This repository has been archived by the owner on Nov 4, 2024. It is now read-only.
Main build #37
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Main build | |
| on: | |
| workflow_dispatch: | |
| inputs: | |
| jacocoEnabled: | |
| description: 'Enable Jacoco code coverage (set to "false" for release builds)' | |
| required: true | |
| default: 'true' | |
| type: choice | |
| options: | |
| - 'true' | |
| - 'false' | |
| isMainOrRelease: | |
| description: 'This build is for the main branch or a release (set to "false" for development branch builds)' | |
| required: true | |
| default: 'true' | |
| type: choice | |
| options: | |
| - 'true' | |
| - 'false' | |
| push: | |
| branches: [main] | |
| env: | |
| REGISTRY: ghcr.io | |
| NAMESPACE: galasa-dev | |
| BRANCH: ${{ github.ref_name }} | |
| ARGO_APP_BRANCH: gh # TODO: remove this parameter and just use env.BRANCH once we update development.galasa.dev/main with these workflows. | |
| jobs: | |
| log-github-ref: | |
| name: Log the GitHub ref this workflow is running on (Branch or tag that received dispatch) | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Log GitHub ref of workflow | |
| run: | | |
| echo "This workflow is running on GitHub ref ${{ env.BRANCH }}" | |
| build-gradle: | |
| name: Build Gradle source code and Docker image for development Maven registry | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout Code | |
| uses: actions/checkout@v4 | |
| - name: Setup JDK | |
| uses: actions/setup-java@v4 | |
| with: | |
| java-version: '11' | |
| distribution: 'semeru' | |
| # The githash is added to the development Maven registry to show what commit level it contains | |
| - name: Print githash | |
| run: | | |
| echo $GITHUB_SHA > ./gradle.githash | |
| - name: Setup Gradle | |
| uses: gradle/actions/setup-gradle@v3 | |
| with: | |
| gradle-version: 6.9.2 | |
| - name: Build Gradle source code | |
| if: github.event_name == 'push' | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| ORG_GRADLE_PROJECT_signingKeyId: ${{ secrets.GPG_KEYID }} | |
| ORG_GRADLE_PROJECT_signingKey: ${{ secrets.GPG_KEY }} | |
| ORG_GRADLE_PROJECT_signingPassword: ${{ secrets.GPG_PASSPHRASE }} | |
| run: | | |
| gradle check publish \ | |
| -PsourceMaven=https://development.galasa.dev/${{ env.ARGO_APP_BRANCH }}/maven-repo/wrapping \ | |
| -PcentralMaven=https://repo.maven.apache.org/maven2/ \ | |
| -PtargetMaven=${{ github.workspace }}/repo \ | |
| -PjacocoEnabled=true \ | |
| -PisMainOrRelease=true | |
| - name: Build Gradle source code | |
| if: github.event_name == 'workflow_dispatch' # Use the input values provided by the workflow dispatch. | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| ORG_GRADLE_PROJECT_signingKeyId: ${{ secrets.GPG_KEYID }} | |
| ORG_GRADLE_PROJECT_signingKey: ${{ secrets.GPG_KEY }} | |
| ORG_GRADLE_PROJECT_signingPassword: ${{ secrets.GPG_PASSPHRASE }} | |
| run: | | |
| gradle check publish \ | |
| -PsourceMaven=https://development.galasa.dev/${{ env.ARGO_APP_BRANCH }}/maven-repo/wrapping \ | |
| -PcentralMaven=https://repo.maven.apache.org/maven2/ \ | |
| -PtargetMaven=${{ github.workspace }}/repo \ | |
| -PjacocoEnabled=${{ inputs.jacocoEnabled }} \ | |
| -PisMainOrRelease=${{ inputs.isMainOrRelease }} | |
| - name: Login to Github Container Registry | |
| uses: docker/login-action@v3 | |
| with: | |
| registry: ${{ env.REGISTRY }} | |
| username: ${{ github.actor }} | |
| password: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Extract metadata for Gradle image | |
| id: metadata | |
| uses: docker/metadata-action@9ec57ed1fcdbf14dcef7dfbe97b2010124a938b7 | |
| with: | |
| images: ${{ env.REGISTRY }}/${{ env.NAMESPACE }}/gradle-maven-artefacts | |
| # A Docker image containing the built Maven artefacts is deployed to the dev Maven registry | |
| - name: Build Gradle image for development Maven registry | |
| id: build | |
| uses: docker/build-push-action@v5 | |
| with: | |
| context: . | |
| file: dockerfiles/dockerfile.gradle | |
| push: true | |
| tags: ${{ steps.metadata.outputs.tags }} | |
| labels: ${{ steps.metadata.outputs.labels }} | |
| build-args: | | |
| dockerRepository=ghcr.io | |
| tag=${{ env.BRANCH }} | |
| # Recycle the development Maven registry app in ArgoCD | |
| # Authenticate using a token passed in as an environment variable | |
| - name: Recycle application in ArgoCD | |
| env: | |
| ARGOCD_AUTH_TOKEN: ${{ secrets.ARGOCD_TOKEN }} | |
| run: | | |
| docker run --env ARGOCD_AUTH_TOKEN=${{ env.ARGOCD_AUTH_TOKEN }} --rm -v ${{ github.workspace }}:/var/workspace ghcr.io/galasa-dev/argocdcli:main app actions run ${{ env.ARGO_APP_BRANCH }}-maven-repos restart --kind Deployment --resource-name gradle-${{ env.ARGO_APP_BRANCH }} --server argocd.galasa.dev | |
| # Wait for the application to show as healthy in ArgoCD | |
| - name: Wait for app health in ArgoCD | |
| env: | |
| ARGOCD_AUTH_TOKEN: ${{ secrets.ARGOCD_TOKEN }} | |
| run: | | |
| docker run --env ARGOCD_AUTH_TOKEN=${{ env.ARGOCD_AUTH_TOKEN }} --rm -v ${{ github.workspace }}:/var/workspace ghcr.io/galasa-dev/argocdcli:main app wait ${{ env.ARGO_APP_BRANCH }}-maven-repos --resource apps:Deployment:gradle-${{ env.ARGO_APP_BRANCH }} --health --server argocd.galasa.dev | |
| trigger-maven-workflow: | |
| name: Trigger Maven workflow | |
| runs-on: ubuntu-latest | |
| needs: build-gradle | |
| steps: | |
| - name: Trigger Maven workflow dispatch event with GitHub CLI | |
| if: github.event_name == 'push' | |
| env: | |
| GH_TOKEN: ${{ secrets.GALASA_TEAM_GITHUB_TOKEN }} | |
| run: | | |
| gh workflow run build.yaml --repo https://github.com/galasa-dev/maven | |
| - name: Trigger Maven workflow dispatch event with GitHub CLI | |
| if: github.event_name == 'workflow_dispatch' | |
| env: | |
| GH_TOKEN: ${{ secrets.GALASA_TEAM_GITHUB_TOKEN }} | |
| run: | | |
| gh workflow run build.yaml --repo https://github.com/galasa-dev/maven --ref ${{ env.BRANCH }} -f jacocoEnabled=${{ inputs.jacocoEnabled }} -f isMainOrRelease=${{ inputs.isMainOrRelease }} |