This repository has been archived by the owner on Nov 4, 2024. It is now read-only.
Merge pull request #169 from galasa-dev/iss1958 #40
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Main build | |
| on: | |
| workflow_dispatch: | |
| push: | |
| branches: [main] | |
| env: | |
| REGISTRY: ghcr.io | |
| NAMESPACE: galasa-dev | |
| BRANCH: ${{ github.ref_name }} | |
| ARGO_APP_BRANCH: gh # TODO: remove this parameter and just use env.BRANCH once we update development.galasa.dev/main with these workflows. | |
| ARGOCD_AUTH_TOKEN: ${{ secrets.ARGOCD_TOKEN }} | |
| jobs: | |
| log-github-ref: | |
| name: Log the GitHub ref this workflow is running on (Branch or tag that received dispatch) | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Log GitHub ref of workflow | |
| run: | | |
| echo "This workflow is running on GitHub ref ${{ env.BRANCH }}" | |
| build-obr: | |
| name: Build OBR using galasabld image and maven | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout Code | |
| uses: actions/checkout@v4 | |
| with: | |
| path: obr | |
| ref: ${{ env.BRANCH }} | |
| - name: Checkout framework | |
| uses: actions/checkout@v4 | |
| with: | |
| repository: ${{ env.NAMESPACE }}/framework | |
| path: framework | |
| ref: ${{ env.BRANCH }} | |
| - name: Checkout extensions | |
| uses: actions/checkout@v4 | |
| with: | |
| repository: ${{ env.NAMESPACE }}/extensions | |
| path: extensions | |
| ref: ${{ env.BRANCH }} | |
| - name: Checkout managers | |
| uses: actions/checkout@v4 | |
| with: | |
| repository: ${{ env.NAMESPACE }}/managers | |
| path: managers | |
| ref: ${{ env.BRANCH }} | |
| - name: Set up JDK | |
| uses: actions/setup-java@v4 | |
| with: | |
| java-version: '11' | |
| distribution: 'semeru' | |
| cache: maven | |
| - name: Print githash | |
| working-directory: obr | |
| run: | | |
| echo $GITHUB_SHA > ./obr.githash | |
| - name: Make secrets directory | |
| run : | | |
| mkdir /home/runner/work/secrets | |
| - name: Copy settings.xml | |
| env: | |
| MAVEN_SETTINGS_XML: ${{ secrets.MAVEN_SETTINGS_XML }} | |
| run : | | |
| echo $MAVEN_SETTINGS_XML > /home/runner/work/secrets/settings.xml | |
| - name: Copy GPG passphrase | |
| env: | |
| GPG_PASSPHRASE: ${{ secrets.GPG_PASSPHRASE }} | |
| run : | | |
| echo $GPG_PASSPHRASE > /home/runner/work/secrets/passphrase.file | |
| - name: Copy GPG key | |
| env: | |
| GPG_KEY_BASE64: ${{ secrets.GPG_KEY }} | |
| run : | | |
| echo $GPG_KEY_BASE64 | base64 --decode > /home/runner/work/secrets/galasa.gpg | |
| - name: Make GPG home directory and change permissions | |
| run: | | |
| mkdir /home/runner/work/gpg | |
| chmod '700' /home/runner/work/gpg | |
| - name: Import GPG | |
| run: | | |
| gpg --homedir /home/runner/work/gpg --pinentry-mode loopback --passphrase-file /home/runner/work/secrets/passphrase.file --import /home/runner/work/secrets/galasa.gpg | |
| - name: Copy custom settings.xml | |
| run: | | |
| cp /home/runner/work/secrets/settings.xml /home/runner/work/gpg/settings.xml | |
| - name: Generate Galasa BOM | |
| run: | | |
| docker run --rm -v ${{ github.workspace }}:/var/root/ ghcr.io/galasa-dev/galasabld-amd64:main template --releaseMetadata var/root/framework/release.yaml --releaseMetadata /var/root/extensions/release.yaml --releaseMetadata /var/root/managers/release.yaml --releaseMetadata /var/root/obr/release.yaml --template /var/root/obr/galasa-bom/pom.template --output /var/root/obr/galasa-bom/pom.xml --bom | |
| - name: Display Galasa BOM pom.xml | |
| run: | | |
| cat ${{ github.workspace }}/obr/galasa-bom/pom.xml | |
| - name: Build Galasa BOM with maven | |
| run: | | |
| mvn -f ${{ github.workspace }}/obr/galasa-bom/pom.xml deploy \ | |
| -Dgalasa.source.repo=https://development.galasa.dev/${{ env.ARGO_APP_BRANCH }}/maven-repo/managers \ | |
| -Dgalasa.central.repo=https://repo.maven.apache.org/maven2/ \ | |
| -Dgalasa.release.repo=file:${{ github.workspace }}/obr/repo \ | |
| --batch-mode --errors --fail-at-end \ | |
| --settings /home/runner/work/gpg/settings.xml | |
| - name: Generate Galasa OBR | |
| run: | | |
| docker run --rm -v ${{ github.workspace }}:/var/root/ ghcr.io/galasa-dev/galasabld-amd64:main template --releaseMetadata var/root/framework/release.yaml --releaseMetadata /var/root/extensions/release.yaml --releaseMetadata /var/root/managers/release.yaml --releaseMetadata /var/root/obr/release.yaml --template /var/root/obr/dev.galasa.uber.obr/pom.template --output /var/root/obr/dev.galasa.uber.obr/pom.xml --obr | |
| - name: Display Galasa OBR pom.xml | |
| run: | | |
| cat ${{ github.workspace }}/obr/dev.galasa.uber.obr/pom.xml | |
| - name: Build Galasa OBR with maven | |
| run: | | |
| mvn -f ${{ github.workspace }}/obr/dev.galasa.uber.obr/pom.xml deploy \ | |
| -Dgalasa.source.repo=https://development.galasa.dev/${{ env.ARGO_APP_BRANCH }}/maven-repo/managers \ | |
| -Dgalasa.central.repo=https://repo.maven.apache.org/maven2/ \ | |
| -Dgalasa.release.repo=file:${{ github.workspace }}/obr/repo \ | |
| --batch-mode --errors --fail-at-end \ | |
| --settings /home/runner/work/gpg/settings.xml | |
| - name: Login to Github Container Registry | |
| uses: docker/login-action@v3 | |
| with: | |
| registry: ${{ env.REGISTRY }} | |
| username: ${{ github.actor }} | |
| password: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Extract metadata for OBR image | |
| id: metadata | |
| uses: docker/metadata-action@9ec57ed1fcdbf14dcef7dfbe97b2010124a938b7 | |
| with: | |
| images: ${{ env.REGISTRY }}/${{ env.NAMESPACE }}/obr-maven-artefacts | |
| - name: Build and push OBR image | |
| id: build | |
| uses: docker/build-push-action@v5 | |
| with: | |
| context: obr | |
| file: obr/dockerfiles/dockerfile.obr | |
| push: true | |
| tags: ${{ steps.metadata.outputs.tags }} | |
| labels: ${{ steps.metadata.outputs.labels }} | |
| build-args: | | |
| dockerRepository=${{ env.REGISTRY }} | |
| tag=${{ env.BRANCH }} | |
| - name: Recycle OBR application in ArgoCD | |
| run: | | |
| docker run --env ARGOCD_AUTH_TOKEN=${{ env.ARGOCD_AUTH_TOKEN }} --rm -v ${{ github.workspace }}:/var/workspace ghcr.io/galasa-dev/argocdcli:main app actions run ${{ env.ARGO_APP_BRANCH }}-maven-repos restart --kind Deployment --resource-name obr-${{ env.ARGO_APP_BRANCH }} --server argocd.galasa.dev | |
| - name: Wait for OBR application health in ArgoCD | |
| run: | | |
| docker run --env ARGOCD_AUTH_TOKEN=${{ env.ARGOCD_AUTH_TOKEN }} --rm -v ${{ github.workspace }}:/var/workspace ghcr.io/galasa-dev/argocdcli:main app wait ${{ env.ARGO_APP_BRANCH }}-maven-repos --resource apps:Deployment:obr-${{ env.ARGO_APP_BRANCH }} --health --server argocd.galasa.dev | |
| build-obr-javadocs: | |
| name: Build OBR javadocs using galasabld image and maven | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout Code | |
| uses: actions/checkout@v4 | |
| with: | |
| path: obr | |
| ref: ${{ env.BRANCH }} | |
| - name: Checkout framework | |
| uses: actions/checkout@v4 | |
| with: | |
| repository: ${{ env.NAMESPACE }}/framework | |
| path: framework | |
| ref: ${{ env.BRANCH }} | |
| - name: Checkout extensions | |
| uses: actions/checkout@v4 | |
| with: | |
| repository: ${{ env.NAMESPACE }}/extensions | |
| path: extensions | |
| ref: ${{ env.BRANCH }} | |
| - name: Checkout managers | |
| uses: actions/checkout@v4 | |
| with: | |
| repository: ${{ env.NAMESPACE }}/managers | |
| path: managers | |
| ref: ${{ env.BRANCH }} | |
| - name: Set up JDK | |
| uses: actions/setup-java@v4 | |
| with: | |
| java-version: '18' | |
| distribution: 'semeru' | |
| cache: maven | |
| - name: Make secrets directory | |
| run : | | |
| mkdir /home/runner/work/secrets | |
| - name: Copy settings.xml | |
| env: | |
| MAVEN_SETTINGS_XML: ${{ secrets.MAVEN_SETTINGS_XML }} | |
| run : | | |
| echo $MAVEN_SETTINGS_XML > /home/runner/work/secrets/settings.xml | |
| - name: Copy GPG passphrase | |
| env: | |
| GPG_PASSPHRASE: ${{ secrets.GPG_PASSPHRASE }} | |
| run : | | |
| echo $GPG_PASSPHRASE > /home/runner/work/secrets/passphrase.file | |
| - name: Copy GPG key | |
| env: | |
| GPG_KEY_BASE64: ${{ secrets.GPG_KEY }} | |
| run : | | |
| echo $GPG_KEY_BASE64 | base64 --decode > /home/runner/work/secrets/galasa.gpg | |
| - name: Make GPG home directory and change permissions | |
| run: | | |
| mkdir /home/runner/work/gpg | |
| chmod '700' /home/runner/work/gpg | |
| - name: Import GPG | |
| run: | | |
| gpg --homedir /home/runner/work/gpg --pinentry-mode loopback --passphrase-file /home/runner/work/secrets/passphrase.file --import /home/runner/work/secrets/galasa.gpg | |
| - name: Copy custom settings.xml | |
| run: | | |
| cp /home/runner/work/secrets/settings.xml /home/runner/work/gpg/settings.xml | |
| - name: Build Galasa Javadoc | |
| run: | | |
| docker run --rm -v ${{ github.workspace }}:/var/root/ ghcr.io/galasa-dev/galasabld-amd64:main template --releaseMetadata var/root/framework/release.yaml --releaseMetadata /var/root/extensions/release.yaml --releaseMetadata /var/root/managers/release.yaml --releaseMetadata /var/root/obr/release.yaml --template /var/root/obr/javadocs/pom.template --output /var/root/obr/javadocs/pom.xml --javadoc | |
| - name: Display Galasa Javadoc pom.xml | |
| run: | | |
| cat ${{ github.workspace }}/obr/javadocs/pom.xml | |
| - name: Build javadoc site using maven | |
| run: | | |
| mvn -f ${{ github.workspace }}/obr/javadocs/pom.xml deploy \ | |
| -Dgalasa.source.repo=https://development.galasa.dev/${{ env.ARGO_APP_BRANCH }}/maven-repo/managers \ | |
| -Dgalasa.central.repo=https://repo.maven.apache.org/maven2/ \ | |
| -Dgalasa.release.repo=file:${{ github.workspace }}/obr/javadocs/docker/repo \ | |
| -Dmaven.javadoc.failOnError=false --batch-mode --errors --fail-at-end \ | |
| --settings /home/runner/work/gpg/settings.xml | |
| - name: Login to Github Container Registry | |
| uses: docker/login-action@v3 | |
| with: | |
| registry: ${{ env.REGISTRY }} | |
| username: ${{ github.actor }} | |
| password: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Extract metadata for Javadoc site image | |
| id: metadata-javadocsite | |
| uses: docker/metadata-action@9ec57ed1fcdbf14dcef7dfbe97b2010124a938b7 | |
| with: | |
| images: ${{ env.REGISTRY }}/${{ env.NAMESPACE }}/javadocsite | |
| - name: Build and push Javadoc site image | |
| id: build-javadocsite | |
| uses: docker/build-push-action@v5 | |
| with: | |
| context: obr | |
| file: obr/dockerfiles/dockerfile.javadocsite | |
| push: true | |
| tags: ${{ steps.metadata-javadocsite.outputs.tags }} | |
| labels: ${{ steps.metadata-javadocsite.outputs.labels }} | |
| - name: Recycle javadocsite application in ArgoCD | |
| run: | | |
| docker run --env ARGOCD_AUTH_TOKEN=${{ env.ARGOCD_AUTH_TOKEN }} --rm -v ${{ github.workspace }}:/var/workspace ghcr.io/galasa-dev/argocdcli:main app actions run ${{ env.ARGO_APP_BRANCH }}-maven-repos restart --kind Deployment --resource-name javadocsite-${{ env.ARGO_APP_BRANCH }} --server argocd.galasa.dev | |
| - name: Wait for javadocsite application health in ArgoCD | |
| run: | | |
| docker run --env ARGOCD_AUTH_TOKEN=${{ env.ARGOCD_AUTH_TOKEN }} --rm -v ${{ github.workspace }}:/var/workspace ghcr.io/galasa-dev/argocdcli:main app wait ${{ env.ARGO_APP_BRANCH }}-maven-repos --resource apps:Deployment:javadocsite-${{ env.ARGO_APP_BRANCH }} --health --server argocd.galasa.dev | |
| - name: Extract metadata for Javadoc Maven repo image | |
| id: metadata | |
| uses: docker/metadata-action@9ec57ed1fcdbf14dcef7dfbe97b2010124a938b7 | |
| with: | |
| images: ${{ env.REGISTRY }}/${{ env.NAMESPACE }}/javadoc-maven-artefacts | |
| - name: Build and push Javadoc Maven repo image | |
| id: build | |
| uses: docker/build-push-action@v5 | |
| with: | |
| context: obr | |
| file: obr/dockerfiles/dockerfile.javadocmavenrepo | |
| push: true | |
| tags: ${{ steps.metadata.outputs.tags }} | |
| labels: ${{ steps.metadata.outputs.labels }} | |
| build-args: | | |
| dockerRepository=${{ env.REGISTRY }} | |
| baseVersion=latest | |
| - name: Recycle javadoc application in ArgoCD | |
| run: | | |
| docker run --env ARGOCD_AUTH_TOKEN=${{ env.ARGOCD_AUTH_TOKEN }} --rm -v ${{ github.workspace }}:/var/workspace ghcr.io/galasa-dev/argocdcli:main app actions run ${{ env.ARGO_APP_BRANCH }}-maven-repos restart --kind Deployment --resource-name javadoc-${{ env.ARGO_APP_BRANCH }} --server argocd.galasa.dev | |
| - name: Wait for javadoc application health in ArgoCD | |
| run: | | |
| docker run --env ARGOCD_AUTH_TOKEN=${{ env.ARGOCD_AUTH_TOKEN }} --rm -v ${{ github.workspace }}:/var/workspace ghcr.io/galasa-dev/argocdcli:main app wait ${{ env.ARGO_APP_BRANCH }}-maven-repos --resource apps:Deployment:javadoc-${{ env.ARGO_APP_BRANCH }} --health --server argocd.galasa.dev | |
| build-obr-generic: | |
| name: Build OBR embedded and boot images using galasabld and maven | |
| runs-on: ubuntu-latest | |
| needs: [build-obr, build-obr-javadocs] | |
| steps: | |
| - name: Checkout Code | |
| uses: actions/checkout@v4 | |
| with: | |
| path: obr | |
| ref: ${{ env.BRANCH }} | |
| - name: Checkout framework | |
| uses: actions/checkout@v4 | |
| with: | |
| repository: ${{ env.NAMESPACE }}/framework | |
| path: framework | |
| ref: ${{ env.BRANCH }} | |
| - name: Checkout extensions | |
| uses: actions/checkout@v4 | |
| with: | |
| repository: ${{ env.NAMESPACE }}/extensions | |
| path: extensions | |
| ref: ${{ env.BRANCH }} | |
| - name: Checkout managers | |
| uses: actions/checkout@v4 | |
| with: | |
| repository: ${{ env.NAMESPACE }}/managers | |
| path: managers | |
| ref: ${{ env.BRANCH }} | |
| - name: Make secrets directory | |
| run : | | |
| mkdir /home/runner/work/secrets | |
| - name: Copy settings.xml | |
| env: | |
| MAVEN_SETTINGS_XML: ${{ secrets.MAVEN_SETTINGS_XML }} | |
| run : | | |
| echo $MAVEN_SETTINGS_XML > /home/runner/work/secrets/settings.xml | |
| - name: Copy GPG passphrase | |
| env: | |
| GPG_PASSPHRASE: ${{ secrets.GPG_PASSPHRASE }} | |
| run : | | |
| echo $GPG_PASSPHRASE > /home/runner/work/secrets/passphrase.file | |
| - name: Copy GPG key | |
| env: | |
| GPG_KEY_BASE64: ${{ secrets.GPG_KEY }} | |
| run : | | |
| echo $GPG_KEY_BASE64 | base64 --decode > /home/runner/work/secrets/galasa.gpg | |
| - name: Make GPG home directory and change permissions | |
| run: | | |
| mkdir /home/runner/work/gpg | |
| chmod '700' /home/runner/work/gpg | |
| - name: Import GPG | |
| run: | | |
| gpg --homedir /home/runner/work/gpg --pinentry-mode loopback --passphrase-file /home/runner/work/secrets/passphrase.file --import /home/runner/work/secrets/galasa.gpg | |
| - name: Copy custom settings.xml | |
| run: | | |
| cp /home/runner/work/secrets/settings.xml /home/runner/work/gpg/settings.xml | |
| - name: Generate Galasa OBR generic pom.xml | |
| run: | | |
| docker run --rm -v ${{ github.workspace }}:/var/root/ ghcr.io/galasa-dev/galasabld-amd64:main template --releaseMetadata var/root/framework/release.yaml --releaseMetadata /var/root/extensions/release.yaml --releaseMetadata /var/root/managers/release.yaml --releaseMetadata /var/root/obr/release.yaml --template /var/root/obr/obr-generic/pom.template --output /var/root/obr/obr-generic/pom.xml --obr | |
| - name: Display Galasa OBR generic pom.xml | |
| run: | | |
| cat ${{ github.workspace }}/obr/obr-generic/pom.xml | |
| - name: Build Galasa OBR generic pom.xml with maven | |
| working-directory: ${{ github.workspace }}/obr/obr-generic | |
| run: | | |
| mvn -f pom.xml process-sources \ | |
| -Dgalasa.source.repo=https://development.galasa.dev/${{ env.ARGO_APP_BRANCH }}/maven-repo/obr \ | |
| -Dgalasa.central.repo=https://repo.maven.apache.org/maven2/ \ | |
| dev.galasa:galasa-maven-plugin:0.15.0:obrembedded \ | |
| --batch-mode --errors --fail-at-end \ | |
| --settings /home/runner/work/gpg/settings.xml | |
| - name: Login to Github Container Registry | |
| uses: docker/login-action@v3 | |
| with: | |
| registry: ${{ env.REGISTRY }} | |
| username: ${{ github.actor }} | |
| password: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Extract metadata for OBR generic image | |
| id: metadata-obr-generic | |
| uses: docker/metadata-action@9ec57ed1fcdbf14dcef7dfbe97b2010124a938b7 | |
| with: | |
| images: ${{ env.REGISTRY }}/${{ env.NAMESPACE }}/obr-generic | |
| - name: Build and push obr-generic | |
| id: build-obr-generic | |
| uses: docker/build-push-action@v5 | |
| with: | |
| context: obr | |
| file: obr/dockerfiles/dockerfile.obrgeneric | |
| push: true | |
| tags: ${{ steps.metadata-obr-generic.outputs.tags }} | |
| labels: ${{ steps.metadata-obr-generic.outputs.labels }} | |
| - name: Copy files from kubectl image for Galasa boot embedded images | |
| run: | | |
| mkdir -p /opt/k8s/bin | |
| curl -L https://dl.k8s.io/release/v1.22.0/bin/linux/amd64/kubectl -o /opt/k8s/bin/kubectl | |
| chmod +x /opt/k8s/bin/kubectl | |
| cp -vr /opt/k8s/bin/kubectl ${{github.workspace}}/obr/dockerfiles/trace-log4j.properties ${{github.workspace}}/obr/obr-generic/ | |
| - name: Extract metadata for Galasa boot embedded image | |
| id: metadata-boot-embedded | |
| uses: docker/metadata-action@9ec57ed1fcdbf14dcef7dfbe97b2010124a938b7 | |
| with: | |
| images: ${{ env.REGISTRY }}/${{ env.NAMESPACE }}/galasa-boot-embedded-x86_64 | |
| - name: Build and push Galasa boot embedded image | |
| id: build-boot-embedded | |
| uses: docker/build-push-action@v5 | |
| with: | |
| context: obr | |
| file: obr/dockerfiles/dockerfile.bootembedded | |
| push: true | |
| tags: ${{ steps.metadata-boot-embedded.outputs.tags }} | |
| labels: ${{ steps.metadata-boot-embedded.outputs.labels }} | |
| build-args: | | |
| tag=${{ env.BRANCH }} | |
| dockerRepository=${{ env.REGISTRY }} | |
| jdkImage=harbor.galasa.dev/docker_proxy_cache/library/openjdk:11 | |
| - name: Extract metadata for Galasa IBM boot embedded image | |
| id: metadata-ibm-boot-embedded | |
| uses: docker/metadata-action@9ec57ed1fcdbf14dcef7dfbe97b2010124a938b7 | |
| with: | |
| images: ${{ env.REGISTRY }}/${{ env.NAMESPACE }}/galasa-ibm-boot-embedded-x86_64 | |
| - name: Build and push Galasa IBM boot embedded image | |
| id: build-ibm-boot-embedded | |
| uses: docker/build-push-action@v5 | |
| with: | |
| context: obr | |
| file: obr/dockerfiles/dockerfile.ibmbootembedded | |
| push: true | |
| tags: ${{ steps.metadata-ibm-boot-embedded.outputs.tags }} | |
| labels: ${{ steps.metadata-ibm-boot-embedded.outputs.labels }} | |
| build-args: | | |
| tag=${{ env.BRANCH }} | |
| dockerRepository=${{ env.REGISTRY }} | |
| platform=x86_64 |