Rollback Production Deployment #16
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Rollback Production Deployment | |
| on: | |
| workflow_dispatch: | |
| # TODO: Remove the inputs once the dev testing is done | |
| inputs: | |
| environment: | |
| required: true | |
| type: choice | |
| options: | |
| - development | |
| - production | |
| default: 'development' | |
| tag: | |
| required: true | |
| type: string | |
| permissions: | |
| id-token: write # allows the JWT to be requested from GitHub's OIDC provider | |
| contents: read # This is required for actions/checkout | |
| env: | |
| NODE_OPTIONS: "--no-warnings" | |
| CACHE_CONTROL_NO_STORE: "\"no-store\"" | |
| CACHE_CONTROL_MAX_AGE: "\"max-age=3600\"" | |
| LEGACY_DIR_NAME: "legacy" | |
| MODERN_DIR_NAME: "modern" | |
| INTEGRATIONS_DIR_NAME: "js-integrations" | |
| PLUGINS_DIR_NAME: "plugins" | |
| LATEST_VERSION_DIR_NAME: "v3" | |
| LEGACY_SDK_LATEST_VERSION_DIR_NAME: "v1.1" | |
| jobs: | |
| validate-actor: | |
| # Only allow to be deployed from tags and main branch | |
| # if: startsWith(github.ref, 'refs/tags/v') || github.ref == 'refs/heads/main' | |
| uses: ./.github/workflows/validate-actor.yml | |
| with: | |
| team_names: 'js-sdk,integrations' | |
| secrets: | |
| PAT: ${{ secrets.PAT }} | |
| rollback: | |
| name: Rollback production deployment | |
| runs-on: [self-hosted, Linux, X64] | |
| steps: | |
| - name: Configure environment variables | |
| run: | | |
| echo "DATE=$(date)" >> $GITHUB_ENV | |
| # TODO: Remove the below once the dev testing is done | |
| if [ "${{ inputs.environment }}" == "production" ]; then | |
| AWS_ACCOUNT_ID="${{ secrets.AWS_PROD_ACCOUNT_ID }}" | |
| AWS_S3_SYNC_ROLE="${{ secrets.AWS_PROD_S3_SYNC_ROLE }}" | |
| AWS_S3_BUCKET_NAME="${{ secrets.AWS_PROD_S3_BUCKET_NAME }}" | |
| AWS_CF_DISTRIBUTION_ID="${{ secrets.AWS_PROD_CF_DISTRIBUTION_ID }}" | |
| elif [ "${{ inputs.environment }}" == "development" ]; then | |
| AWS_ACCOUNT_ID="${{ secrets.AWS_DEV_ACCOUNT_ID_TEMP }}" | |
| AWS_S3_SYNC_ROLE="${{ secrets.AWS_DEV_S3_SYNC_ROLE_TEMP }}" | |
| AWS_S3_BUCKET_NAME="${{ secrets.AWS_DEV_S3_BUCKET_NAME_TEMP }}" | |
| AWS_CF_DISTRIBUTION_ID="${{ secrets.AWS_DEV_CF_DISTRIBUTION_ID_TEMP }}" | |
| fi | |
| echo "AWS_S3_BUCKET_NAME=$AWS_S3_BUCKET_NAME" >> $GITHUB_ENV | |
| echo "AWS_CF_DISTRIBUTION_ID=$AWS_CF_DISTRIBUTION_ID" >> $GITHUB_ENV | |
| echo "AWS_ACCOUNT_ID=$AWS_ACCOUNT_ID" >> $GITHUB_ENV | |
| echo "AWS_S3_SYNC_ROLE=$AWS_S3_SYNC_ROLE" >> $GITHUB_ENV | |
| - name: Install AWS CLI | |
| uses: unfor19/install-aws-cli-action@master | |
| - name: Configure AWS credentials | |
| uses: aws-actions/configure-aws-credentials@v4 | |
| with: | |
| role-to-assume: arn:aws:iam::${{ env.AWS_ACCOUNT_ID }}:role/${{ env.AWS_S3_SYNC_ROLE }} | |
| aws-region: us-east-1 | |
| - name: Checkout source code | |
| # uses: actions/checkout@v4 | |
| # with: | |
| # ref: ${{ github.sha }} | |
| run: | | |
| git clone https://github.com/rudderlabs/rudder-sdk-js.git | |
| cd rudder-sdk-js | |
| git checkout ${{ inputs.tag }} | |
| - name: Get rollback sdk versions | |
| run: | | |
| rollback_version=$(jq -r .version packages/analytics-js/package.json) | |
| echo "ROLLBACK_VERSION_VALUE=$rollback_version" >> $GITHUB_ENV | |
| echo "Rollback version: $rollback_version" | |
| legacy_sdk_rollback_version=$(jq -r .version packages/analytics-v1.1/package.json) | |
| echo "LEGACY_SDK_ROLLBACK_VERSION_VALUE=$legacy_sdk_rollback_version" >> $GITHUB_ENV | |
| echo "Legacy SDK rollback version: $legacy_sdk_rollback_version" | |
| - name: Copy the core SDK artifacts from the previous version to the latest version directory | |
| run: | | |
| integrations_modern_path_prefix="${{ env.ROLLBACK_VERSION_VALUE }}/${{ env.MODERN_DIR_NAME }}/${{ env.INTEGRATIONS_DIR_NAME }}" | |
| integrations_legacy_path_prefix="${{ env.ROLLBACK_VERSION_VALUE }}/${{ env.LEGACY_DIR_NAME }}/${{ env.INTEGRATIONS_DIR_NAME }}" | |
| plugins_modern_path_prefix="${{ env.ROLLBACK_VERSION_VALUE }}/${{ env.MODERN_DIR_NAME }}/${{ env.PLUGINS_DIR_NAME }}" | |
| s3_path_prefix="s3://${{ env.AWS_S3_BUCKET_NAME }}" | |
| # Copy from S3 bucket versioned directory to the same S3 bucket in the latest version directory | |
| # excluding the plugins and js-integrations directories | |
| echo "Copying core SDK legacy artifacts from $s3_path_prefix/${{ env.ROLLBACK_VERSION_VALUE }}/${{ env.LEGACY_DIR_NAME }}/ to $s3_path_prefix/${{ env.LATEST_VERSION_DIR_NAME }}/${{ env.LEGACY_DIR_NAME }}/" | |
| aws s3 cp $s3_path_prefix/${{ env.ROLLBACK_VERSION_VALUE }}/${{ env.LEGACY_DIR_NAME }}/ $s3_path_prefix/${{ env.LATEST_VERSION_DIR_NAME }}/${{ env.LEGACY_DIR_NAME }}/ --recursive --exclude "$integrations_legacy_path_prefix/*" --exclude "$integrations_legacy_path_prefix/**" --cache-control ${{ env.CACHE_CONTROL_NO_STORE }} | |
| echo "Copying core SDK modern artifacts from $s3_path_prefix/${{ env.ROLLBACK_VERSION_VALUE }}/${{ env.MODERN_DIR_NAME }}/ to $s3_path_prefix/${{ env.LATEST_VERSION_DIR_NAME }}/${{ env.MODERN_DIR_NAME }}/" | |
| aws s3 cp $s3_path_prefix/${{ env.ROLLBACK_VERSION_VALUE }}/${{ env.MODERN_DIR_NAME }}/ $s3_path_prefix/${{ env.LATEST_VERSION_DIR_NAME }}/${{ env.MODERN_DIR_NAME }}/ --recursive --exclude "$plugins_modern_path_prefix/*" --exclude "$plugins_modern_path_prefix/**" --exclude "$integrations_modern_path_prefix/*" --exclude "$integrations_modern_path_prefix/**" --cache-control ${{ env.CACHE_CONTROL_NO_STORE }} | |
| - name: Invalidate CloudFront cache for the latest version directory | |
| run: | | |
| invalidation_id=$(AWS_MAX_ATTEMPTS=10 aws cloudfront create-invalidation --distribution-id ${{ env.AWS_CF_DISTRIBUTION_ID }} --paths "/${{ env.LATEST_VERSION_DIR_NAME }}*" --query "Invalidation.Id" --output text) | |
| aws cloudfront wait invalidation-completed --distribution-id ${{ env.AWS_CF_DISTRIBUTION_ID }} --id "$invalidation_id" | |
| # Repeat the above steps for the legacy SDK artifacts | |
| - name: Copy the legacy SDK artifacts from the previous version to the latest version directory | |
| run: | | |
| s3_path_prefix="s3://${{ env.AWS_S3_BUCKET_NAME }}" | |
| # Copy from S3 bucket versioned directory to the same S3 bucket in the latest version directory | |
| echo "Copying legacy SDK artifacts from $s3_path_prefix/${{ env.LEGACY_SDK_ROLLBACK_VERSION_VALUE }}/ to $s3_path_prefix/${{ env.LEGACY_SDK_LATEST_VERSION_DIR_NAME }}/" | |
| aws s3 cp $s3_path_prefix/${{ env.LEGACY_SDK_ROLLBACK_VERSION_VALUE }}/ $s3_path_prefix/${{ env.LEGACY_SDK_LATEST_VERSION_DIR_NAME }}/ --recursive --cache-control ${{ env.CACHE_CONTROL_NO_STORE }} | |
| - name: Invalidate CloudFront cache for the latest version directory (legacy SDK artifacts) | |
| run: | | |
| invalidation_id=$(AWS_MAX_ATTEMPTS=10 aws cloudfront create-invalidation --distribution-id ${{ env.AWS_CF_DISTRIBUTION_ID }} --paths "/${{ env.LEGACY_SDK_LATEST_VERSION_DIR_NAME }}*" --query "Invalidation.Id" --output text) | |
| aws cloudfront wait invalidation-completed --distribution-id ${{ env.AWS_CF_DISTRIBUTION_ID }} --id "$invalidation_id" | |
| - name: Send message to Slack channel | |
| id: slack | |
| if: false | |
| continue-on-error: true | |
| uses: slackapi/[email protected] | |
| env: | |
| SLACK_BOT_TOKEN: ${{ secrets.SLACK_BOT_TOKEN }} | |
| PROJECT_NAME: 'JS SDK Browser Package - Rollback - Production' | |
| CDN_URL: ${{ format('https://cdn.rudderlabs.com/{0}/modern/rsa.min.js', env.LATEST_VERSION_DIR_NAME) }} | |
| RELEASES_URL: 'https://github.com/rudderlabs/rudder-sdk-js/releases/tag/@rudderstack/analytics-js@' | |
| LINK_TEXT: ${{ format('v{0}', env.ROLLBACK_VERSION_VALUE) }} | |
| with: | |
| channel-id: ${{ secrets.SLACK_RELEASE_CHANNEL_ID }} | |
| payload: | | |
| { | |
| "text": "*New Release: ${{ env.PROJECT_NAME }} - <${{ env.CDN_URL }}|${{ env.LINK_TEXT }}>*\n${{ env.DATE }}\nCC: <!subteam^S0555JBV36D> <!subteam^S03SHJ20350>", | |
| "blocks": [ | |
| { | |
| "type": "header", | |
| "text": { | |
| "type": "plain_text", | |
| "text": "New release: ${{ env.PROJECT_NAME }}" | |
| } | |
| }, | |
| { | |
| "type": "divider" | |
| }, | |
| { | |
| "type": "section", | |
| "text": { | |
| "type": "mrkdwn", | |
| "text": "*<${{ env.CDN_URL }}|${{ env.LINK_TEXT }}>*\n${{ env.DATE }}\nCC: <!subteam^S0555JBV36D> <!subteam^S03SHJ20350>" | |
| }, | |
| "accessory": { | |
| "type": "image", | |
| "image_url": "https://cdn.jsdelivr.net/npm/programming-languages-logos/src/javascript/javascript.png", | |
| "alt_text": "JavaScript Icon" | |
| } | |
| } | |
| ${{ format(',{{"type": "context", "elements": [{{"type": "mrkdwn", "text": "For more details, check the full release notes <{0}{1}|here>."}}]}}', env.RELEASES_URL, env.ROLLBACK_VERSION_VALUE) || '' }} | |
| ] | |
| } |