submit-social-housing-letti.../.github/workflows/review_pipeline.yml

name: Review app pipeline

concurrency:
  group: review-${{ github.event.pull_request.number }}

on:
  pull_request:
    types:
      - opened
      - synchronize
      - reopened
  workflow_dispatch:

defaults:
  run:
    shell: bash

jobs:
  infra:
    name: Deploy review app infrastructure
    uses: communitiesuk/submit-social-housing-lettings-and-sales-data-infrastructure/.github/workflows/create_review_app_infra.yml@main
    with:
      key: ${{ github.event.pull_request.number }}
      app_repo_role: arn:aws:iam::815624722760:role/core-application-repo
    permissions:
      id-token: write

  code:
    name: Deploy review app code
    needs: [infra]
    uses: ./.github/workflows/aws_deploy.yml
    with:
      aws_account_id: 837698168072
      aws_role_prefix: core-dev
      aws_task_prefix: core-review-${{ github.event.pull_request.number }}
      concurrency_tag: ${{ github.event.pull_request.number }}
      environment: review
    permissions:
      id-token: write

  performance:
    needs: [code]
    runs-on: ubuntu-latest

    steps:
      - name: Install Apache Benchmark (ab)
        run: sudo apt-get update && sudo apt-get install -y apache2-utils

      - name: Run Performance Test
        run: |
          echo "Fetching CSRF token..."
          TOKEN=$(curl -c token_cookies.txt -s https://review.submit-social-housing-data.levellingup.gov.uk/${{ github.event.pull_request.number }}/account/sign-in | grep '<meta name="csrf-token"' | sed -n 's/.*content="\([^"]*\)".*/\1/p')

          if [ -z "$TOKEN" ]; then
            echo "Failed to retrieve CSRF token."
            exit 1
          fi

          if [ -f token_cookies.txt ]; then
            echo "token_cookies.txt exists."
          else
            echo "token_cookies.txt does not exist."
          fi

          echo "Logging in..."
          curl -L -c login_cookies.txt -b token_cookies.txt -X POST https://review.submit-social-housing-data.levellingup.gov.uk/${{ github.event.pull_request.number }}/account/sign-in \
            -d "user[email]=$PERFORMANCE_TESTING_USER_EMAIL" \
            -d "user[password]=$PERFORMANCE_TESTING_USER_PASSWORD" \
            -d "authenticity_token=$TOKEN"

          if [ -f login_cookies.txt ]; then
            echo "login_cookies.txt exists."
          else
            echo "login_cookies.txt does not exist."
          fi
          
          # Extract cookies for use in the benchmark
          COOKIES=$(awk '/_data_collector_session/ { print $6, $7 }' login_cookies.txt | tr ' ' '=')

          # Run the Apache Benchmark
          ab -n 50 -c 50 -C "$COOKIES" 'https://review.submit-social-housing-data.levellingup.gov.uk/${{ github.event.pull_request.number }}/lettings-logs'

    env:
      PERFORMANCE_TESTING_USER_EMAIL: coordinator1@example.com
      PERFORMANCE_TESTING_USER_PASSWORD: password

  comment:
    name: Add link to PR
    needs: [code]
    runs-on: ubuntu-latest
    permissions:
      issues: write
      pull-requests: write

    steps:
      - name: Comment on PR with URL
        uses: unsplash/comment-on-pr@v1.3.0
        env:
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
        with:
          msg: "Created review app at https://review.submit-social-housing-data.levellingup.gov.uk/${{ github.event.pull_request.number }}"
          check_for_duplicate_msg: true
          duplicate_msg_pattern: Created review app at*
Add review app pipeline (#993) * Add review app pipeline * disable 2FA on review apps * update infrastructure docs about review apps 2 years ago			`name: Review app pipeline`

Review apps on AWS (#2062) * CLDC-2812: update app config to run from relative root * Deploy to staging on pushes to branch * Add action mailer relative root config for review envs * Temporary pipeline to deploy this branch for testing * Update aws deploy pipeline to allow different prefixes for roles and tasks * Prepare database when deploying review apps * Update app nav and sentry to take account of relative root * Update more fixed paths * Update header root link path * Rack attack path * Revert "Deploy to staging on pushes to branch" This reverts commit b05f13d474607299a4fc2407d864bff644d48a3d. * Start updating workflows * Update teardown pipeline to drop database * Ensure destroy infra step runs after drop database * Remove user_password_path because it can't be found * Don't override path helpers in navigation items helper tests * Checkout infra code to run workflow * Try separating workflow call to job * Sync with infra repo updates * Use workflow on dev * Don't trigger on push to branch * Avoid rack attack path helper issue * Update review apps teardown pipeline * Update infra repo reference to main * Fix linting * Fix /logs redirect * Fix lettings_logs_current and sales_logs_current checks in navigation items helper * Fix existing bug in schemes nav item highlighting * Use starts with rather than == in logs nav items current checks * Split off non-support schemes current nav item checks --------- Co-authored-by: Sam Seed <sam.seed@softwire.com> 1 year ago			`concurrency:`
			`group: review-${{ github.event.pull_request.number }}`
limit review pipeline to single concurrency (#1033) 2 years ago
Add review app pipeline (#993) * Add review app pipeline * disable 2FA on review apps * update infrastructure docs about review apps 2 years ago			`on:`
			`pull_request:`
			`types:`
			`- opened`
			`- synchronize`
			`- reopened`
			`workflow_dispatch:`

			`defaults:`
			`run:`
			`shell: bash`

			`jobs:`
Review apps on AWS (#2062) * CLDC-2812: update app config to run from relative root * Deploy to staging on pushes to branch * Add action mailer relative root config for review envs * Temporary pipeline to deploy this branch for testing * Update aws deploy pipeline to allow different prefixes for roles and tasks * Prepare database when deploying review apps * Update app nav and sentry to take account of relative root * Update more fixed paths * Update header root link path * Rack attack path * Revert "Deploy to staging on pushes to branch" This reverts commit b05f13d474607299a4fc2407d864bff644d48a3d. * Start updating workflows * Update teardown pipeline to drop database * Ensure destroy infra step runs after drop database * Remove user_password_path because it can't be found * Don't override path helpers in navigation items helper tests * Checkout infra code to run workflow * Try separating workflow call to job * Sync with infra repo updates * Use workflow on dev * Don't trigger on push to branch * Avoid rack attack path helper issue * Update review apps teardown pipeline * Update infra repo reference to main * Fix linting * Fix /logs redirect * Fix lettings_logs_current and sales_logs_current checks in navigation items helper * Fix existing bug in schemes nav item highlighting * Use starts with rather than == in logs nav items current checks * Split off non-support schemes current nav item checks --------- Co-authored-by: Sam Seed <sam.seed@softwire.com> 1 year ago			`infra:`
			`name: Deploy review app infrastructure`
			`uses: communitiesuk/submit-social-housing-lettings-and-sales-data-infrastructure/.github/workflows/create_review_app_infra.yml@main`
			`with:`
			`key: ${{ github.event.pull_request.number }}`
			`app_repo_role: arn:aws:iam::815624722760:role/core-application-repo`
			`permissions:`
			`id-token: write`

			`code:`
			`name: Deploy review app code`
			`needs: [infra]`
			`uses: ./.github/workflows/aws_deploy.yml`
			`with:`
			`aws_account_id: 837698168072`
			`aws_role_prefix: core-dev`
			`aws_task_prefix: core-review-${{ github.event.pull_request.number }}`
Ensure aws_deploy has different concurrency groups for different review apps (#2079) 1 year ago			`concurrency_tag: ${{ github.event.pull_request.number }}`
Review apps on AWS (#2062) * CLDC-2812: update app config to run from relative root * Deploy to staging on pushes to branch * Add action mailer relative root config for review envs * Temporary pipeline to deploy this branch for testing * Update aws deploy pipeline to allow different prefixes for roles and tasks * Prepare database when deploying review apps * Update app nav and sentry to take account of relative root * Update more fixed paths * Update header root link path * Rack attack path * Revert "Deploy to staging on pushes to branch" This reverts commit b05f13d474607299a4fc2407d864bff644d48a3d. * Start updating workflows * Update teardown pipeline to drop database * Ensure destroy infra step runs after drop database * Remove user_password_path because it can't be found * Don't override path helpers in navigation items helper tests * Checkout infra code to run workflow * Try separating workflow call to job * Sync with infra repo updates * Use workflow on dev * Don't trigger on push to branch * Avoid rack attack path helper issue * Update review apps teardown pipeline * Update infra repo reference to main * Fix linting * Fix /logs redirect * Fix lettings_logs_current and sales_logs_current checks in navigation items helper * Fix existing bug in schemes nav item highlighting * Use starts with rather than == in logs nav items current checks * Split off non-support schemes current nav item checks --------- Co-authored-by: Sam Seed <sam.seed@softwire.com> 1 year ago			`environment: review`
			`permissions:`
			`id-token: write`
Add review app pipeline (#993) * Add review app pipeline * disable 2FA on review apps * update infrastructure docs about review apps 2 years ago
Add performance test to review pipeline 4 months ago			`performance:`
			`needs: [code]`
			`runs-on: ubuntu-latest`

			`steps:`
			`- name: Install Apache Benchmark (ab)`
			`run: sudo apt-get update && sudo apt-get install -y apache2-utils`

			`- name: Run Performance Test`
			`run: \|`
Add logging 4 months ago			`echo "Fetching CSRF token..."`
Add performance test to review pipeline 4 months ago			`TOKEN=$(curl -c token_cookies.txt -s https://review.submit-social-housing-data.levellingup.gov.uk/${{ github.event.pull_request.number }}/account/sign-in \| grep '<meta name="csrf-token"' \| sed -n 's/.content="\([^"]\)".*/\1/p')`

Add logging 4 months ago			`if [ -z "$TOKEN" ]; then`
			`echo "Failed to retrieve CSRF token."`
			`exit 1`
			`fi`

			`if [ -f token_cookies.txt ]; then`
			`echo "token_cookies.txt exists."`
			`else`
			`echo "token_cookies.txt does not exist."`
			`fi`

			`echo "Logging in..."`
Add performance test to review pipeline 4 months ago			`curl -L -c login_cookies.txt -b token_cookies.txt -X POST https://review.submit-social-housing-data.levellingup.gov.uk/${{ github.event.pull_request.number }}/account/sign-in \`
			`-d "user[email]=$PERFORMANCE_TESTING_USER_EMAIL" \`
			`-d "user[password]=$PERFORMANCE_TESTING_USER_PASSWORD" \`
			`-d "authenticity_token=$TOKEN"`

Add logging 4 months ago			`if [ -f login_cookies.txt ]; then`
			`echo "login_cookies.txt exists."`
			`else`
			`echo "login_cookies.txt does not exist."`
			`fi`

Add performance test to review pipeline 4 months ago			`# Extract cookies for use in the benchmark`
			`COOKIES=$(awk '/_data_collector_session/ { print $6, $7 }' login_cookies.txt \| tr ' ' '=')`

			`# Run the Apache Benchmark`
			`ab -n 50 -c 50 -C "$COOKIES" 'https://review.submit-social-housing-data.levellingup.gov.uk/${{ github.event.pull_request.number }}/lettings-logs'`

			`env:`
Try hardcoded test password 4 months ago			`PERFORMANCE_TESTING_USER_EMAIL: coordinator1@example.com`
			`PERFORMANCE_TESTING_USER_PASSWORD: password`
Add performance test to review pipeline 4 months ago
Review apps on AWS (#2062) * CLDC-2812: update app config to run from relative root * Deploy to staging on pushes to branch * Add action mailer relative root config for review envs * Temporary pipeline to deploy this branch for testing * Update aws deploy pipeline to allow different prefixes for roles and tasks * Prepare database when deploying review apps * Update app nav and sentry to take account of relative root * Update more fixed paths * Update header root link path * Rack attack path * Revert "Deploy to staging on pushes to branch" This reverts commit b05f13d474607299a4fc2407d864bff644d48a3d. * Start updating workflows * Update teardown pipeline to drop database * Ensure destroy infra step runs after drop database * Remove user_password_path because it can't be found * Don't override path helpers in navigation items helper tests * Checkout infra code to run workflow * Try separating workflow call to job * Sync with infra repo updates * Use workflow on dev * Don't trigger on push to branch * Avoid rack attack path helper issue * Update review apps teardown pipeline * Update infra repo reference to main * Fix linting * Fix /logs redirect * Fix lettings_logs_current and sales_logs_current checks in navigation items helper * Fix existing bug in schemes nav item highlighting * Use starts with rather than == in logs nav items current checks * Split off non-support schemes current nav item checks --------- Co-authored-by: Sam Seed <sam.seed@softwire.com> 1 year ago			`comment:`
			`name: Add link to PR`
			`needs: [code]`
Add review app pipeline (#993) * Add review app pipeline * disable 2FA on review apps * update infrastructure docs about review apps 2 years ago			`runs-on: ubuntu-latest`
Allow issues/pull-request write permissions for GitHub token (#1310) 2 years ago			`permissions:`
			`issues: write`
			`pull-requests: write`
Add review app pipeline (#993) * Add review app pipeline * disable 2FA on review apps * update infrastructure docs about review apps 2 years ago
			`steps:`
			`- name: Comment on PR with URL`
			`uses: unsplash/comment-on-pr@v1.3.0`
			`env:`
			`GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}`
			`with:`
Review apps on AWS (#2062) * CLDC-2812: update app config to run from relative root * Deploy to staging on pushes to branch * Add action mailer relative root config for review envs * Temporary pipeline to deploy this branch for testing * Update aws deploy pipeline to allow different prefixes for roles and tasks * Prepare database when deploying review apps * Update app nav and sentry to take account of relative root * Update more fixed paths * Update header root link path * Rack attack path * Revert "Deploy to staging on pushes to branch" This reverts commit b05f13d474607299a4fc2407d864bff644d48a3d. * Start updating workflows * Update teardown pipeline to drop database * Ensure destroy infra step runs after drop database * Remove user_password_path because it can't be found * Don't override path helpers in navigation items helper tests * Checkout infra code to run workflow * Try separating workflow call to job * Sync with infra repo updates * Use workflow on dev * Don't trigger on push to branch * Avoid rack attack path helper issue * Update review apps teardown pipeline * Update infra repo reference to main * Fix linting * Fix /logs redirect * Fix lettings_logs_current and sales_logs_current checks in navigation items helper * Fix existing bug in schemes nav item highlighting * Use starts with rather than == in logs nav items current checks * Split off non-support schemes current nav item checks --------- Co-authored-by: Sam Seed <sam.seed@softwire.com> 1 year ago			`msg: "Created review app at https://review.submit-social-housing-data.levellingup.gov.uk/${{ github.event.pull_request.number }}"`
Add review app pipeline (#993) * Add review app pipeline * disable 2FA on review apps * update infrastructure docs about review apps 2 years ago			`check_for_duplicate_msg: true`
			`duplicate_msg_pattern: Created review app at*`