electronic-prescription-service-account-resources/.github/scripts/execute_changeset.sh at 9df31dff5b04c1205bdd7c8df65dc7229b0a7637 · NHSDigital/electronic-prescription-service-account-resources · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
#!/usr/bin/env bash
set -e
AWS_MAX_ATTEMPTS=20
export AWS_MAX_ATTEMPTS

CF_LONDON_EXPORTS=$(aws cloudformation list-exports --region eu-west-2 --output json)
# change this to account-resources-cdk-uk:Bucket:ArtifactsBucket:Arn once other change is merged
artifact_bucket_arn=$(echo "$CF_LONDON_EXPORTS" | \
    jq \
    --arg EXPORT_NAME "account-resources:ArtifactsBucket" \
    -r '.Exports[] | select(.Name == $EXPORT_NAME) | .Value')
artifact_bucket=$(echo "$artifact_bucket_arn" | cut -d: -f6 | cut -d/ -f1)
if [ -z "${artifact_bucket}" ]; then
    echo "could not retrieve artifact_bucket from aws cloudformation list-exports"
    exit 1
fi

deployment_lock_key="account-resources/${STACK_NAME}/deployment.lock"
echo "created deployment lock ${deployment_lock_key}" | aws s3 cp - "s3://$artifact_bucket/$deployment_lock_key"

aws cloudformation execute-change-set \
  --stack-name "$STACK_NAME" \
  --change-set-name "$STACK_NAME-$CHANGE_SET_VERSION"

STATUS="UPDATE_IN_PROGRESS"
while [[ "$STATUS" == "UPDATE_IN_PROGRESS" ]] || [[ "$STATUS" == "UPDATE_COMPLETE_CLEANUP_IN_PROGRESS" ]]
do
  echo "Checking stack status..."
  STACKS=$(aws cloudformation describe-stacks --stack-name "$STACK_NAME")
  STATUS=$(jq -r '.["Stacks"][0]["StackStatus"]' <<< "$STACKS")
  if [ "$STATUS" == "UPDATE_IN_PROGRESS" ]; then
    echo "sleeping 5..."
    sleep 5
  fi
  if [ "$STATUS" == "UPDATE_COMPLETE_CLEANUP_IN_PROGRESS" ]; then
    echo "sleeping 5..."
    sleep 5
  fi
done

aws s3 rm "s3://$artifact_bucket/$deployment_lock_key" || true
echo "removed deployment lock ${deployment_lock_key}"

if [ "$STATUS" == "ROLLBACK_IN_PROGRESS " ]; then
  echo "Failed to execute change set, rollback in progress..."
  echo "$STACKS"
  exit 1
elif [ "$STATUS" == "ROLLBACK_COMPLETE  " ]; then
  echo "Failed to execute change set, rollback complete."
  echo "$STACKS"
  exit 1
elif [ "$STATUS" == "UPDATE_FAILED   " ]; then
  echo "Failed to execute change set."
  echo "$STACKS"
  exit 1
elif [ "$STATUS" == "UPDATE_ROLLBACK_IN_PROGRESS" ]; then
  echo "Failed to execute change set, rollback in progress..."
  echo "$STACKS"
  exit 1
elif [ "$STATUS" == "UPDATE_ROLLBACK_FAILED" ]; then
  echo "Failed to execute change set, rollback failed."
  echo "$STACKS"
  exit 1
elif [ "$STATUS" == "UPDATE_COMPLETE" ]; then
  echo "Execute change set complete."
  exit 0
fi

echo "Failed to execute change set, for unknown reason."
echo "$STACKS"
exit 1