Initial commit

keycloakify · Sep 6, 2022 · 518d381 · 518d381
1 parent 22532b6
commit 518d381
Show file tree

Hide file tree

Showing 76 changed files with 11,799 additions and 2 deletions.
diff --git a/.dockerignore b/.dockerignore
@@ -0,0 +1,30 @@
+# Logs
+logs
+*.log
+
+# Runtime data
+pids
+*.pid
+*.seed
+
+# Directory for instrumented libs generated by jscoverage/JSCover
+lib-cov
+
+# Coverage directory used by tools like istanbul
+coverage
+
+# Grunt intermediate storage (http://gruntjs.com/creating-plugins#storing-task-files)
+.grunt
+
+# node-waf configuration
+.lock-wscript
+
+# Compiled binary addons (http://nodejs.org/api/addons.html)
+build/Release
+
+/Dockerfile
+/node_modules
+/.github
+/.vscode
+/docs
+/build
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
@@ -0,0 +1,160 @@
+name: ci
+on:
+  push:
+    branches:
+      - main
+  pull_request:
+    branches:
+      - main
+
+jobs:
+
+  build:
+    runs-on: ubuntu-latest
+    if: github.event.head_commit.author.name != 'actions'
+    steps:
+    - uses: actions/checkout@v2
+    - uses: actions/[email protected]
+      with:
+        node-version: '14'
+    - uses: bahmutov/npm-install@v1
+    - run: yarn build
+    - run: npx keycloakify
+    - uses: actions/upload-artifact@v2
+      with:
+        name: standalone_keycloak_theme
+        path: build_keycloak/target/*keycloak-theme*.jar
+    - run: npx keycloakify --external-assets
+    - uses: actions/upload-artifact@v2
+      with:
+        name: keycloak_theme
+        path: build_keycloak/target/*keycloak-theme*.jar
+    - uses: actions/upload-artifact@v2
+      with:
+        name: build
+        path: build
+
+  check_if_version_upgraded:
+    name: Check if version upgrade
+    runs-on: ubuntu-latest
+    needs: build
+    outputs:
+      from_version: ${{ steps.step1.outputs.from_version }}
+      to_version: ${{ steps.step1.outputs.to_version }}
+      is_upgraded_version: ${{ steps.step1.outputs.is_upgraded_version }}
+    steps:
+    - uses: garronej/[email protected]
+      id: step1
+      with: 
+        action_name: is_package_json_version_upgraded
+
+  github_pages:
+    runs-on: ubuntu-latest
+    needs: 
+      - check_if_version_upgraded
+      - build
+    # We publish the the docker image only if it's a push on the default branch or if it's a PR from a 
+    # branch (meaning not a PR from a fork). It would be more straightforward to test if secrets.DOCKERHUB_TOKEN is 
+    # defined but GitHub Action don't allow it.
+    if: |
+      needs.check_if_version_upgraded.outputs.is_upgraded_version == 'true' &&
+      github.event_name == 'push' || 
+      github.event.pull_request.head.repo.owner.login == github.event.pull_request.base.repo.owner.login 
+    steps:
+    - uses: actions/checkout@v2
+    - uses: actions/download-artifact@v2
+      with:
+        name: build
+        path: build
+    - uses: actions/[email protected]
+      with:
+        node-version: '15'
+    - run: echo $(node -e 'console.log(require("url").parse(require("./package.json").homepage).host)') > build/CNAME
+    - run: git remote set-url origin https://git:${GITHUB_TOKEN}@github.com/${{github.repository}}.git
+      env:
+        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+    - run: npx -y -p [email protected] gh-pages -d build -u "github-actions-bot <[email protected]>"
+
+  docker:
+    needs: 
+      - check_if_version_upgraded
+      - build
+    runs-on: ubuntu-latest
+    # We publish the the docker image only if it's a push on the default branch or if it's a PR from a 
+    # branch (meaning not a PR from a fork). It would be more straightforward to test if secrets.DOCKERHUB_TOKEN is 
+    # defined but GitHub Action don't allow it.
+    if: |
+      github.event_name == 'push' || 
+      github.event.pull_request.head.repo.owner.login == github.event.pull_request.base.repo.owner.login 
+    steps:
+      - uses: actions/checkout@v2
+      - uses: docker/setup-qemu-action@v1
+      - uses: docker/setup-buildx-action@v1
+      - uses: docker/login-action@v1
+        with:
+          username: ${{ secrets.DOCKERHUB_USERNAME }}
+          password: ${{ secrets.DOCKERHUB_TOKEN }}
+      - name: Computing Docker image tags
+        id: step1
+        env: 
+          IS_UPGRADED_VERSION: ${{ needs.check_if_version_upgraded.outputs.is_upgraded_version }}
+          TO_VERSION: ${{ needs.check_if_version_upgraded.outputs.to_version }}
+        run: |
+          OUT=$GITHUB_REPOSITORY:$(
+          [ "$GITHUB_EVENT_NAME" == "pull_request" ] &&
+            echo "$GITHUB_HEAD_REF" ||
+            echo "${GITHUB_REF#refs/*/}"
+          )
+          if [ "$IS_UPGRADED_VERSION" = "true" ]; then
+            OUT=$OUT,$GITHUB_REPOSITORY:$TO_VERSION,$GITHUB_REPOSITORY:latest
+          fi
+          OUT=$(echo "$OUT" | awk '{print tolower($0)}') 
+          echo ::set-output name=docker_tags::$OUT
+      - uses: actions/download-artifact@v2
+        with:
+          name: build
+          path: build
+      - run: tar -cvf build.tar ./build
+      - uses: docker/build-push-action@v2
+        with:
+          push: true
+          context: .
+          tags: ${{ steps.step1.outputs.docker_tags }}
+          file: Dockerfile.ci
+
+  create_github_release:
+    runs-on: ubuntu-latest
+    needs: 
+      - check_if_version_upgraded
+    # We create a release only if the version have been upgraded and we are on a default branch
+    # PR on the default branch can release beta but not real release
+    if: |
+      needs.check_if_version_upgraded.outputs.is_upgraded_version == 'true' &&
+      (
+        github.event_name == 'push' ||
+        needs.check_if_version_upgraded.outputs.is_release_beta == 'true'
+      )
+    steps:
+    - uses: actions/download-artifact@v2
+      with:
+        name: keycloak_theme
+    - run: mkdir jars
+    - run: mv *keycloak-theme*.jar jars/keycloak-theme.jar
+    - uses: actions/download-artifact@v2
+      with:
+        name: standalone_keycloak_theme
+    - run: mv *keycloak-theme*.jar jars/standalone-keycloak-theme.jar
+    - uses: softprops/action-gh-release@v1
+      with:
+        name: Release v${{ needs.check_if_version_upgraded.outputs.to_version }}
+        tag_name: v${{ needs.check_if_version_upgraded.outputs.to_version }}
+        target_commitish: ${{ github.head_ref || github.ref }}
+        generate_release_notes: true
+        files: |
+          jars/keycloak-theme.jar
+          jars/standalone-keycloak-theme.jar
+        draft: false
+        prerelease: ${{ needs.check_if_version_upgraded.outputs.is_release_beta == 'true' }}
+      env:
+        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+
diff --git a/.gitignore b/.gitignore
@@ -0,0 +1,46 @@
+# Logs
+logs
+*.log
+npm-debug.log*
+
+# Runtime data
+pids
+*.pid
+*.seed
+
+# Directory for instrumented libs generated by jscoverage/JSCover
+lib-cov
+
+# Coverage directory used by tools like istanbul
+coverage
+
+# nyc test coverage
+.nyc_output
+
+# Grunt intermediate storage (http://gruntjs.com/creating-plugins#storing-task-files)
+.grunt
+
+# node-waf configuration
+.lock-wscript
+
+# Compiled binary addons (http://nodejs.org/api/addons.html)
+build/Release
+
+# Dependency directories
+node_modules
+jspm_packages
+
+# Optional npm cache directory
+.npm
+
+# Optional REPL history
+.node_repl_history
+
+.vscode
+
+.DS_Store
+
+/dist
+
+/build_keycloak
+/build
diff --git a/Dockerfile b/Dockerfile
@@ -0,0 +1,13 @@
+# build environment
+FROM node:14-alpine as build
+WORKDIR /app
+COPY package.json yarn.lock ./
+RUN yarn install --frozen-lockfile
+COPY . .
+RUN yarn build
+
+# production environment
+FROM nginx:stable-alpine
+COPY --from=build /app/build /usr/share/nginx/html
+COPY --from=build /app/nginx.conf /etc/nginx/conf.d/default.conf
+CMD nginx -g 'daemon off;'
diff --git a/Dockerfile.ci b/Dockerfile.ci
@@ -0,0 +1,21 @@
+# This is an alternative Dockerfile 
+# that aims to be used in the CI pipeline.
+# In this version we assume that the app have been build (yarn build that generate ./build/)
+# prior and archived into a build.tar file present in the context.
+# We do do that because 
+# 1) We want to avoid building the app twice, one for the docker image and one for the theme .tar
+# 2) If we use keycloakify --external-assets we have to generate the theme from the build/ directory
+# that is going to be in production. (CRA generates hashes, every build is different, even if the code is the same)
+
+# build environment
+FROM alpine as build
+WORKDIR /app
+#We use ADD instead of COPY because build/ is in .dockerignore
+ADD build.tar .
+COPY nginx.conf .
+
+# production environment (copy pasted from ./Dockerfile)
+FROM nginx:stable-alpine
+COPY --from=build /app/build /usr/share/nginx/html
+COPY --from=build /app/nginx.conf /etc/nginx/conf.d/default.conf
+CMD nginx -g 'daemon off;'
diff --git a/LICENSE b/LICENSE
@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2020 GitHub user u/garronej
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.