Quarkus Hilla Native Validation #21
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Quarkus Hilla Native Validation | |
on: | |
workflow_dispatch: | |
schedule: | |
- cron: '0 2 * * 3' | |
# pull_request_target: | |
# types: [opened, synchronize, reopened, edited] | |
permissions: | |
contents: read | |
issues: read | |
checks: write | |
pull-requests: write | |
concurrency: | |
group: validation-native-${{ github.head_ref || github.ref_name }} | |
cancel-in-progress: true | |
jobs: | |
check-permissions: | |
name: Check User Permissions | |
runs-on: ubuntu-latest | |
steps: | |
- run: echo "Concurrency Group = ${{ github.head_ref || github.ref_name }}" | |
- uses: actions-cool/check-user-permission@main | |
id: checkUser | |
with: | |
username: ${{github.triggering_actor}} | |
require: 'write' | |
- name: Fail on workflow triggered by external contributor | |
if: ${{ steps.checkUser.outputs.require-result != 'true' && github.actor != 'dependabot[bot]' && github.actor != 'quarkus-hilla-bot[bot]' }} | |
run: | | |
echo "🚫 **${{ github.actor }}** is an external contributor, a **${{ github.repository }}** team member has to review this changes and re-run this build" \ | |
| tee -a $GITHUB_STEP_SUMMARY && exit 1 | |
changes: | |
name: Compute changes | |
needs: [check-permissions] | |
runs-on: ubuntu-latest | |
outputs: | |
validation-required: ${{ steps.filter.outputs.validate }} | |
steps: | |
- name: Checkout | |
uses: actions/checkout@v4 | |
with: | |
ref: ${{ github.event.pull_request.head.sha }} | |
- uses: dorny/paths-filter@v3 | |
id: filter | |
with: | |
filters: | | |
validate: | |
- '!(README.md|LICENSE|.gitignore|etc/**)' | |
compute-matrix: | |
needs: [changes] | |
if: ${{ needs.changes.outputs.validation-required == 'true' }} | |
runs-on: ubuntu-latest | |
outputs: | |
modules: ${{ steps.set-matrix.outputs.modules }} | |
steps: | |
- name: Checkout | |
uses: actions/checkout@v4 | |
with: | |
ref: ${{ github.event.pull_request.head.sha }} | |
- name: Compute matrix | |
id: set-matrix | |
run: | | |
test_modules=$(find integration-tests -maxdepth 1 -mindepth 1 -type d -name "*-tests") | |
test_modules=$(while IFS= read -r mod; do grep -q "%test-security." $mod/src/main/resources/application.properties; echo "{\"name\": \"${mod/integration-tests\//}\", \"path\": \"$mod\", \"security\": $? }"; done <<< "${test_modules}" | jq -s -c '.') | |
echo "modules=${test_modules}" >> "$GITHUB_OUTPUT" | |
build-and-test-native: | |
name: Native tests | |
needs: [compute-matrix] | |
if: ${{ needs.changes.outputs.validation-required == 'true' }} | |
strategy: | |
fail-fast: false | |
matrix: | |
module: ${{fromJson(needs.compute-matrix.outputs.modules)}} | |
timeout-minutes: 30 | |
runs-on: ubuntu-latest | |
steps: | |
- name: Checkout | |
uses: actions/checkout@v4 | |
with: | |
ref: ${{ github.event.pull_request.head.sha }} | |
- name: Set up Java | |
uses: actions/setup-java@v4 | |
with: | |
java-version: 23 | |
distribution: 'graalvm' | |
cache: maven | |
- uses: browser-actions/setup-chrome@latest | |
id: setup-chrome | |
if: ${{ !vars.QH_DISABLE_CHROME_INSTALL }} | |
with: | |
chrome-version: stable | |
- name: Build | |
run: | | |
set -x -e -o pipefail | |
mvn -V -e -B -ntp -DskipTests -Dmaven.javadoc.skip=false install | |
- name: Native Test | |
run: | | |
set -x -e -o pipefail | |
mvn -V -e -B -ntp verify -am -DtrimStackTrace=false -Dselenide.browserBinary=${{ steps.setup-chrome.outputs.chrome-path }} -Pit-tests,production -Dnative -pl ${{ matrix.module.path }} | |
- name: Native Security Test | |
if: ${{ matrix.module.security == 1 }} | |
run: | | |
set -x -e -o pipefail | |
mvn -V -e -B -ntp verify -am -DtrimStackTrace=false -Dselenide.browserBinary=${{ steps.setup-chrome.outputs.chrome-path }} -Pit-tests,production -Dnative -Dquarkus.profile=test-security -pl ${{ matrix.module.path }} | |
- name: Package test output files | |
if: ${{ failure() || success() }} | |
run: find . -name surefire-reports -o -name failsafe-reports -o -name selenide-reports -o -name quarkus.log | tar -czf tests-report-native.tgz -T - | |
- uses: actions/upload-artifact@v4 | |
if: ${{ failure() || success() }} | |
with: | |
name: tests-output-it-native-${{ matrix.module.name }} | |
path: tests-report-*.tgz |