir for `act --artifact-server-path ./.test/artifacts/`
+- make a `.test/.secrets` file similar as `.env` for `act --secret-file ./.test/.secrets`

.github/make-prod.sh

@@ -0,0 +1,2 @@
+#!/bin/bash
+bash ./.staging_workflows/normalize.sh prod

.github/make-test.sh

@@ -0,0 +1,2 @@
+#!/bin/bash
+bash ./.staging_workflows/normalize.sh test

.github/run-local.sh

@@ -0,0 +1,7 @@
+#!/bin/bash
+SCRIPT_DIR=$( cd -- "$( dirname -- "${BASH_SOURCE[0]}" )" &> /dev/null && pwd )
+bash $SCRIPT_DIR/.staging_workflows/normalize.sh dev
+cd ..
+act -P ubuntu-latest=drewyangdev/ubuntu:act-latest \
+    --secret-file $SCRIPT_DIR/.test/.secrets \
+    --artifact-server-path $SCRIPT_DIR/.test/artifacts/

.github/workflows/docker_images.yaml

@@ -0,0 +1,61 @@
+#
+name: docker_images
+on:
+  push:
+  pull_request:
+jobs:
+  get_meta:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v2
+      - id: get_version
+        name: Get build metadata
+        run: |
+          ## Get workflow version as codebook env image version
+          echo "::set-output name=workflow_version::$(cat workflow/version.py | tail -1 | awk -F\' '{print $2}')"
+      - id: create_release
+        name: Create release
+        if: |
+          github.event_name == 'push' &&
+          startsWith(github.ref, 'refs/tags') &&
+          github.repository_owner == 'datajoint'
+        uses: actions/create-release@v1
+        env:
+          GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
+        with:
+          tag_name: ${{steps.get_version.outputs.workflow_version}}
+          release_name: Release ${{steps.get_version.outputs.workflow_version}}
+          body: Release ${{steps.get_version.outputs.workflow_version}}
+          draft: false
+          prerelease: false
+    outputs:
+      workflow_version: ${{steps.get_version.outputs.workflow_version}}
+      release_upload_url: ${{steps.create_release.outputs.upload_url}}
+  call_u24_docker_image_py39:
+    needs: [get_meta]
+    uses: dj-sciops/djsciops-cicd/.github/workflows/u24_docker_images.yaml@main
+    with:
+      jhub_ver: 1.4.2
+      py_ver: 3.9
+      dist: debian
+      workflow_version: ${{needs.get_meta.outputs.workflow_version}}
+      release_upload_url: ${{needs.get_meta.outputs.release_upload_url}}
+    secrets:
+      RAW_DEPLOY_KEY: ${{secrets.RAW_DEPLOY_KEY}}
+      REGISTRY_USERNAME: ${{secrets.REGISTRY_USERNAME}}
+      REGISTRY_PASSWORD: ${{secrets.REGISTRY_PASSWORD}}
+  call_u24_docker_image_py38:
+    needs: [get_meta]
+    uses: dj-sciops/djsciops-cicd/.github/workflows/u24_docker_images.yaml@main
+    with:
+      jhub_ver: 1.4.2
+      py_ver: 3.8
+      dist: debian
+      workflow_version: ${{needs.get_meta.outputs.workflow_version}}
+      release_upload_url: ${{needs.get_meta.outputs.release_upload_url}}
+    secrets:
+      RAW_DEPLOY_KEY: ${{secrets.RAW_DEPLOY_KEY}}
+      REGISTRY_USERNAME: ${{secrets.REGISTRY_USERNAME}}
+      REGISTRY_PASSWORD: ${{secrets.REGISTRY_PASSWORD}}
+
+#

.gitignore

@@ -118,6 +118,7 @@ Diagram.ipynb
 
 # docker
 .env
+*.pem
 
 # vscode
 .vscode/settings.json

docker/codebook.Dockerfile

@@ -0,0 +1,27 @@
+## docker build --build-arg JHUB_VER=1.4.2 --build-arg PY_VER=3.8 --build-arg DIST=debian --build-arg DEPLOY_KEY=workflow-array-ephys-deploy.pem --build-arg REPO_OWNER=datajoint --build-arg REPO_NAME=workflow-array-ephys -f codebook.Dockerfile -t registry.vathes.com/datajoint/codebook-workflow-array-ephys:v0.0.0 .
+
+## Single Stage 
+ARG JHUB_VER
+ARG PY_VER
+ARG DIST
+FROM datajoint/djlabhub:${JHUB_VER}-py${PY_VER}-${DIST}
+
+USER root
+RUN apt-get -y update && apt-get install -y ssh git
+
+ARG DEPLOY_KEY
+USER anaconda:anaconda
+COPY --chown=anaconda $DEPLOY_KEY $HOME/.ssh/datajoint_deploy.ssh
+
+ARG REPO_OWNER
+ARG REPO_NAME
+WORKDIR /tmp
+RUN ssh-keyscan github.com >> $HOME/.ssh/known_hosts && \
+    GIT_SSH_COMMAND="ssh -i $HOME/.ssh/datajoint_deploy.ssh" \
+    git clone [email protected]:${REPO_OWNER}/${REPO_NAME}.git && \
+    pip install ./${REPO_NAME} && \
+    cp -r ./${REPO_NAME}/notebooks/ /home/ && \
+    cp -r ./${REPO_NAME}/images/ /home/notebooks/ && \
+    cp ./${REPO_NAME}/README.md /home/notebooks/ && \
+    rm -rf /tmp/${REPO_NAME}
+WORKDIR /home/notebooks

docker/docker-compose-codebook_env.yaml

@@ -0,0 +1,15 @@
+# docker-compose up --build
+version: '2.4'
+services:
+  codebook_env:
+    build: # only necessary if rebuilding image
+      context: .
+      dockerfile: codebook.Dockerfile
+      args:
+        - JHUB_VER
+        - PY_VER
+        - DIST
+        - DEPLOY_KEY
+        - REPO_OWNER
+        - REPO_NAME
+    image: registry.vathes.com/datajoint/codebook-${REPO_NAME}:jhub${JHUB_VER}-py${PY_VER}-${DIST}-v${WORKFLOW_VERSION}