Initial commit

Author: highb

LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2022 kustomize-everything
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

README.md

@@ -0,0 +1,71 @@
+# action-gitops
+
+Provides standard GitOps on a Kustomize Environment overlay with GitHub Actions.
+Intended to be run by a bot in order to allow DevOps teams to perform Ops quickly
+and easily via automated PRs with reduced review requirements for common operations
+like scaling replicas.
+
+## Usage
+
+### Pre-requisites
+
+- Github repo where your Kustomize deployment files reside e.g. [kustomize-everything/guestbook-deploy](https://github.com/kustomize-everything/guestbook-deploy)
+
+### Inputs
+
+Refer to [action.yml](./action.yml)
+
+### Outputs
+
+Refer to [action.yml](./action.yml)
+
+### Example Workflow
+
+```yaml
+---
+name: Ops
+on:
+  workflow_dispatch:
+    inputs:
+      service-name:
+        description: 'Service Name'
+        type: choice
+        options:
+          - my-service
+        required: true
+      replicas:
+        description: 'Desired Number of Replicas'
+        required: true
+      environment:
+        description: 'Environment'
+        type: choice
+        options:
+          - integration
+          - staging
+          - production
+        default: 'integration'
+        required: true
+      replica-selector:
+        description: 'Replica Selector (defaults to Service Name if not provided)'
+        required: false
+
+jobs:
+  op:
+    name: Adjust Replicas for Service
+    runs-on: ubuntu-latest
+    steps:
+      - name: Open PR to Adjust Replicas
+        uses: kustomize-everything/action-gitops@main
+        with:
+          service-name: ${{ github.event.inputs.service-name }}
+          selector: ${{ github.event.inputs.replica-selector }}
+          environment:
+```
+
+## Contributing
+
+We would love for you to contribute to kustomize-everything/actions-env-build-and-deploy, pull requests are welcome!
+
+## License
+
+The scripts and documentation in this project are released under the [MIT License](LICENSE).

action.yml

@@ -0,0 +1,120 @@
+---
+name: action-gitops
+description: |
+  This action provides a standard way of adjusting replicas in a kustomize
+  deployment and opening a PR to deploy the changes to a k8s cluster.
+
+  Other workflows may be added to this action in the future.
+
+inputs:
+  operation:
+    description: The operation to run (adjust-replicas, etc)
+    required: true
+  environment:
+    description: The environment to perform the operation on
+    required: true
+  service-name:
+    description: The name of the service to perform the operation on
+    required: true
+  version:
+    description: Version of Kustomize to use
+    required: false
+    default: 5.1.1
+  sha256-checksum:
+    description: Checksum of Kustomize version
+    required: false
+    default: 3b30477a7ff4fb6547fa77d8117e66d995c2bdd526de0dafbf8b7bcb9556c85d
+  git-commit-user:
+    description: Name to add to the Git Commit Message
+    required: false
+    default: Kustomize Everything
+  git-commit-email:
+    description: Email to add to the Git Commit Message
+    required: false
+    default: kustomize-everything@users.noreply.github.com
+  token:
+    description: |
+      The token to use for pushing to the repo. This should be a bot account
+      with write access to the target repo, as well as PR access if it needs to
+      open a PR.
+    required: true
+  helm-version:
+    description: Helm Version to install
+    default: 3.9.4
+  base-branch:
+    description: The branch to open the PR against
+    default: main
+  replica_selector:
+    description: The selector to use for adjusting replicas, if not provided, the service-name will be used
+runs:
+  using: composite
+  steps:
+    - name: Checkout deployment repo
+      uses: actions/checkout@v4
+      with:
+        fetch-depth: 0
+        ref: main
+        token: ${{ inputs.token }}
+
+    # These variables are re-used by the run steps.
+    - name: Shared ENV Setup
+      shell: bash
+      working-directory: ${{ inputs.working-directory }}
+      env:
+        ENV: ${{ inputs.environment }}
+        PUSH_ENVIRONMENT_REGEX: ${{ steps.detect-push-environment.outputs.match }}
+        PR_ENVIRONMENT_REGEX: ${{ steps.detect-pr-environment.outputs.match }}
+      run: ${{ github.action_path }}/setup-shared-env.sh
+
+    # Kustomize setup (this should be abstracted into a separate action repo)
+    - name: Kustomize Setup
+      uses: kustomize-everything/action-kustomize@v2.0.2
+      with:
+        version: ${{ inputs.version }}
+        sha256-checksum: ${{ inputs.sha256-checksum }}
+
+    - name: Install yq
+      uses: mikefarah/yq@v4.35.1
+
+    - name: Set Git Author
+      shell: bash
+      run: |
+        git config --global user.name ${{ inputs.git-commit-user }}
+        git config --global user.email ${{ inputs.git-commit-email }}
+
+    - name: Adjust Replicas
+      shell: bash
+      working-directory: ${{ inputs.working-directory }}
+      if: ${{ inputs.operation == 'adjust-replicas' }}
+      env:
+        SELECTOR: ${{ github.event.inputs.replica_selector || github.event.inputs.service_name }}
+      run: ${{ github.action_path }}/adjust-replicas.sh
+
+    - name: Open ${{ inputs.operation }} PR to ${{ inputs.environment }}
+      id: open-pr
+      uses: peter-evans/create-pull-request@v5
+      with:
+        title: ${{ inputs.operation }} on ${{ inputs.environment }}
+        body: "${{ inputs.operation }} for ${{ env.SELECTOR }} to ${{ inputs.replicas }} in ${{ inputs.environment }}"
+        base: ${{ input.base-branch }}
+        branch: ${{ env.BRANCH_NAME }}
+        delete-branch: true
+        token: ${{ inputs.token }}
+
+    - name: PR Opened or Updated
+      if: ${{ steps.open-pr.outputs.pull-request-number && (steps.open-pr.outputs.pull-request-operation == 'created' || steps.open-pr.outputs.pull-request-operation == 'updated') }}
+      shell: bash
+      run: |
+        echo "The ${{ inputs.operation }} PR for ${{ inputs.environment }} is waiting for
+          deployment after PR review and merge."
+        echo "Please review the k8s manifests in this PR and merge if ready
+          to deploy to ${{ inputs.environment }}."
+        echo "${{ steps.open-pr.outputs.pull-request-url }}"
+
+    - name: PR Closed
+      if: ${{ steps.open-pr.outputs.pull-request-number && steps.open-pr.outputs.pull-request-operation == 'closed' }}
+      shell: bash
+      run: |-
+        echo "The ${{ inputs.operation }} PR for ${{ inputs.environment }} has been closed as
+          there are no changes detected."
+        echo "${{ steps.open-pr.outputs.pull-request-url }}"

adjust-replicas.sh

@@ -0,0 +1,9 @@
+#!/bin/bash
+
+source "${GITHUB_ACTION_PATH}/util.sh"
+
+# Fail on non-zero exit
+set -e
+
+echo "SELECTOR=$SELECTOR" >> $GITHUB_ENV
+yq e ".replicas[] |= select(.name == \"$SELECTOR\").count = ${REPLICAS}" -i env/${ENVIRONMENT}/${SERVICE_NAME}/kustomization.yaml

renovate.json

@@ -0,0 +1,6 @@
+{
+  "$schema": "https://docs.renovatebot.com/renovate-schema.json",
+  "extends": [
+    "config:base"
+  ]
+}

setup-shared-env.sh

@@ -0,0 +1,8 @@
+#!/bin/bash
+
+source "${GITHUB_ACTION_PATH}/util.sh"
+
+# Fail on non-zero exit
+set -e
+
+echo "BRANCH_NAME=adjust-replicas-${{ env.SELECTOR }}-$(date +'%Y%m%d%H%M%S')" >> $GITHUB_ENV

util.sh

@@ -0,0 +1,19 @@
+#!/bin/bash
+
+function is_debug() {
+  if [[ "$RUNNER_DEBUG" == "1" ]]; then
+    return 0
+  else
+    return 1
+  fi
+}
+
+# Output all commands
+if is_debug; then
+  set -x
+fi
+
+# Show line numbers
+if is_debug; then
+  export PS4='+(${BASH_SOURCE}:${LINENO}): ${FUNCNAME[0]:+${FUNCNAME[0]}(): }'
+fi