-
Notifications
You must be signed in to change notification settings - Fork 54
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #39 from camunda-consulting/432-migrate-gha
chore(ci): migrate to Github Actions
- Loading branch information
Showing
5 changed files
with
148 additions
and
23 deletions.
There are no files selected for viewing
This file was deleted.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,50 @@ | ||
--- | ||
name: Build Worker | ||
|
||
on: | ||
push: | ||
branches: | ||
- '**' | ||
# tags: | ||
# - 'v*.*.*' | ||
|
||
defaults: | ||
run: | ||
# use bash shell by default to ensure pipefail behavior is the default | ||
# see https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#exit-codes-and-error-action-preference | ||
shell: bash | ||
|
||
env: | ||
IMAGE_NAME: team-consulting/showroom-customer-onboarding-external-nodejs | ||
|
||
jobs: | ||
build: | ||
runs-on: ubuntu-22.04 | ||
steps: | ||
- uses: actions/checkout@v3 | ||
|
||
- name: Import Secrets | ||
id: secrets # important to refer to it in later steps | ||
uses: hashicorp/[email protected] | ||
with: | ||
url: ${{ secrets.VAULT_ADDR }} | ||
method: approle | ||
roleId: ${{ secrets.VAULT_ROLE_ID }} | ||
secretId: ${{ secrets.VAULT_SECRET_ID }} | ||
exportEnv: false # we rely on step outputs, no need for environment variables | ||
secrets: | | ||
secret/data/products/consulting/ci/consulting ARTIFACTS_USR; | ||
secret/data/products/consulting/ci/consulting ARTIFACTS_PSW; | ||
secret/data/products/consulting/ci/consulting SHOWCASE_MAIL_PASSWORD; | ||
- name: Create mail password | ||
run: | | ||
sed -i "s/\${SHOWCASE_MAIL_PASSWORD}/${{ steps.secrets.outputs.SHOWCASE_MAIL_PASSWORD }}/g" external-task-worker/.env | ||
- uses: camunda/infra-global-github-actions/build-docker-image@main | ||
with: | ||
registry_host: registry.camunda.cloud | ||
registry_username: ${{ steps.secrets.outputs.ARTIFACTS_USR }} | ||
registry_password: ${{ steps.secrets.outputs.ARTIFACTS_PSW }} | ||
image_name: ${{ env.IMAGE_NAME }} | ||
build_context: external-task-worker |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,84 @@ | ||
--- | ||
name: Build | ||
|
||
on: | ||
push: | ||
branches: | ||
- '**' | ||
tags: | ||
- 'v*.*.*' | ||
|
||
defaults: | ||
run: | ||
# use bash shell by default to ensure pipefail behavior is the default | ||
# see https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#exit-codes-and-error-action-preference | ||
shell: bash | ||
|
||
env: | ||
IMAGE_NAME: team-consulting/showroom-customer-onboarding | ||
|
||
jobs: | ||
build: | ||
runs-on: ubuntu-22.04 | ||
steps: | ||
- uses: actions/checkout@v3 | ||
|
||
- name: Import Secrets | ||
id: secrets # important to refer to it in later steps | ||
uses: hashicorp/[email protected] | ||
with: | ||
url: ${{ secrets.VAULT_ADDR }} | ||
method: approle | ||
roleId: ${{ secrets.VAULT_ROLE_ID }} | ||
secretId: ${{ secrets.VAULT_SECRET_ID }} | ||
exportEnv: false # we rely on step outputs, no need for environment variables | ||
secrets: | | ||
secret/data/products/consulting/ci/consulting ARTIFACTS_USR; | ||
secret/data/products/consulting/ci/consulting ARTIFACTS_PSW; | ||
secret/data/products/consulting/ci/consulting SHOWROOM_BUCKET_AUTH_BYTES; | ||
- name: Setup Maven | ||
uses: s4u/[email protected] | ||
with: | ||
java-version: '8' | ||
java-distribution: 'temurin' | ||
maven-version: '3.3.9' | ||
|
||
# Use CI Nexus as co-located pull-through cache for Maven artifacts via ~/.m2/settings.xml | ||
- name: Create Maven Settings | ||
uses: s4u/[email protected] | ||
with: | ||
githubServer: false | ||
servers: | | ||
[{ | ||
"id": "camunda-nexus", | ||
"username": "${{ steps.secrets.outputs.ARTIFACTS_USR }}", | ||
"password": "${{ steps.secrets.outputs.ARTIFACTS_PSW }}" | ||
}] | ||
mirrors: '[{"url": "https://repository.nexus.camunda.cloud/content/groups/internal/", "id": "camunda-nexus", "mirrorOf": "*", "name": "Camunda Nexus"}]' | ||
|
||
- name: Run Tests | ||
run: | | ||
mvn clean resources:resources package -B | ||
env: | ||
MAVEN_USERNAME: ${{ steps.secrets.outputs.ARTIFACTS_USR }} | ||
MAVEN_PASSWORD: ${{ steps.secrets.outputs.ARTIFACTS_PSW }} | ||
|
||
- name: Publish Test Results | ||
uses: EnricoMi/publish-unit-test-result-action@v2 | ||
if: always() # Publish results even if the job fails or is canceled | ||
with: | ||
files: | | ||
**/target/surefire-reports/*.xml | ||
**/target/failsafe-reports/TEST-*.xml | ||
- name: Create bucket auth secret | ||
run: | | ||
echo "${{ steps.secrets.outputs.SHOWROOM_BUCKET_AUTH_BYTES }}" | base64 -d > ./auth/bucketAuth.json | ||
- uses: camunda/infra-global-github-actions/build-docker-image@main | ||
with: | ||
registry_host: registry.camunda.cloud | ||
registry_username: ${{ steps.secrets.outputs.ARTIFACTS_USR }} | ||
registry_password: ${{ steps.secrets.outputs.ARTIFACTS_PSW }} | ||
image_name: ${{ env.IMAGE_NAME }} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters