Build Wazuh dashboard with plugins #24
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Build final packages | |
| on: | |
| workflow_dispatch: | |
| inputs: | |
| REFERENCE_SECURITY_PLUGIN: | |
| description: 'Reference Wazuh security packages (branch/tag/commit)' | |
| required: true | |
| default: '' | |
| REFERENCE_WAZUH_PLUGINS: | |
| description: 'Reference Wazuh plugins (branch/tag/commit)' | |
| required: true | |
| default: '' | |
| REFERENCE_WAZUH_DASHBOARD: | |
| description: 'Reference Wazuh dashboard (branch/tag/commit)' | |
| required: true | |
| default: '' | |
| DISTRIBUTION: | |
| description: 'Distribution to build (deb | rpm | all-platforms)' | |
| required: true | |
| default: '' | |
| S3UPLOAD: | |
| description: 'Upload to S3' | |
| type: boolean | |
| required: true | |
| jobs: | |
| build-plugins: | |
| name: Build plugins | |
| uses: wazuh/wazuh-dashboard-plugins/.github/workflows/manual-build.yml@master | |
| with: | |
| reference: ${{ inputs.REFERENCE_WAZUH_PLUGINS }} | |
| build-dashboard: | |
| name: Build dashboard | |
| uses: wazuh/wazuh-dashboard/.github/workflows/[email protected] | |
| with: | |
| CHECKOUT_TO: ${{ inputs.REFERENCE_WAZUH_DASHBOARD }} | |
| build-security-plugin: | |
| name: Build security plugin | |
| uses: wazuh/wazuh-security-dashboards-plugin/.github/workflows/[email protected] | |
| with: | |
| reference: ${{ inputs.REFERENCE_SECURITY_PLUGIN }} | |
| Build-base-package: | |
| needs: [build-plugins, build-dashboard, build-security-plugin] | |
| runs-on: ubuntu-latest | |
| name: Generate final packages | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| # TODO: Add arm64 support | |
| ARCHITECTURE: [ x64 ] | |
| steps: | |
| - name: Checkout code | |
| uses: actions/checkout@v4 | |
| - name: Setup Node | |
| uses: actions/setup-node@v3 | |
| with: | |
| node-version-file: '.nvmrc' | |
| registry-url: 'https://registry.npmjs.org' | |
| - name: Setup variables | |
| run: | | |
| echo "CURRENT_DIR=$(pwd -P)" >> $GITHUB_ENV | |
| echo "VERSION=$(yarn --silent wzd-version)" >> $GITHUB_ENV | |
| echo "REVISION=$(yarn --silent wzd-revision)" >> $GITHUB_ENV | |
| - name: Setup packages names | |
| run: | | |
| echo "WAZUH_DASHBOARD_SLIM=wazuh-dashboard_${{ env.VERSION }}-${{ env.REVISION }}_${{ matrix.ARCHITECTURE }}_${{ inputs.REFERENCE_WAZUH_DASHBOARD }}.tar.gz" >> $GITHUB_ENV | |
| echo "WAZUH_SECURITY_PLUGIN=wazuh-security-dashboards-plugin_${{ env.VERSION }}-${{ env.REVISION }}_${{ inputs.REFERENCE_SECURITY_PLUGIN }}.zip" >> $GITHUB_ENV | |
| echo "WAZUH_PLUGINS=wazuh-dashboard-plugins_${{ env.VERSION }}-${{ env.REVISION }}_${{ inputs.REFERENCE_WAZUH_PLUGINS }}.zip" >> $GITHUB_ENV | |
| - name: Download dashboard artifact | |
| uses: actions/download-artifact@v3 | |
| with: | |
| name: ${{ env.WAZUH_DASHBOARD_SLIM }} | |
| path: ${{ env.CURRENT_DIR }}/artifacts/dashboard | |
| - name: Download security plugin artifact | |
| uses: actions/download-artifact@v3 | |
| with: | |
| name: ${{ env.WAZUH_SECURITY_PLUGIN }} | |
| path: ${{ env.CURRENT_DIR }}/artifacts/security-plugin | |
| - name: Download plugins artifacts | |
| uses: actions/download-artifact@v3 | |
| with: | |
| name: ${{ env.WAZUH_PLUGINS }} | |
| path: ${{ env.CURRENT_DIR }}/artifacts/plugins | |
| - name: Zip plugins | |
| run: | | |
| zip -r -j ${{ env.CURRENT_DIR }}/artifacts/wazuh-package.zip ${{ env.CURRENT_DIR }}/artifacts/plugins | |
| zip -r -j ${{ env.CURRENT_DIR }}/artifacts/security-package.zip ${{ env.CURRENT_DIR }}/artifacts/security-plugin | |
| zip -r -j ${{ env.CURRENT_DIR }}/artifacts/dashboard-package.zip ${{ env.CURRENT_DIR }}/artifacts/dashboard/${{ env.WAZUH_DASHBOARD_SLIM }} | |
| - name: Build packages | |
| run: | | |
| cd ${{ env.CURRENT_DIR }}/dev-tools/build-packages | |
| bash ./build-packages.sh \ | |
| -v ${{ env.VERSION }} \ | |
| -r ${{ env.REVISION }} \ | |
| -a file://${{env.CURRENT_DIR}}/artifacts/wazuh-package.zip \ | |
| -s file://${{env.CURRENT_DIR}}/artifacts/security-package.zip \ | |
| -b file://${{env.CURRENT_DIR}}/artifacts/dashboard-package.zip \ | |
| --tar | |
| - name: Upload tar packages | |
| uses: actions/upload-artifact@v3 | |
| with: | |
| name: wazuh-dashboard-${{ env.VERSION }}-${{ env.REVISION }}-linux-${{ matrix.ARCHITECTURE }}.tar.gz | |
| path: ${{ env.CURRENT_DIR }}/dev-tools/build-packages/output/wazuh-dashboard-${{ env.VERSION }}-${{ env.REVISION }}-linux-${{ matrix.ARCHITECTURE }}.tar.gz | |
| retention-days: 30 | |
| build-deb-package: | |
| needs: [Build-base-package] | |
| if: ( contains(inputs.DISTRIBUTION, 'deb') || contains(inputs.DISTRIBUTION, 'all-platforms') ) | |
| runs-on: ubuntu-latest | |
| name: Build deb package | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| # TODO: Add arm64 support | |
| ARCHITECTURE: [ x64 ] | |
| steps: | |
| - name: Checkout code | |
| uses: actions/checkout@v4 | |
| - name: Setup Node | |
| uses: actions/setup-node@v3 | |
| with: | |
| node-version-file: '.nvmrc' | |
| registry-url: 'https://registry.npmjs.org' | |
| - name: Setup variables | |
| run: | | |
| echo "CURRENT_DIR=$(pwd -P)" >> $GITHUB_ENV | |
| echo "VERSION=$(yarn --silent wzd-version)" >> $GITHUB_ENV | |
| echo "REVISION=$(yarn --silent wzd-revision)" >> $GITHUB_ENV | |
| - name: Download dashboard artifact | |
| uses: actions/download-artifact@v3 | |
| with: | |
| name: wazuh-dashboard-${{ env.VERSION }}-${{ env.REVISION }}-linux-${{ matrix.ARCHITECTURE }}.tar.gz | |
| path: ${{ env.CURRENT_DIR }}/artifacts/dashboard-tar | |
| - name: Build packages | |
| run: | | |
| cd ${{ env.CURRENT_DIR }}/dev-tools/build-packages/deb/ | |
| bash ./launcher.sh \ | |
| -v ${{ env.VERSION }} \ | |
| -r ${{ env.REVISION }} \ | |
| -p file://${{env.CURRENT_DIR}}/artifacts/dashboard-tar/wazuh-dashboard-${{ env.VERSION }}-${{ env.REVISION }}-linux-${{ matrix.ARCHITECTURE }}.tar.gz | |
| - name: Upload deb packages | |
| uses: actions/upload-artifact@v3 | |
| if: success() | |
| with: | |
| name: wazuh-dashboard_${{ env.VERSION }}-${{ env.REVISION }}_amd64.deb | |
| path: ${{ env.CURRENT_DIR }}/dev-tools/build-packages/deb/output/wazuh-dashboard_${{ env.VERSION }}-${{ env.REVISION }}_amd64.deb | |
| retention-days: 30 | |
| build-rpm-package: | |
| needs: [Build-base-package] | |
| if: ( contains(inputs.DISTRIBUTION, 'rpm') || contains(inputs.DISTRIBUTION, 'all-platforms') ) | |
| runs-on: ubuntu-latest | |
| name: Build rpm package | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| ARCHITECTURE: [ x64 ] | |
| steps: | |
| - name: Checkout code | |
| uses: actions/checkout@v4 | |
| - name: Setup Node | |
| uses: actions/setup-node@v3 | |
| with: | |
| node-version-file: '.nvmrc' | |
| registry-url: 'https://registry.npmjs.org' | |
| - name: Setup variables | |
| run: | | |
| echo "CURRENT_DIR=$(pwd -P)" >> $GITHUB_ENV | |
| echo "VERSION=$(yarn --silent wzd-version)" >> $GITHUB_ENV | |
| echo "REVISION=$(yarn --silent wzd-revision)" >> $GITHUB_ENV | |
| - name: Download dashboard artifact | |
| uses: actions/download-artifact@v3 | |
| with: | |
| name: wazuh-dashboard-${{ env.VERSION }}-${{ env.REVISION }}-linux-${{ matrix.ARCHITECTURE }}.tar.gz | |
| path: ${{ env.CURRENT_DIR }}/artifacts/dashboard-tar | |
| - name: Build packages | |
| run: | | |
| cd ${{ env.CURRENT_DIR }}/dev-tools/build-packages/rpm/ | |
| bash ./launcher.sh \ | |
| -v ${{ env.VERSION }} \ | |
| -r ${{ env.REVISION }} \ | |
| -p file://${{env.CURRENT_DIR}}/artifacts/dashboard-tar/wazuh-dashboard-${{ env.VERSION }}-${{ env.REVISION }}-linux-${{ matrix.ARCHITECTURE }}.tar.gz | |
| - name: Upload rpm packages | |
| uses: actions/upload-artifact@v3 | |
| if: success() | |
| with: | |
| name: wazuh-dashboard-${{ env.VERSION }}-${{ env.REVISION }}.x86_64.rpm | |
| path: ${{ env.CURRENT_DIR }}/dev-tools/build-packages/rpm/output/wazuh-dashboard-${{ env.VERSION }}-${{ env.REVISION }}.x86_64.rpm | |
| retention-days: 30 | |
| test-package-deb: | |
| needs: [build-deb-package] | |
| runs-on: ubuntu-latest | |
| name: Test packages | |
| strategy: | |
| fail-fast: false | |
| steps: | |
| - name: Checkout code | |
| uses: actions/checkout@v4 | |
| - name: Setup Node | |
| uses: actions/setup-node@v3 | |
| with: | |
| node-version-file: '.nvmrc' | |
| registry-url: 'https://registry.npmjs.org' | |
| - name: Setup variables | |
| run: | | |
| echo "CURRENT_DIR=$(pwd -P)" >> $GITHUB_ENV | |
| echo "VERSION=$(yarn --silent wzd-version)" >> $GITHUB_ENV | |
| echo "REVISION=$(yarn --silent wzd-revision)" >> $GITHUB_ENV | |
| - name: Download deb package | |
| uses: actions/download-artifact@v3 | |
| with: | |
| name: wazuh-dashboard_${{ env.VERSION }}-${{ env.REVISION }}_amd64.deb | |
| path: ${{ env.CURRENT_DIR }}/dev-tools/test-packages/deb | |
| - name: Run test | |
| run: | | |
| cd ${{ env.CURRENT_DIR }}/dev-tools/test-packages | |
| bash ./test-packages.sh \ | |
| -p wazuh-dashboard_${{ env.VERSION }}-${{ env.REVISION }}_amd64.deb | |
| test-package-rpm: | |
| needs: [build-rpm-package] | |
| runs-on: ubuntu-latest | |
| name: Test packages | |
| strategy: | |
| fail-fast: false | |
| steps: | |
| - name: Checkout code | |
| uses: actions/checkout@v4 | |
| - name: Setup Node | |
| uses: actions/setup-node@v3 | |
| with: | |
| node-version-file: '.nvmrc' | |
| registry-url: 'https://registry.npmjs.org' | |
| - name: Setup variables | |
| run: | | |
| echo "CURRENT_DIR=$(pwd -P)" >> $GITHUB_ENV | |
| echo "VERSION=$(yarn --silent wzd-version)" >> $GITHUB_ENV | |
| echo "REVISION=$(yarn --silent wzd-revision)" >> $GITHUB_ENV | |
| - name: Download rpm package | |
| uses: actions/download-artifact@v3 | |
| with: | |
| name: wazuh-dashboard-${{ env.VERSION }}-${{ env.REVISION }}.x86_64.rpm | |
| path: ${{ env.CURRENT_DIR }}/dev-tools/test-packages/rpm | |
| - name: Run test | |
| run: | | |
| cd ${{ env.CURRENT_DIR }}/dev-tools/test-packages | |
| bash ./test-packages.sh \ | |
| -p wazuh-dashboard-${{ env.VERSION }}-${{ env.REVISION }}.x86_64.rpm | |
| upload-to-s3: | |
| needs: [test-package-rpm, test-package-deb] | |
| if: | | |
| always() && inputs.S3UPLOAD && contains(needs.*.result, 'success') && !contains(needs.*.result, 'failure') | |
| runs-on: ubuntu-latest | |
| name: Upload to S3 | |
| steps: | |
| - name: Checkout code | |
| uses: actions/checkout@v4 | |
| - name: Setup Node | |
| uses: actions/setup-node@v3 | |
| with: | |
| node-version-file: '.nvmrc' | |
| registry-url: 'https://registry.npmjs.org' | |
| - name: Setup variables | |
| run: | | |
| echo "CURRENT_DIR=$(pwd -P)" >> $GITHUB_ENV | |
| echo "VERSION=$(yarn --silent wzd-version)" >> $GITHUB_ENV | |
| echo "REVISION=$(yarn --silent wzd-revision)" >> $GITHUB_ENV | |
| - name: Set up AWS CLI | |
| uses: aws-actions/configure-aws-credentials@v1 | |
| with: | |
| aws-access-key-id: ${{ secrets.CI_INTERNAL_DEVELOPMENT_BUCKET_USER_ACCESS_KEY }} | |
| aws-secret-access-key: ${{ secrets.CI_INTERNAL_DEVELOPMENT_BUCKET_USER_SECRET_KEY }} | |
| aws-region: us-east-1 | |
| - name: Download deb package | |
| uses: actions/download-artifact@v3 | |
| with: | |
| name: wazuh-dashboard_${{ env.VERSION }}-${{ env.REVISION }}_amd64.deb | |
| path: ${{ env.CURRENT_DIR }}/dev-tools/build-packages/deb/wazuh-dashboard_${{ env.VERSION }}-${{ env.REVISION }}_amd64.deb s3://packages-dev.internal.wazuh.com/development/wazuh/4.x/main/packages/ | |
| - name: Upload deb to S3 | |
| if: needs.test-package-deb.result == 'success' | |
| run: | | |
| echo "Uploading deb package" | |
| aws s3 cp ${{ env.CURRENT_DIR }}/dev-tools/build-packages/deb | |
| - name: Download rpm package | |
| if: needs.test-package-rpm.result == 'success' | |
| uses: actions/download-artifact@v3 | |
| with: | |
| name: wazuh-dashboard-${{ env.VERSION }}-${{ env.REVISION }}.x86_64.rpm | |
| path: ${{ env.CURRENT_DIR }}/dev-tools/build-packages/rpm | |
| - name: Upload rpm to S3 | |
| if: needs.test-package-rpm.result == 'success' | |
| run: | | |
| ls -la ${{ env.CURRENT_DIR }}/dev-tools/build-packages/rpm | |