Skip to content

feat: Adding deploy callable GHA #469

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
wants to merge 21 commits into from
Closed

feat: Adding deploy callable GHA #469

Changes from all commits
Commits
Show all changes
21 commits
Select commit Hold shift + click to select a range
358d1cc
feat: Adding deploy callable GHA
eviner-ISP Aug 28, 2025
4f000fb
Adding a dry-run to test
eviner-ISP Aug 28, 2025
2ee40ed
Temp remove if statement
eviner-ISP Aug 28, 2025
d63d052
Saving progress
eviner-ISP Aug 28, 2025
efc7cf5
Missed an underscore
eviner-ISP Aug 28, 2025
28ba19e
Saving more progress
eviner-ISP Aug 28, 2025
23e6075
Saving more progress
eviner-ISP Aug 29, 2025
fdf6ba8
Force deploy so will run in dry-run
eviner-ISP Aug 29, 2025
f2ffd8b
Saving progress
eviner-ISP Aug 29, 2025
0ae4585
Gotta have the right variables
eviner-ISP Aug 29, 2025
cf274ce
Saving progress
eviner-ISP Sep 2, 2025
2b5c76a
Saving progress
eviner-ISP Sep 2, 2025
4cd4c83
Saving progress
eviner-ISP Sep 2, 2025
8bb79e9
Saving progress
eviner-ISP Sep 2, 2025
daedeb2
Saving progress
eviner-ISP Sep 3, 2025
8bb7afc
Saving progress
eviner-ISP Sep 3, 2025
5e27506
Removed extra $
eviner-ISP Sep 3, 2025
ba4ee94
Updating workflow
eviner-ISP Sep 3, 2025
eea4473
More troubleshooting
eviner-ISP Sep 3, 2025
8fc5cb3
More troubleshooting
eviner-ISP Sep 4, 2025
c8d170a
More troubleshooting
eviner-ISP Sep 4, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
139 changes: 139 additions & 0 deletions .github/workflows/deploy.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,139 @@
name: Deploy

on:
workflow_call:
inputs:
app-region:
description: "Application region, ie US_WEST or US_EAST"
required: false
type: string
atomic:
description: "Deploy to atomic clusters"
required: false
type: boolean
default: false
awsAccount:
description: "AWS Account ID"
required: false
type: string
release:
description: "Helm release name"
required: true
type: string
chart-name:
description: "Chart name (used in chart-path)"
required: true
type: string
chart-path:
description: "Path to Helm chart"
required: true
type: string
chart-values:
description: "Additional values to pass to helm"
required: true
type: string
chart-version:
description: "Version tag for the chart"
required: true
type: string
cluster-name:
description: "Cluster name"
required: true
type: string
cluster-region:
description: "Cluster region, ie us-west-2 or us-east-1"
required: true
type: string
config-files:
description: "Additional config files"
required: false
type: string
deployregion:
description: "Deploy region, ie US_WEST or US_EAST"
required: false
type: string
helm-s3-repo:
description: "Helm S3 repo URL"
required: false
type: string
helm-s3-plugin-version:
description: "Helm S3 plugin version"
required: false
type: string
namespace:
description: "Kubernetes namespace"
required: true
type: string
plugins:
description: "Helm plugin URL"
required: false
default: "https://github.com/hypnoglow/helm-s3.git"
type: string
role-arn:
description: "Role ARN to assume in target account"
required: true
type: string
value-files:
description: "YAML files to pass to helm as -f args"
required: false
type: string

secrets:
CLUSTER_AWS_ACCESS_KEY_ID:
required: true
CLUSTER_AWS_SECRET_ACCESS_KEY:
required: true
CDS_USER:
required: false
CDS_KEY:
required: false
MC_LICENSE:
required: false

jobs:
deploy:
name: Deploy Helm chart for release ${{ inputs.release }}
runs-on: ubuntu-latest
permissions:
contents: read
steps:
- name: Configure AWS credentials (${{ inputs.cluster-region }})
uses: aws-actions/configure-aws-credentials@v4
with:
aws-access-key-id: ${{ secrets.CLUSTER_AWS_ACCESS_KEY_ID }}
aws-secret-access-key: ${{ secrets.CLUSTER_AWS_SECRET_ACCESS_KEY }}
aws-region: ${{ inputs.cluster-region }}
role-to-assume: ${{ inputs.role-arn }}

- name: Dry-run Helm to ${{ inputs.cluster-name }}
uses: lmorris-isp/github-actions-deploy-eks-helm@main
with:
aws-region: ${{ inputs.cluster-region }}
chart-repository: ${{ inputs.helm-s3-repo }}
chart-path: ${{ inputs.chart-path }}
version: ${{ inputs.chart-version }}
cluster-name: ${{ inputs.cluster-name }}
namespace: ${{ inputs.namespace }}
name: ${{ inputs.release }}
plugins: ${{ inputs.plugins }}
helm-s3-plugin-version: ${{ inputs.helm-s3-plugin-version }}
dry-run: true
timeout: 300s
values: ${{ inputs.chart-values }}

- name: Deploy Helm to ${{ inputs.cluster-name }}
if: ${{ github.event_name == 'workflow_dispatch' || github.event_name == 'release' }}
uses: lmorris-isp/github-actions-deploy-eks-helm@main
with:
aws-region: ${{ inputs.cluster-region }}
chart-repository: ${{ inputs.helm-s3-repo }}
chart-path: ${{ inputs.chart-path }}
version: ${{ inputs.chart-version }}
cluster-name: ${{ inputs.cluster-name }}
namespace: ${{ inputs.namespace }}
name: ${{ inputs.release }}
plugins: ${{ inputs.plugins }}
helm-s3-plugin-version: ${{ inputs.helm-s3-plugin-version }}
dry-run: true
timeout: 300s
values: ${{ inputs.chart-values }}