Feat/auth flow #49

Workflow file for this run

.github/workflows/web-app.yml at a0b527a

	name: Web App - Build Deploy
	on:
	pull_request:
	branches: [main]
	paths:
	- "web-app/**"
	push:
	branches: [main]
	workflow_dispatch:

	env:
	NODE_VERSION: "18"
	FIREBASE_PROJECT: dev

	jobs:
	list-test:
	name: Test
	runs-on: ubuntu-latest
	steps:
	- name: Checkout code
	uses: actions/checkout@v3

	- name: Setup Node.js
	uses: actions/setup-node@v3
	with:
	node-version: ${{ env.NODE_VERSION }}

	- name: Cache node modules
	id: cache-npm
	uses: actions/cache@v3
	env:
	cache-name: cache-node-modules
	with:
	path: \|
	**/node_modules
	**/.eslintcache
	key: ${{ runner.os }}-build-${{ env.cache-name }}-${{ hashFiles('**/yarn-lock.json') }}
	restore-keys: \|
	${{ runner.os }}-build-${{ env.cache-name }}-${{ hashFiles('**/yarn-lock.json') }}

	- name: Install dependencies
	working-directory: web-app
	run: yarn install --frozen-lockfile

	- name: Lint
	working-directory: web-app
	run: yarn lint

	- name: Cypress test
	uses: cypress-io/github-action@v6
	with:
	start: yarn start:test
	wait-on: 'npx wait-on --timeout 120000 http://127.0.0.1:3000'
	working-directory: web-app

	- uses: actions/upload-artifact@v3
	if: failure()
	with:
	name: cypress-screenshots
	path: ./web-app/cypress/screenshots

	- uses: actions/upload-artifact@v3
	if: always()
	with:
	name: cypress-videos
	path: ./web-app/cypress/videos

	build:
	name: "Build & Deploy"
	permissions: write-all
	needs: [ list-test ]
	runs-on: ubuntu-latest
	steps:
	- name: Checkout code
	uses: actions/checkout@v3

	- name: Authenticate to Google Cloud DEV
	if: ${{ github.event_name == 'pull_request' }}
	uses: google-github-actions/auth@v1
	with:
	credentials_json: ${{ secrets.DEV_GCP_MOBILITY_FEEDS_SA_KEY }}

	- name: Authenticate to Google Cloud QA
	if: ${{ github.event_name == 'push' && github.ref == 'refs/heads/main' }}
	uses: google-github-actions/auth@v1
	with:
	credentials_json: ${{ secrets.QA_GCP_MOBILITY_FEEDS_SA_KEY }}

	- name: Authenticate to Google Cloud PROD
	if: ${{ github.event_name == 'release' }}
	uses: google-github-actions/auth@v1
	with:
	credentials_json: ${{ secrets.PROD_GCP_MOBILITY_FEEDS_SA_KEY }}

	- name: Google Cloud Setup
	uses: google-github-actions/setup-gcloud@v1

	- name: Setup Node.js
	uses: actions/setup-node@v3
	with:
	node-version: ${{ env.NODE_VERSION }}

	- name: Cache node modules
	id: cache-npm
	uses: actions/cache@v3
	env:
	cache-name: cache-node-modules
	with:
	path: \|
	**/node_modules
	**/.eslintcache
	key: ${{ runner.os }}-build-${{ env.cache-name }}-${{ hashFiles('**/yarn-lock.json') }}
	restore-keys: \|
	${{ runner.os }}-build-${{ env.cache-name }}-${{ hashFiles('**/yarn-lock.json') }}

	- name: Install dependencies
	working-directory: web-app
	run: yarn install --frozen-lockfile

	- name: Set Firebase project properties
	working-directory: web-app
	run: \|
	if [[ $GITHUB_EVENT_NAME == 'push' && $GITHUB_REF == 'refs/heads/main' ]]; then
	echo "Setting FIREBASE_PROJECT to 'pushed to main branch'"
	echo "FIREBASE_PROJECT=qa" >> $GITHUB_ENV
	echo "REACT_APP_FIREBASE_API_KEY=${{ secrets.QA_REACT_APP_FIREBASE_API_KEY }}" >> $GITHUB_ENV
	echo "REACT_APP_FIREBASE_AUTH_DOMAIN=${{ secrets.QA_REACT_APP_FIREBASE_AUTH_DOMAIN }}" >> $GITHUB_ENV
	echo "REACT_APP_FIREBASE_PROJECT_ID=${{ secrets.QA_REACT_APP_FIREBASE_PROJECT_ID }}" >> $GITHUB_ENV
	echo "REACT_APP_FIREBASE_STORAGE_BUCKET=${{ secrets.QA_REACT_APP_FIREBASE_STORAGE_BUCKET }}" >> $GITHUB_ENV
	echo "REACT_APP_FIREBASE_MESSAGING_SENDER_ID=${{ secrets.QA_REACT_APP_FIREBASE_MESSAGING_SENDER_ID }}" >> $GITHUB_ENV
	echo "REACT_REACT_APP_FIREBASE_APP_ID=${{ secrets.QA_REACT_APP_FIREBASE_APP_ID }}" >> $GITHUB_ENV
	elif [[ $GITHUB_EVENT_NAME == 'release' ]]; then
	echo "Setting FIREBASE_PROJECT to 'release'"
	echo "FIREBASE_PROJECT=prod" >> $GITHUB_ENV
	echo "REACT_APP_FIREBASE_API_KEY=${{ secrets.PROD_REACT_APP_FIREBASE_API_KEY }}" >> $GITHUB_ENV
	echo "REACT_APP_FIREBASE_AUTH_DOMAIN=${{ secrets.PROD_REACT_APP_FIREBASE_AUTH_DOMAIN }}" >> $GITHUB_ENV
	echo "REACT_APP_FIREBASE_PROJECT_ID=${{ secrets.PROD_REACT_APP_FIREBASE_PROJECT_ID }}" >> $GITHUB_ENV
	echo "REACT_APP_FIREBASE_STORAGE_BUCKET=${{ secrets.PROD_REACT_APP_FIREBASE_STORAGE_BUCKET }}" >> $GITHUB_ENV
	echo "REACT_APP_FIREBASE_MESSAGING_SENDER_ID=${{ secrets.PROD_REACT_APP_FIREBASE_MESSAGING_SENDER_ID }}" >> $GITHUB_ENV
	echo "REACT_REACT_APP_FIREBASE_APP_ID=${{ secrets.PROD_REACT_APP_FIREBASE_APP_ID }}" >> $GITHUB_ENV
	else
	echo "Setting FIREBASE_PROJECT to 'dev'"
	echo "FIREBASE_PROJECT=dev" >> $GITHUB_ENV
	echo "REACT_APP_FIREBASE_API_KEY=${{ secrets.DEV_REACT_APP_FIREBASE_API_KEY }}" >> $GITHUB_ENV
	echo "REACT_APP_FIREBASE_AUTH_DOMAIN=${{ secrets.DEV_REACT_APP_FIREBASE_AUTH_DOMAIN }}" >> $GITHUB_ENV
	echo "REACT_APP_FIREBASE_PROJECT_ID=${{ secrets.DEV_REACT_APP_FIREBASE_PROJECT_ID }}" >> $GITHUB_ENV
	echo "REACT_APP_FIREBASE_STORAGE_BUCKET=${{ secrets.DEV_REACT_APP_FIREBASE_STORAGE_BUCKET }}" >> $GITHUB_ENV
	echo "REACT_APP_FIREBASE_MESSAGING_SENDER_ID=${{ secrets.DEV_REACT_APP_FIREBASE_MESSAGING_SENDER_ID }}" >> $GITHUB_ENV
	echo "REACT_REACT_APP_FIREBASE_APP_ID=${{ secrets.DEV_REACT_APP_FIREBASE_APP_ID }}" >> $GITHUB_ENV
	fi

	- name: Populate Variables
	working-directory: web-app
	run: \|
	../scripts/replace-variables.sh -in_file src/.env.rename_me -out_file src/.env.${{ env.FIREBASE_PROJECT }} -variables REACT_APP_FIREBASE_API_KEY,REACT_APP_FIREBASE_AUTH_DOMAIN,REACT_APP_FIREBASE_PROJECT_ID,REACT_APP_FIREBASE_STORAGE_BUCKET,REACT_APP_FIREBASE_MESSAGING_SENDER_ID,REACT_REACT_APP_FIREBASE_APP_ID

	- name: Build
	working-directory: web-app
	run: yarn build:${FIREBASE_PROJECT}

	- name: Select Firebase Project
	working-directory: web-app
	run: npx firebase use ${{ env.FIREBASE_PROJECT }}

	- name: Deploy to Firebase Hosting (${{ env.FIREBASE_PROJECT }})
	if: ${{ env.FIREBASE_PROJECT != 'dev' }}
	working-directory: web-app
	run: npx firebase deploy --only hosting

	- name: Deploy to Firebase Hosting (PR Preview)
	if: ${{ github.event_name == 'pull_request' }}
	working-directory: web-app
	run: npx firebase hosting:channel:deploy pr_${{ env.PR_ID }}
	env:
	PR_ID: ${{ github.event.number }}

	- name: Check for Existing Comment
	id: check-comment
	working-directory: web-app
	if: ${{ github.event_name == 'pull_request' }}
	run: \|
	HOSTING_URL=$(npx firebase hosting:channel:list \| grep "pr-${{ env.PR_ID }}" \| awk '{print $7}')
	COMMENT="Preview Firebase Hosting URL: $HOSTING_URL"
	COMMENTS=$(curl -s -H "Authorization: Bearer ${{ secrets.GITHUB_TOKEN }}" -H "Accept: application/vnd.github.v3+json" "https://api.github.com/repos/${{ github.repository }}/issues/${{ env.PR_ID }}/comments")

	JQ_CHECK=`echo "$COMMENTS" \| jq -r ".[] \| select(.body == \"$COMMENT\")"`
	if [ -z "$JQ_CHECK" ]; then
	echo "Comment does not exist."
	echo "comment_exists=false" >> $GITHUB_OUTPUT
	else
	echo "Comment already exists."
	echo "comment_exists=true" >> $GITHUB_OUTPUT
	fi
	env:
	PR_ID: ${{ github.event.number }}

	- name: Comment on PR with Hosting URL (PR Preview)
	if: ${{ github.event_name == 'pull_request' && steps.check-comment.outputs.comment_exists == 'false' }}
	working-directory: web-app
	run: \|
	HOSTING_URL=$(npx firebase hosting:channel:list \| grep "pr-${{ env.PR_ID }}" \| awk '{print $7}')
	COMMENT="Preview Firebase Hosting URL: $HOSTING_URL"
	echo "$COMMENT" > comment.txt
	curl -d "{\"body\":\"$(cat comment.txt)\"}" -H "Authorization: token ${{ secrets.GITHUB_TOKEN }}" -H "Content-Type: application/json" -X POST "https://api.github.com/repos/${{ github.repository }}/issues/${{ env.PR_ID }}/comments"
	env:
	PR_ID: ${{ github.event.number }}

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Feat/auth flow #49

Workflow file

Feat/auth flow #49

Jobs

Run details

Workflow file for this run