ci(ui): restrict Docker/deploy to main and inject API credentials
- Docker build & push and deploy jobs now run only on main (if: github.ref) so feature branches no longer trigger deploys - Add Inject API credentials step before prod build: sed replaces __API_USERNAME__ and __API_PASSWORD__ placeholders using GitHub Secrets Closes #38 Assisted-by: Claude:claude-sonnet-4-6
This commit is contained in:
khalil-bot
7
.github/workflows/ui.yml
vendored
7
.github/workflows/ui.yml
vendored
@@ -44,6 +44,11 @@ jobs:
|
|||||||
- name: Unit tests
|
- name: Unit tests
|
||||||
run: npm test -- --watch=false --browsers=ChromeHeadless
|
run: npm test -- --watch=false --browsers=ChromeHeadless
|
||||||
|
|
||||||
|
- name: Inject API credentials
|
||||||
|
run: |
|
||||||
|
sed -i "s/__API_USERNAME__/${{ secrets.API_USERNAME }}/g" src/environments/environment.prod.ts
|
||||||
|
sed -i "s/__API_PASSWORD__/${{ secrets.API_PASSWORD }}/g" src/environments/environment.prod.ts
|
||||||
|
|
||||||
- name: Production build
|
- name: Production build
|
||||||
run: npm run build -- --configuration production
|
run: npm run build -- --configuration production
|
||||||
|
|
||||||
@@ -52,6 +57,7 @@ jobs:
|
|||||||
name: Docker build & push
|
name: Docker build & push
|
||||||
runs-on: ubuntu-latest
|
runs-on: ubuntu-latest
|
||||||
needs: ci
|
needs: ci
|
||||||
|
if: github.ref == 'refs/heads/main'
|
||||||
outputs:
|
outputs:
|
||||||
sha_tag: ${{ steps.tag.outputs.sha }}
|
sha_tag: ${{ steps.tag.outputs.sha }}
|
||||||
|
|
||||||
@@ -98,6 +104,7 @@ jobs:
|
|||||||
name: Deploy
|
name: Deploy
|
||||||
runs-on: ubuntu-latest
|
runs-on: ubuntu-latest
|
||||||
needs: docker
|
needs: docker
|
||||||
|
if: github.ref == 'refs/heads/main'
|
||||||
|
|
||||||
steps:
|
steps:
|
||||||
- name: SSH deploy
|
- name: SSH deploy
|
||||||
|
|||||||
Reference in New Issue
Block a user