opencrvs
diff --git a/‎.github/workflows/deploy-and-e2e.yml‎
Lines changed: 168 additions & 51 deletions b/‎.github/workflows/deploy-and-e2e.yml‎
Lines changed: 168 additions & 51 deletions
@@ -1,12 +1,12 @@
 name: Deploy & run E2E
-run-name: 'E2E by ${{ github.event.client_payload.actor || github.actor }} to ${{ github.event.client_payload.stack || github.event.inputs.stack }}. Images core: ${{ github.event.client_payload.core-image-tag || github.event.inputs.core-image-tag }} and farajaland: ${{ github.event.client_payload.countryconfig-image-tag || github.event.inputs.countryconfig-image-tag }}'
+run-name: 'E2E by ${{ github.event.client_payload.actor || github.actor }} to ${{ github.event.client_payload.stack || github.event.inputs.stack }}. (core: ${{ github.event.client_payload.core-image-tag || github.event.inputs.core-image-tag }}, farajaland: ${{ github.event.client_payload.countryconfig-image-tag || github.event.inputs.countryconfig-image-tag }})'
 on:
   repository_dispatch:
     types: [run_e2e]
   workflow_dispatch:
     inputs:
       core-image-tag:
-        description: Core DockerHub image tag
+        description: Core image tag
         required: true
         default: 'v1.8.0'
       countryconfig-image-tag:
@@ -26,28 +26,102 @@ on:
         description: e2e branch
         required: false
         default: 'develop'
+      runtime:
+        required: false
+        default: 'none'
+        type: choice
+        options:
+          - none
+          - docker
+          - k8s
+      reset:
+        description: reset e2e
+        required: false
+        default: false
+        type: boolean
 concurrency:
-  group: ${{ github.event.client_payload.stack || github.event.inputs.stack }}
+  group: ${{ github.event.client_payload.stack || inputs.stack }}
   cancel-in-progress: true
 
 jobs:
   debug:
     name: Debug output
     runs-on: ubuntu-22.04
+    outputs:
+      runtime: ${{ steps.runtime.outputs.runtime }}
+      domain: ${{ steps.runtime.outputs.domain }}
+      keep_e2e: ${{ steps.runtime.outputs.keep_e2e }}
     steps:
       - name: Print Entire Event Payload
         run: |
           echo "${{ toJson(github.event) }}"
-  deploy:
-    uses: ./.github/workflows/deploy.yml
+      - name: Select docker swarm or k8s
+        # Environment is selected based on stack hash with is always constant
+        # Only first 8 symbols are used from hash and stack_id number is generated
+        # - Odd numbers are deployed to k8s
+        # - Even numbers are deployed to docker swarm
+        # E/g ocrvs-9595 has stack id 2766917431, which means docker
+        id: runtime
+        env:
+          run_id: ${{ github.run_id }}
+          runtime: ${{ github.event.client_payload.runtime || inputs.runtime }}
+          stack: ${{ github.event.client_payload.stack || inputs.stack }}
+          keep_e2e: ${{ github.event.client_payload.keep-e2e || inputs.keep-e2e }}
+        run: |
+          stack_hash=$(echo -n "$stack" | sha256sum | head -c 8)
+          stack_id=$((16#$stack_hash))
+          if [[ -n "$runtime" && "$runtime" != "none" ]]; then
+            echo "condition 1"
+            runtime="$runtime"
+          elif (( stack_id % 2 == 0 )); then
+            echo "condition 2"
+            runtime="k8s"
+          else
+            echo "condition else"
+            runtime="docker"
+          fi
+          if [[ "$runtime" == "docker" ]]; then
+            domain=${{ github.event.client_payload.stack || inputs.stack }}.${{ vars.DOMAIN }}
+          else
+            domain=${{ github.event.client_payload.stack || inputs.stack }}.k8s-e2e.${{ vars.DOMAIN }}
+          fi
+          echo "domain=$domain" >> $GITHUB_OUTPUT
+          echo "runtime=$runtime" >> $GITHUB_OUTPUT
+          echo "keep_e2e=$keep_e2e" >> $GITHUB_OUTPUT
+          echo "domain=$domain"
+          echo "runtime=$runtime"
+          echo "keep_e2e=$keep_e2e"
+  # debug2:
+  #   needs: debug
+  #   runs-on: ubuntu-24.04
+  #   steps:
+  #     - run: |
+  #         echo domain=[${{ needs.debug.outputs.domain }}]
+  #         echo runtime=[${{ needs.debug.outputs.runtime }}]
+  #         echo keep_e2e=[${{ needs.debug.outputs.keep_e2e }}]
+  #         [ "${{ needs.debug.outputs.runtime }}" == 'k8s' ] && echo 'should work'
+  deploy-k8s:
+    if: always()
+    needs: debug
+    uses: ./.github/workflows/k8s-deploy.yml
     with:
-      core-image-tag: ${{ github.event.client_payload.core-image-tag || github.event.inputs.core-image-tag }}
-      countryconfig-image-tag: ${{ github.event.client_payload.countryconfig-image-tag || github.event.inputs.countryconfig-image-tag }}
-      stack: ${{ github.event.client_payload.stack || github.event.inputs.stack }}
-      dependencies: false
-      e2e_branch: ${{ github.event.client_payload.branch || github.event.inputs.branch }}
-      reset: 'true'
+      core-image-tag: ${{ github.event.client_payload.core-image-tag || inputs.core-image-tag }}
+      countryconfig-image-tag: ${{ github.event.client_payload.countryconfig-image-tag || inputs.countryconfig-image-tag }}
+      environment: ${{ github.event.client_payload.stack || inputs.stack }}
+      reset: ${{ github.event.client_payload.reset || inputs.reset }}
     secrets: inherit
+  # deploy-docker:
+  #   needs: debug
+  #   if: needs.debug.outputs.runtime == 'docker'
+  #   uses: ./.github/workflows/deploy.yml
+  #   with:
+  #     core-image-tag: ${{ github.event.client_payload.core-image-tag || github.event.inputs.core-image-tag }}
+  #     countryconfig-image-tag: ${{ github.event.client_payload.countryconfig-image-tag || github.event.inputs.countryconfig-image-tag }}
+  #     stack: ${{ github.event.client_payload.stack || github.event.inputs.stack }}
+  #     dependencies: false
+  #     e2e_branch: ${{ github.event.client_payload.branch || github.event.inputs.branch }}
+  #     reset: 'true'
+  #   secrets: inherit
 
   discover-tests:
     name: Discover test directories
@@ -83,7 +157,7 @@ jobs:
             node_modules
             ~/.cache/yarn/v6
             ~/.cache/ms-playwright
-          key: ${{ github.event.client_payload.countryconfig-image-tag || github.event.inputs.countryconfig-image-tag }}
+          key: ${{ github.event.client_payload.countryconfig-image-tag || inputs.countryconfig-image-tag }}
           restore-keys: |
             ${{ runner.os }}-node-
 
@@ -101,16 +175,23 @@ jobs:
             node_modules
             ~/.cache/yarn/v6
             ~/.cache/ms-playwright
-          key: ${{ github.event.client_payload.countryconfig-image-tag || github.event.inputs.countryconfig-image-tag }}
+          key: ${{ github.event.client_payload.countryconfig-image-tag || inputs.countryconfig-image-tag }}
           restore-keys: |
             ${{ runner.os }}-node-
   test:
-    needs: [deploy, discover-tests]
-    runs-on: ubuntu-22.04
-    environment: ${{ github.event.client_payload.stack || github.event.inputs.stack }}
+    # needs: [debug, deploy-docker, deploy-k8s, discover-tests]
+    needs: [debug, deploy-k8s, discover-tests]
+    # Continue if at least one dependency succeeded (docker OR k8s ran)
+    # if: |
+    #   always() && (
+    #     needs.deploy-docker.result == 'success' ||
+    #     needs.deploy-k8s.result == 'success'
+    #   )
+    runs-on: ubuntu-24.04
+    environment: ${{ github.event.client_payload.stack || inputs.stack }}
     strategy:
-      fail-fast: false
       max-parallel: 10
+      fail-fast: false
       matrix:
         test_file: ${{ fromJson(needs.discover-tests.outputs.test_matrix) }}
     name: ${{ matrix.test_file }}
@@ -122,7 +203,7 @@ jobs:
 
       - name: Checkout country branch
         run: |
-          git checkout ${{ github.event.client_payload.countryconfig-image-tag || github.event.inputs.countryconfig-image-tag }}
+          git checkout ${{ github.event.client_payload.countryconfig-image-tag || inputs.countryconfig-image-tag }}
       - name: Set up Node.js from country .nvmrc
         uses: actions/setup-node@v4
         with:
@@ -136,7 +217,7 @@ jobs:
             node_modules
             ~/.cache/yarn/v6
             ~/.cache/ms-playwright
-          key: ${{ github.event.client_payload.countryconfig-image-tag || github.event.inputs.countryconfig-image-tag }}
+          key: ${{ github.event.client_payload.countryconfig-image-tag || inputs.countryconfig-image-tag }}
           restore-keys: |
             ${{ runner.os }}-node-
 
@@ -150,9 +231,16 @@ jobs:
           max_attempts: 3
           command: npx playwright install --with-deps
       - name: Run Playwright Tests
-        run: npx playwright test ./e2e/testcases/${{ matrix.test_file }}
+        run: |
+          curl -s -o $NODE_EXTRA_CA_CERTS https://letsencrypt.org/certs/staging/letsencrypt-stg-root-x1.pem
+          curl -s -o playwright.config.ts https://raw.githubusercontent.com/opencrvs/e2e/refs/heads/k8s-integration/playwright.config.ts
+          npx playwright test ./e2e/testcases/print-certificate/death/36.07-validate-certify-record-page.spec.ts
         env:
-          DOMAIN: '${{ github.event.client_payload.stack || inputs.stack }}.${{ vars.DOMAIN }}'
+          DOMAIN: '${{ needs.debug.outputs.domain }}'
+          # Allow e2e playwright API call for Lets encrypt staging SSL Certificate
+          NODE_EXTRA_CA_CERTS: /tmp/letsencrypt-stg-root-x1.pem
+          # Allow e2e Browser for Lets encrypt staging SSL Certificate
+          IGNORE_CA: '1'
       - id: ctrf_check
         if: always()
         run: |
@@ -171,12 +259,13 @@ jobs:
       - uses: actions/upload-artifact@v4
         if: always()
         with:
-          name: playwright-report-${{ github.event.client_payload.stack || github.event.inputs.stack }}-${{ steps.artifact.outputs.artifact }}-${{ github.run_id }}-${{ github.run_attempt }}
+          name: playwright-report-${{ github.event.client_payload.stack || inputs.stack }}-${{ steps.artifact.outputs.artifact }}-${{ github.run_id }}-${{ github.run_attempt }}
           path: playwright-report/
           retention-days: 30
 
   get-previous-run:
     runs-on: ubuntu-latest
+    needs: [debug]
     outputs:
       previous_run_result: ${{ steps.set-output.outputs.result }}
 
@@ -199,34 +288,62 @@ jobs:
         run: |
           echo "result=$PREVIOUS_CONCLUSION" >> $GITHUB_OUTPUT
 
-  cleanup-stack:
-    needs: [test]
-    runs-on: ubuntu-24.04
-    if: github.event.client_payload.keep-e2e == 'false' || github.event.inputs.keep-e2e == 'false'
+  # cleanup-stack-docker:
+  #   needs: [test, debug]
+  #   runs-on: ubuntu-24.04
+  #   if: always() && needs.debug.outputs.keep_e2e == 'false' && needs.debug.outputs.runtime == 'docker'
+  #   env:
+  #     stack: ${{ github.event.client_payload.stack || inputs.stack }}
+  #     keep_e2e: ${{ github.event.client_payload.keep-e2e || inputs.keep-e2e }}
+  #   steps:
+  #     - uses: actions/checkout@v4
+  #     - name: Read known hosts
+  #       run: |
+  #         echo "KNOWN_HOSTS<<EOF" >> $GITHUB_ENV
+  #         sed -i -e '$a\' ./infrastructure/known-hosts
+  #         cat ./infrastructure/known-hosts >> $GITHUB_ENV
+  #         echo "EOF" >> $GITHUB_ENV
+  #     - name: Install SSH Key
+  #       uses: shimataro/ssh-key-action@v2
+  #       with:
+  #         key: ${{ secrets.SSH_KEY }}
+  #         known_hosts: ${{ env.KNOWN_HOSTS }}
+
+  #     - name: Unset KNOWN_HOSTS variable
+  #       run: |
+  #         echo "KNOWN_HOSTS=" >> $GITHUB_ENV
+  #     - name: Cleanup e2e stack
+  #       run: |
+  #         bash infrastructure/deployment/cleanup-e2e-stack.sh \
+  #         --stack=${stack} \
+  #         --ssh_host=${{ vars.SSH_HOST || secrets.SSH_HOST }} \
+  #         --ssh_port=${{ vars.SSH_PORT || secrets.SSH_PORT }} \
+  #         --ssh_user=${{ secrets.SSH_USER }}
+
+  cleanup-stack-k8s:
+    needs: [test, debug]
+    runs-on: [self-hosted]
     env:
-      stack: ${{ github.event.client_payload.stack || github.event.inputs.stack }}
-      keep_e2e: ${{ github.event.client_payload.keep-e2e || github.event.inputs.keep-e2e }}
+      ENV: ${{ github.event.client_payload.stack || inputs.stack }}
+    if: always() && needs.debug.outputs.keep_e2e == 'false' && needs.debug.outputs.runtime == 'k8s'
     steps:
-      - uses: actions/checkout@v4
-      - name: Read known hosts
-        run: |
-          echo "KNOWN_HOSTS<<EOF" >> $GITHUB_ENV
-          sed -i -e '$a\' ./infrastructure/known-hosts
-          cat ./infrastructure/known-hosts >> $GITHUB_ENV
-          echo "EOF" >> $GITHUB_ENV
-      - name: Install SSH Key
-        uses: shimataro/ssh-key-action@v2
-        with:
-          key: ${{ secrets.SSH_KEY }}
-          known_hosts: ${{ env.KNOWN_HOSTS }}
-
-      - name: Unset KNOWN_HOSTS variable
-        run: |
-          echo "KNOWN_HOSTS=" >> $GITHUB_ENV
-      - name: Cleanup e2e stack
-        run: |
-          bash infrastructure/deployment/cleanup-e2e-stack.sh \
-          --stack=${stack} \
-          --ssh_host=${{ vars.SSH_HOST || secrets.SSH_HOST }} \
-          --ssh_port=${{ vars.SSH_PORT || secrets.SSH_PORT }} \
-          --ssh_user=${{ secrets.SSH_USER }}
+        - name: Checkout repo
+          uses: actions/checkout@v4
+        - name: Update k8s-env/opencrvs/values.yaml
+          run: |
+            sed -i -e "s#{{STACK}}#${ENV}#g" k8s-env/opencrvs/values.yaml
+        - name: Cleanup environment
+          run: |
+            kubectl delete job -n opencrvs-${ENV} --ignore-not-found=true data-cleanup
+            helm template -f k8s-env/opencrvs/values.yaml \
+                --set data_cleanup.enabled=true \
+                --set image.tag="$CORE_IMAGE_TAG" \
+                --namespace opencrvs-${ENV} \
+                -s templates/data-cleanup-job.yaml \
+                oci://ghcr.io/opencrvs/opencrvs-services | kubectl apply -n opencrvs-${ENV} --wait=true -f -
+            sleep 30;
+            kubectl logs job/data-cleanup -f --all-containers=true -n opencrvs-${ENV} || true
+            kubectl wait --for=condition=complete job/data-cleanup -n opencrvs-${ENV} --timeout=600s;
+        - name: Delete helm release and namespace
+          run: |
+            kubectl delete namespace opencrvs-${ENV}