Last active
August 31, 2022 04:56
-
-
Save gistlyn/338ee0d10636da5f470d97d10af763d7 to your computer and use it in GitHub Desktop.
jamstack-litestream-aws
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
version: "3.9" | |
services: | |
${APP_NAME}: | |
image: ghcr.io/${IMAGE_REPO}:${RELEASE_VERSION} | |
depends_on: | |
${APP_NAME}-litestream: | |
condition: service_healthy | |
restart: always | |
network_mode: bridge | |
ports: | |
- "80" | |
environment: | |
VIRTUAL_HOST: ${HOST_DOMAIN} | |
LETSENCRYPT_HOST: ${HOST_DOMAIN} | |
LETSENCRYPT_EMAIL: ${LETSENCRYPT_EMAIL} | |
DEPLOY_API: ${DEPLOY_API} | |
DEPLOY_CDN: ${DEPLOY_CDN} | |
volumes: | |
- ${APP_NAME}-mydb:/app/App_Data | |
${APP_NAME}-litestream: | |
image: litestream/litestream | |
entrypoint: ["/bin/sh", "-c"] | |
# Timeout of health check will need to depend on size of db, and speed of network to host. | |
healthcheck: | |
test: /usr/local/bin/litestream restore -if-db-not-exists -if-replica-exists -o /data/app.db s3://${AWS_S3_BUCKET}/MyApp.sqlite | |
timeout: 10m | |
retries: 1 | |
command: | |
- /usr/local/bin/litestream replicate /data/app.db s3://${AWS_S3_BUCKET}/MyApp.sqlite | |
environment: | |
LITESTREAM_ACCESS_KEY_ID: ${AWS_ACCESS_KEY_ID} | |
LITESTREAM_SECRET_ACCESS_KEY: ${AWS_SECRET_ACCESS_KEY} | |
volumes: | |
- ${APP_NAME}-mydb:/data | |
${APP_NAME}-migration: | |
image: ghcr.io/${IMAGE_REPO}:${RELEASE_VERSION} | |
restart: "no" | |
profiles: | |
- migration | |
command: --AppTasks=migrate | |
volumes: | |
- ${APP_NAME}-mydb:/app/App_Data | |
volumes: | |
${APP_NAME}-mydb: |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Release | |
permissions: | |
packages: write | |
on: | |
# Triggered on new GitHub Release | |
release: | |
types: [published] | |
# Triggered on every successful Build action | |
workflow_run: | |
workflows: ["Build"] | |
branches: [main,master] | |
types: | |
- completed | |
# Manual trigger for rollback to specific release or redeploy latest | |
workflow_dispatch: | |
inputs: | |
version: | |
default: latest | |
description: Tag you want to release. | |
required: true | |
jobs: | |
push_to_registry: | |
runs-on: ubuntu-20.04 | |
if: ${{ github.event.workflow_run.conclusion != 'failure' }} | |
steps: | |
# Checkout latest or specific tag | |
- name: checkout | |
if: ${{ github.event.inputs.version == '' || github.event.inputs.version == 'latest' }} | |
uses: actions/checkout@v2 | |
- name: checkout tag | |
if: ${{ github.event.inputs.version != '' && github.event.inputs.version != 'latest' }} | |
uses: actions/checkout@v2 | |
with: | |
ref: refs/tags/${{ github.event.inputs.version }} | |
- name: Replace Prod API and CDN URLs | |
env: | |
deploy_api: ${{ secrets.DEPLOY_API }} | |
deploy_cdn: ${{ secrets.DEPLOY_CDN }} | |
run: | | |
if [ -e ./.deploy/ci.prebuild.sh ] | |
then | |
chmod +x ./.deploy/ci.prebuild.sh | |
./.deploy/ci.prebuild.sh | |
else | |
echo "Skipping CI prebuild" | |
fi | |
- name: Setup node | |
uses: actions/setup-node@v1 | |
with: | |
node-version: 16 | |
# Build UI which is copied to local server wwwroot directory to match content | |
- name: Install and build npm | |
run: | | |
npm install | |
npm run build | |
[[ -f ./post.build.js ]] && node ./post.build.js | |
working-directory: ./ui | |
# Assign environment variables used in subsequent steps | |
- name: repository name fix | |
run: echo "image_repository_name=$(echo ${{ github.repository }} | tr '[:upper:]' '[:lower:]')" >> $GITHUB_ENV | |
# TAG_NAME defaults to 'latest' if not a release or manual deployment | |
- name: Assign version | |
run: | | |
echo "TAG_NAME=latest" >> $GITHUB_ENV | |
if [ "${{ github.event.release.tag_name }}" != "" ]; then | |
echo "TAG_NAME=${{ github.event.release.tag_name }}" >> $GITHUB_ENV | |
fi; | |
if [ "${{ github.event.inputs.version }}" != "" ]; then | |
echo "TAG_NAME=${{ github.event.inputs.version }}" >> $GITHUB_ENV | |
fi; | |
# Authenticate, build and push to GitHub Container Registry (ghcr.io) | |
- name: Login to GitHub Container Registry | |
uses: docker/login-action@v1 | |
with: | |
registry: ghcr.io | |
username: ${{ github.repository_owner }} | |
password: ${{ secrets.GITHUB_TOKEN }} | |
# Build and push new docker image, skip for manual redeploy other than 'latest' | |
- name: Build and push Docker images | |
uses: docker/build-push-action@v2.2.2 | |
if: ${{ github.event.inputs.version == '' || github.event.inputs.version == 'latest' }} | |
with: | |
file: Dockerfile | |
context: . | |
push: true | |
tags: ghcr.io/${{ env.image_repository_name }}:${{ env.TAG_NAME }} | |
# Deploy UI to GitHub Pages | |
- name: Deploy to GitHub Pages | |
if: ${{ env.deploy_cdn != '' }} | |
uses: peaceiris/actions-gh-pages@v3 | |
with: | |
github_token: ${{ secrets.GITHUB_TOKEN }} | |
publish_dir: ./api/MyApp/wwwroot | |
user_name: 'GitHub Action' | |
user_email: 'action@github.com' | |
deploy_via_ssh: | |
needs: push_to_registry | |
runs-on: ubuntu-20.04 | |
if: ${{ github.event.workflow_run.conclusion != 'failure' }} | |
steps: | |
# Checkout latest or specific tag | |
- name: checkout | |
if: ${{ github.event.inputs.version == '' || github.event.inputs.version == 'latest' }} | |
uses: actions/checkout@v2 | |
- name: checkout tag | |
if: ${{ github.event.inputs.version != '' && github.event.inputs.version != 'latest' }} | |
uses: actions/checkout@v2 | |
with: | |
ref: refs/tags/${{ github.event.inputs.version }} | |
# Assign environment variables used in subsequent steps | |
- name: repository name fix and env | |
run: | | |
echo "image_repository_name=$(echo ${{ github.repository }} | tr '[:upper:]' '[:lower:]')" >> $GITHUB_ENV | |
echo "TAG_NAME=latest" >> $GITHUB_ENV | |
if [ "${{ github.event.release.tag_name }}" != "" ]; then | |
echo "TAG_NAME=${{ github.event.release.tag_name }}" >> $GITHUB_ENV | |
fi; | |
if [ "${{ github.event.inputs.version }}" != "" ]; then | |
echo "TAG_NAME=${{ github.event.inputs.version }}" >> $GITHUB_ENV | |
fi; | |
# Populate docker-compose.yml with variables from build process, including TAG_NAME. | |
- name: docker-compose file prep | |
uses: danielr1996/envsubst-action@1.1.0 | |
env: | |
RELEASE_VERSION: ${{ env.TAG_NAME }} | |
IMAGE_REPO: ${{ env.image_repository_name }} | |
APP_NAME: ${{ github.event.repository.name }} | |
HOST_DOMAIN: ${{ secrets.DEPLOY_API }} | |
LETSENCRYPT_EMAIL: ${{ secrets.LETSENCRYPT_EMAIL }} | |
DEPLOY_API: ${{ secrets.DEPLOY_API }} | |
DEPLOY_CDN: ${{ secrets.DEPLOY_CDN }} | |
AWS_S3_BUCKET: ${{ secrets.AWS_S3_BUCKET }} | |
AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }} | |
AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }} | |
with: | |
input: .deploy/docker-compose-template.yml | |
output: .deploy/${{ github.event.repository.name }}-docker-compose.yml | |
# Copy only the docker-compose.yml to remote server home folder | |
- name: copy compose file via scp | |
uses: appleboy/scp-action@v0.1.1 | |
with: | |
host: ${{ secrets.DEPLOY_API }} | |
username: ${{ secrets.DEPLOY_USERNAME }} | |
port: 22 | |
key: ${{ secrets.DEPLOY_KEY }} | |
source: ".deploy/${{ github.event.repository.name }}-docker-compose.yml" | |
target: "~/" | |
- name: Run remote db migrations | |
uses: appleboy/ssh-action@v0.1.4 | |
env: | |
APPTOKEN: ${{ secrets.GITHUB_TOKEN }} | |
USERNAME: ${{ secrets.DEPLOY_USERNAME }} | |
with: | |
host: ${{ secrets.DEPLOY_API }} | |
username: ${{ secrets.DEPLOY_USERNAME }} | |
key: ${{ secrets.DEPLOY_KEY }} | |
port: 22 | |
envs: APPTOKEN,USERNAME | |
script: | | |
echo $APPTOKEN | docker login ghcr.io -u $USERNAME --password-stdin | |
docker-compose -f ~/.deploy/${{ github.event.repository.name }}-docker-compose.yml pull | |
docker-compose -f ~/.deploy/${{ github.event.repository.name }}-docker-compose.yml up ${{ github.event.repository.name }}-migration | |
# Deploy Docker image with ServiceStack application using `docker compose up` remotely | |
- name: remote docker-compose up via ssh | |
uses: appleboy/ssh-action@v0.1.4 | |
env: | |
APPTOKEN: ${{ secrets.GITHUB_TOKEN }} | |
USERNAME: ${{ secrets.DEPLOY_USERNAME }} | |
with: | |
host: ${{ secrets.DEPLOY_API }} | |
username: ${{ secrets.DEPLOY_USERNAME }} | |
key: ${{ secrets.DEPLOY_KEY }} | |
port: 22 | |
envs: APPTOKEN,USERNAME | |
script: | | |
echo $APPTOKEN | docker login ghcr.io -u $USERNAME --password-stdin | |
docker-compose -f ~/.deploy/${{ github.event.repository.name }}-docker-compose.yml pull | |
docker-compose -f ~/.deploy/${{ github.event.repository.name }}-docker-compose.yml up -d |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
dotnet add api/MyApp/MyApp.csproj package ServiceStack.OrmLite.Sqlite |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment