Upstream/bitwarden-browser
1
0
Fork 0
mirror of https://github.com/bitwarden/browser.git synced 2025-01-31 22:51:28 +01:00
Code Issues Projects Releases Wiki Activity

DEVOPS-1843 Fix US DEV Web Vault deploys one commit behind (#8458)

Browse Source 
* DEVOPS-1843 REFACTOR: Trigger web vault deploy step to send the build-web run-id to deploy-web workflow

* DEVOPS-1843 ADD: build-web-run-id input to deploy-web workflow to download specific run_id artifact

* DEVOPS-1843 FIX: build-web-run-id input in build-web workflow

* DEVOPS-1843 REFACTOR: build-web-run-id parameter type to number

* DEVOPS-1843 ADD: build-web-run-id input to deploy-web workflow to workflow_dispatch

* DEVOPS-1843 FIX: build-web-run-id type in deploy-web.yml

* DEVOPS-1843 REFACTOR: web vault deploy action to use GitHub Run ID

* DEVOPS-1843 REFACTOR: cloud asset download steps in deploy-web.yml

* DEVOPS-1843 REFACTOR: description for build-web workflow Run ID

Co-authored-by: MtnBurrit0 <77340197+mimartin12@users.noreply.github.com>

---------

Co-authored-by: MtnBurrit0 <77340197+mimartin12@users.noreply.github.com>
This commit is contained in:
Alex Urbina 2024-03-25 11:05:25 -06:00 committed by GitHub
parent bd0e3dd0aa
commit 2ae6fbe275
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
2 changed files with 36 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
.github/workflows/build-web.yml vendored
View File

@ -299,7 +299,7 @@ jobs:
keyvault: "bitwarden-ci" keyvault: "bitwarden-ci"
secrets: "github-pat-bitwarden-devops-bot-repo-scope" secrets: "github-pat-bitwarden-devops-bot-repo-scope"
- name: Trigger web vault deploy - name: Trigger web vault deploy using GitHub Run ID
uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1 uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1
with: with:
github-token: ${{ steps.retrieve-secret-pat.outputs.github-pat-bitwarden-devops-bot-repo-scope }} github-token: ${{ steps.retrieve-secret-pat.outputs.github-pat-bitwarden-devops-bot-repo-scope }}
@ -311,7 +311,7 @@ jobs:
ref: 'main', ref: 'main',
inputs: { inputs: {
'environment': 'USDEV', 'environment': 'USDEV',
'branch-or-tag': 'main' 'build-web-run-id': '${{ github.run_id }}'
} }
}) })

34
.github/workflows/deploy-web.yml vendored
View File

@ -27,6 +27,10 @@ on:
description: "Debug mode" description: "Debug mode"
type: boolean type: boolean
default: true default: true
build-web-run-id:
description: "Build-web workflow Run ID to use for artifact download"
type: string
required: false
workflow_call: workflow_call:
inputs: inputs:
@ -46,6 +50,10 @@ on:
description: "Debug mode" description: "Debug mode"
type: boolean type: boolean
default: true default: true
build-web-run-id:
description: "Build-web workflow Run ID to use for artifact download"
type: string
required: false
permissions: permissions:
deployments: write deployments: write
@ -168,7 +176,20 @@ jobs:
env: env:
_ENVIRONMENT_ARTIFACT: ${{ needs.setup.outputs.environment-artifact }} _ENVIRONMENT_ARTIFACT: ${{ needs.setup.outputs.environment-artifact }}
steps: steps:
- name: 'Download latest cloud asset using GitHub Run ID: ${{ inputs.build-web-run-id }}'
if: ${{ inputs.build-web-run-id }}
uses: bitwarden/gh-actions/download-artifacts@main
id: download-latest-artifacts
continue-on-error: true
with:
workflow: build-web.yml
path: apps/web
workflow_conclusion: success
run_id: ${{ inputs.build-web-run-id }}
artifacts: ${{ env._ENVIRONMENT_ARTIFACT }}
- name: 'Download latest cloud asset from branch/tag: ${{ inputs.branch-or-tag }}' - name: 'Download latest cloud asset from branch/tag: ${{ inputs.branch-or-tag }}'
if: ${{ !inputs.build-web-run-id }}
uses: bitwarden/gh-actions/download-artifacts@main uses: bitwarden/gh-actions/download-artifacts@main
id: download-artifacts id: download-artifacts
continue-on-error: true continue-on-error: true
@ -249,7 +270,20 @@ jobs:
keyvault: ${{ needs.setup.outputs.retrieve-secrets-keyvault }} keyvault: ${{ needs.setup.outputs.retrieve-secrets-keyvault }}
secrets: "sa-bitwarden-web-vault-name,sp-bitwarden-web-vault-password,sp-bitwarden-web-vault-appid,sp-bitwarden-web-vault-tenant" secrets: "sa-bitwarden-web-vault-name,sp-bitwarden-web-vault-password,sp-bitwarden-web-vault-appid,sp-bitwarden-web-vault-tenant"
- name: 'Download latest cloud asset using GitHub Run ID: ${{ inputs.build-web-run-id }}'
if: ${{ inputs.build-web-run-id }}
uses: bitwarden/gh-actions/download-artifacts@main
id: download-latest-artifacts
continue-on-error: true
with:
workflow: build-web.yml
path: apps/web
workflow_conclusion: success
run_id: ${{ inputs.build-web-run-id }}
artifacts: ${{ env._ENVIRONMENT_ARTIFACT }}
- name: 'Download cloud asset from branch/tag: ${{ inputs.branch-or-tag }}' - name: 'Download cloud asset from branch/tag: ${{ inputs.branch-or-tag }}'
if: ${{ !inputs.build-web-run-id }}
uses: bitwarden/gh-actions/download-artifacts@main uses: bitwarden/gh-actions/download-artifacts@main
with: with:
workflow: build-web.yml workflow: build-web.yml