flxbl/sfp-server-mangement-template
22
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add start/stop workflows and move to environment-based config

Browse Source 
- Add start.yml and stop.yml workflows for server lifecycle
- All workflows now use `type: environment` input for environment selection
- Secrets and variables moved from repo-level to environment-level
- Enables approval gates per environment (e.g., require approval for production)

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This commit is contained in:
azlam-salam
2026-04-14 11:37:13 +10:00
parent 7076d28de0
commit b1261ad622
5 changed files with 184 additions and 52 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.github/workflows/init.yml
+17 -21
View File
@@ -3,6 +3,10 @@ name: Initialize SFP Server
on:
workflow_dispatch:
inputs:
environment:
description: 'Target environment'
type: environment
required: true
force:
description: 'Force re-initialization (destroys existing data)'
type: boolean
@@ -17,8 +21,9 @@ on:
jobs:
init:
name: 'Initialize server'
name: 'Initialize server (${{ inputs.environment }})'
runs-on: ubuntu-latest
environment: ${{ inputs.environment }}
steps:
- name: Checkout repository
@@ -34,9 +39,9 @@ jobs:
[ -z "${{ vars.IMAGE_FQDN }}" ] && MISSING="$MISSING IMAGE_FQDN"
if [ -n "$MISSING" ]; then
echo "Missing required GitHub Variables:$MISSING"
echo "Missing required variables in environment '${{ inputs.environment }}':$MISSING"
echo ""
echo "Configure these in: Settings > Secrets and variables > Actions > Variables"
echo "Configure these in: Settings > Environments > ${{ inputs.environment }} > Variables"
exit 1
fi
@@ -70,14 +75,14 @@ jobs:
IMAGE_TAG="${{ vars.IMAGE_TAG || 'latest' }}"
echo "Initializing SFP Server"
echo " Tenant: $TENANT"
echo " Domain: $DOMAIN"
echo " Host: $SSH_HOST"
echo " TLS Mode: $TLS_MODE"
echo " Workers: $WORKERS"
echo " Image: $SFP_IMAGE"
echo " Environment: ${{ inputs.environment }}"
echo " Tenant: $TENANT"
echo " Domain: $DOMAIN"
echo " Host: $SSH_HOST"
echo " TLS Mode: $TLS_MODE"
echo " Workers: $WORKERS"
echo " Image: $SFP_IMAGE"
# Build the init command
INIT_CMD="sfp server init"
INIT_CMD="$INIT_CMD --tenant \"$TENANT\""
INIT_CMD="$INIT_CMD --mode prod"
@@ -96,8 +101,6 @@ jobs:
INIT_CMD="$INIT_CMD --force"
fi
# Run sfp CLI from inside the Docker image
# Copy SSH key into a temp dir with correct permissions (container may not run as root)
SSH_DIR=$(mktemp -d)
cp ~/.ssh/deploy_key "$SSH_DIR/deploy_key"
cp ~/.ssh/known_hosts "$SSH_DIR/known_hosts"
@@ -120,20 +123,13 @@ jobs:
- name: Output init results
if: always()
run: |
TENANT="${{ vars.TENANT_NAME }}"
echo "## SFP Server Initialization" >> $GITHUB_STEP_SUMMARY
echo "" >> $GITHUB_STEP_SUMMARY
echo "### Configuration" >> $GITHUB_STEP_SUMMARY
echo "| Setting | Value |" >> $GITHUB_STEP_SUMMARY
echo "|---------|-------|" >> $GITHUB_STEP_SUMMARY
echo "| Tenant | $TENANT |" >> $GITHUB_STEP_SUMMARY
echo "| Environment | ${{ inputs.environment }} |" >> $GITHUB_STEP_SUMMARY
echo "| Tenant | ${{ vars.TENANT_NAME }} |" >> $GITHUB_STEP_SUMMARY
echo "| Domain | ${{ vars.DOMAIN }} |" >> $GITHUB_STEP_SUMMARY
echo "| Host | ${{ vars.SSH_HOST }} |" >> $GITHUB_STEP_SUMMARY
echo "| TLS Mode | ${{ inputs.tls_mode }} |" >> $GITHUB_STEP_SUMMARY
echo "| Image | ${{ steps.setup.outputs.sfp-image }} |" >> $GITHUB_STEP_SUMMARY
echo "" >> $GITHUB_STEP_SUMMARY
echo "### Next Steps" >> $GITHUB_STEP_SUMMARY
echo "1. Verify the server is accessible at \`https://${{ vars.DOMAIN }}\`" >> $GITHUB_STEP_SUMMARY
echo "2. Configure integrations (GitHub OAuth, GitHub App, Slack) via the integration API or by editing \`.env\` on the server" >> $GITHUB_STEP_SUMMARY
echo "3. Use the **Update SFP Server** workflow for future updates" >> $GITHUB_STEP_SUMMARY