bcgov
diff --git a/‎.github/CODEOWNERS
Lines changed: 4 additions & 0 deletions b/‎.github/CODEOWNERS
Lines changed: 4 additions & 0 deletions
diff --git a/‎.github/actions/build-push-container/action.yaml
Lines changed: 1 addition & 1 deletion b/‎.github/actions/build-push-container/action.yaml
Lines changed: 1 addition & 1 deletion
diff --git a/‎.github/actions/deploy-to-environment/action.yaml
Lines changed: 7 additions & 2 deletions b/‎.github/actions/deploy-to-environment/action.yaml
Lines changed: 7 additions & 2 deletions
diff --git a/‎.github/actions/push-to-registry/action.yaml
Lines changed: 1 addition & 1 deletion b/‎.github/actions/push-to-registry/action.yaml
Lines changed: 1 addition & 1 deletion
diff --git a/‎.github/environments/values.pr.yaml
Lines changed: 17 additions & 0 deletions b/‎.github/environments/values.pr.yaml
Lines changed: 17 additions & 0 deletions
diff --git a/‎.github/workflows/charts-release.yaml
Lines changed: 1 addition & 8 deletions b/‎.github/workflows/charts-release.yaml
Lines changed: 1 addition & 8 deletions
diff --git a/‎.github/workflows/codeql-analysis.yaml
Lines changed: 1 addition & 1 deletion b/‎.github/workflows/codeql-analysis.yaml
Lines changed: 1 addition & 1 deletion
diff --git a/‎.github/workflows/on-pr-closed.yaml
Lines changed: 49 additions & 0 deletions b/‎.github/workflows/on-pr-closed.yaml
Lines changed: 49 additions & 0 deletions
diff --git a/‎.github/workflows/on-pr-opened.yaml
Lines changed: 63 additions & 0 deletions b/‎.github/workflows/on-pr-opened.yaml
Lines changed: 63 additions & 0 deletions
diff --git a/‎.github/workflows/on-push.yaml
Lines changed: 20 additions & 11 deletions b/‎.github/workflows/on-push.yaml
Lines changed: 20 additions & 11 deletions
@@ -0,0 +1,4 @@
+# These users will be the default owners for everything in the repo.
+# Unless a later match takes precedence, the following users will be
+# requested for review when someone opens a pull request.
+* @jujaga @kamorel @TimCsaky
@@ -24,7 +24,7 @@ runs:
   using: composite
   steps:
     - name: Checkout repository
-      uses: actions/checkout@v2
+      uses: actions/checkout@v3
 
     - name: Login to Container Registry
       uses: docker/login-action@v1
 
@@ -7,6 +7,9 @@ inputs:
   acronym:
     description: Application acronym
     required: true
+  environment:
+    description: Logical Github Environment
+    required: true
   job_name:
     description: Job/Instance name
     required: true
@@ -27,7 +30,7 @@ runs:
   using: composite
   steps:
     - name: Checkout repository
-      uses: actions/checkout@v2
+      uses: actions/checkout@v3
 
     - name: Login to OpenShift Cluster
       uses: redhat-actions/oc-login@v1
@@ -43,8 +46,10 @@ runs:
         helm upgrade --install --atomic ${{ inputs.job_name }} ${{ inputs.app_name }}
         --namespace ${{ inputs.namespace_prefix }}-${{ inputs.namespace_environment }}
         --repo https://bcgov.github.io/common-object-management-service
-        --values ./.github/environments/values.${{ inputs.namespace_environment }}.yaml
+        --values ./.github/environments/values.${{ inputs.environment }}.yaml
         --set image.repository=ghcr.io/${{ github.repository_owner }}
         --set image.tag=sha-$(git rev-parse --short HEAD)
         --set route.host=${{ inputs.acronym }}-${{ inputs.namespace_environment }}-${{ inputs.job_name }}.apps.silver.devops.gov.bc.ca
         --set config.configMap.OBJECTSTORAGE_KEY=${{ inputs.acronym }}/${{ inputs.namespace_environment }}
+        --timeout 10m
+        --wait
@@ -28,7 +28,7 @@ runs:
   using: composite
   steps:
     - name: Checkout repository
-      uses: actions/checkout@v2
+      uses: actions/checkout@v3
 
     - name: Login to Source Container Registry
       if: inputs.source_username != ''
 
@@ -0,0 +1,17 @@
+---
+features:
+  basicAuth: true
+  oidcAuth: true
+
+patroni:
+  enabled: true
+  replicaCount: 2
+  resources:
+    limits:
+      cpu: 250m
+      memory: 384Mi
+    requests:
+      cpu: 50m
+      memory: 192Mi
+  persistentVolume:
+    enabled: false
@@ -13,20 +13,13 @@ jobs:
     steps:
       - name: Checkout
         uses: actions/checkout@v3
-        with:
-          fetch-depth: 0
 
       - name: Configure Git
         run: |
           git config user.name "$GITHUB_ACTOR"
           git config user.email "$GITHUB_ACTOR@users.noreply.github.com"
 
-      - name: Install Helm
-        uses: azure/setup-helm@v1
-        with:
-          version: v3.8.2
-
       - name: Run chart-releaser
-        uses: helm/chart-releaser-action@v1.4.0
+        uses: helm/chart-releaser-action@v1
         env:
           CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
@@ -42,7 +42,7 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@v2
+        uses: actions/checkout@v3
 
       # Initializes the CodeQL tools for scanning.
       - name: Initialize CodeQL
 
@@ -0,0 +1,49 @@
+name: Pull Request Closed
+
+env:
+  ACRONYM: coms
+  APP_NAME: common-object-management-service
+  NAMESPACE_PREFIX: bb17f9
+
+on:
+  pull_request:
+    branches:
+      - master
+    types:
+      - closed
+
+jobs:
+  remove-pr-dev:
+    name: Remove PR build from dev namespace
+    if: "! github.event.pull_request.head.repo.fork"
+    environment:
+      name: pr
+      url: https://${{ env.ACRONYM }}-dev-pr-${{ github.event.number }}.apps.silver.devops.gov.bc.ca
+    runs-on: ubuntu-latest
+    timeout-minutes: 12
+    steps:
+    - name: Checkout
+      uses: actions/checkout@v3
+    - name: Login to OpenShift Cluster
+      uses: redhat-actions/oc-login@v1
+      with:
+        openshift_server_url: ${{ secrets.OPENSHIFT_SERVER }}
+        openshift_token: ${{ secrets.OPENSHIFT_TOKEN }}
+        insecure_skip_tls_verify: true
+        namespace: ${{ env.NAMESPACE_PREFIX }}-dev
+    - name: Remove PR Deployment
+      shell: bash
+      run: |
+        helm uninstall --namespace ${{ env.NAMESPACE_PREFIX }}-dev pr-${{ github.event.number }} --timeout 10m --wait
+        oc delete --namespace ${{ env.NAMESPACE_PREFIX }}-dev cm,secret --selector app.kubernetes.io/instance=pr-${{ github.event.number }}
+    - name: Remove Release Comment on PR
+      uses: marocchino/sticky-pull-request-comment@v2
+      with:
+        header: release
+        delete: true
+    - name: Remove Github Deployment Environment
+      uses: strumwolf/delete-deployment-environment@v2
+      with:
+        environment: pr
+        onlyRemoveDeployments: true
+        token: ${{ secrets.GITHUB_TOKEN }}
@@ -0,0 +1,63 @@
+name: Pull Request Opened
+
+env:
+  ACRONYM: coms
+  APP_NAME: common-object-management-service
+  NAMESPACE_PREFIX: bb17f9
+
+on:
+  pull_request:
+    branches:
+      - master
+    types:
+      - opened
+      - reopened
+      - synchronize
+
+jobs:
+  build:
+    name: Build & Push to GHCR
+    if: "! github.event.pull_request.head.repo.fork"
+    runs-on: ubuntu-latest
+    timeout-minutes: 10
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v3
+      - name: Build & Push to GHCR
+        uses: ./.github/actions/build-push-container
+        with:
+          context: .
+          image_name: ${{ env.APP_NAME }}
+          registry: ghcr.io
+          username: ${{ github.repository_owner }}
+          token: ${{ secrets.GITHUB_TOKEN }}
+
+  deploy-pr-dev:
+    name: Deploy Pull Request to Dev
+    environment:
+      name: pr
+      url: https://${{ env.ACRONYM }}-dev-pr-${{ github.event.number }}.apps.silver.devops.gov.bc.ca
+    runs-on: ubuntu-latest
+    needs: build
+    timeout-minutes: 12
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v3
+      - name: Deploy to Dev
+        uses: ./.github/actions/deploy-to-environment
+        with:
+          app_name: ${{ env.APP_NAME }}
+          acronym: ${{ env.ACRONYM }}
+          environment: pr
+          job_name: pr-${{ github.event.number }}
+          namespace_prefix: ${{ env.NAMESPACE_PREFIX }}
+          namespace_environment: dev
+          openshift_server: ${{ secrets.OPENSHIFT_SERVER }}
+          openshift_token: ${{ secrets.OPENSHIFT_TOKEN }}
+      - name: Release Comment on PR
+        uses: marocchino/sticky-pull-request-comment@v2
+        if: success()
+        with:
+          header: release
+          message: |
+            Release ${{ github.sha }} deployed at <https://${{ env.ACRONYM }}-dev-pr-${{ github.event.number }}.apps.silver.devops.gov.bc.ca>
@@ -21,7 +21,7 @@ jobs:
     timeout-minutes: 10
     steps:
       - name: Checkout
-        uses: actions/checkout@v2
+        uses: actions/checkout@v3
       - name: Check Dockerhub Secrets
         id: check-secrets
         run: |
@@ -54,7 +54,7 @@ jobs:
     timeout-minutes: 10
     steps:
       - name: Checkout
-        uses: actions/checkout@v2
+        uses: actions/checkout@v3
       - name: Push to Registry
         uses: ./.github/actions/push-to-registry
         with:
@@ -68,18 +68,21 @@ jobs:
 
   deploy-dev:
     name: Deploy to Dev
-    environment: dev
+    environment:
+      name: dev
+      url: https://${{ env.ACRONYM }}-dev-master.apps.silver.devops.gov.bc.ca
     runs-on: ubuntu-latest
     needs: build
-    timeout-minutes: 10
+    timeout-minutes: 12
     steps:
       - name: Checkout
-        uses: actions/checkout@v2
+        uses: actions/checkout@v3
       - name: Deploy to Dev
         uses: ./.github/actions/deploy-to-environment
         with:
           app_name: ${{ env.APP_NAME }}
           acronym: ${{ env.ACRONYM }}
+          environment: dev
           job_name: master
           namespace_prefix: ${{ env.NAMESPACE_PREFIX }}
           namespace_environment: dev
@@ -88,20 +91,23 @@ jobs:
 
   deploy-test:
     name: Deploy to Test
-    environment: test
+    environment:
+      name: test
+      url: https://${{ env.ACRONYM }}-test-master.apps.silver.devops.gov.bc.ca
     runs-on: ubuntu-latest
     needs:
       - build
       - deploy-dev
-    timeout-minutes: 10
+    timeout-minutes: 12
     steps:
       - name: Checkout
-        uses: actions/checkout@v2
+        uses: actions/checkout@v3
       - name: Deploy to Test
         uses: ./.github/actions/deploy-to-environment
         with:
           app_name: ${{ env.APP_NAME }}
           acronym: ${{ env.ACRONYM }}
+          environment: test
           job_name: master
           namespace_prefix: ${{ env.NAMESPACE_PREFIX }}
           namespace_environment: test
@@ -110,21 +116,24 @@ jobs:
 
   deploy-prod:
     name: Deploy to Prod
-    environment: prod
+    environment:
+      name: prod
+      url: https://${{ env.ACRONYM }}-prod-master.apps.silver.devops.gov.bc.ca
     runs-on: ubuntu-latest
     needs:
       - build
       - deploy-dev
       - deploy-test
-    timeout-minutes: 10
+    timeout-minutes: 12
     steps:
       - name: Checkout
-        uses: actions/checkout@v2
+        uses: actions/checkout@v3
       - name: Deploy to Prod
         uses: ./.github/actions/deploy-to-environment
         with:
           app_name: ${{ env.APP_NAME }}
           acronym: ${{ env.ACRONYM }}
+          environment: prod
           job_name: master
           namespace_prefix: ${{ env.NAMESPACE_PREFIX }}
           namespace_environment: prod