Chore: [AEA-0000] - tag release in jira as part of tag release workfl… #389
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: merge to main workflow | |
| on: | |
| push: | |
| branches: [main] | |
| env: | |
| BRANCH_NAME: ${{ github.event.ref.BRANCH_NAME }} | |
| jobs: | |
| get_config_values: | |
| uses: NHSDigital/eps-common-workflows/.github/workflows/get-repo-config.yml@383f3f9eaf3cb553ebcd74897bfed4d5e387629e | |
| with: | |
| verify_published_from_main_image: true | |
| quality_checks: | |
| uses: NHSDigital/eps-common-workflows/.github/workflows/quality-checks-devcontainer.yml@383f3f9eaf3cb553ebcd74897bfed4d5e387629e | |
| needs: [get_config_values] | |
| secrets: | |
| SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} | |
| with: | |
| pinned_image: ${{ needs.get_config_values.outputs.pinned_image }} | |
| get_commit_id: | |
| runs-on: ubuntu-22.04 | |
| outputs: | |
| commit_id: ${{ steps.commit_id.outputs.commit_id }} | |
| steps: | |
| - name: Get Commit ID | |
| id: commit_id | |
| run: | | |
| echo "commit_id=${{ github.sha }}" >> "$GITHUB_OUTPUT" | |
| tag_release: | |
| needs: [quality_checks, get_commit_id, get_config_values] | |
| uses: NHSDigital/eps-common-workflows/.github/workflows/tag-release-devcontainer.yml@7a89b111ae752548e8e3f3fbaeb89bd6ecca0698 | |
| permissions: | |
| id-token: write | |
| contents: write | |
| with: | |
| dry_run: true | |
| pinned_image: ${{ needs.get_config_values.outputs.pinned_image }} | |
| branch_name: main | |
| tag_format: ${{ needs.get_config_values.outputs.tag_format }} | |
| secrets: inherit | |
| package_code: | |
| needs: [tag_release, get_config_values] | |
| uses: ./.github/workflows/sam_package_code.yml | |
| with: | |
| pinned_image: ${{ needs.get_config_values.outputs.pinned_image }} | |
| release_dev: | |
| needs: [tag_release, package_code, get_commit_id, get_config_values] | |
| uses: ./.github/workflows/sam_release_code.yml | |
| with: | |
| pinned_image: ${{ needs.get_config_values.outputs.pinned_image }} | |
| ARTIFACT_BUCKET_PREFIX: ${{needs.tag_release.outputs.version_tag}} | |
| STACK_NAME: fhir-validator | |
| TARGET_ENVIRONMENT: dev | |
| BUILD_ARTIFACT: packaged_code | |
| VERSION_NUMBER: ${{needs.tag_release.outputs.version_tag}} | |
| COMMIT_ID: ${{needs.get_commit_id.outputs.commit_id}} | |
| LOG_LEVEL: INFO | |
| LOG_RETENTION_DAYS: 30 | |
| ENABLE_ALERTS: true | |
| secrets: | |
| CLOUD_FORMATION_DEPLOY_ROLE: ${{ secrets.DEV_CLOUD_FORMATION_DEPLOY_ROLE }} | |
| DEV_CLOUD_FORMATION_CHECK_VERSION_ROLE: ${{ secrets.DEV_CLOUD_FORMATION_CHECK_VERSION_ROLE }} | |
| INT_CLOUD_FORMATION_CHECK_VERSION_ROLE: ${{ secrets.INT_CLOUD_FORMATION_CHECK_VERSION_ROLE }} | |
| PROD_CLOUD_FORMATION_CHECK_VERSION_ROLE: ${{ secrets.PROD_CLOUD_FORMATION_CHECK_VERSION_ROLE }} | |
| DEV_CLOUD_FORMATION_EXECUTE_LAMBDA_ROLE: ${{ secrets.DEV_CLOUD_FORMATION_EXECUTE_LAMBDA_ROLE }} | |
| release_qa: | |
| needs: [tag_release, release_dev, package_code, get_commit_id, get_config_values] | |
| uses: ./.github/workflows/sam_release_code.yml | |
| with: | |
| pinned_image: ${{ needs.get_config_values.outputs.pinned_image }} | |
| ARTIFACT_BUCKET_PREFIX: ${{needs.tag_release.outputs.version_tag}} | |
| STACK_NAME: fhir-validator | |
| TARGET_ENVIRONMENT: qa | |
| BUILD_ARTIFACT: packaged_code | |
| VERSION_NUMBER: ${{needs.tag_release.outputs.version_tag}} | |
| COMMIT_ID: ${{needs.get_commit_id.outputs.commit_id}} | |
| LOG_LEVEL: INFO | |
| LOG_RETENTION_DAYS: 30 | |
| ENABLE_ALERTS: true | |
| secrets: | |
| CLOUD_FORMATION_DEPLOY_ROLE: ${{ secrets.QA_CLOUD_FORMATION_DEPLOY_ROLE }} |