-
Notifications
You must be signed in to change notification settings - Fork 0
60 lines (50 loc) · 1.8 KB
/
deploy.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
name: Deploy CDK
on:
push:
branches:
- main
permissions:
id-token: write
contents: read
jobs:
deploy:
runs-on: ubuntu-latest
environment: dev
steps:
- name: Checkout the repository
uses: actions/checkout@v4
- name: Configure AWS credentials
uses: aws-actions/configure-aws-credentials@v4
with:
role-to-assume: ${{ vars.AWS_CDK_DEPLOY_ROLE_ARN }}
aws-region: ${{ vars.AWS_REGION }}
role-session-name: GitHubActionsCDKDeploy
role-duration-seconds: 900 # Adjust as necessary
- name: Setup Node.js
uses: actions/setup-node@v4
with:
node-version: 18 # Use the node version matching your project
cache: 'npm'
- name: Install dependencies
run: |
npm install -g aws-cdk
npm ci # Install project dependencies from package-lock.json
- name: Deploy CDK to dev environment
run: |
cdk deploy --require-approval never --outputs-file outputs.json
env:
AWS_ACCOUNT_ID: ${{ vars.AWS_ACCOUNT_ID }}
AWS_REGION: ${{ vars.AWS_REGION }}
HOSTNAME: ${{ vars.HOSTNAME }}
KEYCLOAK_VERSION: ${{ vars.KEYCLOAK_VERSION }}
SSL_CERTIFICATE_ARN: ${{ vars.SSL_CERTIFICATE_ARN }}
STAGE: ${{ vars.STAGE }}
# Imported Identity Provider secrets
IDP_SECRET_ARN_GH: ${{ vars.IDP_SECRET_ARN_GH }}
IDP_SECRET_ARN_CILOGON: ${{ vars.IDP_SECRET_ARN_CILOGON }}
- name: Get ConfigLambdaArn from CloudFormation
id: get-lambda-arn
run: |
echo "CONFIG_LAMBDA_ARN=$(jq -r '."VedaKeycloakStack-${{ vars.STAGE }}".ConfigLambdaArn' outputs.json)" >> $GITHUB_ENV
- name: Run Apply Config
run: npm run apply-config $CONFIG_LAMBDA_ARN