Skip to content
This repository was archived by the owner on Jan 13, 2026. It is now read-only.
aws-deploy

[pre-commit.ci] pre-commit autoupdate #49

Sign in to view logs

[pre-commit.ci] pre-commit autoupdate

[pre-commit.ci] pre-commit autoupdate #49

Workflow file for this run

.github/workflows/deploy.yaml at 30c03da
name: aws-deploy
on:
push:
branches: [ '*' ]
tags: [ 'v[0-9]+\.[0-9]+\.[0-9]+' ]
pull_request:
branches: [ '*' ]
jobs:
validate:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- name: Set up Python
uses: actions/setup-python@v4
- name: Install python packages
run: pip install ansible
- name: Install Ansible roles and collection
run: ansible-galaxy install --verbose --role-file src/requirements.yaml
- uses: pre-commit/action@v3.0.0
- name: Setup `packer`
uses: hashicorp/setup-packer@main
with:
version: latest
- name: packer validate
run: |
pushd src
packer plugins install github.com/hashicorp/amazon
packer plugins install github.com/hashicorp/ansible
packer validate -var AmiImageName=validate template.json
deploy:
name: Deploy to AWS org-sagebase-imagecentral
runs-on: ubuntu-latest
if: ${{ github.ref == 'refs/heads/master' || startsWith(github.ref, 'refs/tags/v') }}
needs: [ "validate" ]
permissions:
id-token: write
contents: read
env:
AWS_ROLE_TO_ASSUME: "arn:aws:iam::867686887310:role/sagebase-github-oidc-packer-image-deploy"
AWS_REGION: "us-east-1"
AMI_IMAGE_NAME: ${{ github.event.repository.name }}-${{ github.ref_name }}
steps:
- name: Checkout
uses: actions/checkout@v3
- name: Set up Python
uses: actions/setup-python@v4
- name: Install python packages
run: pip install ansible
- name: Install Ansible roles and collection
run: ansible-galaxy install --verbose --role-file src/requirements.yaml
- name: Setup `packer`
uses: hashicorp/setup-packer@main
with:
version: "latest"
- name: Assume AWS Role
uses: aws-actions/configure-aws-credentials@v2
with:
aws-region: ${{ env.AWS_REGION }}
role-to-assume: ${{ env.AWS_ROLE_TO_ASSUME }}
role-session-name: GHA-${{ github.repository_owner }}-${{ github.event.repository.name }}-${{ github.run_id }}
role-duration-seconds: 3600
- name: Build and Upload AMI
run: |
pushd src
packer plugins install github.com/hashicorp/amazon
packer plugins install github.com/hashicorp/ansible
AWS_DEFAULT_REGION=${{ env.AWS_REGION }} packer build -force -var AmiImageName=${{ env.AMI_IMAGE_NAME }} template.json