automatic release

Author: taniaholst

.github/workflows/build-image.yml

@@ -63,74 +63,74 @@ on:
                 value: ${{ jobs.build_image.outputs.image }}
 
 jobs:
-    build_image:
-        name: Build docker image
-        runs-on: ubuntu-latest
-        permissions:
-            contents: read
-            id-token: write
-        environment: ${{ inputs.environment }}
-        outputs:
-            image: ${{ steps.docker-push.outputs.image }}
-        steps:
-            - name: Checkout repo
-              uses: actions/checkout@v4
-            - name: Setup node.js
-              uses: actions/setup-node@v4
-              with:
-                  node-version: 20
-                  registry-url: 'https://npm.pkg.github.com'
-                  cache: 'npm'
-            - name: Set app environmment
-              run: |
-                  cat > .env <<EOF
-                  ENV=${{ inputs.ENV }}
-                  NODE_ENV=${{ inputs.NODE_ENV }}
-                  ADMIN_ORIGIN=${{ inputs.ADMIN_ORIGIN }}
-                  APP_ORIGIN=${{ inputs.APP_ORIGIN }}
-                  DECORATOR_URL=${{ inputs.DECORATOR_URL }}
-                  XP_ORIGIN=${{ inputs.XP_ORIGIN }}
-                  TELEMETRY_URL=${{ inputs.TELEMETRY_URL }}
-                  REVALIDATOR_PROXY_ORIGIN=${{ inputs.REVALIDATOR_PROXY_ORIGIN }}
-                  FAILOVER_ORIGIN=${{ inputs.FAILOVER_ORIGIN }}
-                  IS_FAILOVER_INSTANCE=${{ inputs.IS_FAILOVER_INSTANCE }}
-                  INNLOGGINGSSTATUS_URL=${{ inputs.INNLOGGINGSSTATUS_URL }}
-                  NAVNO_SEARCH_API_URL=${{ inputs.NAVNO_SEARCH_API_URL }}
-                  MELDEKORT_API_URL=${{ inputs.MELDEKORT_API_URL }}
-                  ASSET_PREFIX=https://cdn.nav.no/personbruker/nav-enonicxp-frontend
-                  IMAGE_CACHE_DIR=/tmp/images
-                  NEXT_TELEMETRY_DISABLED=1
-                  EOF
-            - name: Nextjs cache
-              uses: actions/cache@v4
-              with:
-                  path: ${{ github.workspace }}/.next/cache
-                  key: ${{ runner.os }}-nextjs-${{ hashFiles('**/package-lock.json') }}
-            - name: Install dependencies
-              run: npm ci
-              env:
-                  NODE_AUTH_TOKEN: ${{ secrets.READER_TOKEN }}
-            - name: Run linting
-              run: npm run lint
-            - name: Run tests
-              run: npm run test
-            - name: Build application
-              run: npm run build
-              env:
-                  SERVICE_SECRET: ${{ secrets.SERVICE_SECRET }}
-            - name: Upload static files to Nav CDN
-              uses: nais/deploy/actions/cdn-upload/v2@master
-              with:
-                  team: personbruker
-                  source: ./.next/static
-                  destination: nav-enonicxp-frontend/_next
-                  project_id: ${{ vars.NAIS_MANAGEMENT_PROJECT_ID }}
-                  identity_provider: ${{ secrets.NAIS_WORKLOAD_IDENTITY_PROVIDER }}
-            - name: Build and push docker image
-              uses: nais/docker-build-push@v0
-              id: docker-push
-              with:
-                  team: personbruker
-                  project_id: ${{ vars.NAIS_MANAGEMENT_PROJECT_ID }}
-                  identity_provider: ${{ secrets.NAIS_WORKLOAD_IDENTITY_PROVIDER }}
-                  image_suffix: ${{ inputs.imagename }}
+  build_image:
+    name: Build docker image
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      id-token: write
+    environment: ${{ inputs.environment }}
+    outputs:
+      image: ${{ steps.docker-push.outputs.image }}
+    steps:
+      - name: Checkout repo
+        uses: actions/checkout@v4
+      - name: Setup node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: 20
+          registry-url: 'https://npm.pkg.github.com'
+          cache: 'npm'
+      - name: Set app environmment
+        run: |
+          cat > .env <<EOF
+          ENV=${{ inputs.ENV }}
+          NODE_ENV=${{ inputs.NODE_ENV }}
+          ADMIN_ORIGIN=${{ inputs.ADMIN_ORIGIN }}
+          APP_ORIGIN=${{ inputs.APP_ORIGIN }}
+          DECORATOR_URL=${{ inputs.DECORATOR_URL }}
+          XP_ORIGIN=${{ inputs.XP_ORIGIN }}
+          TELEMETRY_URL=${{ inputs.TELEMETRY_URL }}
+          REVALIDATOR_PROXY_ORIGIN=${{ inputs.REVALIDATOR_PROXY_ORIGIN }}
+          FAILOVER_ORIGIN=${{ inputs.FAILOVER_ORIGIN }}
+          IS_FAILOVER_INSTANCE=${{ inputs.IS_FAILOVER_INSTANCE }}
+          INNLOGGINGSSTATUS_URL=${{ inputs.INNLOGGINGSSTATUS_URL }}
+          NAVNO_SEARCH_API_URL=${{ inputs.NAVNO_SEARCH_API_URL }}
+          MELDEKORT_API_URL=${{ inputs.MELDEKORT_API_URL }}
+          ASSET_PREFIX=https://cdn.nav.no/personbruker/nav-enonicxp-frontend
+          IMAGE_CACHE_DIR=/tmp/images
+          NEXT_TELEMETRY_DISABLED=1
+          EOF
+      - name: Nextjs cache
+        uses: actions/cache@v4
+        with:
+          path: ${{ github.workspace }}/.next/cache
+          key: ${{ runner.os }}-nextjs-${{ hashFiles('**/package-lock.json') }}
+      - name: Install dependencies
+        run: npm ci
+        env:
+          NODE_AUTH_TOKEN: ${{ secrets.READER_TOKEN }}
+      - name: Run linting
+        run: npm run lint
+      - name: Run tests
+        run: npm run test
+      - name: Build application
+        run: npm run build
+        env:
+          SERVICE_SECRET: ${{ secrets.SERVICE_SECRET }}
+      - name: Upload static files to Nav CDN
+        uses: nais/deploy/actions/cdn-upload/v2@master
+        with:
+          team: personbruker
+          source: ./.next/static
+          destination: nav-enonicxp-frontend/_next
+          project_id: ${{ vars.NAIS_MANAGEMENT_PROJECT_ID }}
+          identity_provider: ${{ secrets.NAIS_WORKLOAD_IDENTITY_PROVIDER }}
+      - name: Build and push docker image
+        uses: nais/docker-build-push@v0
+        id: docker-push
+        with:
+          team: personbruker
+          project_id: ${{ vars.NAIS_MANAGEMENT_PROJECT_ID }}
+          identity_provider: ${{ secrets.NAIS_WORKLOAD_IDENTITY_PROVIDER }}
+          image_suffix: ${{ inputs.imagename }}

.github/workflows/deploy-failover.dev.yml

@@ -16,12 +16,12 @@ on:
                     - dev2
 
 jobs:
-    deploy:
-        uses: ./.github/workflows/deploy-to-nais.yml
-        permissions:
-            id-token: write
-        with:
-            image: ghcr.io/${{ github.repository }}:${{ github.event.inputs.image_name }}
-            cluster: dev-gcp
-            vars_file: vars-${{ github.event.inputs.app_env }}-failover.yml
-            config_file: config-failover.yml
+  deploy:
+    uses: ./.github/workflows/deploy-to-nais.yml
+    permissions:
+      id-token: write
+    with:
+      image: ghcr.io/${{ github.repository }}:${{ github.event.inputs.image_name }}
+      cluster: dev-gcp
+      vars_file: vars-${{ github.event.inputs.app_env }}-failover.yml
+      config_file: config-failover.yml

.github/workflows/deploy-failover.prod.yml

@@ -5,39 +5,39 @@ on:
     workflow_dispatch:
 
 jobs:
-    build:
-        uses: ./.github/workflows/build-image.yml
-        permissions:
-            contents: read
-            id-token: write
-        with:
-            environment: prod-gcp:failover
-            imagename: failover-prod
-            ENV: prod
-            ADMIN_ORIGIN: https://portal-admin.oera.no
-            APP_ORIGIN: https://www.nav.no
-            REVALIDATOR_PROXY_ORIGIN: http://nav-enonicxp-frontend-revalidator-proxy
-            DECORATOR_URL: https://www.nav.no/dekoratoren
-            XP_ORIGIN: https://www.nav.no
-            TELEMETRY_URL: https://telemetry.nav.no/collect
-            MELDEKORT_API_URL: https://meldekort-api.nav.no/meldekort/meldekort-api/api/person
-            INNLOGGINGSSTATUS_URL: https://www.nav.no/person/nav-dekoratoren-api/auth
-            NAVNO_SEARCH_API_URL: https://navno-search-api.nav.no/content/search-url
-            FAILOVER_ORIGIN: https://www-failover.nav.no
-            IS_FAILOVER_INSTANCE: true
-            NODE_ENV: production
-        secrets:
-            READER_TOKEN: ${{ secrets.READER_TOKEN }}
-            SERVICE_SECRET: ${{ secrets.SERVICE_SECRET }}
-            NAIS_WORKLOAD_IDENTITY_PROVIDER: ${{ secrets.NAIS_WORKLOAD_IDENTITY_PROVIDER }}
-    deploy:
-        uses: ./.github/workflows/deploy-to-nais.yml
-        needs: build
-        permissions:
-            id-token: write
-        with:
-            image: ${{ needs.build.outputs.image }}
-            cluster: prod-gcp
-            vars_file: vars-prod-failover.yml
-            config_file: config-failover.yml
-            hpa_file: hpa-prod-failover.yml
+  build:
+    uses: ./.github/workflows/build-image.yml
+    permissions:
+      contents: read
+      id-token: write
+    with:
+      environment: prod-gcp:failover
+      imagename: failover-prod
+      ENV: prod
+      ADMIN_ORIGIN: https://portal-admin.oera.no
+      APP_ORIGIN: https://www.nav.no
+      REVALIDATOR_PROXY_ORIGIN: http://nav-enonicxp-frontend-revalidator-proxy
+      DECORATOR_URL: https://www.nav.no/dekoratoren
+      XP_ORIGIN: https://www.nav.no
+      TELEMETRY_URL: https://telemetry.nav.no/collect
+      MELDEKORT_API_URL: https://meldekort-api.nav.no/meldekort/meldekort-api/api/person
+      INNLOGGINGSSTATUS_URL: https://www.nav.no/person/nav-dekoratoren-api/auth
+      NAVNO_SEARCH_API_URL: https://navno-search-api.nav.no/content/search-url
+      FAILOVER_ORIGIN: https://www-failover.nav.no
+      IS_FAILOVER_INSTANCE: true
+      NODE_ENV: production
+    secrets:
+      READER_TOKEN: ${{ secrets.READER_TOKEN }}
+      SERVICE_SECRET: ${{ secrets.SERVICE_SECRET }}
+      NAIS_WORKLOAD_IDENTITY_PROVIDER: ${{ secrets.NAIS_WORKLOAD_IDENTITY_PROVIDER }}
+  deploy:
+    uses: ./.github/workflows/deploy-to-nais.yml
+    needs: build
+    permissions:
+      id-token: write
+    with:
+      image: ${{ needs.build.outputs.image }}
+      cluster: prod-gcp
+      vars_file: vars-prod-failover.yml
+      config_file: config-failover.yml
+      hpa_file: hpa-prod-failover.yml

.github/workflows/deploy-to-nais.yml

@@ -26,7 +26,7 @@ jobs:
     name: Deploy to nais k8s
     runs-on: ubuntu-latest
     permissions:
-      id-token: "write"
+      id-token: write
     steps:
       - name: Checkout repo
         uses: actions/checkout@v4

.github/workflows/deploy.dev1.yml

@@ -15,8 +15,8 @@ jobs:
   build:
     uses: ./.github/workflows/build-image.yml
     permissions:
-      contents: "read"
-      id-token: "write"
+      contents: read
+      id-token: write
     with:
       environment: dev-gcp:dev1
       imagename: dev1-deploy
@@ -41,7 +41,7 @@ jobs:
     uses: ./.github/workflows/deploy-to-nais.yml
     needs: build
     permissions:
-      id-token: "write"
+      id-token: write
     with:
       image: ${{ needs.build.outputs.image }}
       cluster: dev-gcp

.github/workflows/deploy.dev2.yml

@@ -41,7 +41,7 @@ jobs:
     uses: ./.github/workflows/deploy-to-nais.yml
     needs: build
     permissions:
-      id-token: "write"
+      id-token: write
     with:
       image: ${{ needs.build.outputs.image }}
       cluster: dev-gcp

.github/workflows/deploy.prod.yml

@@ -5,60 +5,60 @@ on:
             - main
 
 jobs:
-    build:
-        uses: ./.github/workflows/build-image.yml
-        permissions:
-            contents: read
-            id-token: write
-        with:
-            environment: prod-gcp
-            imagename: release-${{ github.ref_name }}
-            ENV: prod
-            ADMIN_ORIGIN: https://portal-admin.oera.no
-            APP_ORIGIN: https://www.nav.no
-            REVALIDATOR_PROXY_ORIGIN: http://nav-enonicxp-frontend-revalidator-proxy
-            DECORATOR_URL: https://www.nav.no/nav-dekoratoren
-            XP_ORIGIN: https://www.nav.no
-            TELEMETRY_URL: https://telemetry.nav.no/collect
-            INNLOGGINGSSTATUS_URL: https://www.nav.no/person/nav-dekoratoren-api/auth
-            NAVNO_SEARCH_API_URL: https://navno-search-api.nav.no/content/search-url
-            RELEASE_TAG: ${{  github.ref_name }}
-            MELDEKORT_API_URL: https://meldekort-api.nav.no/meldekort/meldekort-api/api/person
-            FAILOVER_ORIGIN: https://www-failover.nav.no
-            NODE_ENV: production
-        secrets:
-            READER_TOKEN: ${{ secrets.READER_TOKEN }}
-            SERVICE_SECRET: ${{ secrets.SERVICE_SECRET }}
-            NAIS_WORKLOAD_IDENTITY_PROVIDER: ${{ secrets.NAIS_WORKLOAD_IDENTITY_PROVIDER }}
-    deploy:
-        uses: ./.github/workflows/deploy-to-nais.yml
-        needs: build
-        permissions:
-            id-token: write
-        with:
-            image: ${{ needs.build.outputs.image }}
-            cluster: prod-gcp
-            vars_file: vars-prod.yml
-            config_file: config.yml
-            hpa_file: hpa-prod.yml
-            deploy_valkey: true
+  build:
+    uses: ./.github/workflows/build-image.yml
+    permissions:
+      contents: read
+      id-token: write
+    with:
+      environment: prod-gcp
+      imagename: release-${{ github.ref_name }}
+      ENV: prod
+      ADMIN_ORIGIN: https://portal-admin.oera.no
+      APP_ORIGIN: https://www.nav.no
+      REVALIDATOR_PROXY_ORIGIN: http://nav-enonicxp-frontend-revalidator-proxy
+      DECORATOR_URL: https://www.nav.no/nav-dekoratoren
+      XP_ORIGIN: https://www.nav.no
+      TELEMETRY_URL: https://telemetry.nav.no/collect
+      INNLOGGINGSSTATUS_URL: https://www.nav.no/person/nav-dekoratoren-api/auth
+      NAVNO_SEARCH_API_URL: https://navno-search-api.nav.no/content/search-url
+      RELEASE_TAG: ${{  github.ref_name }}
+      MELDEKORT_API_URL: https://meldekort-api.nav.no/meldekort/meldekort-api/api/person
+      FAILOVER_ORIGIN: https://www-failover.nav.no
+      NODE_ENV: production
+    secrets:
+      READER_TOKEN: ${{ secrets.READER_TOKEN }}
+      SERVICE_SECRET: ${{ secrets.SERVICE_SECRET }}
+      NAIS_WORKLOAD_IDENTITY_PROVIDER: ${{ secrets.NAIS_WORKLOAD_IDENTITY_PROVIDER }}
+  deploy:
+    uses: ./.github/workflows/deploy-to-nais.yml
+    needs: build
+    permissions:
+      id-token: write
+    with:
+      image: ${{ needs.build.outputs.image }}
+      cluster: prod-gcp
+      vars_file: vars-prod.yml
+      config_file: config.yml
+      hpa_file: hpa-prod.yml
+      deploy_valkey: true
 
-    release:
-        name: Create a new release
-        needs: deploy
-        runs-on: ubuntu-latest
-        permissions:
-            contents: write
-            id-token: write
-        steps:
-            - name: Generate unique tag name
-              run: echo "TAG_NAME=$(date +%s)" >> $GITHUB_ENV
-            - name: Create GitHub Release
-              uses: softprops/action-gh-release@v2
-              with:
-                  target_commitish: main
-                  tag_name: release/prod@${{ env.TAG_NAME }} # Generates a unique tag using timestamp
-                  name: Release ${{ github.ref_name }}
-                  generate_release_notes: true
-              env:
-                  GITHUB_TOKEN: ${{ secrets.RELEASE_TOKEN }} # This is a PAT with repo permissions
+  release:
+    name: Create a new release
+    needs: deploy
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write
+      id-token: write
+    steps:
+      - name: Generate unique tag name
+        run: echo "TAG_NAME=$(date +%s)" >> $GITHUB_ENV
+      - name: Create GitHub Release
+        uses: softprops/action-gh-release@v2
+        with:
+          target_commitish: main
+          tag_name: release/prod@${{ env.TAG_NAME }} # Generates a unique tag using timestamp
+          name: Release ${{ github.ref_name }}
+          generate_release_notes: true
+        env:
+          GITHUB_TOKEN: ${{ secrets.RELEASE_TOKEN }} # This is a PAT with repo permissions