zebra/.github/workflows/push.yml

name: CI

on:
  push:
    branches:
      - main
      - gcloud

env:
  PROJECT_ID: zealous-zebra

jobs:
  build:
    name: Google Cloud / Test, Build, and Deploy
    runs-on: ubuntu-latest
    steps:

    - name: Checkout
      uses: actions/checkout@master

    - name: Set project and image names
      run: |
        SHORT_BRANCH_NAME=$(expr $GITHUB_REF : '.*/\(.*\)') && \
        SHORT_BRANCH_NAME=${SHORT_BRANCH_NAME,,} && \
        BRANCH_NAME=$GITHUB_REPOSITORY/$SHORT_BRANCH_NAME && \
        BRANCH_NAME=${BRANCH_NAME,,} && \
        echo "::set-env name=SHORT_BRANCH_NAME::$SHORT_BRANCH_NAME" && \
        echo "::set-env name=BRANCH_NAME::$BRANCH_NAME" && \
        echo "::set-env name=SHA7::$(git rev-parse --short=7 $GITHUB_SHA)"

    # Setup gcloud CLI
    - uses: GoogleCloudPlatform/github-actions/setup-gcloud@master
      with:
        version: '295.0.0'
        project_id: ${{ env.PROJECT_ID }}
        service_account_key: ${{ secrets.GCLOUD_AUTH }}

    # Build and push image to Google Container Registry
    - name: Build
      # Tagging w/ the commit SHA blocks the :latest tag on GCR
      run: |
        gcloud builds submit \
          --tag "gcr.io/$PROJECT_ID/$BRANCH_NAME:$SHA7" \
          --machine-type n1-highcpu-32 \
          --timeout 3600s \

    # Create instance template from container image
    - name: Create instance template
      run: |
        gcloud compute instance-templates create-with-container "zebrad-$SHORT_BRANCH_NAME-$SHA7" \
          --container-image "gcr.io/$PROJECT_ID/$BRANCH_NAME:$SHA7" \
          --machine-type n1-highmem-8 \
          --service-account cos-vm@zealous-zebra.iam.gserviceaccount.com \
          --scopes cloud-platform \
          --tags zebrad \

    # Run once: create firewall rule to allow healthchecks
    # - name: Create healthcheck firewall rule
    #   run: |
    #     gcloud compute firewall-rules create "allow-tracing-health-check" \
    #     --target-tags zebrad \
    #     --allow tcp:3000 \
    #     --source-ranges 130.211.0.0/22,35.191.0.0/16 \
    #     --description="Allow HTTP requests to our tracing endpoint from Google's probes" \

    # Run once: create firewall rule to allow incoming traffic to the nodes
    # - name: Create Zcash incoming traffic firewall rule
    #   run: |
    #     gcloud compute firewall-rules create "allow-zcash" \
    #     --target-tags zebrad \
    #     --allow tcp:8233,tcp:18233 \
    #     --source-ranges 0.0.0.0/0 \
    #     --description="Allow incoming Zcash traffic from anywhere" \

    # Deploy managed instance group using the new instance template
    # - name: Deploy managed instance group
    #   run: |
    #     gcloud compute instance-groups managed create \
    #       "zebrad-$SHORT_BRANCH_NAME-$SHA7" \
    #       --template "zebrad-$SHORT_BRANCH_NAME-$SHA7" \
    #       --health-check zebrad-tracing-filter \
    #       --initial-delay 30 \
    #       --region us-central1 \
    #       --size 2

    # Rolls out update to existing group using the new instance template
    - name: Update managed instance group
      run: |
        gcloud compute instance-groups managed rolling-action start-update \
          "zebrad-$SHORT_BRANCH_NAME" \
          --version template="zebrad-$SHORT_BRANCH_NAME-$SHA7" \
          --region us-central1 \
Turn off the project workflow, reorg some CI jobs (#451) * Remove 'assign to project' workflow Doesn't work with external PRs. * Reorg CI jobs a bit * Also upgrade gcloud sdk to version 295.0.0 2020-06-08 18:03:51 -07:00			`name: CI`

			`on:`
			`push:`
Scope deploys to main, gcloud branches; shorten initial delay 2020-06-18 23:14:10 -07:00			`branches:`
			`- main`
			`- gcloud`
Turn off the project workflow, reorg some CI jobs (#451) * Remove 'assign to project' workflow Doesn't work with external PRs. * Reorg CI jobs a bit * Also upgrade gcloud sdk to version 295.0.0 2020-06-08 18:03:51 -07:00
gcloud workflow to deploy containers via managed instance group Also default command to 'zebrad connect' until 'start' is fleshed out. 2020-06-15 01:32:51 -07:00			`env:`
			`PROJECT_ID: zealous-zebra`

Turn off the project workflow, reorg some CI jobs (#451) * Remove 'assign to project' workflow Doesn't work with external PRs. * Reorg CI jobs a bit * Also upgrade gcloud sdk to version 295.0.0 2020-06-08 18:03:51 -07:00			`jobs:`
			`build:`
Remove cloudbuild.yml, tidy gcloud deploy workflow 2020-06-15 02:16:18 -07:00			`name: Google Cloud / Test, Build, and Deploy`
Turn off the project workflow, reorg some CI jobs (#451) * Remove 'assign to project' workflow Doesn't work with external PRs. * Reorg CI jobs a bit * Also upgrade gcloud sdk to version 295.0.0 2020-06-08 18:03:51 -07:00			`runs-on: ubuntu-latest`
			`steps:`
gcloud workflow to deploy containers via managed instance group Also default command to 'zebrad connect' until 'start' is fleshed out. 2020-06-15 01:32:51 -07:00
			`- name: Checkout`
			`uses: actions/checkout@master`

			`- name: Set project and image names`
			`run: \|`
Remove cloudbuild.yml, tidy gcloud deploy workflow 2020-06-15 02:16:18 -07:00			`SHORT_BRANCH_NAME=$(expr $GITHUB_REF : './\(.\)') && \`
			`SHORT_BRANCH_NAME=${SHORT_BRANCH_NAME,,} && \`
			`BRANCH_NAME=$GITHUB_REPOSITORY/$SHORT_BRANCH_NAME && \`
gcloud workflow to deploy containers via managed instance group Also default command to 'zebrad connect' until 'start' is fleshed out. 2020-06-15 01:32:51 -07:00			`BRANCH_NAME=${BRANCH_NAME,,} && \`
Remove cloudbuild.yml, tidy gcloud deploy workflow 2020-06-15 02:16:18 -07:00			`echo "::set-env name=SHORT_BRANCH_NAME::$SHORT_BRANCH_NAME" && \`
gcloud workflow to deploy containers via managed instance group Also default command to 'zebrad connect' until 'start' is fleshed out. 2020-06-15 01:32:51 -07:00			`echo "::set-env name=BRANCH_NAME::$BRANCH_NAME" && \`
			`echo "::set-env name=SHA7::$(git rev-parse --short=7 $GITHUB_SHA)"`

			`# Setup gcloud CLI`
Turn off the project workflow, reorg some CI jobs (#451) * Remove 'assign to project' workflow Doesn't work with external PRs. * Reorg CI jobs a bit * Also upgrade gcloud sdk to version 295.0.0 2020-06-08 18:03:51 -07:00			`- uses: GoogleCloudPlatform/github-actions/setup-gcloud@master`
			`with:`
			`version: '295.0.0'`
gcloud workflow to deploy containers via managed instance group Also default command to 'zebrad connect' until 'start' is fleshed out. 2020-06-15 01:32:51 -07:00			`project_id: ${{ env.PROJECT_ID }}`
Turn off the project workflow, reorg some CI jobs (#451) * Remove 'assign to project' workflow Doesn't work with external PRs. * Reorg CI jobs a bit * Also upgrade gcloud sdk to version 295.0.0 2020-06-08 18:03:51 -07:00			`service_account_key: ${{ secrets.GCLOUD_AUTH }}`
gcloud workflow to deploy containers via managed instance group Also default command to 'zebrad connect' until 'start' is fleshed out. 2020-06-15 01:32:51 -07:00
			`# Build and push image to Google Container Registry`
			`- name: Build`
			`# Tagging w/ the commit SHA blocks the :latest tag on GCR`
Turn off the project workflow, reorg some CI jobs (#451) * Remove 'assign to project' workflow Doesn't work with external PRs. * Reorg CI jobs a bit * Also upgrade gcloud sdk to version 295.0.0 2020-06-08 18:03:51 -07:00			`run: \|`
gcloud workflow to deploy containers via managed instance group Also default command to 'zebrad connect' until 'start' is fleshed out. 2020-06-15 01:32:51 -07:00			`gcloud builds submit \`
			`--tag "gcr.io/$PROJECT_ID/$BRANCH_NAME:$SHA7" \`
			`--machine-type n1-highcpu-32 \`
			`--timeout 3600s \`

			`# Create instance template from container image`
			`- name: Create instance template`
			`run: \|`
Remove cloudbuild.yml, tidy gcloud deploy workflow 2020-06-15 02:16:18 -07:00			`gcloud compute instance-templates create-with-container "zebrad-$SHORT_BRANCH_NAME-$SHA7" \`
Add health check 2020-06-17 23:25:22 -07:00			`--container-image "gcr.io/$PROJECT_ID/$BRANCH_NAME:$SHA7" \`
Add 'zebrad' tags to instance templates And add 'one time' commands commented out for managing firewall rules. 2020-06-18 14:52:53 -07:00			`--machine-type n1-highmem-8 \`
gcloud workflow to deploy containers via managed instance group Also default command to 'zebrad connect' until 'start' is fleshed out. 2020-06-15 01:32:51 -07:00			`--service-account cos-vm@zealous-zebra.iam.gserviceaccount.com \`
			`--scopes cloud-platform \`
Add 'zebrad' tags to instance templates And add 'one time' commands commented out for managing firewall rules. 2020-06-18 14:52:53 -07:00			`--tags zebrad \`

			`# Run once: create firewall rule to allow healthchecks`
			`# - name: Create healthcheck firewall rule`
			`# run: \|`
			`# gcloud compute firewall-rules create "allow-tracing-health-check" \`
			`# --target-tags zebrad \`
			`# --allow tcp:3000 \`
			`# --source-ranges 130.211.0.0/22,35.191.0.0/16 \`
			`# --description="Allow HTTP requests to our tracing endpoint from Google's probes" \`

			`# Run once: create firewall rule to allow incoming traffic to the nodes`
			`# - name: Create Zcash incoming traffic firewall rule`
			`# run: \|`
			`# gcloud compute firewall-rules create "allow-zcash" \`
			`# --target-tags zebrad \`
			`# --allow tcp:8233,tcp:18233 \`
			`# --source-ranges 0.0.0.0/0 \`
			`# --description="Allow incoming Zcash traffic from anywhere" \`
gcloud workflow to deploy containers via managed instance group Also default command to 'zebrad connect' until 'start' is fleshed out. 2020-06-15 01:32:51 -07:00
			`# Deploy managed instance group using the new instance template`
Update existing managed instance groups on deploy 2020-06-19 00:26:31 -07:00			`# - name: Deploy managed instance group`
			`# run: \|`
			`# gcloud compute instance-groups managed create \`
			`# "zebrad-$SHORT_BRANCH_NAME-$SHA7" \`
			`# --template "zebrad-$SHORT_BRANCH_NAME-$SHA7" \`
			`# --health-check zebrad-tracing-filter \`
			`# --initial-delay 30 \`
			`# --region us-central1 \`
			`# --size 2`

			`# Rolls out update to existing group using the new instance template`
			`- name: Update managed instance group`
gcloud workflow to deploy containers via managed instance group Also default command to 'zebrad connect' until 'start' is fleshed out. 2020-06-15 01:32:51 -07:00			`run: \|`
Update existing managed instance groups on deploy 2020-06-19 00:26:31 -07:00			`gcloud compute instance-groups managed rolling-action start-update \`
			`"zebrad-$SHORT_BRANCH_NAME" \`
			`--version template="zebrad-$SHORT_BRANCH_NAME-$SHA7" \`
Add health check 2020-06-17 23:25:22 -07:00			`--region us-central1 \`