Cybersecurity-LINKS · AlbertoSvg · Jan 26, 2024 · Jan 26, 2024 · Feb 2, 2024 · Feb 6, 2024
diff --git a/.dockerignore b/.dockerignore
@@ -0,0 +1,3 @@
+target/
+bindings/wasm/
+bindings/grpc/target/
diff --git a/.github/actions/iota-sandbox/setup/action.yml b/.github/actions/iota-sandbox/setup/action.yml
@@ -0,0 +1,36 @@
+name: 'iota-sandbox-setup'
+description: 'Setup IOTA Sandbox'
+runs:
+  using: "composite"
+  steps:
+    - name: Setup iota sandbox
+      shell: bash
+      run: |
+        # Use next lines for using the GitHub release
+        mkdir iota-sandbox
+        cd iota-sandbox
+        mkdir sandbox
+        cd sandbox
+        # Use the output of https://api.github.com/repos/iotaledger/iota-sandbox/releases/latest
+        DOWNLOAD_URL=$(curl "https://api.github.com/repos/iotaledger/iota-sandbox/releases" | jq -r '.[0].assets[] | select(.name | contains("iota_sandbox")) | .browser_download_url')
+        echo "Downloading sandbox from $DOWNLOAD_URL"
+        curl -L -o iota_sandbox.tar.gz $DOWNLOAD_URL
+        tar -xf iota_sandbox.tar.gz
+
+        # Use the next lines to use the main branch
+        # git clone https://github.com/iotaledger/iota-sandbox
+        # cd iota-sandbox/sandbox
+
+        # Start Tangle
+        sudo ./bootstrap.sh
+        docker compose --profile inx-faucet up -d
+    - name: Wait for tangle to start
+      shell: bash
+      run: wget -qO- https://raw.githubusercontent.com/eficode/wait-for/$WAIT_FOR_VERSION/wait-for | sh -s -- -t 60 http://localhost/health -- echo "Tangle is up"
+      env:
+        WAIT_FOR_VERSION: 4df3f9262d84cab0039c07bf861045fbb3c20ab7 # v2.2.3
+    - name: Wait for faucet to start
+      shell: bash
+      run: wget -qO- https://raw.githubusercontent.com/eficode/wait-for/$WAIT_FOR_VERSION/wait-for | sh -s -- -t 60 http://localhost/faucet/api/info -- echo "Faucet is up"
+      env:
+        WAIT_FOR_VERSION: 4df3f9262d84cab0039c07bf861045fbb3c20ab7 # v2.2.3
diff --git a/.github/actions/iota-sandbox/tear-down/action.yml b/.github/actions/iota-sandbox/tear-down/action.yml
@@ -0,0 +1,12 @@
+name: 'iota-sandbox-tear-down'
+description: 'tear-down a iota sandbox'
+runs:
+  using: "composite"
+  steps:
+    - name: Tear down iota sandbox
+      shell: bash
+      run: |
+        cd iota-sandbox/sandbox
+        docker-compose down
+        cd ../..
+        sudo rm -rf iota-sandbox
diff --git a/.github/actions/private-tangle/setup/action.yml b/.github/actions/private-tangle/setup/action.yml
diff --git a/.github/actions/private-tangle/tear-down/action.yml b/.github/actions/private-tangle/tear-down/action.yml
diff --git a/.github/actions/rust/rust-setup/action.yml b/.github/actions/rust/rust-setup/action.yml
@@ -48,7 +48,16 @@ runs:
       shell: bash
       run: |
 
-        if ! rustup self update; then
+        # self update is currently broken on Windows runners:
+        #   https://github.com/rust-lang/rustup/issues/3709
+        # so we'll skip self update for windows
+        OS=${{ inputs.os }}
+        IS_WINDOWS=false; [[ $OS =~ ^[wW]indows ]] && IS_WINDOWS=true
+
+        if [[ $IS_WINDOWS = true ]] ;
+        then
+          echo "skipping self update on windows runner due to https://github.com/rust-lang/rustup/issues/3709"
+        elif ! rustup self update; then
             echo "rustup self update failed"
         fi
 
@@ -57,7 +66,13 @@ runs:
           rustup target add $TARGET
         fi
 
-        rustup update
+        if [[ $IS_WINDOWS = true ]] ;
+        then
+            echo "skipping self update on windows runner due to https://github.com/rust-lang/rustup/issues/3709"
+            rustup update --no-self-update
+        else
+            rustup update
+        fi
 
         TOOLCHAIN=${{ inputs.toolchain }}
         if [[ $TOOLCHAIN != 'stable' ]]; then

diff --git a/.github/workflows/build-and-test-grpc.yml b/.github/workflows/build-and-test-grpc.yml
@@ -0,0 +1,41 @@
+name: Build and run grpc tests
+
+on:
+  push:
+    branches:
+      - main
+  pull_request:
+    types: [ opened, synchronize, reopened, ready_for_review ]
+    branches:
+      - main
+      - 'epic/**'
+      - 'support/**'
+    paths:
+      - '.github/workflows/build-and-test.yml'
+      - '.github/actions/**'
+      - '**.rs'
+      - '**.toml'
+      - 'bindings/grpc/**'
+
+jobs:
+  check-for-run-condition:
+    runs-on: ubuntu-latest
+    outputs:
+      should-run: ${{ !github.event.pull_request || github.event.pull_request.draft == false }}
+    steps:
+      - run: |
+          # this run step does nothing, but is needed to get the job output
+
+  build-and-test:
+    runs-on: ubuntu-latest
+    steps:
+    - name: Check out the repo
+      uses: actions/checkout@v4
+
+    - name: Build Docker image
+      uses: docker/build-push-action@3b5e8027fcad23fda98b2e3ac259d8d67585f671
+      with:
+        context: .
+        file: bindings/grpc/Dockerfile
+        push: false
+        labels: iotaledger/identity-grpc:latest
diff --git a/.github/workflows/build-and-test.yml b/.github/workflows/build-and-test.yml
@@ -82,6 +82,12 @@ jobs:
     steps:
       - uses: actions/checkout@v3
 
+      - name: Ensure, OpenSSL is available in Windows
+        if: matrix.os == 'windows-latest'
+        run: |
+          echo "VCPKG_ROOT=$env:VCPKG_INSTALLATION_ROOT" | Out-File -FilePath $env:GITHUB_ENV -Append
+          vcpkg install openssl:x64-windows-static-md
+
       - name: Setup Rust and cache
         uses: './.github/actions/rust/rust-setup'
         with:
@@ -101,15 +107,15 @@ jobs:
         if: matrix.os == 'ubuntu-latest'
         run: |
           cargo metadata --format-version 1 | \
-          jq -r '.workspace_members[] | select(contains("examples") | not)' | \
+          jq -r '.workspace_members[]' | \
           awk '{print $1}' | \
           xargs -I {} cargo check -p {} --no-default-features
 
       - name: Check default features
         if: matrix.os == 'ubuntu-latest'
         run: |
           cargo metadata --format-version 1 | \
-          jq -r '.workspace_members[] | select(contains("examples") | not)' | \
+          jq -r '.workspace_members[]' | \
           awk '{print $1}' | \
           xargs -I {} cargo check -p {}
 
@@ -123,9 +129,9 @@ jobs:
       - name: Build with all features
         run: cargo build --workspace --tests --examples --all-features --release
 
-      - name: Start private tangle
+      - name: Start iota sandbox
         if: matrix.os == 'ubuntu-latest'
-        uses: './.github/actions/private-tangle/setup'
+        uses: './.github/actions/iota-sandbox/setup'
 
       - name: Run tests
         run: cargo test --workspace --all-features --release
@@ -140,9 +146,17 @@ jobs:
           parallel -k -j 4 --retries 3 --joblog report.log ./target/release/examples/{}
           cat report.log
 
-      - name: Tear down private tangle
+      - name: Run Rust Readme examples
+        # run examples only on ubuntu for now
+        if: matrix.os == 'ubuntu-latest'
+        run: |
+          cd bindings/wasm
+          npm ci
+          npm run test:readme:rust
+
+      - name: Tear down iota sandbox
         if: matrix.os == 'ubuntu-latest' && always()
-        uses: './.github/actions/private-tangle/tear-down'
+        uses: './.github/actions/iota-sandbox/tear-down'
 
       - name: Stop sccache
         uses: './.github/actions/rust/sccache/stop-sccache'
@@ -186,13 +200,13 @@ jobs:
           name: identity-wasm-bindings-build
           path: bindings/wasm
 
-      - name: Start private tangle
-        uses: './.github/actions/private-tangle/setup'
+      - name: Start iota sandbox
+        uses: './.github/actions/iota-sandbox/setup'
 
       - name: Run Wasm examples
         run: npm run test:examples
         working-directory: bindings/wasm
 
-      - name: Tear down private tangle
+      - name: Tear down iota sandbox
         if: always()
-        uses: './.github/actions/private-tangle/tear-down'
+        uses: './.github/actions/iota-sandbox/tear-down'
diff --git a/.github/workflows/grpc-publish-to-dockerhub.yml b/.github/workflows/grpc-publish-to-dockerhub.yml
@@ -0,0 +1,53 @@
+name: gRPC publish to dockerhub
+
+on:
+  workflow_dispatch:
+    inputs:
+      tag:
+        description: 'Tag to publish under, defaults to latest'
+        required: false
+        default: latest
+      branch:
+        description: 'Branch to run publish from'
+        required: true
+      dry-run:
+        description: 'Run in dry-run mode'
+        type: boolean
+        required: false
+        default: true
+
+jobs:
+  push_to_registry:
+    environment: release
+    name: Push Docker image to Docker Hub
+    runs-on: ubuntu-latest
+    steps:
+    - name: Check out the repo
+      uses: actions/checkout@v4
+      with:
+        ref: ${{ github.event.inputs.branch }}
+
+    - name: Log in to Docker Hub
+      uses: docker/login-action@f4ef78c080cd8ba55a85445d5b36e214a81df20a
+      with:
+        username: ${{ secrets.IOTALEDGER_DOCKER_USERNAME }}
+        password: ${{ secrets.IOTALEDGER_DOCKER_PASSWORD }}
+
+    - name: Build and push Docker image
+      uses: docker/build-push-action@3b5e8027fcad23fda98b2e3ac259d8d67585f671
+      with:
+        context: .
+        file: bindings/grpc/Dockerfile
+        push: ${{ !inputs.dry-run }}
+        tags: iotaledger/identity-grpc:${{ inputs.tag }}
+
+    - name: Docker Hub Description
+      uses: peter-evans/dockerhub-description@e98e4d1628a5f3be2be7c231e50981aee98723ae
+      if: ${{ !inputs.dry-run }}
+      with:
+        username: ${{ secrets.IOTALEDGER_DOCKER_USERNAME }}
+        password: ${{ secrets.IOTALEDGER_DOCKER_PASSWORD }}
+        repository: iotaledger/identity-grpc
+        readme-filepath: ./bindings/grpc/README.md
+        short-description: ${{ github.event.repository.description }}
+
diff --git a/.license_template b/.license_template
@@ -1,2 +1,2 @@
-// Copyright {20\d{2}(-20\d{2})?} IOTA Stiftung
+// Copyright {20\d{2}(-20\d{2})?} IOTA Stiftung{(?:, .+)?}
 // SPDX-License-Identifier: Apache-2.0