.github/workflows/deploy-eks.yml

name: Deploy to EKS

on: 
  workflow_dispatch:
    
env:
  ECR_REPOSITORY: ${{ vars.ECR_REPOSITORY || 'authentication-api' }}
  EKS_CLUSTER_NAME:  ${{ vars.EKS_CLUSTER_NAME || 'default-cluster' }}
  AWS_REGION:  ${{ vars.AWS_REGION || 'us-east-1' }}
  IMAGE_NAME:  ${{ vars.IMAGE_NAME || 'authentication-api' }}
  NODE_ENV:  ${{ vars.NODE_ENV || 'development' }}
  LOG_STRATEGY:  ${{ vars.LOG_STRATEGY || 'CONSOLE' }}
  SECRETS_LIST:  ${{ vars.SECRETS_LIST || '' }}

  PASSWORD_SALT: ${{ secrets.PASSWORD_SALT || '10' }}
  JWT_SECRET: ${{ secrets.JWT_SECRET }} 
  JWT_EXPIRE_MINUTES: ${{ secrets.JWT_EXPIRE_MINUTES || '60' }}
  JWT_COOKIE_KEY: ${{ secrets.JWT_COOKIE_KEY || 'JWT_COOKIE' }}
  DATABASE_URL: ${{ secrets.DATABASE_URL }}

jobs:
  
  build:
    
    name: Deployment
    runs-on: ubuntu-latest

    steps:

    - name: Set short git commit SHA
      id: commit
      uses: prompt/actions-commit-hash@v2

    - name: Check out code
      uses: actions/checkout@v2
      
    - name: Set up Docker Buildx
      uses: docker/setup-buildx-action@v3
    
    - name: Configure AWS credentials
      uses: aws-actions/configure-aws-credentials@v1
      with:
        aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
        aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
        aws-region: ${{env.AWS_REGION}}

    - name: Login to Amazon ECR
      id: login-ecr
      uses: aws-actions/amazon-ecr-login@v1
      with:
        registry-type: public

    - name: Login to Docker Hub (to pull images)
      uses: docker/login-action@v3
      with:
        username: ${{ secrets.DOCKERHUB_USERNAME }}
        password: ${{ secrets.DOCKERHUB_TOKEN }}

    - name: Build, tag, and push image to Amazon ECR
      env:
        ECR_REGISTRY: ${{ steps.login-ecr.outputs.registry }}        
        IMAGE_TAG: ${{ steps.commit.outputs.short }}
      run: |
        docker build -t $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG \
          -t $ECR_REGISTRY/$ECR_REPOSITORY:latest .
        docker push -a $ECR_REGISTRY/$ECR_REPOSITORY

    - name: Update kube config
      run: aws eks update-kubeconfig --name $EKS_CLUSTER_NAME --region $AWS_REGION

    - name: Deploy to EKS
      env:
        IMAGE_NAME: "${{ steps.login-ecr.outputs.registry }}/$IMAGE_NAME:${IMAGE_TAG}"
      run: |
        cat kubernetes/aws/deployment.yml | envsubst | kubectl apply -f - && \
        kubectl apply -f kubernetes/aws/service.yml