Skip to content

Bump actions/create-github-app-token from 1.10.3 to 1.11.0 #361

Bump actions/create-github-app-token from 1.10.3 to 1.11.0

Bump actions/create-github-app-token from 1.10.3 to 1.11.0 #361

---
name: Work proposal
on:
pull_request:
branches: [main]
types:
- opened
- reopened
- ready_for_review
merge_group:
branches: [main]
workflow_dispatch:
env:
IMAGE_NAME: stack/gear
jobs:
up-to-images:
name: Up to images (${{ matrix.env.dev }})
timeout-minutes: 10
permissions:
checks: write
packages: write
strategy:
fail-fast: false
matrix:
env:
- dev: godel
- dev: turing
- dev: church
runs-on: ubuntu-latest
steps:
- uses: actions/[email protected]
- name: Run setup-gear
uses: ./.github/actions/setup-gear
with:
devenv: ${{ matrix.env.dev }}
token: ${{ secrets.GITHUB_TOKEN }}
- name: Run ansible-playbook images.yaml
id: images
run: >-
docker run --rm
--volume $(pwd):$(pwd)
--volume ~/.m2:/root/.m2
--volume /var/run/docker.sock:/var/run/docker.sock
--volume ~/.docker/config.json:/root/.docker/config.json:ro
--env GITHUB_ACTOR=${{ github.actor }}
--env GITHUB_TOKEN=${{ secrets.GITHUB_TOKEN }}
--workdir $(pwd)/orchestrator/ansible
${{ env.IMAGE_NAME }}:${{ matrix.env.dev }}
ansible-playbook images.yaml -v
-e devenv=${{ matrix.env.dev }}
-e repo_mode=rw
- uses: mikepenz/[email protected]
if: ${{ !cancelled() && (steps.images.outcome == 'success' || steps.images.outcome == 'failure') }}
with:
check_name: Unit tests (${{ matrix.env.dev }})
report_paths: "**/target/surefire-reports/TEST-*.xml"
require_tests: "${{ steps.images.outcome == 'failure' }}"
fail_on_failure: false
job_summary: false
- uses: mikepenz/[email protected]
if: ${{ !cancelled() && (steps.images.outcome == 'success' || steps.images.outcome == 'failure') }}
with:
check_name: Integration tests (${{ matrix.env.dev }})
report_paths: "**/target/failsafe-reports/TEST-*.xml"
require_tests: "${{ steps.images.outcome == 'failure' }}"
fail_on_failure: false
job_summary: false
stack-building:
name: Stack building (${{ matrix.env.ops }}, ${{ matrix.ility }})
timeout-minutes: 10
needs: [up-to-images]
strategy:
fail-fast: false
matrix:
ility: [programmability, resilience]
env:
- dev: godel
ops: marx
- dev: turing
ops: durkheim
- dev: turing
ops: veblen
- dev: church
ops: commons
runs-on: ubuntu-latest
steps:
- uses: actions/[email protected]
- name: Run setup-gear
uses: ./.github/actions/setup-gear
with:
devenv: ${{ matrix.env.dev }}
token: ${{ secrets.GITHUB_TOKEN }}
- name: Run ansible-playbook stacks.yaml -t build
run: >-
docker run --rm
--volume $(pwd):$(pwd)
--volume /var/run/docker.sock:/var/run/docker.sock
--workdir $(pwd)/orchestrator/ansible
${{ env.IMAGE_NAME }}:${{ matrix.env.dev }}
ansible-playbook stacks.yaml -t build -v
-e devenv=${{ matrix.env.dev }}
-e ility=${{ matrix.ility }}
-e opsenv=${{ matrix.env.ops }}
-e repo_mode=ro
- uses: actions/[email protected]
with:
name: product-${{ matrix.env.ops }}-${{ matrix.ility }}
path: stack/product/target/${{ matrix.ility }}
if-no-files-found: ignore
stack-checking:
name: Stack checking (${{ matrix.env.ops }}, ${{ matrix.ility }}, ${{ matrix.shard }})
timeout-minutes: 15
needs: [stack-building]
strategy:
fail-fast: false
matrix:
ility: [programmability, resilience]
shard: [0, 1]
env:
- dev: godel
ops: marx
- dev: turing
ops: durkheim
- dev: turing
ops: veblen
- dev: church
ops: commons
runs-on: ubuntu-latest
steps:
- uses: actions/[email protected]
- name: Run setup-gear
uses: ./.github/actions/setup-gear
with:
devenv: ${{ matrix.env.dev }}
token: ${{ secrets.GITHUB_TOKEN }}
- uses: actions/[email protected]
continue-on-error: true # it's ok because stack building can be skipped
with:
name: product-${{ matrix.env.ops }}-${{ matrix.ility }}
path: stack/product/target/${{ matrix.ility }}
- name: Run ansible-playbook stacks.yaml -t check
run: >-
docker run --rm
--network gear
--volume $(pwd):$(pwd)
--volume ~/.m2:/root/.m2
--volume /var/run/docker.sock:/var/run/docker.sock
--workdir $(pwd)/orchestrator/ansible
${{ env.IMAGE_NAME }}:${{ matrix.env.dev }}
ansible-playbook stacks.yaml -t check -v
-e devenv=${{ matrix.env.dev }}
-e ility=${{ matrix.ility }}
-e opsenv=${{ matrix.env.ops }}
-e reminder=${{ matrix.shard }}
-e modulus=2
-e repo_mode=ro
- uses: actions/[email protected]
if: ${{ !cancelled() }}
with:
name: e2e-tests-${{ matrix.env.ops }}-${{ matrix.ility }}-${{ matrix.shard }}
path: test/e2e/target/surefire-reports/*.xml
if-no-files-found: ignore
stack-publishing:
name: Stack publishing (${{ matrix.env.ops }}, ${{ matrix.ility }})
timeout-minutes: 10
needs: [stack-checking]
strategy:
fail-fast: false
matrix:
ility: [programmability, resilience]
env:
- dev: godel
ops: marx
- dev: turing
ops: durkheim
- dev: turing
ops: veblen
- dev: church
ops: commons
runs-on: ubuntu-latest
permissions:
packages: write
steps:
- uses: actions/[email protected]
- name: Run setup-gear
uses: ./.github/actions/setup-gear
with:
devenv: ${{ matrix.env.dev }}
token: ${{ secrets.GITHUB_TOKEN }}
- uses: actions/[email protected]
continue-on-error: true # it's ok because stack building can be skipped
with:
name: product-${{ matrix.env.ops }}-${{ matrix.ility }}
path: stack/product/target/${{ matrix.ility }}
- name: Run ansible-playbook stacks.yaml -t publish
run: >-
docker run --rm
--volume $(pwd):$(pwd)
--volume /var/run/docker.sock:/var/run/docker.sock
--volume ~/.docker/config.json:/root/.docker/config.json:ro
--workdir $(pwd)/orchestrator/ansible
${{ env.IMAGE_NAME }}:${{ matrix.env.dev }}
ansible-playbook stacks.yaml -t publish -v
-e devenv=${{ matrix.env.dev }}
-e ility=${{ matrix.ility }}
-e opsenv=${{ matrix.env.ops }}
-e repo_mode=rw
stack-reporting:
name: Stack reporting
timeout-minutes: 5
needs: [stack-checking]
if: ${{ !cancelled() && (contains(needs.*.result, 'success') || contains(needs.*.result, 'failure')) }}
runs-on: ubuntu-latest
permissions:
checks: write
steps:
- uses: actions/[email protected]
with:
path: artifacts
- uses: mikepenz/[email protected]
with:
check_name: End-to-end tests
report_paths: "artifacts/e2e-tests-*/**/TEST-*.xml"
fail_on_failure: false
job_summary: false
everything-is-fine:
name: Everything is fine
needs: [stack-publishing, stack-reporting]
runs-on: ubuntu-latest
timeout-minutes: 5
if: ${{ always() }}
steps:
- if: ${{ contains(needs.*.result, 'failure') || contains(needs.*.result, 'skipped') || contains(needs.*.result, 'cancelled') }}
run: |
echo "::error::Something went wrong"
exit 1