-
Notifications
You must be signed in to change notification settings - Fork 143
133 lines (125 loc) · 5.24 KB
/
node-flow-build-application.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
##
# Copyright (C) 2022-2025 Hedera Hashgraph, LLC
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
##
name: "Node: Build Application"
on:
workflow_dispatch:
inputs:
enable-unit-tests:
description: "Unit Testing Enabled"
type: boolean
required: false
default: true
enable-hapi-tests:
description: "HAPI Testing Enabled"
type: boolean
required: false
default: false
enable-spotless-check:
description: "Spotless Check Enabled"
type: boolean
required: false
default: false
enable-snyk-scan:
description: "Snyk Scan Enabled"
type: boolean
required: false
default: false
java-version:
description: "Java JDK Version:"
type: string
required: false
default: "21.0.4"
java-distribution:
description: "Java JDK Distribution:"
type: string
required: false
default: "temurin"
push:
branches:
- main
- 'release/*'
defaults:
run:
shell: bash
jobs:
code:
name: Code
uses: ./.github/workflows/node-zxc-compile-application-code.yaml
with:
java-version: ${{ github.event.inputs.java-version || '21.0.4' }}
java-distribution: ${{ github.event.inputs.java-distribution || 'temurin' }}
enable-unit-tests: ${{ github.event_name == 'push' || github.event.inputs.enable-unit-tests == 'true' }}
enable-hapi-tests-misc: ${{ github.event.inputs.enable-hapi-tests == 'true' }}
enable-hapi-tests-crypto: ${{ github.event.inputs.enable-hapi-tests == 'true' }}
enable-hapi-tests-token: ${{ github.event.inputs.enable-hapi-tests == 'true' }}
enable-hapi-tests-smart-contract: ${{ github.event.inputs.enable-hapi-tests == 'true' }}
enable-hapi-tests-time-consuming: ${{ github.event.inputs.enable-hapi-tests == 'true' }}
enable-hapi-tests-restart: ${{ github.event.inputs.enable-hapi-tests == 'true' }}
enable-hapi-tests-nd-reconnect: ${{ github.event.inputs.enable-hapi-tests == 'true' }}
enable-spotless-check: ${{ github.event.inputs.enable-spotless-check == 'true' }}
enable-snyk-scan: ${{ github.event_name == 'push' || github.event.inputs.enable-snyk-scan == 'true' }}
enable-network-log-capture: true
secrets:
access-token: ${{ secrets.GITHUB_TOKEN }}
snyk-token: ${{ secrets.SNYK_TOKEN }}
codacy-project-token: ${{ secrets.CODACY_PROJECT_TOKEN }}
gradle-cache-username: ${{ secrets.GRADLE_CACHE_USERNAME }}
gradle-cache-password: ${{ secrets.GRADLE_CACHE_PASSWORD }}
codecov-token: ${{ secrets.CODECOV_TOKEN }}
deploy-ci-trigger:
name: Trigger CI Flows
runs-on: network-node-linux-medium
needs: code
if: ${{ needs.code.result == 'success' }}
steps:
- name: Harden Runner
uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
with:
egress-policy: audit
- name: Configure Workflow Inputs
id: workflow-inputs
env:
REFERENCE: ${{ github.ref }}
AUTHOR: ${{ github.event.head_commit.author.name }}
MESSAGE: ${{ github.event.head_commit.message }}
COMMIT_SHA: ${{ github.sha }}
run: |
# massage the message to remove invalid control characters
MASSAGED_MESSAGE="${MESSAGE//[$'\t\r\n']/' '}"
# Assign github step outputs
echo "input-ref=${REFERENCE}" >> $GITHUB_OUTPUT
echo "input-author=${AUTHOR}" >> $GITHUB_OUTPUT
echo "input-msg=${MASSAGED_MESSAGE}" >> $GITHUB_OUTPUT
echo "input-sha=${COMMIT_SHA}" >> $GITHUB_OUTPUT
# Preview the input values
echo "### Workflow Dispatch Inputs" >> $GITHUB_STEP_SUMMARY
echo "input-ref=${REFERENCE}" >> $GITHUB_STEP_SUMMARY
echo "input-author=${AUTHOR}" >> $GITHUB_STEP_SUMMARY
echo "input-msg=${MASSAGED_MESSAGE}" >> $GITHUB_STEP_SUMMARY
echo "input-sha=${COMMIT_SHA}" >> $GITHUB_STEP_SUMMARY
- name: Trigger ZXF Deploy Production Release
uses: step-security/workflow-dispatch@4d1049025980f72b1327cbfdeecb07fe7a20f577 # v1.2.4
with:
workflow: .github/workflows/node-flow-deploy-release-artifact.yaml
repo: hashgraph/hedera-services # ensure we are executing in the hashgraph org
ref: main # ensure we are always using the workflow definition from the main branch
token: ${{ secrets.GH_ACCESS_TOKEN }}
inputs: '{
"ref": "${{ steps.workflow-inputs.outputs.input-ref }}",
"author": "${{ steps.workflow-inputs.outputs.input-author }}",
"msg": "${{ steps.workflow-inputs.outputs.input-msg }}",
"sha": "${{ steps.workflow-inputs.outputs.input-sha }}"
}'