Skip to content

Bastion ssh

Bastion ssh #22

name: materialised-view
on:
workflow_dispatch:
paths:
- .github/workflows/materialised-view.yml
- helm/configs/materialised-view/**
pull_request:
branches: [ main ]
paths:
- .github/workflows/materialised-view.yml
- helm/configs/materialised-view/**
release:
types: [ published ]
jobs:
set_env:
uses: ./.github/workflows/reusable.environment.yml
deploy:
if: (!needs.set_env.outputs.component) || needs.set_env.outputs.component == 'mv'
runs-on: ubuntu-latest
environment: ${{ needs.set_env.outputs.environment }}
needs:
- set_env
steps:
- name: Checkout repository
uses: actions/checkout@v2
- name: Open ssh tunnel
uses: paulscherrerinstitute/scicat-ci/.github/actions/open-ssh-tunnel@bastion_ssh
with:
bastion_user: '${{ secrets.BASTION_USER }}'
bastion_ssh_key: '${{ secrets.BASTION_SSH_KEY }}'
- name: deploy
uses: paulscherrerinstitute/scicat-ci/.github/actions/deploy-helm@bastion_ssh
with:
release: '${{ env.RELEASE_NAME }}'
namespace: '${{ env.NAMESPACE_PREFIX }}${{ env.ENVIRONMENT }}'
chart: helm/charts/cron
value-files: >-
helm/configs/${{ env.RELEASE_NAME }}/values.yaml
helm/configs/${{ env.RELEASE_NAME }}/${{ env.ENVIRONMENT }}/values.yaml
secrets: ${{ toJSON(secrets) }}
files: >-
MATERIALISE=helm/configs/materialised-view/updateMatViews.js
env:
KUBECONFIG_FILE: '${{ secrets.KUBECONFIG }}'
RELEASE_NAME: materialised-view
ENVIRONMENT: '${{ needs.set_env.outputs.environment }}'
NAMESPACE_PREFIX: scicat-
BASTION_USER: ${{ secrets.BASTION_USER }}
BASTION_SSH_KEY: ${{ secrets.BASTION_SSH_KEY }}