Skip to content
Deploy Infra

Deploy Infra #1240

Sign in to view logs

Deploy Infra

Deploy Infra #1240

Workflow file for this run

.github/workflows/deploy-infra.yml at 3a7b02d
name: Deploy Infra
on:
workflow_dispatch:
inputs:
commit_sha:
description: "Specific commit SHA to checkout"
required: true
type: string
tracking_id:
description: "Unique tracking ID used for identifying the workflow run"
required: false
type: string
environment:
description: "Target environment for deployment, e.g. staging"
required: true
type: string
plan_only:
description: "Only plan the infrastructure changes without applying them"
required: false
type: string
default: "false"
concurrency:
group: deploy-${{ inputs.environment }}
cancel-in-progress: false
jobs:
deploy:
name: Deploy Infra to the ${{ inputs.environment }} environment
runs-on: ubuntu-22.04
environment: ${{ inputs.environment }}
permissions:
contents: read
id-token: write
steps:
- name: Checkout repository
uses: actions/checkout@v5
with:
ref: ${{ inputs.commit_sha }}
- name: Checkout actions
uses: actions/checkout@v5
with:
sparse-checkout: |
.github/actions
path: actions-from-ref
- name: Setup environment
uses: ./actions-from-ref/.github/actions/deploy-setup
with:
environment: ${{ inputs.environment }}
install_gcloud: "true"
infisical_machine_identity_id: ${{ vars.INFISICAL_MACHINE_IDENTITY_ID }}
- name: Run Terraform state migrations
if: inputs.plan_only == 'false'
run: |
make state-migrate || true
- name: Apply init module
if: inputs.plan_only == 'false'
run: |
make apply-init
- name: Copy public builds
run: |
make copy-public-builds
- name: Plan infrastructure
run: |
make plan-without-jobs
- name: Apply infrastructure
if: inputs.plan_only == 'false'
env:
AUTO_CONFIRM_DEPLOY: true
run: |
make apply