name: Deploy to Humanitec v2

on:
  workflow_run:
    workflows: ["Build and Push to ACR"]
    types: [completed]
    branches: [ "dev", "staging", "prod" ]
  workflow_dispatch:
    inputs:
      environment:
        description: 'Target environment'
        required: true
        default: 'dev'
        type: choice
        options:
          - dev
          - staging
          - prod

env:
  HUMANITEC_ORG: skillful-wild-chicken-2617
  PROJECT_ID: demo-kpc-1
  HUMANITEC_TOKEN: ${{ secrets.HUMANITEC_TOKEN }}
  HUMANITEC_AUTH_TOKEN: ${{ secrets.HUMANITEC_TOKEN }}
  HUMANITEC_API_PREFIX: https://api.humanitec.dev

jobs:
  guard:
    name: Platform guard
    runs-on: ubuntu-latest
    outputs:
      ready: ${{ steps.check.outputs.ready }}
    steps:
      - uses: actions/checkout@v4
      - name: Check platform initialized
        id: check
        run: |
          if [ -f ".platform/initialized.md" ]; then
            echo "ready=true" >> $GITHUB_OUTPUT
          else
            echo "ready=false" >> $GITHUB_OUTPUT
            echo "Skipping: .platform/initialized.md not found"
          fi

  deploy:
    name: Deploy to Humanitec v2
    needs: guard
    if: >-
      (github.event_name == 'workflow_run' && github.event.workflow_run.conclusion == 'success' && needs.guard.outputs.ready == 'true') ||
      (github.event_name == 'workflow_dispatch')
    runs-on: ubuntu-latest
    steps:
      - name: Checkout code
        uses: actions/checkout@v4

      - name: Install hctl CLI
        run: |
          if ! command -v jq &>/dev/null; then
            apt-get update -qq && apt-get install -y -qq jq
          fi
          HCTL_VERSION=$(curl -s https://api.github.com/repos/humanitec/hctl/releases/latest | jq -r '.tag_name')
          mkdir -p /tmp/hctl-install
          curl -sLo /tmp/hctl-install/hctl.tar.gz "https://github.com/humanitec/hctl/releases/download/${HCTL_VERSION}/hctl_${HCTL_VERSION#v}_linux_amd64.tar.gz"
          tar -xzf /tmp/hctl-install/hctl.tar.gz -C /tmp/hctl-install
          install -m 755 /tmp/hctl-install/hctl /usr/local/bin/hctl
          hctl --version

      - name: Derive environment
        run: |
          DISPATCH_ENV="${{ github.event.inputs.environment }}"
          if [ -n "$DISPATCH_ENV" ]; then
            ENV_ID="$DISPATCH_ENV"
          else
            # workflow_run: derive from upstream build-push branch
            BRANCH="${{ github.event.workflow_run.head_branch }}"
            BRANCH="${BRANCH:-${GITHUB_REF_NAME}}"
            case "$BRANCH" in
              dev)     ENV_ID="dev" ;;
              staging) ENV_ID="staging" ;;
              prod)    ENV_ID="prod" ;;
              *)       ENV_ID="dev" ;;
            esac
          fi
          echo "ENV_ID=$ENV_ID" >> $GITHUB_ENV
          echo "Deploying to environment: $ENV_ID"

      - name: Deploy with Score
        run: |
          MAX_RETRIES=8
          RETRY_DELAY=30
          attempt=0
          until hctl score deploy "$PROJECT_ID" "$ENV_ID" score.yaml --no-prompt; do
            attempt=$((attempt + 1))
            if [[ $attempt -ge $MAX_RETRIES ]]; then
              echo "All $MAX_RETRIES deploy attempts failed."
              exit 1
            fi
            echo "Attempt $attempt failed. Retrying in ${RETRY_DELAY}s..."
            sleep $RETRY_DELAY
          done
          echo "Deployment successful!"

      - name: Deployment summary
        if: always()
        run: |
          SHORT_SHA="${GITHUB_SHA:0:7}"
          echo "## Deployment Result" >> $GITHUB_STEP_SUMMARY
          echo "| Field | Value |" >> $GITHUB_STEP_SUMMARY
          echo "|---|---|" >> $GITHUB_STEP_SUMMARY
          echo "| Project | \`$PROJECT_ID\` |" >> $GITHUB_STEP_SUMMARY
          echo "| Environment | \`$ENV_ID\` |" >> $GITHUB_STEP_SUMMARY
          echo "| Commit | \`$SHORT_SHA\` |" >> $GITHUB_STEP_SUMMARY
          echo "[View in Humanitec Console](https://console.humanitec.dev/orgs/$HUMANITEC_ORG/projects/$PROJECT_ID/environments/$ENV_ID)" >> $GITHUB_STEP_SUMMARY