Skip to content
PR Workflow

ci: tear-down PR dev cluster and children #3

Sign in to view logs

ci: tear-down PR dev cluster and children

ci: tear-down PR dev cluster and children #3

Workflow file for this run

.github/workflows/PR-close.yaml at 909ecc0
name: PR Workflow
on:
pull_request:
types:
- synchronize
- closed
defaults:
run:
working-directory: go/src/github.com/stackrox/infra
concurrency: pr-${{ github.ref }}
env:
CLUSTER_NAME: infra-pr-${{ github.event.pull_request.number }}
GH_TOKEN: ${{ secrets.RHACS_BOT_GITHUB_TOKEN }}
jobs:
destroy:
runs-on: ubuntu-latest
env:
KUBECONFIG: /tmp/kubeconfig
INFRA_TOKEN: ${{ secrets.INFRA_TOKEN }}
INFRACTL: bin/infractl -k -e localhost:8443
USE_GKE_GCLOUD_AUTH_PLUGIN: "True"
steps:
- name: Checkout
uses: actions/checkout@v4
with:
fetch-depth: 0
ref: ${{ github.event.pull_request.head.sha }}
path: go/src/github.com/stackrox/infra
- name: Authenticate to GCloud
uses: google-github-actions/auth@v2
with:
credentials_json: ${{ secrets.INFRA_CI_AUTOMATION_GCP_SA }}
- name: Set up Cloud SDK
uses: "google-github-actions/setup-gcloud@v2"
with:
install_components: "gke-gcloud-auth-plugin"
- name: Download production infractl
uses: stackrox/actions/infra/install-infractl@v1
- name: Download artifacts
run: |
~/.local/bin/infractl artifacts "$CLUSTER_NAME" -d /tmp/ >> "$GITHUB_STEP_SUMMARY"
kubectl get nodes -o wide || true
- name: Download branch infractl
run: |
kubectl -n infra port-forward svc/infra-server-service 8443:8443 > /dev/null 2>&1 &
sleep 10
kubectl -n infra logs -l app=infra-server --tail=-1
make pull-infractl-from-dev-server
kill %1
- name: Destroy created clusters still running
run: |
set -x
set +e
sleep 3600
kubectl -n infra port-forward svc/infra-server-service 8443:8443 > /dev/null 2>&1 &
sleep 10
$INFRACTL version
echo 'For 30 minutes, list and delete child clusters that are not failed.'
for I in {1..30}; do
$INFRACTL list --all --expired --quiet
if [[ $($INFRACTL list --all --expired --status='READY,CREATING,DESTROYING' | tee >(cat >&2) | wc -l) -gt 0 ]]; then
echo 'Active clusters found. Deleting ...'
else
echo 'No active clusters found.'
break
fi
# shellcheck disable=SC2086
$INFRACTL list --all --expired --status='READY,FAILED,CREATING' | grep '^[^ ]' \
| xargs -I{} $INFRACTL delete {}
echo "(sleep 1 minute then check again. try $I/30)"
sleep 60
done
for I in {1..10}; do
$INFRACTL list --all --expired --quiet
count=$($INFRACTL list --all --expired --status='READY,CREATING,DESTROYING' | tee >(cat >&2) | wc -l)
if [[ $count -gt 0 ]]; then
echo 'Active clusters found. Deleting ...'
else
echo 'No active clusters found.'
break
fi
# shellcheck disable=SC2086
$INFRACTL list --all --expired --status='READY,FAILED,CREATING' | grep '^[^ ]' \
| xargs -I{} $INFRACTL delete {}
echo "(sleep 1 minute then check again. try $I/30)"
sleep 60
done
for I in {1..10}; do
$INFRACTL list --all --expired
count=0
for cluster in $($INFRACTL list --all --quiet --expired --status='READY,CREATING,DESTROYING'); do
echo "$(( ++ count )): ${cluster}"
done
if [[ $count -gt 0 ]]; then
echo 'Active clusters found. Deleting ...'
else
echo 'No active clusters found.'
break
fi
# shellcheck disable=SC2086
$INFRACTL list --all --expired --status='READY,FAILED,CREATING' | grep '^[^ ]' \
| xargs -I{} $INFRACTL delete {}
echo "(sleep 1 minute then check again. try $I/30)"
sleep 60
done
kill %1
- name: Destroy PR dev cluster
run: |
echo "would now run:" ~/.local/bin/infractl delete "$CLUSTER_NAME"