Deploying adev preview to Firebase #7112
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This workflow runs whenever the ADEV build workflow has completed. Deployment happens | |
| # as part of a dedicated second workflow to avoid security issues where the building would | |
| # otherwise occur in an authorized context where secrets could be leaked. | |
| # | |
| # More details can be found here: | |
| # https://securitylab.github.com/research/github-actions-preventing-pwn-requests/. | |
| name: Deploying adev preview to Firebase | |
| on: | |
| workflow_run: | |
| workflows: ['Build adev for preview deployment'] | |
| types: [completed] | |
| permissions: | |
| # Needed in order to be able to comment on the pull request. | |
| pull-requests: write | |
| # Needed in order to checkout the repository | |
| contents: read | |
| # Needed in order to retrieve the artifacts from the previous job | |
| actions: read | |
| env: | |
| PREVIEW_PROJECT: ng-dev-previews | |
| PREVIEW_SITE: ng-dev-previews-fw | |
| jobs: | |
| deploy: | |
| runs-on: ubuntu-latest | |
| if: ${{ github.event.workflow_run.conclusion == 'success' }} | |
| steps: | |
| - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4 | |
| with: | |
| token: '${{secrets.GITHUB_TOKEN}}' | |
| - name: Configure Firebase deploy target | |
| working-directory: ./ | |
| run: | | |
| # We can use `npx` as the Firebase deploy actions uses it too. | |
| npx -y firebase-tools@latest target:clear --config adev/firebase.json --project ${{env.PREVIEW_PROJECT}} hosting angular-docs | |
| npx -y firebase-tools@latest target:apply --config adev/firebase.json --project ${{env.PREVIEW_PROJECT}} hosting angular-docs ${{env.PREVIEW_SITE}} | |
| - uses: angular/dev-infra/github-actions/previews/upload-artifacts-to-firebase@e6e98d32d7d4d350ecf4ec10ad9c7e75198daabd | |
| with: | |
| github-token: '${{secrets.GITHUB_TOKEN}}' | |
| workflow-artifact-name: 'adev-preview' | |
| firebase-config-dir: './adev' | |
| firebase-public-dir: './adev/build/browser' | |
| firebase-project-id: '${{env.PREVIEW_PROJECT}}' | |
| firebase-service-key: '${{secrets.FIREBASE_PREVIEW_SERVICE_TOKEN}}' |