initial commit

Author: iBotPeaches

.github/dependabot.yml

@@ -0,0 +1,8 @@
+version: 2
+updates:
+  - package-ecosystem: github-actions
+    directory: /
+    schedule:
+      interval: daily
+      time: "08:00"
+      timezone: "America/New_York"

.github/ecs-deploy-action.png

@@ -0,0 +1,14 @@
+name: sourcetoad/aws-ecs-deploy-action
+on: push
+
+jobs:
+  bash-lint:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v3
+
+      - name: Lint Bash
+        uses: azohra/shell-linter@latest
+        with:
+          path: '*.sh'

.github/workflows/linting.yml

@@ -0,0 +1,4 @@
+node_modules/
+
+# ide
+.idea

.gitignore

@@ -0,0 +1,9 @@
+FROM amazon/aws-cli:2.9.22
+
+COPY deploy.sh /deploy.sh
+
+# Get tools needed for packaging
+RUN yum update -y && \
+    yum install -y jq && \
+    yum clean all && \
+    rm -rf /var/cache/yum

Dockerfile

@@ -0,0 +1,21 @@
+# MIT License
+
+_Copyright (c) 2021 Sourcetoad, LLC_
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

LICENSE.md

@@ -0,0 +1,111 @@
+# AWS ECS Deploy Action
+_To automatically edit task definitions via jq to then deploy & monitor._
+
+![](.github/ecs-deploy-action.png)
+
+### How it works
+
+ * Optionally, the action downloads the latest task definition from the given prepare task name (`ecs_prepare_task_definition_name`).
+   * If fulfilled, it edits the task definition for each image change in `prepare_container_image_changes`
+   * The task is executed one-off and requires successful completion before next step.
+     * (this may require setting `prepare_container_network_config_filepath` to a JSON file representing the network configuration)
+ * Afterwards, the action downloads the latest task definition from given main task parameter (`service_task_definition_name`).
+ * Task definition is edited for each image change listed in `container_image_changes`.
+ * Service update (with forced deployment) is triggered with that modified task definition file under the named service: `ecs_service_name`.
+ * Status updates are provided as the deployment continues until either a successful or failure state is encountered.
+
+### Assumptions
+
+This is used in many applications for production level deployments. However, there are a few things that are untested as we do not use them.
+ 
+ * Non-FARGATE deployments
+ * CodeDeploy within ECS
+
+---
+
+## Usage
+_includes examples from other packages to give context_
+
+```yaml
+- name: Configure AWS Credentials
+  uses: aws-actions/configure-aws-credentials@v1
+  with:
+    role-to-assume: arn:aws:iam::123456789100:role/my-github-actions-role
+    aws-region: us-east-1
+
+- name: Login to Amazon ECR
+  uses: aws-actions/amazon-ecr-login@v1
+
+- name: "Build, tag, push image: ..."
+  uses: docker/build-push-action@v4
+  with:
+    push: true
+
+- name: ECS Deploy
+  uses: sourcetoad/aws-ecs-deploy-action@v1
+  with:
+    ecs_service_name: project
+    service_task_definition_name: project-alpha
+    container_image_changes: >
+        nginx|123456789100.dkr.ecr.us-east-1.amazonaws.com/nginx:version
+        php|123456789100.dkr.ecr.us-east-1.amazonaws.com/php:version
+```
+
+## Customizing
+
+### inputs
+
+Following inputs can be used as `step.with` keys
+
+| Name                                             | Required | Type   | Description                                                        |
+|--------------------------------------------------|----------|--------|--------------------------------------------------------------------|
+| `ecs_cluster_name`                               | yes      | string | ECS Cluster Name                                                   |
+| `aws_region`                                     | no       | string | AWS Region (default: `us-east-1`)                                  |
+| `ecs_service_name`                               | yes      | string | ECS Service Name                                                   |
+| `ecs_launch_type`                                | no       | string | ECS Launch Type for tasks. (default: `FARGATE`)                    |
+| `service_task_definition_name`                   | yes      | string | ECS Task Definition Name                                           |
+| `service_container_image_changes`                | yes      | string | space delimited keypairs (`container|image`)                  |
+| `prepare_task_definition_name`                   | no       | string | ECS Task Definition Name (Runs prior to execution)                 |
+| `prepare_task_container_image_changes`           | no       | string | space delimited keypairs for prepare step (`container|image`) |
+ | `prepare_task_container_network_config_filepath` | no       | string | filepath from context of root to json configuration                |
+| `max_polling_iterations`                         | no       | Number | Number of 15s iterations to poll max (default: `60`)               |
+| `dry_run`                                        | no       | bool   | Whether to skip write related AWS commands.                        |
+
+## Skip waiting during update
+Some projects may not want to poll till completion. Setting `max_polling_iterations` to `0` will exit the script cleanly
+after the service update was triggered. Progress will have to be monitored elsewhere.
+
+## Prepare Task
+Some projects may require a task to complete prior to the rollout of the main system. This is commonly for migrations in Laravel projects.
+These set of configurations allow when set require the task to execute and continue to completion prior to the main services updating.
+
+* `prepare_task_definition_name` - The task name for the prepare task.
+* `prepare_task_container_image_changes` - Image changes, much like explained below for container images
+* `prepare_task_container_network_config_filepath` - JSON file for network configuration (example below)
+```json
+{
+  "awsvpcConfiguration": {
+    "subnets": ["string", "string2"],
+    "securityGroups": ["string", "string2"],
+    "assignPublicIp": "ENABLED|DISABLED"
+  }
+}
+```
+
+## Container Image Changes
+
+When wishing to change multiple images in one task definition, leverage the formatting of Folded Style parameters.
+
+Given this example:
+```yaml
+- uses: sourcetoad/aws-ecs-deploy-action@v1
+  with:
+    container_image_changes: >
+        nginx|123456789100.dkr.ecr.us-east-1.amazonaws.com/nginx:version
+        php|123456789100.dkr.ecr.us-east-1.amazonaws.com/php:version
+```
+ * This will crawl the `containerDefinitions` of the task definition
+ * Finding the first container that has name `nginx`
+   * Adapting the `image` property to `123456789100.dkr.ecr.us-east-1.amazonaws.com/nginx:version`
+ * Finding the next container that has name `php`
+   * Adapting the `image` property to `123456789100.dkr.ecr.us-east-1.amazonaws.com/php:version`

README.md

@@ -0,0 +1,49 @@
+name: 'Sourcetoad - AWS ECS Deploy Action'
+description: 'Edit Task Definitions in ECS with jq and deploy.'
+author: Sourcetoad
+branding:
+  color: 'yellow'
+  icon: 'server'
+
+inputs:
+  ecs_cluster_name:
+    description: 'ECS Cluster Name'
+    required: true
+  aws_region:
+    description: 'AWS Region'
+    required: false
+    default: 'us-east-1'
+  ecs_launch_type:
+    description: 'ECS Launch Type (One of `ECS`, `FARGATE` or `EXTERNAL`).'
+    required: false
+    default: 'FARGATE'
+  ecs_service_name:
+    description: 'ECS Service Name'
+    required: true
+  service_task_definition_name:
+    description: 'ECS Task Definition Name'
+    required: true
+  service_container_image_changes:
+    description: 'Container images to change in format of (containername:image) using folded block scalar.'
+    required: true
+  prepare_task_definition_name:
+    description: 'ECS Task Definition Name (Runs prior to execution)'
+    required: false
+  prepare_task_container_image_changes:
+    description: 'Prepare step container images to change in format of (containername:image) using folded block scalar.'
+    required: false
+  prepare_task_container_network_config_filepath:
+    description: 'Location to JSON file representing the network configuration for the optional prepare job. This is required when `awsvpc` is in use.'
+    required: false
+  max_polling_iterations:
+    description: 'Max amount of iterations (15s increments) to wait for a service update'
+    required: false
+    default: '60'
+  dry_run:
+    description: 'Whether to skip all AWS related write steps.'
+    required: false
+    default: 'false'
+runs:
+  using: 'docker'
+  image: 'Dockerfile'
+  entrypoint: '/deploy.sh'