This repository was archived by the owner on Feb 19, 2024. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 35
84 lines (75 loc) · 3.39 KB
/
release-created.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
name: Start release process
on:
release:
types: [published]
permissions:
id-token: write
pull-requests: read
contents: read
jobs:
start_radixdlt_iac_release:
name: Start radixdlt-iac release ${{ github.event.release.tag_name }}
runs-on: ubuntu-22.04
environment: publish-artifacts
steps:
- name: Configure AWS credentials to fetch secrets
uses: aws-actions/configure-aws-credentials@97271860067ec931c45b8d104fbf0d15954ab85c
with:
role-to-assume: "arn:aws:iam::${{ secrets.SECRETS_ACCOUNT_ID }}:role/gh-radixdlt-secrets-read-access"
aws-region: "eu-west-2"
role-session-name: "radixdlt-release-radixdlt-iac-${{ github.run_number }}-${{ github.run_attempt }}"
- name: Fetch AWS secrets
uses: aws-actions/aws-secretsmanager-get-secrets@287592d14d9c9c48199db83dc182ae12af3df18e
with:
secret-ids: |
GH, github-actions/radixdlt/radixdlt/gpr-token
parse-json-secrets: true
- name: Trigger radixdlt/radixdlt-iac release ${{ github.event.release.tag_name }}
uses: peter-evans/repository-dispatch@ce5485de42c9b2622d2ed064be479e8ed65e76f4
with:
token: ${{ env.GH_GPR_TOKEN }}
repository: radixdlt/radixdlt-iac
event-type: start_release
client-payload: |
{
"ref": "${{ github.ref }}",
"release_tag": "${{ github.event.release.tag_name }}",
"release_url": "${{ github.event.release.html_url }}",
"release_job_url": "https://github.com/${{github.repository}}/actions/runs/${{github.run_id}}",
"is_prerelease": "${{ github.event.release.prerelease }}"
}
start_radixdlt_node_runner:
name: Start node-runner release ${{ github.event.release.tag_name }}
runs-on: ubuntu-22.04
environment: publish-artifacts
steps:
- name: Install AWS CLI
uses: unfor19/install-aws-cli-action@ee0eb151cf1bca186ccf8c35d314b08d62e0e878
with:
version: 2
- name: Configure AWS credentials to fetch secrets
uses: aws-actions/configure-aws-credentials@97271860067ec931c45b8d104fbf0d15954ab85c
with:
role-to-assume: "arn:aws:iam::${{ secrets.SECRETS_ACCOUNT_ID }}:role/gh-radixdlt-secrets-read-access"
aws-region: "eu-west-2"
role-session-name: "radixdlt-release-node-runner-${{ github.run_number }}-${{ github.run_attempt }}"
- name: Fetch AWS secrets
uses: aws-actions/aws-secretsmanager-get-secrets@287592d14d9c9c48199db83dc182ae12af3df18e
with:
secret-ids: |
GH, github-actions/radixdlt/radixdlt/gpr-token
parse-json-secrets: true
- name: Trigger radixdlt/node-runner release ${{ github.event.release.tag_name }}
uses: peter-evans/repository-dispatch@ce5485de42c9b2622d2ed064be479e8ed65e76f4
with:
token: ${{ env.GH_GPR_TOKEN }}
repository: radixdlt/node-runner
event-type: start_release
client-payload: |
{
"ref": "${{ github.ref }}",
"release_tag": "${{ github.event.release.tag_name }}",
"release_url": "${{ github.event.release.html_url }}",
"release_job_url": "https://github.com/${{github.repository}}/actions/runs/${{github.run_id}}",
"is_prerelease": "${{ github.event.release.prerelease }}"
}