Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/ntno/deploy-mkdocs-composite-action

reusable GitHub Action to deploy MkDocs site
https://github.com/ntno/deploy-mkdocs-composite-action

github-actions github-composite-action mkdocs

Last synced: 19 days ago
JSON representation

reusable GitHub Action to deploy MkDocs site

Host: GitHub
URL: https://github.com/ntno/deploy-mkdocs-composite-action
Owner: ntno
License: mit
Created: 2022-12-23T18:34:00.000Z (about 2 years ago)
Default Branch: main
Last Pushed: 2023-07-21T23:04:10.000Z (over 1 year ago)
Last Synced: 2024-10-30T01:43:42.786Z (2 months ago)
Topics: github-actions, github-composite-action, mkdocs
Homepage:
Size: 6.84 KB
Stars: 2
Watchers: 1
Forks: 0
Open Issues: 2
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

# deploy-mkdocs-composite-action
reusable github action to deploy mkdocs site to S3

## features
- configures AWS credentials
- gets mkdocs site archive
- deploys mkdocs site

## usage

### [Recommended - Assume Role directly using GitHub OIDC provider](https://github.com/aws-actions/configure-aws-credentials#assuming-a-role)
*__note:__* using OIDC requires `id-token` write and `contents` read permissions granted to GITHUB_TOKEN. see [Assigning permissions](https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs) for more information on assigning workflow permissions.
```
permissions:
id-token: write
contents: read

jobs:
deploy-pr:
runs-on: ubuntu-latest
environment: ci
steps:
- name: Checkout
uses: actions/checkout@v3
- name: Deploy PR
id: deploy-mkdocs
uses: ntno/deploy-mkdocs-composite-action@v3
with:
version: 1.0.3-pr
env-name: prod
s3-bucket: my-s3-bucket-1.0.3-pr
aws-region: us-east-2
role-to-assume: arn:aws:iam::************:role/CI-ntno.net
```

### [IAM User](https://github.com/aws-actions/configure-aws-credentials#assuming-a-role)
*__note:__* Secrets for composite actions must be configured using an [`environment`](https://docs.github.com/en/actions/using-jobs/using-environments-for-jobs). The `ci` environment is used in the following example. It contains the secrets `AWS_ACCESS_KEY_ID` and `AWS_SECRET_ACCESS_KEY`.

```
jobs:
deploy-pr:
runs-on: ubuntu-latest
environment: ci
steps:
- name: Checkout
uses: actions/checkout@v3
- name: Deploy PR
id: deploy-mkdocs
uses: ntno/deploy-mkdocs-composite-action@v3
with:
version: 1.0.3-pr
env-name: prod
s3-bucket: my-s3-bucket-1.0.3-pr
aws-region: us-east-2
aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
```

## inputs
```
version:
description: 'Build version to deploy. Used to get archive at unique S3 key. Ex: sha-####, 3.0.0'
required: true
type: string
env-name:
description: 'Environment name. Ex: dev, prod'
default: 'dev'
required: true
type: string
s3-bucket:
description: 'S3 Bucket to deploy to.'
required: true
type: string
make-vars:
description: 'Variables to pass to all make commands. Ex: `--no-print-directory` would result in `make --no-print-directory get-mkdocs-archive...`'
default: "--no-print-directory"
required: false
type: string
make-vars-for-deploy-target:
description: 'Variables to pass to `deploy-mkdocs` make command. Ex: `QUIET=1` would result in `make QUIET=1 deploy-mkdocs...`'
default: ""
required: false
type: string
aws-region:
description: 'AWS Region. Ex: us-east-1'
default: 'us-east-1'
required: true
type: string
aws-access-key-id:
description: 'AWS Access Key ID.'
required: false
aws-secret-access-key:
description: 'AWS Secret Access Key.'
required: false
role-to-assume:
description: >-
Use the provided credentials to assume an IAM role and configure the Actions
environment with the assumed role credentials rather than with the provided
credentials
required: false
role-duration-seconds:
description: "Role duration in seconds (default: 6 hours, 1 hour for OIDC/specified aws-session-token)"
required: false
role-session-name:
description: 'Role session name (default: GitHubActions)'
required: false
role-external-id:
description: 'The external ID of the role to assume'
required: false
role-skip-session-tagging:
description: 'Skip session tagging during role assumption'
required: false
```

## prerequisites
expects Makefile in mkdocs project with the following directives:
```
get-mkdocs-archive: env region version download-directory
deploy-mkdocs: env region bucket-name
```
### get-mkdocs-archive
use this directive to retrieve and unpack mkdocs artifact (ex: download archive from S3 and unzip)

### deploy-mkdocs
use this directive to deploy mkdocs site to S3 bucket

## see also
- [Use OpenID Connect within your workflows to authenticate with Amazon Web Services.](https://docs.github.com/en/actions/deployment/security-hardening-your-deployments/configuring-openid-connect-in-amazon-web-services)
- [AWS Credentials GitHub action](https://github.com/aws-actions/configure-aws-credentials)