feature: added job to bump the rc-tag in the sec-scanners-config on main branch when creating release #1021
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: e2e | |
env: | |
KYMA_STABILITY: "unstable" | |
KYMA: "./hack/kyma" | |
on: | |
push: | |
branches: | |
- main | |
- "release-**" | |
paths-ignore: | |
- "docs/**" | |
- "**.md" | |
- "sec-scanners-config.yaml" | |
- CODEOWNERS | |
- LICENSE | |
- LICENSES | |
- OWNERS | |
- OWNERS_ALIASES | |
- PROJECT | |
pull_request: | |
branches: | |
- main | |
- "release-**" | |
paths-ignore: | |
- "docs/**" | |
- "**.md" | |
- "sec-scanners-config.yaml" | |
- CODEOWNERS | |
- LICENSE | |
- LICENSES | |
- OWNERS | |
- OWNERS_ALIASES | |
- PROJECT | |
jobs: | |
wait-until-build-succeeds: | |
runs-on: ubuntu-latest | |
outputs: | |
image-name: ${{ steps.extract-image.outputs.image_name }} | |
steps: | |
- uses: actions/checkout@v4 | |
- name: Wait for the 'pull-eventing-manager-build' job to succeed | |
id: pull-wait-build | |
if: github.event_name == 'pull_request' | |
uses: kyma-project/wait-for-commit-status-action@2b3ffe09af8b6f40e1213d5fb7f91a7bd41ffb20 | |
with: | |
context: "pull-eventing-manager-build" | |
commit_ref: "${{ github.event.pull_request.head.sha }}" # Note: 'github.event.pull_request.head.sha' is not same as 'github.sha' on pull requests. | |
timeout: 600000 # 10 minutes in milliseconds | |
# The check interval is kept long otherwise it will exhaust the GitHub rate limit (More info: https://docs.github.com/en/rest/overview/resources-in-the-rest-api?apiVersion=2022-11-28#rate-limiting) | |
check_interval: 60000 # 1 minute in milliseconds | |
env: | |
GITHUB_TOKEN: "${{ secrets.GITHUB_TOKEN }}" | |
GITHUB_OWNER: "${{ github.repository_owner }}" | |
GITHUB_REPO: "eventing-manager" | |
- name: Wait for the 'post-eventing-manager-build' job to succeed | |
id: push-wait-build | |
if: github.event_name == 'push' | |
uses: kyma-project/wait-for-commit-status-action@2b3ffe09af8b6f40e1213d5fb7f91a7bd41ffb20 | |
with: | |
context: "post-eventing-manager-build" | |
commit_ref: "${{ github.sha }}" | |
timeout: 600000 # 10 minutes in milliseconds | |
# The check interval is kept long otherwise it will exhaust the GitHub rate limit (More info: https://docs.github.com/en/rest/overview/resources-in-the-rest-api?apiVersion=2022-11-28#rate-limiting) | |
check_interval: 60000 # 1 minute in milliseconds | |
env: | |
GITHUB_TOKEN: "${{ secrets.GITHUB_TOKEN }}" | |
GITHUB_OWNER: "${{ github.repository_owner }}" | |
GITHUB_REPO: "eventing-manager" | |
- name: Extract container image name from build logs (pull) | |
id: extract-image | |
env: | |
# Refernce: https://docs.github.com/en/actions/learn-github-actions/expressions#example | |
COMMIT_STATUS_JSON: "${{ github.event_name == 'push' && steps.push-wait-build.outputs.json || steps.pull-wait-build.outputs.json }}" | |
run: | | |
./scripts/extract_image_from_build_logs.sh | |
# export value to job output | |
export IMAGE_NAME="$(cat image.name)" | |
echo "IMAGE_NAME: ${IMAGE_NAME}" | |
echo "image_name=${IMAGE_NAME}" >> "$GITHUB_OUTPUT" | |
nats: | |
runs-on: ubuntu-latest | |
needs: wait-until-build-succeeds | |
env: | |
MANAGER_IMAGE: ${{ needs.wait-until-build-succeeds.outputs.image-name }} | |
steps: | |
- uses: actions/checkout@v4 | |
- name: Setup Go via go.mod | |
uses: actions/setup-go@v5 | |
with: | |
go-version-file: go.mod | |
- run: go version | |
- name: Install k3d tools | |
run: | | |
make -C hack/ci/ install-k3d-tools | |
- name: Install Kyma CLI & setup k3d cluster using kyma CLI | |
run: | | |
make kyma | |
make -C hack/ci/ create-k3d | |
kubectl version | |
kubectl cluster-info | |
- name: Install eventing-manager | |
run: | | |
make install IMG=$MANAGER_IMAGE | |
- name: Deploy the controller to the cluster | |
run: | | |
kubectl create ns kyma-system || true | |
make deploy IMG=$MANAGER_IMAGE | |
- name: Setup NATS | |
run: | | |
make -C hack/ci/ install-nats-module | |
- name: Setup and test the eventing-manager | |
run: | | |
make e2e-setup | |
- name: Setup eventing | |
run: | | |
make e2e-eventing-setup | |
- name: Test eventing | |
run: | | |
make e2e-eventing | |
- name: Test eventing cleanup | |
run: | | |
make e2e-cleanup | |
- name: On error get NATS CR | |
if: failure() | |
run: | | |
kubectl get nats -n kyma-system -o yaml | |
- name: On error get eventing CR | |
if: failure() | |
run: | | |
kubectl get eventing -n kyma-system -o yaml | |
PeerAuthentication: | |
runs-on: ubuntu-latest | |
needs: wait-until-build-succeeds | |
env: | |
MANAGER_IMAGE: ${{ needs.wait-until-build-succeeds.outputs.image-name }} | |
steps: | |
- uses: actions/checkout@v4 | |
- name: Setup Go via go.mod | |
uses: actions/setup-go@v5 | |
with: | |
go-version-file: go.mod | |
- run: go version | |
- name: Install k3d tools | |
run: | | |
make -C hack/ci/ install-k3d-tools | |
- name: Install Kyma CLI & setup k3d cluster using kyma CLI | |
run: | | |
make kyma | |
make -C hack/ci/ create-k3d | |
kubectl version | |
kubectl cluster-info | |
- name: Install PeerAuthentication CRD | |
run: | | |
make -C hack/ci/ apply-peerauthentication-crd | |
- name: Install eventing-manager | |
run: | | |
make install IMG=$MANAGER_IMAGE | |
- name: Deploy the controller to the cluster | |
run: | | |
kubectl create ns kyma-system || true | |
make deploy IMG=$MANAGER_IMAGE | |
- name: Test if the PeerAuthentications are created correctly | |
run: | | |
make e2e-eventing-peerauthentications | |
- name: On error get all PeerAuthentications | |
if: failure() | |
run: | | |
kubectl get peerauthentications.security.istio.io -A -o yaml | |
backend-switching: | |
needs: wait-until-build-succeeds | |
if: github.event_name == 'push' | |
uses: "./.github/workflows/e2e-backend-switching-reuseable.yml" | |
with: | |
eventing-manager-image: ${{ needs.wait-until-build-succeeds.outputs.image-name }} | |
cluster-name-prefix: "ghem-" | |
secrets: inherit |