add retry for spdx data (#1313) #695
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# This workflow deploys Napari Hub to staging and production and runs lighthouse-ci on the production deployment. | |
name: Deploy Changes to Cluster | |
on: | |
push: | |
branches: | |
- main | |
tags: | |
- 'v*' | |
# https://docs.github.com/en/actions/deployment/security-hardening-your-deployments/configuring-openid-connect-in-amazon-web-services | |
permissions: | |
id-token: write | |
contents: read | |
env: | |
FIXTURES_CACHE_KEY: e2e-fixtures-${{ github.run_id }}-${{ github.run_attempt }} | |
jobs: | |
prod: | |
name: deploy to production | |
runs-on: ubuntu-latest | |
if: github.repository == 'chanzuckerberg/napari-hub' && startsWith(github.ref, 'refs/tags/v') | |
steps: | |
- name: Configure AWS Credentials | |
uses: aws-actions/configure-aws-credentials@v2 | |
with: | |
aws-region: us-west-2 | |
role-to-assume: ${{ secrets.AWS_ROLE_TO_ASSUME }} | |
role-duration-seconds: 1200 | |
- name: Login to ECR | |
uses: docker/login-action@v1 | |
with: | |
registry: ${{ secrets.ECR_REPO }} | |
- name: Set up docker build environment | |
run: | | |
echo DOCKER_TAG=${GITHUB_REF_NAME} >> $GITHUB_ENV | |
- name: Deploy Changes to Prod | |
uses: chanzuckerberg/github-actions/.github/actions/[email protected] | |
env: | |
ENV: prod | |
with: | |
stack-name: 'prod' | |
create-tag: 'true' | |
tag: ${{ env.DOCKER_TAG }} | |
tfe-token: ${{ secrets.TFE_TOKEN }} | |
env: 'prod' | |
operation: 'create-or-update' | |
staging: | |
name: deploy to staging | |
runs-on: ubuntu-latest | |
if: github.repository == 'chanzuckerberg/napari-hub' && github.ref == 'refs/heads/main' | |
steps: | |
- name: configure aws credentials | |
uses: aws-actions/configure-aws-credentials@v2 | |
with: | |
aws-region: us-west-2 | |
role-to-assume: ${{ secrets.AWS_ROLE_TO_ASSUME }} | |
role-duration-seconds: 1200 | |
- name: Login to ECR | |
uses: docker/login-action@v1 | |
with: | |
registry: ${{ secrets.ECR_REPO }} | |
- name: Set up docker build environment | |
run: | | |
echo STACK_NAME=${GITHUB_REF_NAME} >> $GITHUB_ENV | |
echo DOCKER_TAG=${GITHUB_REF_NAME} >> $GITHUB_ENV | |
- name: Deploy Changes to Staging | |
uses: chanzuckerberg/github-actions/.github/actions/[email protected] | |
env: | |
ENV: staging | |
with: | |
stack-name: 'staging' | |
create-tag: 'true' | |
tag: ${{ env.DOCKER_TAG }} | |
tfe-token: ${{ secrets.TFE_TOKEN }} | |
env: 'staging' | |
operation: 'create-or-update' | |
lighthouse-ci: | |
runs-on: ubuntu-latest | |
needs: prod | |
steps: | |
- uses: actions/checkout@v3 | |
- uses: actions/setup-node@v3 | |
with: | |
node-version: 20.5.x | |
- run: npm install -g @lhci/[email protected] | |
- name: Run Lighthouse | |
run: lhci autorun --collect.url=https://www.napari-hub.org/ --output-dir=./.lighthouseci --upload.artifacts.ignoreFailure=true | |
- name: Upload Lighthouse reports | |
uses: actions/upload-artifact@v3 | |
with: | |
name: lighthouse-reports | |
path: ./.lighthouseci/ | |
prod-e2e-setup: | |
name: Production E2E Tests Setup | |
defaults: | |
run: | |
working-directory: frontend/ | |
runs-on: ubuntu-latest | |
needs: prod # Needs the production deploy to happen first before E2E tests can be ran | |
steps: | |
- name: Checkout Repo | |
uses: actions/checkout@v3 | |
- name: Setup Node | |
uses: actions/setup-node@v3 | |
with: | |
node-version: 20.5.x | |
- name: Get Yarn cache directory path | |
id: yarn-cache-dir-path | |
run: echo "dir=$(yarn cache dir)" >> $GITHUB_OUTPUT | |
# cache both yarn-lock and node_modules | |
- name: Setup Yarn cache | |
uses: actions/cache@v3 | |
id: yarn-cache | |
with: | |
path: | | |
**/node_modules | |
${{ steps.yarn-cache-dir-path.outputs.dir }} | |
key: ${{ runner.os }}-yarn-${{ hashFiles('**/yarn.lock') }} | |
restore-keys: | | |
${{ runner.os }}-yarn- | |
# --prefer-offline forces yarn to use cache if available | |
- name: Install dependencies with yarn | |
# if: steps.yarn-cache.outputs.cache-hit != 'true' | |
run: yarn install --prefer-offline --frozen-lockfile | |
- name: Cache playwright binaries | |
uses: actions/cache@v3 | |
id: playwright-cache | |
with: | |
path: ~/.cache/ms-playwright | |
key: playwright-${{ hashFiles('**/yarn.lock') }} | |
- name: Install playwright | |
# if: steps.playwright-cache.outputs.cache-hit != 'true' | |
run: npx playwright install --with-deps | |
- name: Setting up local build cache | |
uses: actions/cache@v3 | |
with: | |
path: frontend/.next | |
key: local-build-${{ hashFiles('**/next.config.js') }}-${{ hashFiles('frontend/src') }}-${{ hashFiles('**/yarn.lock') }} | |
- name: Setting up fixture cache | |
uses: actions/cache@v3 | |
with: | |
path: frontend/e2e/fixtures | |
key: ${{ env.FIXTURES_CACHE_KEY }} | |
- name: Fetch fixture data | |
env: | |
ENV: prod | |
run: node scripts/fetch-e2e-fixtures | |
prod-e2e: | |
name: E2E tests ${{ matrix.browser }} ${{ matrix.shardCurrent }} / ${{ matrix.shardTotal }} | |
defaults: | |
run: | |
working-directory: frontend/ | |
runs-on: ubuntu-latest | |
needs: prod-e2e-setup | |
concurrency: | |
group: ${{ github.ref }}-${{ matrix.browser }}-${{ matrix.shardCurrent }}-${{ matrix.shardTotal }} | |
cancel-in-progress: true | |
strategy: | |
fail-fast: false | |
matrix: | |
# browser: [chrome, firefox, safari] | |
browser: [chrome] | |
shardCurrent: [1, 2, 3, 4, 5] | |
shardTotal: [5] | |
steps: | |
- name: 25 minutes wait # Wait 25 mins before running E2E tests to let deployment changes on AWS propigate | |
run: sleep 1500 # Sleep time in seconds (25 minutes * 60 seconds = 1500 seconds) | |
- name: Checkout Repo | |
uses: actions/checkout@v3 | |
- name: Setup Node | |
uses: actions/setup-node@v3 | |
with: | |
node-version: 20.5.x | |
- name: Get Yarn cache directory path | |
id: yarn-cache-dir-path | |
run: echo "dir=$(yarn cache dir)" >> $GITHUB_OUTPUT | |
# cache both yarn-lock and node_modules | |
- name: Load yarn cache | |
uses: actions/cache@v3 | |
id: yarn-cache | |
with: | |
path: | | |
**/node_modules | |
${{ steps.yarn-cache-dir-path.outputs.dir }} | |
key: ${{ runner.os }}-yarn-${{ hashFiles('**/yarn.lock') }} | |
restore-keys: | | |
${{ runner.os }}-yarn- | |
- name: Load cached playwright binaries | |
uses: actions/cache@v3 | |
id: playwright-cache | |
with: | |
path: | | |
~/.cache/ms-playwright | |
key: playwright-${{ hashFiles('**/yarn.lock') }} | |
- name: Load fixtures cache | |
uses: actions/cache@v3 | |
with: | |
path: frontend/e2e/fixtures | |
key: ${{ env.FIXTURES_CACHE_KEY }} | |
- name: Run E2E Tests | |
env: | |
BROWSER: ${{ matrix.browser }} | |
ENV: prod | |
run: yarn e2e:ci --shard ${{ matrix.shardCurrent }}/${{ matrix.shardTotal }} | |
- name: Upload artifacts | |
if: ${{ failure() }} | |
uses: actions/[email protected] | |
with: | |
name: e2e-artifacts | |
path: frontend/e2e/report | |
retention-days: 1 |