Merge pull request #25 from Cardinal-Cryptography/bj-add-prod-env

SD-1: Add prod environment deployment workflows

Author: bartoszjedrzejewski

.github/workflows/build-and-push-prod.yml

@@ -0,0 +1,33 @@
+---
+name: (PROD) Build and deploy frontend
+
+on:
+  workflow_dispatch:
+
+jobs:
+  build-and-push:
+    name: Build and push
+    runs-on: ubuntu-24.04
+    environment:
+      name: prod
+    steps:
+      - name: GIT | Checkout
+        uses: actions/checkout@v4
+
+      - name: Export variables
+        env:
+          VARS_CONTEXT: ${{ toJson(vars) }}
+        run: |
+          EOF=$(dd if=/dev/urandom bs=15 count=1 status=none | base64)
+          to_envs() { jq -r "to_entries[] | select(.key|startswith(\"PUBLIC_VAR\")) | \"\(.key)<<$EOF\n\(.value)\n$EOF\n\""; }
+          echo "$VARS_CONTEXT" | to_envs >> $GITHUB_ENV
+
+      - name: Build and deploy - PROD
+        uses: ./.github/actions/build-and-push
+        with:
+          environment: prod
+          aws-access-key-id: ${{ secrets.AWS_S3_PROD_ACCESS_KEY_ID }}
+          aws-secret-access-key: ${{ secrets.AWS_S3_PROD_SECRET_ACCESS_KEY }}
+          s3-bucket-name: ${{ secrets.AWS_S3_PROD_BUCKET_NAME }}
+          amplify-app-id: ${{ secrets.AWS_AMPLIFY_PROD_APP_ID }}
+          npm-token: ${{ secrets.NPM_TOKEN }}

.github/workflows/build-and-push-stage.yml

@@ -7,7 +7,7 @@ on:
 jobs:
   build-and-push:
     name: Build and push
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-24.04
     environment:
       name: stage
     steps: