-
Notifications
You must be signed in to change notification settings - Fork 32
200 lines (170 loc) · 6.8 KB
/
release.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
###############################################################
# Copyright (c) 2022 Contributors to the Eclipse Foundation
#
# See the NOTICE file(s) distributed with this work for additional
# information regarding copyright ownership.
#
# This program and the accompanying materials are made available under the
# terms of the Apache License, Version 2.0 which is available at
# https://www.apache.org/licenses/LICENSE-2.0.
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
#
# SPDX-License-Identifier: Apache-2.0
###############################################################
# yaml-language-server: $schema=https://json.schemastore.org/github-workflow.json
name: release
on:
push:
tags:
- 'v*.*.*'
- '!v*.*.*-RC*'
workflow_dispatch:
env:
IMAGE_NAMESPACE: 'tractusx'
IMAGE_NAME: 'portal-frontend'
REF_NAME: '${{ github.ref_name }}'
# variables needed for scripts/legal-notice.sh
SERVER_URL: '${{ github.server_url }}'
REPOSITORY: '${{ github.repository }}'
jobs:
build-and-push-release:
runs-on: ubuntu-latest
permissions:
contents: read
steps:
- name: Checkout repository
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
- name: Setup Node
uses: actions/setup-node@0a44ba7841725637a19e28fa30b79a866c81b0a6 # v4.0.4
with:
node-version: 20
registry-url: https://registry.npmjs.org/
- name: Get npm version
id: npm-tag
uses: martinbeentjes/npm-get-version-action@3cf273023a0dda27efcd3164bdfb51908dd46a5b # v1.3.1
- name: Output versions
run: |
echo git ${{ env.REF_NAME }}
echo npm ${{ steps.npm-tag.outputs.current-version }}
- name: Versions not matching
if: env.REF_NAME != steps.npm-tag.outputs.current-version
run: |
echo git and npm versions not equal - refusing to build release
exit 1
- name: Versions match
run: |
echo versions equal - building release ${{ env.REF_NAME }}
- name: Install Dependencies
run: yarn
- name: Linter Checks
run: yarn lint
- name: Add content to Legal Notice
run: yarn build:legal-notice
- name: Build Library and Portal
run: yarn build
- name: Unit Tests
run: yarn test:ci
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@c47758b77c9736f4b2ef4073d4d51994fabfe349 # v3.7.1
- name: Login to DockerHub
if: github.event_name != 'pull_request'
uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0
with:
username: ${{ secrets.DOCKER_HUB_USER }}
password: ${{ secrets.DOCKER_HUB_TOKEN }}
- name: Docker meta
id: meta
uses: docker/metadata-action@8e5442c4ef9f78752691e2d8f8d19755c6f78e81 # v5.5.1
with:
images:
${{ env.IMAGE_NAMESPACE }}/${{ env.IMAGE_NAME }}
# Automatically prepare image tags;
# semver patter will generate tags like these for example :v1 :v1.2 v1.2.3
tags: |
type=raw,value=latest
type=raw,value=${{ env.REF_NAME }}
type=semver,pattern=v{{version}}
type=semver,pattern=v{{major}}
type=semver,pattern=v{{major}}.{{minor}}
- name: Build and push Docker image
uses: docker/build-push-action@4f58ea79222b3b9dc2c8bbdd6debcef730109a75 # v6.9.0
with:
context: .
file: .conf/Dockerfile.prebuilt
platforms: linux/amd64, linux/arm64
push: ${{ github.event_name != 'pull_request' }}
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}
# https://github.com/peter-evans/dockerhub-description
- name: Update Docker Hub description
if: github.event_name != 'pull_request'
uses: peter-evans/dockerhub-description@e98e4d1628a5f3be2be7c231e50981aee98723ae # v4.0.0
with:
username: ${{ secrets.DOCKER_HUB_USER }}
password: ${{ secrets.DOCKER_HUB_TOKEN }}
repository: ${{ env.IMAGE_NAMESPACE }}/${{ env.IMAGE_NAME }}
readme-filepath: '.conf/docker-notice-portal.md'
auth-and-dispatch:
needs: build-and-push-release
runs-on: ubuntu-latest
steps:
- name: Set env
run: echo "RELEASE_VERSION=${{ env.REF_NAME }}" >> $GITHUB_ENV
- name: Checkout repository
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
- name: Check for hotfix version
id: hf-check
run: |
hf=$(git ls-remote --heads origin "hotfix/${{ env.REF_NAME }}*")
if [[ -n "$hf" ]]; then
echo "hf=true" >> $GITHUB_OUTPUT
else
echo "hf=false" >> $GITHUB_OUTPUT
fi
- name: Get tags
run: git fetch --tags --force
if: steps.hf-check.outputs.hf == 'false'
- name: Check for previous release candidate version
id: rc-check
run: |
rc=$(git tag -l "${{ env.REF_NAME }}-RC*")
if [[ -n "$rc" ]]; then
echo "rc=true" >> $GITHUB_OUTPUT
else
echo "rc=false" >> $GITHUB_OUTPUT
fi
if: steps.hf-check.outputs.hf == 'false'
- name: Determine branch to update in portal repository
id: cd-branch
run: |
if [[ ${{ steps.rc-check.outputs.rc }} == 'true' ]]; then
echo "branch=release-candidate" >> $GITHUB_OUTPUT
else
echo "branch=main" >> $GITHUB_OUTPUT
fi
if: steps.hf-check.outputs.hf == 'false'
- name: Get token
id: get_workflow_token
uses: peter-murray/workflow-application-token-action@baa1ef2638c3d9e5967b7c8b86219f8fc919e1bb # v3.0.1
with:
application_id: ${{ secrets.ORG_PORTAL_DISPATCH_APPID }}
application_private_key: ${{ secrets.ORG_PORTAL_DISPATCH_KEY }}
if: steps.hf-check.outputs.hf == 'false'
- name: Trigger workflow
id: call_action
env:
TOKEN: ${{ steps.get_workflow_token.outputs.token }}
run: |
curl -v \
--request POST \
--url https://api.github.com/repos/eclipse-tractusx/portal/actions/workflows/portal-image-update.yml/dispatches \
--header "authorization: Bearer $TOKEN" \
--header "Accept: application/vnd.github.v3+json" \
--data '{"ref":"${{ steps.cd-branch.outputs.branch }}", "inputs": { "new-image":"${{ env.REF_NAME }}" }}' \
--fail
if: steps.hf-check.outputs.hf == 'false'