Skip to content

Bump the npm_and_yarn group across 1 directories with 1 update (#149) #60

Bump the npm_and_yarn group across 1 directories with 1 update (#149)

Bump the npm_and_yarn group across 1 directories with 1 update (#149) #60

Workflow file for this run

name: Unleash
concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true
on:
push:
branches:
- unleash-v5
paths:
- 'Dockerfile'
- 'package.json'
- 'yarn.lock'
- 'src/**'
pull_request:
branches:
- unleash-v5
env:
DATABASE_USERNAME: unleash
DATABASE_PASSWORD: unleash
DATABASE_NAME: unleash
DATABASE_HOST: localhost
DATABASE_SSL: false
INIT_ADMIN_API_TOKENS: "*:*.unleash4all"
GOOGLE_IAP_AUDIENCE: "/projects/123/global/backendServices/123"
jobs:
build-and-test:
runs-on: ubuntu-latest
services:
postgres:
image: postgres
env:
POSTGRES_USER: ${{ env.DATABASE_USERNAME }}
POSTGRES_PASSWORD: ${{ env.DATABASE_PASSWORD }}
POSTGRES_DB: ${{ env.DATABASE_NAME }}
ports:
- 5432:5432
steps:
- uses: actions/checkout@v4
name: Checkout
- uses: actions/setup-node@v4
with:
node-version: 20
- uses: actions/cache@v4
name: Cache dependencies
with:
path: ~/.npm
key: ${{ runner.os }}-node-${{ hashFiles('**/yarn.lock') }}
restore-keys: |
${{ runner.os }}-node-
- run: yarn install
- run: yarn lint
- run: yarn build
- run: yarn test
# build-push-sign can not be used for pull requests, as it requires a secret
docker-build-pr:
runs-on: ubuntu-latest
needs: build-and-test
if: github.event_name == 'pull_request'
steps:
- uses: actions/checkout@v4 # ratchet:actions/checkout@v4
- uses: docker/setup-qemu-action@v3
- uses: docker/setup-buildx-action@v3
- uses: docker/build-push-action@v5
with:
push: false
build-push-sign:
runs-on: ubuntu-latest
needs: build-and-test
if: github.event_name == 'push'
outputs:
tag: v${{ steps.version.outputs.unleash }}-${{ steps.version.outputs.date }}-${{ steps.version.outputs.sha_short }}
permissions:
contents: read
id-token: write
steps:
- uses: actions/checkout@v4 # ratchet:actions/checkout@v4
- id: version
run: |
unleash=$(cat package.json | grep "unleash-server" | awk '{ print $2 }' | sed 's/\^//' | sed 's/\"//g')
echo "unleash=${unleash}" >> "$GITHUB_OUTPUT"
echo "date=$(date '+%Y%m%d-%H%M%S')" >> "$GITHUB_OUTPUT"
echo "sha_short=$(git rev-parse --short HEAD)" >> "$GITHUB_OUTPUT"
- uses: nais/platform-build-push-sign@main
id: push
with:
name: unleash-v4
extra_tags: |
v${{ steps.version.outputs.unleash }}
v${{ steps.version.outputs.unleash }}-${{ steps.version.outputs.date }}-${{ steps.version.outputs.sha_short }}
dockerfile: Dockerfile
google_service_account: gh-unleash
push: true
workload_identity_provider: ${{ secrets.NAIS_IO_WORKLOAD_IDENTITY_PROVIDER }}
git-tag:
runs-on: ubuntu-latest
needs: build-push-sign
steps:
- uses: actions/checkout@v4
- name: git tag and push
run: |
git tag ${{ needs.build-push-sign.outputs.tag }}
git push origin ${{ needs.build-push-sign.outputs.tag }}