feat: Check if token is a JWT #1970
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: CI/CD | |
on: | |
push: | |
paths-ignore: | |
- '.github/**' | |
- '.devcontainer/**' | |
- 'CHANGELOG.md' | |
- 'MAINTAINERS.md' | |
branches: | |
- main | |
pull_request: | |
workflow_dispatch: | |
jobs: | |
test: | |
name: Test / OS ${{ matrix.os }} / Python ${{ matrix.python-version }} | |
strategy: | |
matrix: | |
os: [ubuntu-latest] | |
python-version: [3.9, "3.10", "3.11", "3.12"] | |
runs-on: ${{ matrix.os }} | |
steps: | |
- name: Clone Repository | |
uses: actions/checkout@v4 | |
- name: Set up Python ${{ matrix.python-version }} | |
uses: actions/setup-python@v5 | |
with: | |
python-version: ${{ matrix.python-version }} | |
- name: Set up Poetry | |
uses: abatilo/actions-poetry@v3 | |
with: | |
poetry-version: 1.8.3 | |
- name: Run Tests | |
run: make run_tests | |
- name: Upload Coverage | |
uses: codecov/codecov-action@v4 | |
- name: Run Tests with pydantic v1 | |
run: | | |
pip install pydantic==1.10.12 | |
make tests_only | |
release-please: | |
needs: test | |
if: ${{ github.ref == 'refs/heads/main' && github.event_name == 'push' && github.repository_owner == 'supabase' }} | |
runs-on: ubuntu-latest | |
name: "Bump version and create changelog" | |
permissions: | |
id-token: write # IMPORTANT: this permission is mandatory for trusted publishing | |
contents: write # needed for github actions bot to write to repo | |
pull-requests: write | |
steps: | |
- uses: googleapis/release-please-action@v4 | |
id: release | |
with: | |
target-branch: ${{ github.ref_name }} | |
publish: | |
needs: release-please | |
if: ${{ startsWith(github.event.head_commit.message, 'chore(main)') && github.ref == 'refs/heads/main' && github.event_name == 'push' && github.repository_owner == 'supabase' }} | |
runs-on: ubuntu-latest | |
name: "supabase_auth: Publish to PyPi" | |
environment: | |
name: pypi | |
url: https://pypi.org/p/supabase_auth | |
permissions: | |
id-token: write # IMPORTANT: this permission is mandatory for trusted publishing | |
contents: write # needed for dependabot to write to repo | |
steps: | |
- name: Set up Python 3.11 | |
uses: actions/setup-python@v5 | |
with: | |
python-version: 3.11 | |
- name: Clone Repository | |
uses: actions/checkout@v4 | |
with: | |
ref: ${{ github.ref }} | |
fetch-depth: 0 | |
- name: Set up Poetry | |
uses: abatilo/actions-poetry@v3 | |
with: | |
poetry-version: 1.8.3 | |
- name: Install dependencies | |
run: poetry install | |
- name: Build package dist directory | |
run: poetry build | |
- name: Publish package distributions to PyPI | |
uses: pypa/gh-action-pypi-publish@release/v1 | |
publish_legacy: | |
needs: publish | |
if: ${{ startsWith(github.event.head_commit.message, 'chore(main)') && github.ref == 'refs/heads/main' && github.event_name == 'push' && github.repository_owner == 'supabase' }} | |
runs-on: ubuntu-latest | |
name: "gotrue: Publish to PyPi" | |
environment: | |
name: pypi | |
url: https://pypi.org/p/gotrue | |
permissions: | |
id-token: write # IMPORTANT: this permission is mandatory for trusted publishing | |
contents: write # needed for github actions bot to write to repo | |
steps: | |
- name: Set up Python 3.11 | |
uses: actions/setup-python@v5 | |
with: | |
python-version: 3.11 | |
- name: Clone Repository | |
uses: actions/checkout@v4 | |
with: | |
ref: ${{ github.ref }} | |
fetch-depth: 0 | |
- name: Rename Project | |
id: rename_project | |
run: make rename_project | |
- name: Set up Poetry | |
uses: abatilo/actions-poetry@v3 | |
with: | |
poetry-version: 1.8.3 | |
- name: Setup a local virtual environment (if no poetry.toml file) | |
run: | | |
poetry config virtualenvs.create true --local | |
poetry config virtualenvs.in-project true --local | |
- uses: actions/cache@v4 | |
name: Define a cache for the virtual environment based on the dependencies lock file | |
with: | |
path: ./.venv | |
key: venv-${{ hashFiles('poetry.lock') }} | |
- name: Install the project dependencies | |
run: poetry install | |
- name: Build package dist directory | |
run: poetry build | |
- name: Publish package distributions to PyPI | |
uses: pypa/gh-action-pypi-publish@release/v1 |