8f1ccd8a56
- Fix chat-ci.yml and stream-ci.yml to reference veza-chat-server/ and veza-stream-server/ instead of non-existent apps/ paths - Add veza-common/ to CI triggers so shared library changes are tested - Reactivate CD pipeline with Docker registry push and Kubernetes deployment steps (gated on secrets availability) - Standardize Redis dependency to v0.32 across both Rust services Co-authored-by: Cursor <cursoragent@cursor.com>
82 lines
3.4 KiB
YAML
82 lines
3.4 KiB
YAML
name: Veza CD
|
|
|
|
on:
|
|
push:
|
|
branches: [ "main" ]
|
|
workflow_dispatch:
|
|
inputs:
|
|
environment:
|
|
description: 'Deployment environment'
|
|
required: true
|
|
default: 'staging'
|
|
type: choice
|
|
options:
|
|
- staging
|
|
- production
|
|
|
|
jobs:
|
|
deploy:
|
|
name: Deploy to ${{ github.event.inputs.environment || 'staging' }}
|
|
runs-on: ubuntu-latest
|
|
if: github.ref == 'refs/heads/main' || github.event_name == 'workflow_dispatch'
|
|
environment: ${{ github.event.inputs.environment || 'staging' }}
|
|
|
|
steps:
|
|
- uses: actions/checkout@v4
|
|
|
|
- name: Set up Docker Buildx
|
|
uses: docker/setup-buildx-action@v3
|
|
|
|
- name: Build Backend Docker Image
|
|
run: |
|
|
cd veza-backend-api
|
|
docker build -t veza-backend-api:${{ github.sha }} .
|
|
# Tag for registry (configure registry URL in secrets)
|
|
# docker tag veza-backend-api:${{ github.sha }} ${{ secrets.DOCKER_REGISTRY }}/veza-backend-api:${{ github.sha }}
|
|
|
|
- name: Build Frontend Docker Image
|
|
run: |
|
|
cd apps/web
|
|
docker build -t veza-frontend:${{ github.sha }} .
|
|
# Tag for registry (configure registry URL in secrets)
|
|
# docker tag veza-frontend:${{ github.sha }} ${{ secrets.DOCKER_REGISTRY }}/veza-frontend:${{ github.sha }}
|
|
|
|
- name: Build Rust Services Docker Images
|
|
run: |
|
|
cd veza-chat-server
|
|
docker build -t veza-chat-server:${{ github.sha }} .
|
|
|
|
cd ../veza-stream-server
|
|
docker build -t veza-stream-server:${{ github.sha }} .
|
|
|
|
- name: Push Images to Registry
|
|
if: ${{ secrets.DOCKER_REGISTRY != '' }}
|
|
run: |
|
|
echo "${{ secrets.DOCKER_REGISTRY_PASSWORD }}" | docker login "${{ secrets.DOCKER_REGISTRY }}" -u "${{ secrets.DOCKER_REGISTRY_USERNAME }}" --password-stdin
|
|
for svc in veza-backend-api veza-frontend veza-chat-server veza-stream-server; do
|
|
docker tag "${svc}:${{ github.sha }}" "${{ secrets.DOCKER_REGISTRY }}/${svc}:${{ github.sha }}"
|
|
docker tag "${svc}:${{ github.sha }}" "${{ secrets.DOCKER_REGISTRY }}/${svc}:latest"
|
|
docker push "${{ secrets.DOCKER_REGISTRY }}/${svc}:${{ github.sha }}"
|
|
docker push "${{ secrets.DOCKER_REGISTRY }}/${svc}:latest"
|
|
done
|
|
|
|
- name: Deploy to Kubernetes
|
|
if: ${{ secrets.KUBE_CONFIG != '' }}
|
|
run: |
|
|
mkdir -p ~/.kube
|
|
echo "${{ secrets.KUBE_CONFIG }}" | base64 -d > ~/.kube/config
|
|
for svc in veza-backend-api veza-chat-server veza-stream-server; do
|
|
kubectl set image "deployment/${svc}" "${svc}=${{ secrets.DOCKER_REGISTRY }}/${svc}:${{ github.sha }}" \
|
|
-n veza --record || echo "Skipping ${svc} (deployment not found)"
|
|
done
|
|
kubectl rollout status deployment/veza-backend-api -n veza --timeout=300s || true
|
|
|
|
- name: Deployment Summary
|
|
run: |
|
|
echo "## Deployment Summary" >> $GITHUB_STEP_SUMMARY
|
|
echo "- Backend: veza-backend-api:${{ github.sha }}" >> $GITHUB_STEP_SUMMARY
|
|
echo "- Frontend: veza-frontend:${{ github.sha }}" >> $GITHUB_STEP_SUMMARY
|
|
echo "- Chat Server: veza-chat-server:${{ github.sha }}" >> $GITHUB_STEP_SUMMARY
|
|
echo "- Stream Server: veza-stream-server:${{ github.sha }}" >> $GITHUB_STEP_SUMMARY
|
|
echo "- Environment: ${{ github.event.inputs.environment || 'staging' }}" >> $GITHUB_STEP_SUMMARY
|
|
|