Branch was updated using the 'autoupdate branch' Actions workflow.

Author: Octomerger

.github/allowed-actions.js

@@ -12,6 +12,7 @@ module.exports = [
   'actions/setup-ruby@5f29a1cd8dfebf420691c4c9a0e832e2fae5a526', //actions/setup-ruby@v1.1.2
   'actions/stale@af4072615903a8b031f986d25b1ae3bf45ec44d4', //actions/stale@v3.0.13
   'crowdin/github-action@fd9429dd63d6c0f8a8cb4b93ad8076990bd6e688',
+  'crykn/copy_folder_to_another_repo_action@abc264e1c16eb3d7b1f7763bfdb0e1699ad43120',
   'dawidd6/action-delete-branch@47743101a121ad657031e6704086271ca81b1911',
   'docker://chinthakagodawita/autoupdate-action:v1',
   'fkirc/skip-duplicate-actions@36feb0d8d062137530c2e00bd278d138fe191289',

.github/workflows/site-policy-sync.yml

@@ -0,0 +1,39 @@
+name: site-policy-sync
+
+# Controls when the action will run.
+on:
+  # Triggers the workflow pull requests merged to the main branch
+  pull_request:
+    branches:
+      - main
+    types:
+      - closed
+
+  # Allows you to run this workflow manually from the Actions tab
+  workflow_dispatch:
+
+# A workflow run is made up of one or more jobs that can run sequentially or in parallel
+jobs:
+  # This workflow contains a single job called "build"
+  copy-file:
+    # The type of runner that the job will run on
+    runs-on: ubuntu-latest
+
+    # Steps represent a sequence of tasks that will be executed as part of the job
+    steps:
+      # Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
+      - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f
+
+      # Pushes to other repo
+      - name: Push folder to another repository
+        uses: crykn/copy_folder_to_another_repo_action@abc264e1c16eb3d7b1f7763bfdb0e1699ad43120
+        env:
+          API_TOKEN_GITHUB: ${{ secrets.API_TOKEN_SITEPOLICY }}
+        with:
+          source_folder: 'content/github/site-policy'
+          destination_repo: 'github/site-policy'
+          destination_branch: 'non-substantive-changes'
+          destination_folder: 'Policies'
+          user_email: 'pcihon@users.noreply.github.com'
+          user_name: 'pcihon'
+          commit_msg: 'Mirroring non-substantive changes.'

Procfile

@@ -1 +1,3 @@
 web: NODE_ENV=production node server.js
+
+release: NODE_ENV=production node script/purge-redis-pages.js

script/purge-redis-pages.js

@@ -0,0 +1,122 @@
+#!/usr/bin/env node
+
+// [start-readme]
+//
+// Run this script to manually purge the Redis rendered page cache.
+// This will typically only be run by Heroku during the deployment process,
+// as triggered via our Procfile's "release" phase configuration.
+//
+// [end-readme]
+
+const program = require('commander')
+const Redis = require('ioredis')
+
+const { REDIS_URL, HEROKU_RELEASE_VERSION, HEROKU_PRODUCTION_APP } = process.env
+const isHerokuProd = HEROKU_PRODUCTION_APP === 'true'
+const pageCacheDatabaseNumber = 1
+const keyScanningPattern = HEROKU_RELEASE_VERSION ? '*:rp:*' : 'rp:*'
+const scanSetSize = 250
+
+const startTime = Date.now()
+const expirationDuration = 30 * 60 * 1000 // 30 minutes
+const expirationTimestamp = startTime + expirationDuration // 30 minutes from now
+
+program
+  .description('Purge the Redis rendered page cache')
+  .option('-d, --dry-run', 'print keys to be purged without actually purging')
+  .parse(process.argv)
+
+const dryRun = program.dryRun
+
+// verify environment variables
+if (!REDIS_URL) {
+  if (isHerokuProd) {
+    console.error('Error: you must specify the REDIS_URL environment variable.\n')
+    process.exit(1)
+  } else {
+    console.warn('Warning: you did not specify a REDIS_URL environment variable. Exiting...\n')
+    process.exit(0)
+  }
+}
+
+console.log({
+  HEROKU_RELEASE_VERSION,
+  HEROKU_PRODUCTION_APP
+})
+
+purgeRenderedPageCache()
+
+function purgeRenderedPageCache () {
+  const redisClient = new Redis(REDIS_URL, { db: pageCacheDatabaseNumber })
+  let totalKeyCount = 0
+  let iteration = 0
+
+  // Create a readable stream (object mode) for the SCAN cursor
+  const scanStream = redisClient.scanStream({
+    match: keyScanningPattern,
+    count: scanSetSize
+  })
+
+  scanStream.on('end', function () {
+    console.log(`Done purging keys; affected total: ${totalKeyCount}`)
+    console.log(`Time elapsed: ${Date.now() - startTime} ms`)
+
+    // This seems to be unexpectedly necessary
+    process.exit(0)
+  })
+
+  scanStream.on('error', function (error) {
+    console.error('An unexpected error occurred!\n' + error.stack)
+    console.error('\nAborting...')
+    process.exit(1)
+  })
+
+  scanStream.on('data', async function (keys) {
+    console.log(`[Iteration ${iteration++}] Received ${keys.length} keys...`)
+
+    // NOTE: It is possible for a SCAN cursor iteration to return 0 keys when
+    // using a MATCH because it is applied after the elements are retrieved
+    if (keys.length === 0) return
+
+    if (dryRun) {
+      console.log(`DRY RUN! This iteration might have set TTL for up to ${keys.length} keys:\n - ${keys.join('\n - ')}`)
+      return
+    }
+
+    // Pause the SCAN stream while we set a TTL on these keys
+    scanStream.pause()
+
+    // Find existing TTLs to ensure we aren't extending the TTL if it's already set
+    // PTTL mykey // only operate on -1 result values or those greater than ONE_HOUR_FROM_NOW
+    const pttlPipeline = redisClient.pipeline()
+    keys.forEach(key => pttlPipeline.pttl(key))
+    const pttlResults = await pttlPipeline.exec()
+
+    // Update pertinent keys to have TTLs set
+    let updatingKeyCount = 0
+    const pexpireAtPipeline = redisClient.pipeline()
+    keys.forEach((key, i) => {
+      const [error, pttl] = pttlResults[i]
+      const needsShortenedTtl = error == null && (pttl === -1 || pttl > expirationDuration)
+      const isOldKey = !HEROKU_RELEASE_VERSION || !key.startsWith(`${HEROKU_RELEASE_VERSION}:`)
+
+      if (needsShortenedTtl && isOldKey) {
+        pexpireAtPipeline.pexpireat(key, expirationTimestamp)
+        updatingKeyCount += 1
+      }
+    })
+
+    // Only update TTLs if there are records worth updating
+    if (updatingKeyCount > 0) {
+      // Set all the TTLs
+      const pexpireAtResults = await pexpireAtPipeline.exec()
+      const updatedResults = pexpireAtResults.filter(([error, result]) => error == null && result === 1)
+
+      // Count only the entries whose TTLs were successfully updated
+      totalKeyCount += updatedResults.length
+    }
+
+    // Resume the SCAN stream
+    scanStream.resume()
+  })
+}