add prod deployment

Author: Mubangizi

.github/workflows/prod.yml

@@ -0,0 +1,139 @@
+---
+name: Prod
+
+on:
+  release:
+    types:
+      - released
+      - prereleased
+  push:
+    branches:
+      - deploy/gcp
+
+jobs:
+  build:
+    outputs:
+      image: ${{ steps.export.outputs.image }}
+      tag: ${{ steps.export.outputs.tag }}
+
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          ref: master # Reference branch
+
+      - name: Install (Buildx)
+        uses: docker/setup-buildx-action@v3
+
+      - name: Login (GCP)
+        uses: google-github-actions/auth@v2
+        with:
+          credentials_json: ${{ secrets.CREDENTIALS_JSON }}
+
+      - name: Install (Gcloud)
+        uses: google-github-actions/setup-gcloud@v1
+        with:
+          project_id: crane-cloud-274413
+          install_components: "gke-gcloud-auth-plugin"
+
+      - name: Login (GCR)
+        run: gcloud auth configure-docker
+
+      - id: meta
+        name: Tag
+        uses: docker/metadata-action@v3
+        with:
+          flavor: |
+            latest=true
+          images: gcr.io/crane-cloud-274413/monitoring-api
+          tags: |
+            type=ref,event=branch
+            type=ref,event=pr
+            type=semver,pattern={{version}}
+            type=semver,pattern={{major}}.{{minor}}
+            type=sha
+
+      - name: Build
+        uses: docker/build-push-action@v2
+        with:
+          cache-from: type=gha
+          cache-to: type=gha,mode=max
+          context: .
+          file: docker/prod/Dockerfile
+          labels: ${{ steps.meta.outputs.labels }}
+          push: true
+          tags: ${{ steps.meta.outputs.tags }}
+
+      - id: export
+        name: Export
+        uses: actions/github-script@v5
+        with:
+          script: |
+            const metadata = JSON.parse(`${{ steps.meta.outputs.json }}`)
+            const fullUrl = metadata.tags.find((t) => t.includes(':sha-'))
+            if (fullUrl == null) {
+              core.error('Unable to find sha tag of image')
+            } else {
+              const tag = fullUrl.split(':')[1]
+              core.setOutput('image', fullUrl)
+              core.setOutput('tag', tag)
+            }
+
+  Production:
+    name: Deploy (Production)
+
+    needs:
+      - build
+
+    runs-on: ubuntu-latest
+
+    env:
+      namespace: cranecloud-prod
+
+    steps:
+      - name: Clone
+        uses: actions/checkout@v2
+
+      - name: Login (GCP)
+        uses: google-github-actions/auth@v2
+        with:
+          credentials_json: ${{ secrets.CREDENTIALS_JSON }}
+
+      - name: Install (Gcloud)
+        uses: google-github-actions/setup-gcloud@v1
+        with:
+          project_id: crane-cloud-274413
+          install_components: "gke-gcloud-auth-plugin"
+
+      - name: Login (Kubernetes Cluster)
+        uses: google-github-actions/get-gke-credentials@v1
+        with:
+          cluster_name: staging-cluster
+          location: us-central1-a
+          project_id: crane-cloud-274413
+
+      - name: Add Repo (cranecloud)
+        run: |
+          helm repo add cranecloud https://crane-cloud.github.io/helm-charts/
+
+      - name: Helm Release
+        run: |
+          helm upgrade --install \
+          monitoring-api cranecloud/cranecloud \
+          --values helm/values.prod.yaml \
+          --namespace $namespace \
+          --set image.tag="${{ needs.build.outputs.tag }}" \
+          --set environment.DATABASE_URI="${{ secrets.PRODUCTION_DATABASE_URI }}" \
+          --set environment.DATABASE_USER="${{ secrets.PRODUCTION_DATABASE_USER }}" \
+          --set environment.TEST_DATABASE_URL="${{ secrets.PRODUCTION_TEST_DATABASE_URL }}" \
+          --set environment.FLASK_APP_SALT="${{ secrets.PRODUCTION_JWT_SALT }}" \
+          --set environment.FLASK_APP_SECRET="${{ secrets.PRODUCTION_JWT_SALT }}" \
+          --set environment.PRODUCT_BASE_URL="${{ secrets.PRODUCTION_PRODUCT_BASE_URL }}" \
+          --set environment.LOGGER_APP_URL="${{ secrets.PRODUCTION_LOGGER_APP_URL }}" \
+          --timeout=300s
+
+      - name: Monitor Rollout
+        run: |
+          kubectl rollout status deployment/monitoring-api --timeout=300s --namespace $namespace

.github/workflows/staging.yml

@@ -5,7 +5,6 @@ on:
   push:
     branches:
       - master
-      - deploy/gcp
 
   workflow_dispatch:
 
@@ -110,7 +109,6 @@ jobs:
         run: |
           helm repo add cranecloud https://crane-cloud.github.io/helm-charts/
 
-        # monitoring-api ./helm/chart \
       - name: Helm Release
         run: |
           helm upgrade --install --create-namespace \

docker/prod/Dockerfile

@@ -0,0 +1,26 @@
+# use an official python runtime as the base image
+FROM python:3.10
+
+# set the (container) working directory
+WORKDIR /app
+
+
+# install netcat
+RUN apt-get update && \
+    apt-get install netcat-traditional -y
+
+COPY requirements.txt /app/requirements.txt
+
+
+# install dependencies
+RUN pip install -r requirements.txt
+
+# copy current (local) directory contents into the container
+COPY . /app
+
+
+# make port available to the world outside this container
+EXPOSE 5000
+
+# connect to start script when db is being used
+ENTRYPOINT ["sh", "/app/scripts/start-prod.sh"]