chore: updated testnet & devnet (#21)

* chore: update stage

* chore: updated devnet & testnet

Author: eedygreen

.github/workflows/deploy_ecs_stage.yaml

@@ -9,45 +9,74 @@ on:
       - main
 
 env:
-  AWS_REGION: "us-east-2"
-  ECR_REPOSITORY: fee-oracle-stage
+  AWS_REGION: '${{ secrets.AWS_REGION }}'
   ENVIRONMENT: STAGE
+  AWS_STAGE: '${{ secrets.AWS_ARN }}'
+  REGISTRY: 'ghcr.io'
+  TAG: 'latest'
 
 jobs:
-  deploy:
-    name: Deploy
-    runs-on: ubuntu-18.04
+  push:
+    name: push
+    runs-on: ubuntu-latest
 
     permissions:
       contents: read
       id-token: write
 
     steps:
       - name: checkout the source code
-        uses: actions/checkout@v2
+        uses: actions/checkout@v3
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v2
+
+      - name: login to ghcr
+        id: ghcr
+        uses: docker/login-action@v2
+        with:
+          registry: ${{ env.REGISTRY }}
+          username: ${{ github.repository_owner }}
+          password: ${{ secrets.GHCR_TOKEN }}
+
+      - name: build / tag / push docker image into ghcr
+        id: build-and-push
+        uses: docker/build-push-action@v3
+        with:
+          context: .
+          push: true
+          tags: ${{ env.REGISTRY }}/${{ github.repository }}:${{ env.TAG }}   
+          
+  deploy:
+    needs: push
+    name: deploy
+    runs-on: ubuntu-latest
+
+    permissions:
+      contents: read
+      id-token: write
+
+    steps: 
+      - name: checkout the source code
+        uses: actions/checkout@v3
+        
+      - name: checkout ecs repo
+        uses: actions/checkout@v3
+        with:
+          repository: sygmaprotocol/devops
+          token: ${{ secrets.GHCR_TOKEN }}
 
       - name: configure aws credentials
         uses: aws-actions/configure-aws-credentials@v1
         with:
-          role-to-assume: arn:aws:iam::852551629426:role/github-actions-${{ env.ENVIRONMENT }}-chainbridge
+          role-to-assume: arn:aws:iam::${{ env.AWS_STAGE }}:role/github-actions-${{ env.ENVIRONMENT }}-chainbridge
           aws-region: ${{ env.AWS_REGION }}
           role-session-name: GithubActions
 
-      - name: login to ecr
-        id: ecr
-        uses: aws-actions/amazon-ecr-login@v1
-
-      - name: build / tag / push docker image into ecr
-        env:
-          ECR_REGISTRY: ${{ steps.ecr.outputs.registry }}
-        run: |
-          docker build -t $ECR_REGISTRY/$ECR_REPOSITORY:${{ env.ENVIRONMENT }} .
-          docker push $ECR_REGISTRY/$ECR_REPOSITORY:${{ env.ENVIRONMENT }}
-
       - name: deploy task definition
         uses: aws-actions/amazon-ecs-deploy-task-definition@v1
         with:
-          task-definition: ecs/task_definition_${{ env.ENVIRONMENT }}.json
-          service: fee-oracle-service-${{ env.ENVIRONMENT }}
-          cluster: fee-oracle-${{ env.ENVIRONMENT }}
+          task-definition: 'fee-oracle/ecs/task_definition_${{ env.ENVIRONMENT }}.json'
+          service: 'fee-oracle-service-${{ env.ENVIRONMENT }}'
+          cluster: 'fee-oracle-${{ env.ENVIRONMENT }}'
           wait-for-service-stability: true

.github/workflows/deploy_ecs_testnet.yaml

@@ -9,13 +9,16 @@ on:
       - published
 
 env:
-  AWS_REGION: 'us-east-2'
-  ECR_REPOSITORY: fee-oracle
+  AWS_REGION: '${{ secrets.AWS_REGION }}'
   ENVIRONMENT: TESTNET
+  AWS_STAGE: '${{ secrets.AWS_ARN }}'
+  REGISTRY: 'ghcr.io'
+  TAG: 'stable'
+
 
 jobs:
-  deploy:
-    name: Deploy
+  push:
+    name: push
     runs-on: ubuntu-latest
 
     permissions:
@@ -24,30 +27,57 @@ jobs:
 
     steps:
       - name: checkout the source code
-        uses: actions/checkout@v2
+        uses: actions/checkout@v3
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v2
+
+      - name: login to ghcr
+        id: ghcr
+        uses: docker/login-action@v2
+        with:
+          registry: ${{ env.REGISTRY }}
+          username: ${{ github.repository_owner }}
+          password: ${{ secrets.GHCR_TOKEN }}
+
+      - name: build / tag / push docker image into ghcr
+        id: build-and-push
+        uses: docker/build-push-action@v3
+        with:
+          context: .
+          push: true
+          tags: ${{ env.REGISTRY }}/${{ github.repository }}:${{ env.TAG }}   
+
+  deploy:
+    needs: push
+    name: deploy
+    runs-on: ubuntu-latest
+
+    permissions:
+      contents: read
+      id-token: write
+
+    steps: 
+      - name: checkout the source code
+        uses: actions/checkout@v3
+        
+      - name: checkout ecs repo
+        uses: actions/checkout@v3
+        with:
+          repository: sygmaprotocol/devops
+          token: ${{ secrets.GHCR_TOKEN }}
 
       - name: configure aws credentials
         uses: aws-actions/configure-aws-credentials@v1
         with:
-          role-to-assume: arn:aws:iam::852551629426:role/github-actions-${{ env.ENVIRONMENT }}-chainbridge
+          role-to-assume: arn:aws:iam::${{ env.AWS_STAGE }}:role/github-actions-${{ env.ENVIRONMENT }}-chainbridge
           aws-region: ${{ env.AWS_REGION }}
           role-session-name: GithubActions
 
-      - name: login to ecr
-        id: ecr
-        uses: aws-actions/amazon-ecr-login@v1
-
-      - name: build / tag / push docker image into ecr
-        env:
-          ECR_REGISTRY: ${{ steps.ecr.outputs.registry }}
-        run: |
-          docker build -t $ECR_REGISTRY/$ECR_REPOSITORY:stable .
-          docker push $ECR_REGISTRY/$ECR_REPOSITORY:stable
-
       - name: deploy task definition
         uses: aws-actions/amazon-ecs-deploy-task-definition@v1
         with:
-          task-definition: ecs/task_definition_${{ env.ENVIRONMENT }}.json
-          service: fee-oracle-service-${{ env.ENVIRONMENT }}
-          cluster: fee-oracle-${{ env.ENVIRONMENT }}
+          task-definition: 'fee-oracle/ecs/task_definition_${{ env.ENVIRONMENT }}.json'
+          service: 'fee-oracle-service-${{ env.ENVIRONMENT }}'
+          cluster: 'fee-oracle-${{ env.ENVIRONMENT }}'
           wait-for-service-stability: true