[No QA] Move version-bump and automerge code to its own workflow #2329
Conversation
|
Okay, there are still more simplifications we can do after this, but we can move in increments. I think this PR is enough to resolve the problem at hand (i.e: only deploy to staging when the staging branch is updated, and same for production). There are several more simplifications we can do after this before adding complexity with the CP flows. |
|
I took this off draft, and I could use some reviews at this point. That said, the likelihood that this won't break anything and will just work first try is slim. To minimize disruptions, @AndrewGable and I were thinking we would schedule a day to live-test this, and let Applause skip QA that day. So please review but don't merge 🙂 |
Correct, we need to either get those 3rd-party PRs merged or point at my fork of the repos for now. We could probably benefit from doing some more atomic testing of the updated 3rd-party actions using |
|
|
||
| # TODO: only need to create this tag because of how the GitUtils work |
There was a problem hiding this comment.
I'm not sure what this means, is this still a TODO?
| return exec(`npm --no-git-tag-version version ${newVersion} -m "Update version to ${newVersion}"`); | ||
| }) | ||
| console.log(`Setting npm version to ${newVersion}`); | ||
| exec(`npm --no-git-tag-version version ${newVersion} -m "Update version to ${newVersion}"`) |
There was a problem hiding this comment.
You can just do "Update version to %s" here. (ref)
|
|
||
| - name: Set up git | ||
| run: | | ||
| git fetch |
There was a problem hiding this comment.
NAB: Do you know if these are chained like && in bash, in that the next command won't run unless the previous command exits with a return code of 0?
There was a problem hiding this comment.
That's a good question ... I do not know the answer.
|
Got some movement on this PR and updated it after the maintainer's review. |
.github/workflows/automerge.yml
Outdated
| needs: getPullRequestMergeability | ||
| if: github.event.pull_request.base.ref == 'production' && github.actor == 'OSBotify' && github.event.label.name == 'automerge' | ||
| steps: | ||
| # TODO: Once https://github.com/hmarr/auto-approve-action/pull/186 is merged, point back at the non-forked repo |
There was a problem hiding this comment.
Honestly, I'm not sure if just pointing at a forked repo like this will work, or if I need to checkout that repo in the workflow or publish the action in that repo or something
There was a problem hiding this comment.
Seems like this works just fine as-is: https://github.com/Andrew-Test-Org/Public-Test-Repo/pull/49/checks?check_run_id=2568980822
|
🎉 pascalgn/automerge-action#149 has been merged 🎉 |
|
Okay, taking this off hold. Let's do this thang. |
|
@deetergp dismissing the requested changes here since they were for minor refactors and we're going to be testing this today. Will follow up w/ any minor fixes. |
|
🚀 Deployed to staging in version: 1.0.43-6🚀
|
|
🚀 Deployed to production in version: 1.0.44-0🚀
|
Details
This pull request does a few things:
At an abstract level, it establishes a pattern by which we can make a "utility workflow" or "subroutine", which can be synchronously or asynchronously executed by another workflow. Nifty! Here's how it works:
OS_BOTIFY_TOKENinstead of the defaultGITHUB_TOKEN.Ultimately, this should promote code reuse and greatly simplify the handling of race conditions, the creation of new workflows, and the update of branches.
Now, specifically what this PR does:
Creates a new workflow called
createNewVersionthat:SEMVER_LEVELmainto update the app version.It's important to note that the
createNewVersionworkflow uses softprops/turnstyle to ensure that only one instance of the workflow is executing at a time. By doing so, it ensures that one version is created and committed tomainbefore we allow the next version to be created.Updates the
bumpVersionaction to use the local version instead of tagsThe
bumpVersionaction previously used tags to prevent version conflicts due to race conditions. i.e: when a version was created we would immediately tag it and push the tags. Then when creating a new version we would fetch the tags, get the highest one, and do that + 1. The problem created by that method was that we could not "register" a new version without pushing tags, and pushing tags triggers a staging deploy.Now, we're using a "subroutine" and softprops/turnstyle to prevent race conditions, and we don't want to deploy to staging until the staging branch has been successfully updated. So I changed this action to once again just use the local version +1.
Replaces the
automergeworkflow with a newupdateProtectedBranchsubroutinestagingcan only be updated frommain, andproductioncan only be updated fromstagingcreateNewVersionworkflow, to prevent version conflict race conditions.automergeworkflow.Fixed Issues
Fixes https://github.com/Expensify/Expensify/issues/157916 https://github.com/Expensify/Expensify/issues/163576
Testing plan
StagingDeployCashis not lockedBUILDversion. There should be no version conflict. A tag for each version should not be pushed yet.mainbranch, followed by another PR to update thestagingbranch frommain.stagingbranch is updated, thedeployworkflow should begin, create a tag for the updatedBUILDversion on thestagingbranch, and push tags.platformDeployworkflow. When that workflow completes, a comment should appear on this and the dummy PR stating that it was deployed to staging.StagingDeployCash.StagingDeployCash, and thelockCashDeploysworkflow should begin.PATCHversion should be created.mainbranch should be created and automerged, followed by a PR to update thestagingbranch.stagingis merged, thedeployworkflow should begin, create a tag with the updatedPATCHversion, and push tags.platformDeployworkflow.This PR was not deployed to staging....StagingDeployCash.StagingDeployCashchecklist, and close it with the:shipit:comment.finishReleaseCycleworkflow should begin, and a pull request withproductionas the base andstagingas the head should be created and automerged.productionis merged, thedeployworkflow should start, and create a new GH release for thePATCHversion that was created in step 10.platformDeployworkflow should begin a prod deploy. Once that completes, a comment should appear on this PR, the dummy PR, and all the PRs that were on the now-closedStagingDeployCashstating that they were deployed to production.finishReleaseCycleworkflow should also bump theBUILDversion and create a PR to updatestagingfrom main. This should result in a staging deploy.finishReleaseCycleworkflow should also create a newStagingDeployCashissue, with theBUILDversion from the previous step.StagingDeployCash.StagingDeployCash(you wrote these down in step 15). The deploy blockers will no longer be deploy blockers, but should still be worked on with as much urgency as possible, as they will now be bugs on production.Testing Template
Merging regular PR (w/ race condition)
1.
2.
preDeployworkflow run:updateProtectedBranchworkflow run:updateProtectedBranchworkflow run:deployworkflow run:platformDeployworkflow run:StagingDeployCashupdated with new PRs andBUILDversion?Locking
StagingDeployCashlockCashDeploysworkflow run:updateProtectedBranchworkflow run:updateProtectedBranchworkflow run:StagingDeployCashupdated with newPATCHversion?Merging while
StagingDeployCashis lockedpreDeployworkflow:Prod deploy
finishReleaseCycleworkflow run:updateProtectedBranchworkflow run:deployworkflow run (prod):StagingDeployCashplatformDeployworkflow run (prod):StagingDeployCashchecklist?BUILDversion created?mainupdated with newBUILDversion?updateProtectedBranchworkflow run:Stagingupdated with newBUILDversion?updateProtectedBranchworkflow run:deployworkflow run (staging):platformDeployworkflow run (staging):StagingDeployCashwas locked now say "deployed to staging"?StagingDeployCashcreated:BUILDversion?StagingDeployCashwas locked?