Experience creating and setting up the test environment in GitHub.<\/figcaption><\/figure>\n\n\n\nIn the GIF above you’ll see the steps we took to create the environment. Let’s now also create a job in our GitHub action to use this environment and its manual approval step. <\/p>\n\n\n\n
deploy-test:\n needs: build-push\n runs-on: ubuntu-latest\n environment: test\n steps:\n - uses: actions\/checkout@v2\n\n - name: az login\n run: az login --service-principal --username ${{ secrets.APP_ID }} --password ${{ secrets.PASSWORD }} --tenant ${{ secrets.TENANT_ID }} \n\n - name: get AKS credentials\n run: az aks get-credentials -n nfaks -g gh-actions\n\n - name: deploy (will deploy base infra if not exists)\n run: kubectl create -f test.yaml\n continue-on-error: true\n\n - name: update deployment image\n run: kubectl set image deployment\/test-website -n test website=nfacr.azurecr.io\/webdemo\/webdemo:${{ github.run_number }}<\/code><\/pre>\n\n\n\nI committed this to the GitHub repo on the main branch to trigger the GitHub Action. To show the update, I also updated the index.html file to reflect version 2 is live.<\/p>\n\n\n\n
Committing this to the main branch has indeed triggered the action, and after a couple seconds for the build step the finish, it also triggered the manual approval:<\/p>\n\n\n\nAction waiting for manual approval<\/figcaption><\/figure>\n\n\n\nIf we hit the review deployments button, we can approve and deploy.<\/p>\n\n\n\nReviewing pending deployments.<\/figcaption><\/figure>\n\n\n\nAnd if you check in when the deployment is complete, you can track who approved to release to happen:<\/p>\n\n\n\nYou can track who approved the release to happen.<\/figcaption><\/figure>\n\n\n\nAnd the release did actually update the deployment on the Kubernetes cluster:<\/p>\n\n\n\nVersion 2 is deployed to test, version 1 is still in prod.<\/figcaption><\/figure>\n\n\n\nWe can do the same thing for prod. The action for prod looks very similar to the one from test – with the only difference being we’re deploying to prod rather than to test.<\/p>\n\n\n\n
deploy-prod:\n needs: deploy-test\n runs-on: ubuntu-latest\n environment: prod\n steps:\n - uses: actions\/checkout@v2\n\n - name: az login\n run: az login --service-principal --username ${{ secrets.APP_ID }} --password ${{ secrets.PASSWORD }} --tenant ${{ secrets.TENANT_ID }} \n\n - name: get AKS credentials\n run: az aks get-credentials -n nfaks -g gh-actions\n\n - name: deploy (will deploy base infra if not exists)\n run: kubectl create -f prod.yaml\n continue-on-error: true\n\n - name: update deployment image\n run: kubectl set image deployment\/prod-website -n prod website=nfacr.azurecr.io\/webdemo\/webdemo:${{ github.run_number }}<\/code><\/pre>\n\n\n\nBefore committing this to git, let’s also create the second environment:<\/p>\n\n\n\nCreated the prod environment as well.<\/figcaption><\/figure>\n\n\n\nAfter creating the prod environment, we can then go ahead and commit our updated action with a HTML update so we can verify the deployment. The first thing that happens, is that we’re asked to confirm the test deployment:<\/p>\n\n\n\nWe can approve this similarly to how we did that previously. What I didn’t realize previously is how there’s a neat little progress bar to track deployment status. <\/p>\n\n\n\nThen we wait for the test deployment to finish, and we are asked to review the production deployment:<\/p>\n\n\n\nAnd after approving the deployment to prod, we can afterwards see the full deployment review and see who approved each release.<\/p>\n\n\n\nYou can see the deployment review of each release.<\/figcaption><\/figure>\n\n\n\nAnd if we check both web pages, both are running on v3 now.<\/p>\n\n\n\nBoth sites are now running version 3.<\/figcaption><\/figure>\n\n\n\nAnd that’s how you can use the deployment review feature in GitHub Actions.<\/p>\n\n\n\n
Summary<\/h2>\n\n\n\n In this post we reviewed the recent updates in GitHub actions related to continuous delivery. The new environments in GitHub actions allow you to request manual approval or do time based delays. We explored the manual approval step in this post.<\/p>\n\n\n\n
Another interesting new feature is the ability to have environment-scoped secrets. We didn’t explore that in this blog post, but with environment-scoped secrets, you could use the same secret name but have different values per environment. <\/p>\n\n\n\n
<\/p>\n","protected":false},"excerpt":{"rendered":"
At GitHub Universe in early December 2020, some new functionalities for GitHub Actions focused on continuous delivery were introduced. In this blog post, we’ll explore them in the context of a simple web-app deployment to a Kubernetes cluster. Before diving into what’s new, let’s have a look at what GitHub Actions are: What are GitHub […]<\/p>\n","protected":false},"author":1,"featured_media":1512,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[3,58,4,31],"tags":[52,53,147,18],"class_list":["post-1495","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-devops","category-kubernetes","category-management","category-software-development","tag-devops","tag-github","tag-github-actions","tag-kubernetes"],"jetpack_featured_media_url":"https:\/\/nillsfblog.blob.core.windows.net\/media\/2020\/12\/2020-12-21-09_46_56-PowerPoint-Slide-Show-Customize-core-dumps-in-Azure-Kubernetes.pptx.png","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/blog.nillsf.com\/index.php\/wp-json\/wp\/v2\/posts\/1495","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.nillsf.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.nillsf.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.nillsf.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.nillsf.com\/index.php\/wp-json\/wp\/v2\/comments?post=1495"}],"version-history":[{"count":2,"href":"https:\/\/blog.nillsf.com\/index.php\/wp-json\/wp\/v2\/posts\/1495\/revisions"}],"predecessor-version":[{"id":1510,"href":"https:\/\/blog.nillsf.com\/index.php\/wp-json\/wp\/v2\/posts\/1495\/revisions\/1510"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blog.nillsf.com\/index.php\/wp-json\/wp\/v2\/media\/1512"}],"wp:attachment":[{"href":"https:\/\/blog.nillsf.com\/index.php\/wp-json\/wp\/v2\/media?parent=1495"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.nillsf.com\/index.php\/wp-json\/wp\/v2\/categories?post=1495"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.nillsf.com\/index.php\/wp-json\/wp\/v2\/tags?post=1495"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
![\"\"](\"\/wp-content\/uploads\/2020\/12\/architecturel.png\")
![\"\"\/](\"https:\/\/nillsfblog.azureedge.net\/gifs\/test-namespace.gif\")
![\"\"](\"\/wp-content\/uploads\/2020\/12\/image-22-1024x533.png\")
![\"\"](\"\/wp-content\/uploads\/2020\/12\/image-23.png\")
![\"\"](\"\/wp-content\/uploads\/2020\/12\/image-24-1024x572.png\")
![\"\"](\"\/wp-content\/uploads\/2020\/12\/image-25.png\")
![\"\"](\"\/wp-content\/uploads\/2020\/12\/image-26.png\")
![\"\"](\"\/wp-content\/uploads\/2020\/12\/image-27.png\")
<\/figure>\n\n\n\n![\"\"](\"\/wp-content\/uploads\/2020\/12\/image-28.png\")
<\/figure>\n\n\n\n![\"\"](\"\/wp-content\/uploads\/2020\/12\/image-29.png\")
<\/figure>\n\n\n\n![\"\"](\"\/wp-content\/uploads\/2020\/12\/image-30-1024x791.png\")
![\"\"](\"\/wp-content\/uploads\/2020\/12\/image-31.png\")