2021-04-12 15:15:40 +02:00
|
|
|
# This workflow will build a Java project with Maven
|
|
|
|
|
# For more information see: https://help.github.com/actions/language-and-framework-guides/building-and-testing-java-with-maven
|
|
|
|
|
|
2021-04-12 17:23:24 +02:00
|
|
|
name: build
|
2021-04-12 15:15:40 +02:00
|
|
|
|
|
|
|
|
on:
|
|
|
|
|
push:
|
2021-04-27 09:00:59 +02:00
|
|
|
branches:
|
|
|
|
|
- '**'
|
2021-04-27 11:04:09 +02:00
|
|
|
tags:
|
|
|
|
|
- '**'
|
2021-04-12 15:15:40 +02:00
|
|
|
pull_request:
|
2021-04-27 09:00:59 +02:00
|
|
|
branches: [master, development]
|
2021-04-12 15:15:40 +02:00
|
|
|
|
|
|
|
|
jobs:
|
2021-04-27 09:00:59 +02:00
|
|
|
maven-build-reporting:
|
|
|
|
|
runs-on: ubuntu-latest
|
|
|
|
|
steps:
|
|
|
|
|
-
|
|
|
|
|
name: Checkout repository
|
|
|
|
|
uses: actions/checkout@v2
|
|
|
|
|
-
|
|
|
|
|
name: Set up JDK 8
|
|
|
|
|
uses: actions/setup-java@v2
|
|
|
|
|
with:
|
|
|
|
|
java-version: '8'
|
|
|
|
|
distribution: 'adopt'
|
|
|
|
|
-
|
|
|
|
|
name: Cache Maven packages
|
|
|
|
|
uses: actions/cache@v2
|
|
|
|
|
with:
|
|
|
|
|
path: ~/.m2
|
|
|
|
|
key: ${{ runner.os }}-m2-${{ hashFiles('**/pom.xml') }}
|
|
|
|
|
restore-keys: ${{ runner.os }}-m2
|
|
|
|
|
-
|
|
|
|
|
name: Build with Maven
|
|
|
|
|
run: mvn clean install -e -P let_reporting
|
|
|
|
|
-
|
|
|
|
|
name: Reporting
|
|
|
|
|
uses: codecov/codecov-action@v1
|
|
|
|
|
with:
|
|
|
|
|
flags: unittests
|
|
|
|
|
name: SEB Server Build
|
|
|
|
|
fail_ci_if_error: false
|
|
|
|
|
verbose: false
|
|
|
|
|
|
|
|
|
|
maven-build-docker:
|
|
|
|
|
needs: maven-build-reporting
|
|
|
|
|
# Run only on tagging
|
|
|
|
|
if: github.event_name == 'push' && contains(github.ref, 'refs/tags/')
|
2021-04-22 14:27:16 +02:00
|
|
|
runs-on: ubuntu-latest
|
|
|
|
|
steps:
|
|
|
|
|
-
|
|
|
|
|
name: Get short SHA
|
|
|
|
|
uses: benjlevesque/short-sha@v1.2
|
|
|
|
|
id: short-sha
|
|
|
|
|
-
|
|
|
|
|
name: Store short SHA as environment variable
|
2021-07-15 08:44:45 +02:00
|
|
|
run: echo $SHA
|
2021-04-22 14:27:16 +02:00
|
|
|
env:
|
|
|
|
|
SHA: ${{ steps.short-sha.outputs.sha }}
|
2021-07-15 08:57:15 +02:00
|
|
|
-
|
2021-07-15 08:44:45 +02:00
|
|
|
name: Set env
|
|
|
|
|
run: echo "TAG_NAME=${GITHUB_REF#refs/*/}" >> $GITHUB_ENV
|
|
|
|
|
-
|
|
|
|
|
name: Test tag name
|
|
|
|
|
run: |
|
|
|
|
|
echo $TAG_NAME
|
|
|
|
|
echo ${{ env.TAG_NAME }}
|
2021-04-22 14:27:16 +02:00
|
|
|
-
|
|
|
|
|
name: Checkout repository
|
|
|
|
|
uses: actions/checkout@v2
|
|
|
|
|
-
|
2021-04-27 09:00:59 +02:00
|
|
|
name: Set up JDK 11
|
2021-04-22 14:27:16 +02:00
|
|
|
uses: actions/setup-java@v2
|
|
|
|
|
with:
|
2021-04-27 09:00:59 +02:00
|
|
|
java-version: '11'
|
2021-04-22 14:27:16 +02:00
|
|
|
distribution: 'adopt'
|
|
|
|
|
-
|
|
|
|
|
name: Cache Maven packages
|
|
|
|
|
uses: actions/cache@v2
|
|
|
|
|
with:
|
|
|
|
|
path: ~/.m2
|
|
|
|
|
key: ${{ runner.os }}-m2-${{ hashFiles('**/pom.xml') }}
|
|
|
|
|
restore-keys: ${{ runner.os }}-m2
|
|
|
|
|
-
|
|
|
|
|
name: Build with Maven
|
2021-09-23 12:53:26 +02:00
|
|
|
run: mvn clean install -Dmaven.test.skip=true -Dsebserver-version="${{ env.TAG_NAME }}-${{ env.SHA }}"
|
2021-04-22 14:27:16 +02:00
|
|
|
env:
|
2021-09-23 12:53:26 +02:00
|
|
|
sebserver-version: ${{ env.TAG_NAME }}-${{ env.SHA }}
|
2021-04-22 14:27:16 +02:00
|
|
|
-
|
2021-04-27 09:00:59 +02:00
|
|
|
name: Simplify package name
|
2021-09-23 12:53:26 +02:00
|
|
|
run: mv target/seb-server-${{ env.TAG_NAME }}-${{ env.SHA }}.jar target/seb-server.jar
|
2021-04-27 09:00:59 +02:00
|
|
|
-
|
|
|
|
|
uses: actions/upload-artifact@v2
|
2021-04-22 14:27:16 +02:00
|
|
|
with:
|
2021-04-27 09:00:59 +02:00
|
|
|
name: Package
|
|
|
|
|
path: target/seb-server.jar
|
|
|
|
|
|
|
|
|
|
docker-build:
|
|
|
|
|
needs: maven-build-docker
|
|
|
|
|
# Run only on tagging
|
|
|
|
|
if: github.event_name == 'push' && contains(github.ref, 'refs/tags/')
|
|
|
|
|
runs-on: ubuntu-latest
|
|
|
|
|
steps:
|
|
|
|
|
-
|
|
|
|
|
name: Set env
|
|
|
|
|
run: echo "TAG_NAME=${GITHUB_REF#refs/*/}" >> $GITHUB_ENV
|
|
|
|
|
-
|
|
|
|
|
name: Test
|
|
|
|
|
run: |
|
|
|
|
|
echo $TAG_NAME
|
|
|
|
|
echo ${{ env.TAG_NAME }}
|
2022-03-21 15:29:08 +01:00
|
|
|
-
|
|
|
|
|
name: Install Cosign
|
|
|
|
|
uses: sigstore/cosign-installer@main
|
2021-04-27 09:00:59 +02:00
|
|
|
-
|
|
|
|
|
name: Set up QEMU
|
|
|
|
|
uses: docker/setup-qemu-action@v1
|
|
|
|
|
-
|
|
|
|
|
name: Set up Docker Buildx
|
|
|
|
|
uses: docker/setup-buildx-action@v1
|
|
|
|
|
-
|
|
|
|
|
name: Login to DockerHub
|
|
|
|
|
uses: docker/login-action@v1
|
|
|
|
|
with:
|
|
|
|
|
username: ${{ secrets.DOCKERHUB_USERNAME }}
|
|
|
|
|
password: ${{ secrets.DOCKERHUB_TOKEN }}
|
|
|
|
|
-
|
|
|
|
|
name: Checkout repository
|
|
|
|
|
uses: actions/checkout@v2
|
|
|
|
|
-
|
|
|
|
|
name: Download a single artifact
|
|
|
|
|
uses: actions/download-artifact@v2
|
|
|
|
|
with:
|
|
|
|
|
name: Package
|
|
|
|
|
-
|
|
|
|
|
name: Build and push
|
|
|
|
|
id: docker_build
|
|
|
|
|
uses: docker/build-push-action@v2
|
|
|
|
|
with:
|
|
|
|
|
context: .
|
|
|
|
|
file: ./docker/Dockerfile
|
|
|
|
|
push: true
|
|
|
|
|
tags: |
|
2022-03-21 15:29:08 +01:00
|
|
|
anhefti/seb-server:${{ env.TAG_NAME }}
|
2022-03-22 08:46:06 +01:00
|
|
|
-
|
|
|
|
|
name: Write signing key to disk
|
|
|
|
|
run: 'echo "$KEY" > cosign.key'
|
|
|
|
|
shell: bash
|
|
|
|
|
env:
|
|
|
|
|
KEY: ${{ secrets.COSIGN_PRIVATE_KEY }}
|
2022-03-21 15:29:08 +01:00
|
|
|
-
|
2022-03-22 08:56:36 +01:00
|
|
|
name: Sign the published Docker image
|
|
|
|
|
env:
|
|
|
|
|
COSIGN_PASSWORD: ${{ secrets.COSIGN_PASSWORD }}
|
2022-03-22 09:35:00 +01:00
|
|
|
run: echo "$COSIGN_PASSWORD" && cosign sign --key cosign.key docker.io/anhefti/seb-server:${{ env.TAG_NAME }}
|
