Bruker ikke lenger cookie lokalt for å hente ut token (#1048) #577
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Deploy PROD | |
on: | |
push: | |
branches: | |
- 'main' | |
permissions: | |
contents: read | |
id-token: write | |
jobs: | |
build: | |
name: Build, push and deploy to prod-gcp | |
runs-on: ubuntu-latest | |
steps: | |
- name: Checkout code | |
uses: actions/checkout@v4 | |
- name: Read/save maven cache | |
uses: actions/cache@v4 | |
with: | |
path: ~/.github/repository | |
key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} | |
restore-keys: | | |
${{ runner.os }}-maven- | |
- name: Set up JDK 1.11 | |
uses: actions/setup-java@v4 | |
with: | |
distribution: 'temurin' | |
java-version: '21' | |
- name: Bygg med maven | |
env: | |
GITHUB_USERNAME: x-access-token | |
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
run: mvn -B --no-transfer-progress package --settings .m2/maven-settings.xml --file pom.xml | |
- name: Build and publish Docker image | |
id: docker-push | |
uses: nais/docker-build-push@v0 | |
with: | |
team: teamfamilie | |
identity_provider: ${{ secrets.NAIS_WORKLOAD_IDENTITY_PROVIDER }} | |
project_id: ${{ vars.NAIS_MANAGEMENT_PROJECT_ID }} | |
byosbom: target/classes/META-INF/sbom/application.cdx.json | |
- name: Post build failures to Slack | |
if: failure() | |
run: | | |
curl -X POST --data "{\"text\": \"Build av $GITHUB_REPOSITORY feilet - $GITHUB_SERVER_URL/$GITHUB_REPOSITORY/actions/runs/$GITHUB_RUN_ID\"}" $WEBHOOK_URL | |
env: | |
WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} | |
outputs: | |
image: ${{ steps.docker-push.outputs.image }} | |
deploy: | |
name: Deploy to GCP | |
needs: build | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
- name: Deploy til dev-gcp | |
uses: nais/deploy/actions/deploy@v2 | |
env: | |
CLUSTER: dev-gcp | |
RESOURCE: .deploy/nais-dev.yaml | |
IMAGE: ${{ needs.build.outputs.image }} | |
- name: Deploy til prod-gcp | |
uses: nais/deploy/actions/deploy@v2 | |
env: | |
CLUSTER: prod-gcp | |
RESOURCE: .deploy/nais-prod.yaml | |
IMAGE: ${{ needs.build.outputs.image }} | |
- name: Post deploy failures to Slack | |
if: failure() | |
run: | | |
curl -X POST --data "{\"text\": \"Deploy av $GITHUB_REPOSITORY feilet - $GITHUB_SERVER_URL/$GITHUB_REPOSITORY/actions/runs/$GITHUB_RUN_ID\"}" $WEBHOOK_URL | |
env: | |
MESSAGE: "Deploy av feilet" | |
WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} |