-
Notifications
You must be signed in to change notification settings - Fork 80
133 lines (126 loc) · 4.39 KB
/
ci.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
name: ci
on:
push:
branches:
- main
- v*
pull_request:
branches:
- main
permissions:
actions: read
contents: write
pages: write
jobs:
test_web:
runs-on: ubuntu-latest
steps:
- uses: InseeFrLab/onyxia@gh-actions
with:
action_name: checkout
sub_directory: web
- uses: actions/[email protected]
- uses: bahmutov/[email protected]
env:
XDG_CACHE_HOME: "/home/runner/.cache/yarn"
- run: yarn test
- run: yarn build
- run: npx keycloakify
test_helm-chart:
runs-on: ubuntu-latest
steps:
- uses: InseeFrLab/onyxia@gh-actions
with:
action_name: checkout
sub_directory: helm-chart
- uses: azure/[email protected]
with:
token: ${{github.token}}
- run: helm lint .
prepare_release:
needs:
- test_web
- test_helm-chart
runs-on: ubuntu-latest
outputs:
new_web_docker_image_tags: ${{steps._.outputs.new_web_docker_image_tags}}
new_chart_version: ${{steps._.outputs.new_chart_version}}
release_name: ${{steps._.outputs.release_name}}
release_body: ${{steps._.outputs.release_body}}
release_tag_name: ${{steps._.outputs.release_tag_name}}
target_commit: ${{steps._.outputs.target_commit}}
web_tag_name: ${{steps._.outputs.web_tag_name}}
steps:
# NOTE: The code for this action is in the gh-actions branch of this repo
- uses: InseeFrLab/onyxia@gh-actions
id: _
with:
action_name: prepare_release
publish_web_docker_image:
runs-on: ubuntu-latest
needs: prepare_release
if: needs.prepare_release.outputs.new_web_docker_image_tags != ''
steps:
- uses: InseeFrLab/onyxia@gh-actions
with:
action_name: checkout
sub_directory: web
sha: ${{needs.prepare_release.outputs.target_commit}}
- uses: docker/[email protected]
- uses: docker/[email protected]
- uses: docker/[email protected]
with:
username: ${{secrets.DOCKERHUB_USERNAME}}
password: ${{secrets.DOCKERHUB_TOKEN}}
- uses: docker/[email protected]
with:
push: true
context: .
tags: ${{needs.prepare_release.outputs.new_web_docker_image_tags}}
platforms: "${{ needs.prepare_release.outputs.new_chart_version != '' && 'linux/amd64,linux/arm64' || 'linux/amd64' }}"
release:
runs-on: ubuntu-latest
needs: prepare_release
if: needs.prepare_release.outputs.new_chart_version != ''
steps:
- uses: InseeFrLab/onyxia@gh-actions
with:
action_name: checkout
sub_directory: web
sha: ${{needs.prepare_release.outputs.target_commit}}
- uses: actions/[email protected]
- uses: bahmutov/[email protected]
env:
XDG_CACHE_HOME: "/home/runner/.cache/yarn"
- run: yarn build-keycloak-theme
env:
KEYCLOAKIFY_THEME_VERSION: ${{needs.prepare_release.outputs.new_chart_version}}
- run: mv dist_keycloak/keycloak-theme-for-kc-22-and-above.jar dist_keycloak/keycloak-theme.jar
- uses: yogeshlonkar/[email protected]
with:
ignore-skipped: true
jobs: publish_web_docker_image
ttl: 15
- uses: InseeFrLab/onyxia@gh-actions
with:
action_name: release_helm_chart
sha: ${{needs.prepare_release.outputs.target_commit}}
- uses: InseeFrLab/onyxia@gh-actions
if: needs.prepare_release.outputs.web_tag_name != ''
with:
action_name: create_tag
tag_name: ${{needs.prepare_release.outputs.web_tag_name}}
sha: ${{needs.prepare_release.outputs.target_commit}}
- uses: softprops/action-gh-release@v1
with:
name: ${{needs.prepare_release.outputs.release_name}}
body: ${{needs.prepare_release.outputs.release_body}}
tag_name: ${{needs.prepare_release.outputs.release_tag_name}}
target_commitish: ${{needs.prepare_release.outputs.target_commit}}
generate_release_notes: true
files: |
dist_keycloak/*.jar
onyxia-${{needs.prepare_release.outputs.new_chart_version}}.tgz
env:
# NOTE: We can't use github.token because it would not trigger the dispatch workflow.
GITHUB_TOKEN: ${{secrets.MY_GITHUB_TOKEN}}