From 9b4b0349332925d234eb2aff53f15d7be2ed876a Mon Sep 17 00:00:00 2001 From: "Trez.One" Date: Thu, 18 Sep 2025 20:37:24 -0400 Subject: [PATCH] Adding Renovate PR deployment workflow. --- .gitea/workflows/renovate-pr-deploy.yml | 116 ++++++++++++++++++++++++ 1 file changed, 116 insertions(+) create mode 100644 .gitea/workflows/renovate-pr-deploy.yml diff --git a/.gitea/workflows/renovate-pr-deploy.yml b/.gitea/workflows/renovate-pr-deploy.yml new file mode 100644 index 0000000..4780d0a --- /dev/null +++ b/.gitea/workflows/renovate-pr-deploy.yml @@ -0,0 +1,116 @@ +name: Renovate PR Deployment + +on: + pull_request: + types: [closed] + branches: + - main + +jobs: + deploy: + if: | + github.event.pull_request.merged == true && + github.event.pull_request.user.login == 'renovate-bot' + runs-on: ubuntu-latest + steps: + - name: Check out code + uses: actions/checkout@v4 + + - name: Detect Renovate update type + id: detect-update + env: + PR_BODY: ${{ github.event.pull_request.body }} + run: | + echo "PR body: $PR_BODY" + + if echo "$PR_BODY" | grep -qE 'Update\s+(patch|minor|major|digest)'; then + echo "update=true" >> $GITHUB_OUTPUT + else + echo "update=false" >> $GITHUB_OUTPUT + fi + + - name: Stop if update not patch/minor/major/digest + if: steps.detect-update.outputs.update != 'true' + run: | + echo "::warning::This PR does not involve patch/minor/major/digest update. Skipping deployment." + exit 0 + + - name: Get changed services from docker-compose.yml + id: services + run: | + # Fetch previous commit to compare + git fetch origin ${{ github.event.before }} --depth=1 + + # Get all image names added/changed in docker-compose.yml + images=$(git diff ${{ github.event.before }} ${{ github.sha }} -- docker-compose.yml \ + | grep -E '^\+.*image:' \ + | sed -E 's/.*image:[[:space:]]*//g' \ + | awk -F: '{print $1}' \ + | sort -u) + + # Map images to service names using yq + services="" + for img in $images; do + svc=$(yq e ".services | with_entries(select(.value.image | startswith(\"$img\"))) | keys | .[]" docker-compose.yml) + services="$services $svc" + done + + # Deduplicate and trim + services=$(echo $services | tr ' ' '\n' | sort -u | xargs) + echo "services=$services" >> $GITHUB_OUTPUT + + - name: Pull images for modified services + if: steps.services.outputs.services != '' + run: | + services="${{ steps.services.outputs.services }}" + echo "Pulling images for services: $services" + for svc in $services; do + docker compose pull $svc || echo "Failed to pull $svc, continuing..." + done + + - name: Docker Compose Deployment + uses: cssnr/stack-deploy-action@v1.4.0 + with: + mode: compose + file: docker-compose.yml + name: 'rikku' + host: 192.168.1.252 + user: pi + ssh_key: ${{ secrets.RIKKU_SSH_PRIVATE_KEY }} + args: --remove-orphans -d ${{ steps.services.outputs.services }} + env_file: '.env' + registry_host: 'ghcr.io' + registry_user: TrezOne + registry_pass: ${{ secrets.GHCR_LOGIN_TOKEN }} + summary: true + + - name: Docker Compose Healthcheck + uses: jaracogmbh/docker-compose-health-check-action@v1.0.0 + env: + DOCKER_HOST: tcp://192.168.1.252:2375 + with: + max-retries: 30 + retry-interval: 10 + compose-file: "docker-compose.yml" + skip-exited: "true" + skip-no-healthcheck: "true" + continue-on-error: true + id: health + + - name: Deployment Summary + if: always() + run: | + echo "### 🚀 Renovate Patch Deployment Summary" >> $GITHUB_STEP_SUMMARY + + if [[ -z "${{ steps.services.outputs.services }}" ]]; then + echo "- No services changed in this patch update." >> $GITHUB_STEP_SUMMARY + exit 0 + fi + + echo "- Updated services: \`${{ steps.services.outputs.services }}\`" >> $GITHUB_STEP_SUMMARY + + if [[ "${{ steps.health.outcome }}" == "success" ]]; then + echo "- ✅ All services passed health checks." >> $GITHUB_STEP_SUMMARY + else + echo "- ⚠️ Some services failed health checks. Check logs above for details." >> $GITHUB_STEP_SUMMARY + fi