wilix-infra
/
actions
3
0
Fork 0
Code Pull Requests Actions Activity
actions/.gitea/workflows/java-pull-request-check-tem...

142 lines
5.3 KiB
YAML
Raw Normal View History

First version of java project pr check workflow.
2023-05-30 16:40:19 +00:00
name: Pull request check
on:
workflow_call:
inputs:
notification_enabled:
description: "Включение оповещений о разворачивании, требуется иметь url для оповещений в vault"
default: false
required: false
type: boolean
Added option to use custom notification hook url.
2023-08-24 09:01:07 +00:00
custom_notification_hook_enabled:
description: "Использовать ли кастомный url хук для оповещений (должен лежать в vault секрете проекта)"
default: false
required: false
type: boolean
First version of java project pr check workflow.
2023-05-30 16:40:19 +00:00
notification_channel:
description: "Канал для оповещений о результатах деплоя"
default: internal_projects_notifications
required: false
type: string
vault_secrets_base_path:
description: 'Базовый путь для секретов проекта в vault'
required: false
type: string
Added setting to configure gradle task for java pr check template.
2023-06-07 08:00:42 +00:00
gradle_check_command:
description: 'Команда для исполнения в gradle'
default: 'test'
required: false
type: string
First version of java project pr check workflow.
2023-05-30 16:40:19 +00:00
sonar_enabled:
default: false
required: false
type: boolean
secrets:
VAULT_ROLE_ID:
required: true
VAULT_SECRET_ID:
required: true
Fixed webhook uri getting from vault issue.
2023-06-09 13:40:48 +00:00
env:
vault_main_base_path: dev/wilix/main/data/ci
First version of java project pr check workflow.
2023-05-30 16:40:19 +00:00
jobs:
Renamed job for pr check workflow.
2023-06-07 16:12:36 +00:00
check:
First version of java project pr check workflow.
2023-05-30 16:40:19 +00:00
name: check and test
runs-on: ubuntu-latest
steps:
- uses: https://github.com/actions/checkout@v3
- uses: https://github.com/actions/setup-java@v3
with:
distribution: 'temurin'
Update java version from 17 to 21
2023-10-12 06:54:45 +00:00
java-version: 21
First version of java project pr check workflow.
2023-05-30 16:40:19 +00:00
check-latest: "false"
- uses: https://github.com/gradle/gradle-build-action@v2
with:
cache-read-only: ${{ gitea.ref != 'refs/heads/master' && gitea.ref != 'refs/heads/develop' }}
- name: run gradle check
Change location for cache action.
2023-06-09 10:22:06 +00:00
run: ./gradlew ${{ inputs.gradle_check_command }}
First version of java project pr check workflow.
2023-05-30 16:40:19 +00:00
- id: import-secrets
if: ${{ inputs.sonar_enabled }}
uses: https://github.com/hashicorp/vault-action@v2
with:
url: https://vault.wilix.dev
method: approle
roleId: ${{ secrets.VAULT_ROLE_ID }}
secretId: ${{ secrets.VAULT_SECRET_ID }}
secrets: |
${{ inputs.vault_secrets_base_path }} sonarqube_token | SONAR_TOKEN ;
Change location for cache action.
2023-06-09 10:22:06 +00:00
- name: calc sonar cache key
if: ${{ inputs.sonar_enabled }}
run: echo "SONAR_SETTINGS_HASH=$(sha1sum ${{ github.workspace }}/build.gradle)" >> "$GITHUB_ENV"
- id: cache-sonar
if: ${{ inputs.sonar_enabled }}
uses: https://github.com/actions/cache@v3
Updates
2023-06-09 09:55:17 +00:00
with:
Change location for cache action.
2023-06-09 10:22:06 +00:00
path: ~/.sonar/cache
key: cache-sonar-modules-${{ env.SONAR_SETTINGS_HASH }}
Updates
2023-06-09 09:55:17 +00:00
restore-keys: |
Change location for cache action.
2023-06-09 10:22:06 +00:00
cache-sonar-modules-${{ env.SONAR_SETTINGS_HASH }}
cache-sonar-modules-
Updates
2023-06-09 09:55:17 +00:00
First version of java project pr check workflow.
2023-05-30 16:40:19 +00:00
- name: run gradle sonar scan
if: ${{ inputs.sonar_enabled }}
Change location for cache action.
2023-06-09 10:22:06 +00:00
run: ./gradlew sonar
First version of java project pr check workflow.
2023-05-30 16:40:19 +00:00
- name: dockerfile lint check
uses: https://github.com/hadolint/hadolint-action@v3.1.0
with:
dockerfile: Dockerfile
Added option to use custom notification hook url.
2023-08-24 09:01:07 +00:00
- name: Get general notification url
if: ${{ inputs.notification_enabled && ! inputs.custom_notification_hook_enabled && (job.status == 'success' || job.status == 'failure') }}
uses: https://github.com/hashicorp/vault-action@v2
with:
url: https://vault.wilix.dev
method: approle
roleId: ${{ secrets.VAULT_ROLE_ID }}
secretId: ${{ secrets.VAULT_SECRET_ID }}
secrets: |
${{ env.vault_main_base_path }} notification_url | MATTERMOST_WEBHOOK_URL ;
- name: Get custom notification url
if: ${{ inputs.notification_enabled && inputs.custom_notification_hook_enabled && (job.status == 'success' || job.status == 'failure') }}
First version of java project pr check workflow.
2023-05-30 16:40:19 +00:00
uses: https://github.com/hashicorp/vault-action@v2
with:
url: https://vault.wilix.dev
method: approle
roleId: ${{ secrets.VAULT_ROLE_ID }}
secretId: ${{ secrets.VAULT_SECRET_ID }}
secrets: |
Fix problem with custom notification url.
2023-08-24 09:47:46 +00:00
${{ inputs.vault_secrets_base_path }} notification_url | MATTERMOST_WEBHOOK_URL ;
First version of java project pr check workflow.
2023-05-30 16:40:19 +00:00
- name: prepare failed notification body
if: ${{ inputs.notification_enabled && job.status == 'failure' }}
uses: https://github.com/finnp/create-file-action@master
env:
FILE_NAME: "mattermost.json"
FILE_DATA: |
{
"channel": "${{ inputs.notification_channel }}",
"attachments": [
{
"fallback": "Проверка упала ${{ gitea.repository }}",
"text": "@${{ gitea.actor }} упала тестовая сборка",
"color": "#FF0000",
"fields": [
{
"short": true,
"title": "Сборка",
"value": "https://git.wilix.dev/${{ gitea.repository }}/actions/runs/${{ gitea.run_id }}"
}
]
}
]
}
- name: loop fail notification
if: ${{ inputs.notification_enabled && job.status == 'failure' }}
uses: https://github.com/mattermost/action-mattermost-notify@master