Fix env var mismatches and update repos for Phase 7 ingestion #1
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Deploy API to Cloud Run | |
| on: | |
| workflow_dispatch: | |
| push: | |
| branches: [main] | |
| paths: | |
| - "api/**" | |
| - "docker/Dockerfile.backend" | |
| - ".github/workflows/deploy-api.yml" | |
| concurrency: | |
| group: deploy-api-${{ github.ref }} | |
| cancel-in-progress: false | |
| env: | |
| REGION: us-central1 | |
| GAR_REPO: us-central1-docker.pkg.dev/gitunderstand/bettercodewiki | |
| SERVICE_NAME: gitunderstand-api | |
| jobs: | |
| build-and-deploy: | |
| name: Build & Deploy API | |
| runs-on: ubuntu-latest | |
| permissions: | |
| contents: read | |
| id-token: write | |
| steps: | |
| - name: Checkout repository | |
| uses: actions/checkout@v4 | |
| - name: Authenticate to Google Cloud | |
| id: auth | |
| uses: google-github-actions/auth@v2 | |
| with: | |
| workload_identity_provider: "projects/${{ secrets.GCP_PROJECT_NUMBER }}/locations/global/workloadIdentityPools/github-pool/providers/github-provider" | |
| service_account: "deploy-sa@gitunderstand.iam.gserviceaccount.com" | |
| - name: Set up Cloud SDK | |
| uses: google-github-actions/setup-gcloud@v2 | |
| - name: Configure Docker for Artifact Registry | |
| run: gcloud auth configure-docker us-central1-docker.pkg.dev --quiet | |
| - name: Set up Docker Buildx | |
| uses: docker/setup-buildx-action@v3 | |
| - name: Build and push API image | |
| uses: docker/build-push-action@v6 | |
| with: | |
| context: . | |
| file: docker/Dockerfile.backend | |
| push: true | |
| tags: | | |
| ${{ env.GAR_REPO }}/api:${{ github.sha }} | |
| ${{ env.GAR_REPO }}/api:latest | |
| cache-from: type=gha,scope=api | |
| cache-to: type=gha,mode=max,scope=api | |
| - name: Deploy to Cloud Run | |
| uses: google-github-actions/deploy-cloudrun@v2 | |
| with: | |
| service: ${{ env.SERVICE_NAME }} | |
| region: ${{ env.REGION }} | |
| image: ${{ env.GAR_REPO }}/api:${{ github.sha }} | |
| flags: | | |
| --allow-unauthenticated | |
| --port=8001 | |
| --cpu=1 | |
| --memory=2Gi | |
| --min-instances=0 | |
| --max-instances=3 | |
| --service-account=runtime-sa@gitunderstand.iam.gserviceaccount.com | |
| --set-env-vars=ENVIRONMENT=production,WIKI_STORAGE_TYPE=gcs,GCS_BUCKET=gitunderstand-wikicache,DEEPWIKI_EMBEDDER_TYPE=google | |
| --set-secrets=GOOGLE_API_KEY=google-api-key:latest,OPENAI_API_KEY=openai-api-key:latest,CLERK_SECRET_KEY=clerk-secret-key:latest,SUPABASE_URL=supabase-url:latest,SUPABASE_SERVICE_ROLE_KEY=supabase-service-role-key:latest | |
| - name: Verify deployment health | |
| run: | | |
| URL=$(gcloud run services describe ${{ env.SERVICE_NAME }} --region ${{ env.REGION }} --format 'value(status.url)') | |
| for i in 1 2 3 4 5; do | |
| STATUS=$(curl -s -o /dev/null -w "%{http_code}" "$URL/health" || echo "000") | |
| if [ "$STATUS" = "200" ]; then echo "Health check passed"; exit 0; fi | |
| echo "Attempt $i: status=$STATUS, retrying..." | |
| sleep 10 | |
| done | |
| echo "Health check failed after 5 attempts" | |
| exit 1 | |
| - name: Show deployment URL | |
| run: | | |
| echo "## API Deployment" >> $GITHUB_STEP_SUMMARY | |
| echo "Image: \`${{ env.GAR_REPO }}/api:${{ github.sha }}\`" >> $GITHUB_STEP_SUMMARY | |
| URL=$(gcloud run services describe ${{ env.SERVICE_NAME }} --region ${{ env.REGION }} --format 'value(status.url)') | |
| echo "URL: $URL" >> $GITHUB_STEP_SUMMARY | |
| - name: Notify Slack on failure | |
| if: failure() | |
| env: | |
| SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} | |
| run: | | |
| [ -z "$SLACK_WEBHOOK_URL" ] && exit 0 | |
| curl -s -X POST "$SLACK_WEBHOOK_URL" \ | |
| -H 'Content-Type: application/json' \ | |
| -d '{ | |
| "blocks": [ | |
| { | |
| "type": "header", | |
| "text": {"type": "plain_text", "text": "API Deploy Failed", "emoji": true} | |
| }, | |
| { | |
| "type": "section", | |
| "fields": [ | |
| {"type": "mrkdwn", "text": "*Service:*\ngitunderstand-api"}, | |
| {"type": "mrkdwn", "text": "*Commit:*\n`${{ github.sha }}`"}, | |
| {"type": "mrkdwn", "text": "*Triggered by:*\n${{ github.actor }}"}, | |
| {"type": "mrkdwn", "text": "*Branch:*\n`${{ github.ref_name }}`"} | |
| ] | |
| }, | |
| { | |
| "type": "actions", | |
| "elements": [ | |
| { | |
| "type": "button", | |
| "text": {"type": "plain_text", "text": "View Run"}, | |
| "url": "${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}" | |
| } | |
| ] | |
| } | |
| ] | |
| }' |