fix: make dockerhub push listen for new tag #517
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Run CI | |
| on: | |
| push: | |
| workflow_dispatch: | |
| jobs: | |
| gradle: | |
| outputs: | |
| success: ${{ steps.build.outcome == 'success' }} | |
| strategy: | |
| matrix: | |
| os: [ ubuntu-latest ] | |
| runs-on: ${{ matrix.os }} | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - uses: actions/setup-java@v4 | |
| with: | |
| distribution: temurin | |
| java-version: 21 | |
| - name: Setup Gradle | |
| uses: gradle/actions/setup-gradle@v4 | |
| - name: Grant execute permission for Gradlew (Linux/Mac) | |
| if: runner.os != 'Windows' | |
| run: chmod +x ./gradlew | |
| - name: Execute build | |
| id: build | |
| env: | |
| APP_KEY: ${{ secrets.APP_KEY }} | |
| DATASOURCE_USER: ${{ secrets.DATASOURCE_USER }} | |
| DATASOURCE_PASSWORD: ${{ secrets.DATASOURCE_PASSWORD }} | |
| DATASOURCE_URL: ${{ secrets.DATASOURCE_URL }} | |
| LOCAL_KMS_DATASOURCE_USER: ${{ secrets.LOCAL_KMS_DATASOURCE_USER }} | |
| LOCAL_KMS_DATASOURCE_PASSWORD: ${{ secrets.LOCAL_KMS_DATASOURCE_PASSWORD }} | |
| LOCAL_KMS_DATASOURCE_URL: ${{ secrets.LOCAL_KMS_DATASOURCE_URL }} | |
| NEXUS_USERNAME: ${{ secrets.NEXUS_USERNAME }} | |
| NEXUS_PASSWORD: ${{ secrets.NEXUS_PASSWORD }} | |
| NPM_TOKEN: ${{ secrets.NPM_TOKEN }} | |
| KMS_PROVIDER: local | |
| run: | | |
| ./gradlew build | |
| ./gradlew :modules:openapi:jsPublicPackageJson | |
| ./gradlew :modules:openid-federation-common:jsPublicPackageJson | |
| ./gradlew publishJsPackageToNpmjsRegistry | |
| ./gradlew publishAllPublicationsToSphereon-opensourceRepository | |
| - name: Upload build artifacts | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: build-artifacts | |
| path: | | |
| modules/federation-server/build/libs/federation-server-*.jar | |
| modules/admin-server/build/libs/admin-server-*.jar | |
| tag-version: | |
| needs: gradle | |
| runs-on: ubuntu-latest | |
| if: github.event_name == 'repository_dispatch' || (github.event_name == 'pull_request' && github.event.pull_request.merged == true) || (github.event_name == 'push' && needs.gradle.outputs.success == 'true') | |
| permissions: | |
| contents: write | |
| actions: write | |
| steps: | |
| - name: Checkout repository | |
| uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| fetch-tags: true | |
| token: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Get version info | |
| id: get_version_info | |
| run: | | |
| git config --local user.email "${GITHUB_ACTOR}@users.noreply.github.com" | |
| git config --local user.name "${GITHUB_ACTOR}" | |
| EVENT_NAME="${{ github.event_name }}" | |
| if [[ "$EVENT_NAME" == "pull_request" ]]; then | |
| BRANCH_NAME="${{ github.event.pull_request.head.ref }}" | |
| else | |
| BRANCH_NAME="${GITHUB_REF#refs/heads/}" | |
| fi | |
| GRADLE_VERSION=$(grep 'version = ' build.gradle.kts | sed 's/.*version = "\(.*\)".*/\1/') | |
| GRADLE_VERSION=${GRADLE_VERSION%-SNAPSHOT} | |
| COMMIT_SHA=$(git rev-parse --short HEAD) | |
| PR_NUMBER=${{ github.event.pull_request.number }} | |
| if [[ $BRANCH_NAME == "main" ]]; then | |
| NEW_VERSION="v${GRADLE_VERSION}" | |
| elif [[ $BRANCH_NAME == "develop" ]]; then | |
| NEW_VERSION="v${GRADLE_VERSION}-beta.${COMMIT_SHA}" | |
| elif [[ $BRANCH_NAME == release/* ]]; then | |
| NEW_VERSION="v${GRADLE_VERSION}-rc.${COMMIT_SHA}" | |
| else | |
| SAFE_BRANCH=$(echo "${BRANCH_NAME}" | sed 's/[^a-zA-Z0-9]/-/g') | |
| if [[ -n $PR_NUMBER ]]; then | |
| NEW_VERSION="v${GRADLE_VERSION}-alpha.pr${PR_NUMBER}.${COMMIT_SHA}" | |
| else | |
| NEW_VERSION="v${GRADLE_VERSION}-alpha.${SAFE_BRANCH}.${COMMIT_SHA}" | |
| fi | |
| fi | |
| echo "new_version=${NEW_VERSION}" >> $GITHUB_OUTPUT | |
| git tag -a ${NEW_VERSION} -m "Release ${NEW_VERSION}" | |
| git push origin ${NEW_VERSION} | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} |