zecfoundation
/
zebra
mirror of https://github.com/ZcashFoundation/zebra.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
zebra/.github/workflows/zcashd-manual-deploy.yml

74 lines
2.9 KiB
YAML
Raw Normal View History

Add manual deploy workflow for zcashd images
2021-03-04 12:30:25 -08:00
name: Zcashd Manual Deploy
on:
workflow_dispatch:
inputs:
network:
default: 'testnet'
size:
default: 10
env:
refactor (actions): make better use of variables, secrets and versions (#3393) * style: use global variables and don't double print Remove repeated instances of global environment variables. Do not print ENV variables on the terminal as GitHub Actions already shows it. * fix (actions): Use fixed major versions for actions As actions get recurrent fixes, using a specific version causes more maintance on the pipelines. On the other hand, using @master versions could make some action unreliable, as breaking changes might be included without further notice, and even change behavior on a daily basis. * refactor: make better use of ENV variables A whole step with refex was being used to extract different variables from GitHub's environment. This gets depecrated in favor of using `rlespinasse/github-slug-action@v4` which has slug URL variables. A SLUG on a variable will: - put the variable content in lower case - replace any character by - except 0-9, a-z, ., and _ - remove leading and trailing - character - limit the string size to 63 characters This changes also takes care of using the Head or Base branch for deployments. This will allow us tomerge of workflows, as most steps on this deployment actions are very similar, with little variations between workflows. * fix (actions): use secrets for sensitive information * revert: use specific versions for dependabot Reverting commit 8c934099028e0651e464678c096d8d3815efe95c
2022-01-26 17:46:18 -08:00
PROJECT_ID: ${{ secrets.GCP_PROJECT_ID }}
Apply suggestions from code review Co-authored-by: Deirdre Connolly <deirdre@zfnd.org>
2021-03-05 11:37:54 -08:00
REGION: us-central1
refactor (actions): make better use of variables, secrets and versions (#3393) * style: use global variables and don't double print Remove repeated instances of global environment variables. Do not print ENV variables on the terminal as GitHub Actions already shows it. * fix (actions): Use fixed major versions for actions As actions get recurrent fixes, using a specific version causes more maintance on the pipelines. On the other hand, using @master versions could make some action unreliable, as breaking changes might be included without further notice, and even change behavior on a daily basis. * refactor: make better use of ENV variables A whole step with refex was being used to extract different variables from GitHub's environment. This gets depecrated in favor of using `rlespinasse/github-slug-action@v4` which has slug URL variables. A SLUG on a variable will: - put the variable content in lower case - replace any character by - except 0-9, a-z, ., and _ - remove leading and trailing - character - limit the string size to 63 characters This changes also takes care of using the Head or Base branch for deployments. This will allow us tomerge of workflows, as most steps on this deployment actions are very similar, with little variations between workflows. * fix (actions): use secrets for sensitive information * revert: use specific versions for dependabot Reverting commit 8c934099028e0651e464678c096d8d3815efe95c
2022-01-26 17:46:18 -08:00
MACHINE_TYPE: n2-standard-4
DEPLOY_SA: cos-vm@${{ secrets.GCP_PROJECT_ID }}.iam.gserviceaccount.com
Add manual deploy workflow for zcashd images
2021-03-04 12:30:25 -08:00
jobs:
deploy:
Update and rename zcashd-cd.yml to zcashd-manual-deploy.yml And rename the job name
2021-03-05 20:51:48 -08:00
name: Deploy zcashd nodes
Add manual deploy workflow for zcashd images
2021-03-04 12:30:25 -08:00
runs-on: ubuntu-latest
timeout-minutes: 30
steps:
Bump actions/checkout from 2.3.5 to 2.4.0 (#3009) Bumps [actions/checkout](https://github.com/actions/checkout) from 2.3.5 to 2.4.0. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v2.3.5...v2.4.0) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: teor <teor@riseup.net>
2021-11-04 22:08:39 -07:00
- uses: actions/checkout@v2.4.0
Security: Remove checkout credentials from GitHub actions (#2158) * Remove checkout credentials from CD action * Remove checkout credentials from CI action * Remove checkout credentials from coverage action * Remove checkout credentials from docs action * Remove checkout credentials from manual deploy action * Remove checkout credentials from test action * Remove checkout credentials from zcashd action
2021-05-16 16:32:38 -07:00
with:
persist-credentials: false
refactor (actions): make better use of variables, secrets and versions (#3393) * style: use global variables and don't double print Remove repeated instances of global environment variables. Do not print ENV variables on the terminal as GitHub Actions already shows it. * fix (actions): Use fixed major versions for actions As actions get recurrent fixes, using a specific version causes more maintance on the pipelines. On the other hand, using @master versions could make some action unreliable, as breaking changes might be included without further notice, and even change behavior on a daily basis. * refactor: make better use of ENV variables A whole step with refex was being used to extract different variables from GitHub's environment. This gets depecrated in favor of using `rlespinasse/github-slug-action@v4` which has slug URL variables. A SLUG on a variable will: - put the variable content in lower case - replace any character by - except 0-9, a-z, ., and _ - remove leading and trailing - character - limit the string size to 63 characters This changes also takes care of using the Head or Base branch for deployments. This will allow us tomerge of workflows, as most steps on this deployment actions are very similar, with little variations between workflows. * fix (actions): use secrets for sensitive information * revert: use specific versions for dependabot Reverting commit 8c934099028e0651e464678c096d8d3815efe95c
2022-01-26 17:46:18 -08:00
- name: Inject slug/short variables
uses: rlespinasse/github-slug-action@v4
Add manual deploy workflow for zcashd images
2021-03-04 12:30:25 -08:00
# Setup gcloud CLI
- name: Set up gcloud SDK environment
Bump google-github-actions/setup-gcloud from 0.4.0 to 0.5.0 (#3471) Bumps [google-github-actions/setup-gcloud](https://github.com/google-github-actions/setup-gcloud) from 0.4.0 to 0.5.0. - [Release notes](https://github.com/google-github-actions/setup-gcloud/releases) - [Changelog](https://github.com/google-github-actions/setup-gcloud/blob/master/CHANGELOG.md) - [Commits](https://github.com/google-github-actions/setup-gcloud/compare/v0.4.0...v0.5.0) --- updated-dependencies: - dependency-name: google-github-actions/setup-gcloud dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
2022-02-08 02:37:26 -08:00
uses: google-github-actions/setup-gcloud@v0.5.0
Add manual deploy workflow for zcashd images
2021-03-04 12:30:25 -08:00
with:
project_id: ${{ env.PROJECT_ID }}
service_account_key: ${{ secrets.GCLOUD_AUTH }}
# Create instance template from container image
- name: Create instance template
run: |
refactor (actions): make better use of variables, secrets and versions (#3393) * style: use global variables and don't double print Remove repeated instances of global environment variables. Do not print ENV variables on the terminal as GitHub Actions already shows it. * fix (actions): Use fixed major versions for actions As actions get recurrent fixes, using a specific version causes more maintance on the pipelines. On the other hand, using @master versions could make some action unreliable, as breaking changes might be included without further notice, and even change behavior on a daily basis. * refactor: make better use of ENV variables A whole step with refex was being used to extract different variables from GitHub's environment. This gets depecrated in favor of using `rlespinasse/github-slug-action@v4` which has slug URL variables. A SLUG on a variable will: - put the variable content in lower case - replace any character by - except 0-9, a-z, ., and _ - remove leading and trailing - character - limit the string size to 63 characters This changes also takes care of using the Head or Base branch for deployments. This will allow us tomerge of workflows, as most steps on this deployment actions are very similar, with little variations between workflows. * fix (actions): use secrets for sensitive information * revert: use specific versions for dependabot Reverting commit 8c934099028e0651e464678c096d8d3815efe95c
2022-01-26 17:46:18 -08:00
gcloud compute instance-templates create-with-container "zcashd-${{ env.GITHUB_HEAD_REF_SLUG || env.GITHUB_REF_SLUG }}-${{ env.GITHUB_SHA_SHORT }}" \
Apply suggestions from code review Co-authored-by: Deirdre Connolly <deirdre@zfnd.org>
2021-03-05 11:37:54 -08:00
--boot-disk-size 100GB \
Add manual deploy workflow for zcashd images
2021-03-04 12:30:25 -08:00
--container-image "electriccoinco/zcashd" \
--container-env ZCASHD_NETWORK="${{ github.event.inputs.network }}" \
refactor (actions): make better use of variables, secrets and versions (#3393) * style: use global variables and don't double print Remove repeated instances of global environment variables. Do not print ENV variables on the terminal as GitHub Actions already shows it. * fix (actions): Use fixed major versions for actions As actions get recurrent fixes, using a specific version causes more maintance on the pipelines. On the other hand, using @master versions could make some action unreliable, as breaking changes might be included without further notice, and even change behavior on a daily basis. * refactor: make better use of ENV variables A whole step with refex was being used to extract different variables from GitHub's environment. This gets depecrated in favor of using `rlespinasse/github-slug-action@v4` which has slug URL variables. A SLUG on a variable will: - put the variable content in lower case - replace any character by - except 0-9, a-z, ., and _ - remove leading and trailing - character - limit the string size to 63 characters This changes also takes care of using the Head or Base branch for deployments. This will allow us tomerge of workflows, as most steps on this deployment actions are very similar, with little variations between workflows. * fix (actions): use secrets for sensitive information * revert: use specific versions for dependabot Reverting commit 8c934099028e0651e464678c096d8d3815efe95c
2022-01-26 17:46:18 -08:00
--machine-type ${{ env.MACHINE_TYPE }} \
--service-account ${{ env.DEPLOY_SA }} \
Add manual deploy workflow for zcashd images
2021-03-04 12:30:25 -08:00
--scopes cloud-platform \
--tags zcashd \
# Check if our destination instance group exists already
- name: Check if instance group exists
id: does-group-exist
continue-on-error: true
run: |
refactor (actions): make better use of variables, secrets and versions (#3393) * style: use global variables and don't double print Remove repeated instances of global environment variables. Do not print ENV variables on the terminal as GitHub Actions already shows it. * fix (actions): Use fixed major versions for actions As actions get recurrent fixes, using a specific version causes more maintance on the pipelines. On the other hand, using @master versions could make some action unreliable, as breaking changes might be included without further notice, and even change behavior on a daily basis. * refactor: make better use of ENV variables A whole step with refex was being used to extract different variables from GitHub's environment. This gets depecrated in favor of using `rlespinasse/github-slug-action@v4` which has slug URL variables. A SLUG on a variable will: - put the variable content in lower case - replace any character by - except 0-9, a-z, ., and _ - remove leading and trailing - character - limit the string size to 63 characters This changes also takes care of using the Head or Base branch for deployments. This will allow us tomerge of workflows, as most steps on this deployment actions are very similar, with little variations between workflows. * fix (actions): use secrets for sensitive information * revert: use specific versions for dependabot Reverting commit 8c934099028e0651e464678c096d8d3815efe95c
2022-01-26 17:46:18 -08:00
gcloud compute instance-groups list | grep "zcashd-${{ env.GITHUB_HEAD_REF_SLUG || env.GITHUB_REF_SLUG }}-${{ github.event.inputs.network }}" | grep "${{ env.REGION }}"
Add manual deploy workflow for zcashd images
2021-03-04 12:30:25 -08:00
# Deploy new managed instance group using the new instance template
- name: Create managed instance group
if: steps.does-group-exist.outcome == 'failure'
run: |
gcloud compute instance-groups managed create \
refactor (actions): make better use of variables, secrets and versions (#3393) * style: use global variables and don't double print Remove repeated instances of global environment variables. Do not print ENV variables on the terminal as GitHub Actions already shows it. * fix (actions): Use fixed major versions for actions As actions get recurrent fixes, using a specific version causes more maintance on the pipelines. On the other hand, using @master versions could make some action unreliable, as breaking changes might be included without further notice, and even change behavior on a daily basis. * refactor: make better use of ENV variables A whole step with refex was being used to extract different variables from GitHub's environment. This gets depecrated in favor of using `rlespinasse/github-slug-action@v4` which has slug URL variables. A SLUG on a variable will: - put the variable content in lower case - replace any character by - except 0-9, a-z, ., and _ - remove leading and trailing - character - limit the string size to 63 characters This changes also takes care of using the Head or Base branch for deployments. This will allow us tomerge of workflows, as most steps on this deployment actions are very similar, with little variations between workflows. * fix (actions): use secrets for sensitive information * revert: use specific versions for dependabot Reverting commit 8c934099028e0651e464678c096d8d3815efe95c
2022-01-26 17:46:18 -08:00
"zcashd-${{ env.GITHUB_HEAD_REF_SLUG || env.GITHUB_REF_SLUG }}-${{ github.event.inputs.network }}" \
--template "zcashd-${{ env.GITHUB_HEAD_REF_SLUG || env.GITHUB_REF_SLUG }}-${{ env.GITHUB_SHA_SHORT }}" \
--region "${{ env.REGION }}" \
Add manual deploy workflow for zcashd images
2021-03-04 12:30:25 -08:00
--size "${{ github.event.inputs.size }}"
# Rolls out update to existing group using the new instance template
- name: Update managed instance group
if: steps.does-group-exist.outcome == 'success'
run: |
gcloud compute instance-groups managed rolling-action start-update \
refactor (actions): make better use of variables, secrets and versions (#3393) * style: use global variables and don't double print Remove repeated instances of global environment variables. Do not print ENV variables on the terminal as GitHub Actions already shows it. * fix (actions): Use fixed major versions for actions As actions get recurrent fixes, using a specific version causes more maintance on the pipelines. On the other hand, using @master versions could make some action unreliable, as breaking changes might be included without further notice, and even change behavior on a daily basis. * refactor: make better use of ENV variables A whole step with refex was being used to extract different variables from GitHub's environment. This gets depecrated in favor of using `rlespinasse/github-slug-action@v4` which has slug URL variables. A SLUG on a variable will: - put the variable content in lower case - replace any character by - except 0-9, a-z, ., and _ - remove leading and trailing - character - limit the string size to 63 characters This changes also takes care of using the Head or Base branch for deployments. This will allow us tomerge of workflows, as most steps on this deployment actions are very similar, with little variations between workflows. * fix (actions): use secrets for sensitive information * revert: use specific versions for dependabot Reverting commit 8c934099028e0651e464678c096d8d3815efe95c
2022-01-26 17:46:18 -08:00
"zcashd-${{ env.GITHUB_HEAD_REF_SLUG || env.GITHUB_REF_SLUG }}-${{ github.event.inputs.network }}" \
--version template="zcashd-${{ env.GITHUB_HEAD_REF_SLUG || env.GITHUB_REF_SLUG }}-${{ env.GITHUB_SHA_SHORT }}" \
refactor(cd): improve Docker and gcloud usage without Cloud Build (#3431) * refactor (cd): overall pipeline improvement - Use a more ENV configurable Dockerfile - Remove cloudbuild dependency - Use compute optimized machine types - Use SSD instead of normal hard drives - Move Sentry endpoint to secrets - Use a single yml for auto & manual deploy - Migrate to Google Artifact Registry * refactor (cd): overall pipeline improvement - Use a more ENV configurable Dockerfile - Remove cloudbuild dependency - Use compute optimized machine types - Use SSD instead of normal hard drives - Move Sentry endpoint to secrets - Use a single yml for auto & manual deploy - Migrate to Google Artifact Registry * refactor (cd): use newer google auth action * fix (cd): use newer secret as gcp credential * fix (docker): do not create extra directories * fix (docker): ignore .github for caching purposes * fix (docker): use latest rust * fix: use a better name for manual deployment * refactor (docker): use standard directories for executable * fix (cd): most systems expect a "latest" tag Caching from the latest image is one of the main reasons to add this extra tag. Before this commit, the inline cache was not being used. * fix (cd): push the build image and the cache separately The inline cache exporter only supports `min` cache mode. To enable `max` cache mode, push the image and the cache separately by using the registry cache exporter. This also allows for smaller release images. * fix (cd): remove unused GHA cache We're leveraging the registry to cache the actions, instead of using the 10GB limits from Github Actions cache storage * refactor (cd): use cargo-chef for caching rust deps * fix (release): use newer debian to reduce vulnerabilities * fix (cd): use same zone, region and service accounts * fix (cd): use same disk size and type for all deployments * refactor (cd): activate interactive shells Use interactive shells for manual and test deployments. This allow greater flexibility if troubleshooting is needed inside the machines * fix (docker): do not build with different settings Compiling might be slow because different steps are compiling the same code 2-4 times because of the variations * fix(cd): use Mainnet instead of mainnet * fix(docker): remove tests as a runtime dependency * fix(cd): use default service account with cloud-platform scope * fix(cd): keep compatibility with gcr.io To prevent conflicts between registries, and migrate when the time is right, we'll keep pushing to both registries and use github actions cache to prevent conflicts between artifacts. * fix(docker): do not download zcash params twice * feat(docker): add google OS Config agent Use a separate step to have better flexibility in case a better approach is available * fix(docker): allow to use zebrad as a command * feat: add an image to inherit from with zcash params * refactor(docker): use cached zcash params from previous build * imp(cd): add double safety measure for production
2022-02-08 16:50:13 -08:00
--region "${{ env.REGION }}"