-
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathMakefile
126 lines (96 loc) · 4.88 KB
/
Makefile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
include .env
-include .envrc
export
SHELL := $(shell which bash)
# Initialises Playwright for tests. Note this requires sudo access
# Not currently using webkit as it fails intermittently
init:
npm ci
npx playwright install --with-deps chromium firefox
install:
mvn install
build_languages:
node build-scripts/build_languages.mjs
build: build_languages
docker compose build
dev: init run_deps build
# Need a long wait timeout in case full migrations are running
up: run_deps create_user
docker compose up --wait --wait-timeout 120
# Minimal container used by other projects for integration tests. Make target here is just to test it can start
integration_test_target:
COMPOSE_FILE=docker-compose.yml KEYCLOAK_STARTUP=test KEYCLOAK_TAG=dev docker compose up --wait --wait-timeout 120
down:
docker compose down --remove-orphans
hdown:
docker compose down -v --remove-orphans
prune:
docker system prune -af
create_externals:
docker volume create ${COMPOSE_PROJECT_NAME}_pgdata
remove_externals:
docker volume rm ${COMPOSE_PROJECT_NAME}_pgdata
test: test_setup
npx playwright test
# Currently using dev mode for tests as had issues using production mode in Github workflows
test_setup: up
node build-scripts/test_setup.mjs
# We keep a copy of the Keycloak themes in our own source control so that we can easily see diffs after keycloak upgrades.
# These themese aren't actually used in the deployment, they are just for reference
refresh_themes:
rm -rf theme/base theme/keycloak theme/keycloak.v2 theme/keycloak.v3
wget https://github.com/keycloak/keycloak/releases/download/${KEYCLOAK_VERSION}/keycloak-${KEYCLOAK_VERSION}.tar.gz
tar -xzvf keycloak-${KEYCLOAK_VERSION}.tar.gz keycloak-${KEYCLOAK_VERSION}/lib/lib/main/org.keycloak.keycloak-themes-${KEYCLOAK_VERSION}.jar --strip-components=4
jar xf org.keycloak.keycloak-themes-${KEYCLOAK_VERSION}.jar theme
rm org.keycloak.keycloak-themes-${KEYCLOAK_VERSION}.jar
tar -xzvf keycloak-${KEYCLOAK_VERSION}.tar.gz keycloak-${KEYCLOAK_VERSION}/lib/lib/main/org.keycloak.keycloak-account-ui-${KEYCLOAK_VERSION}.jar --strip-components=4
jar xf org.keycloak.keycloak-account-ui-${KEYCLOAK_VERSION}.jar theme
rm org.keycloak.keycloak-account-ui-${KEYCLOAK_VERSION}.jar
rm keycloak-${KEYCLOAK_VERSION}.tar.gz
$(MAKE) refresh_messages
# This will find any existing Keycloak translations for messages defined in the messages_en file
# It also downloads the current languages and countries taxonomies from openfoodfacts-server and
# adds any new languages or countries to the keycloak configuration.
refresh_messages:
node build-scripts/refresh_messages.mjs
# Creates the bootstrap user in PostgreSQL, which is then used to create other users
create_bootstrap: run_deps
docker compose up keycloak_postgres --wait
@docker run --rm --network ${COMMON_NET_NAME} --entrypoint bin/bash postgres:16-alpine \
-c "PGPASSWORD=${PG_ADMIN_PASSWORD} psql -h ${KC_DB_URL_HOST} -U ${PG_ADMIN_USERNAME} -c \"create role ${PG_BOOTSTRAP_USERNAME} with password '${PG_BOOTSTRAP_PASSWORD}' login createdb createrole\" || true "
create_user: create_bootstrap
@docker run --rm --network ${COMMON_NET_NAME} --entrypoint bin/bash postgres:16-alpine \
-c "PGPASSWORD=${PG_BOOTSTRAP_PASSWORD} psql -h ${KC_DB_URL_HOST} -d postgres -U ${PG_BOOTSTRAP_USERNAME} -c \"create role ${KC_DB_USERNAME} with password '${KC_DB_PASSWORD}' login createdb\"; \
PGPASSWORD=${KC_DB_PASSWORD} psql -h ${KC_DB_URL_HOST} -d postgres -U ${KC_DB_USERNAME} -c \"create database ${KC_DB_USERNAME}\" || true "
# Create user / database in production PostgreSQL instance
create_user_prod:
@docker run --rm --entrypoint bin/bash postgres:16-alpine \
-c "PGPASSWORD=${PG_BOOTSTRAP_PASSWORD} psql -h ${KC_DB_URL_HOST} -d postgres -U ${PG_BOOTSTRAP_USERNAME} -c \"create role ${KC_DB_USERNAME} with password '${KC_DB_PASSWORD}' login createdb\"; \
PGPASSWORD=${KC_DB_PASSWORD} psql -h ${KC_DB_URL_HOST} -d postgres -U ${KC_DB_USERNAME} -c \"create database ${KC_DB_USERNAME}\" || true "
# Called by other projects to start this project as a dependency
# Use docker compose pull to ensure we get the latest keycloak image
run: run_deps
COMPOSE_FILE=${COMPOSE_FILE_RUN} docker compose pull keycloak && docker compose up --wait --wait-timeout 120
# Space delimited list of dependant projects
DEPS=openfoodfacts-shared-services
# Set the DEPS_DIR if it hasn't been set already
ifeq (${DEPS_DIR},)
export DEPS_DIR=${PWD}/deps
endif
# Run dependent projects
run_deps: create_externals clone_deps
@for dep in ${DEPS} ; do \
cd ${DEPS_DIR}/$$dep && $(MAKE) run; \
done
# Clone dependent projects without running them (used to pull in yml for tests)
clone_deps:
@mkdir -p ${DEPS_DIR}; \
for dep in ${DEPS} ; do \
echo $$dep; \
if [ ! -d ${DEPS_DIR}/$$dep ]; then \
git clone --filter=blob:none --sparse \
https://github.com/openfoodfacts/$$dep.git ${DEPS_DIR}/$$dep; \
else \
cd ${DEPS_DIR}/$$dep && git pull; \
fi; \
done