Merge #5
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Merge | |
| on: | |
| workflow_run: | |
| workflows: [PR Closed] | |
| types: [completed] | |
| workflow_dispatch: | |
| concurrency: | |
| group: ${{ github.workflow }} | |
| cancel-in-progress: true | |
| jobs: | |
| deploys-test: | |
| name: TEST Deploys | |
| environment: test | |
| runs-on: ubuntu-22.04 | |
| permissions: | |
| issues: write | |
| strategy: | |
| matrix: | |
| name: [database, backend, frontend] | |
| include: | |
| - name: database | |
| file: database/openshift.deploy.yml | |
| overwrite: false | |
| - name: backend | |
| file: backend/openshift.deploy.yml | |
| parameters: -p PROMOTE_MIGRATION=${{ github.repository }}/migrations:test | |
| overwrite: true | |
| verification_path: /api | |
| - name: frontend | |
| file: frontend/openshift.deploy.yml | |
| overwrite: true | |
| steps: | |
| - uses: bcgov-nr/[email protected] | |
| with: | |
| file: ${{ matrix.file }} | |
| oc_namespace: ${{ vars.OC_NAMESPACE }} | |
| oc_server: ${{ vars.OC_SERVER }} | |
| oc_token: ${{ secrets.OC_TOKEN }} | |
| overwrite: ${{ matrix.overwrite }} | |
| parameters: | |
| -p ZONE=test -p PROMOTE=${{ github.repository }}/${{ matrix.name }}:test | |
| -p NAME=${{ github.event.repository.name }} ${{ matrix.parameters }} | |
| penetration_test: true | |
| name: ${{ matrix.name }} | |
| penetration_test_token: ${{ secrets.GITHUB_TOKEN }} | |
| verification_path: ${{ matrix.verification_path }} | |
| integration-tests: | |
| needs: [deploys-test] | |
| name: Integration Tests for APIs | |
| defaults: | |
| run: | |
| working-directory: integration-tests | |
| runs-on: ubuntu-22.04 | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - id: cache-npm | |
| uses: actions/cache@v3 | |
| with: | |
| path: ~/.npm | |
| key: ${{ runner.os }}-build-cache-node-modules-${{ hashFiles('**/package-lock.json') }} | |
| restore-keys: | | |
| ${{ runner.os }}-build-cache-node-modules- | |
| ${{ runner.os }}-build- | |
| ${{ runner.os }}- | |
| - if: ${{ steps.cache-npm.outputs.cache-hit != 'true' }} | |
| name: List the state of node modules | |
| continue-on-error: true | |
| run: npm list | |
| - name: Install dependencies | |
| run: npm ci | |
| - name: Run integration tests | |
| run: BASE_URL=https://nr-compliance-enforcement-cm-test-backend.apps.silver.devops.gov.bc.ca API_NAME=nest node src/main.js | |
| cypress-e2e: | |
| name: Cypress end to end test | |
| needs: [deploys-test] | |
| runs-on: ubuntu-22.04 | |
| defaults: | |
| run: | |
| working-directory: frontend | |
| strategy: | |
| matrix: | |
| browser: [chrome, firefox, edge] | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - id: cache-npm | |
| uses: actions/cache@v3 | |
| with: | |
| path: ~/.npm | |
| key: ${{ runner.os }}-build-cache-node-modules-${{ hashFiles('**/package-lock.json') }} | |
| restore-keys: | | |
| ${{ runner.os }}-build-cache-node-modules- | |
| ${{ runner.os }}-build- | |
| ${{ runner.os }}- | |
| - if: ${{ steps.cache-npm.outputs.cache-hit != 'true' }} | |
| name: List the state of node modules | |
| continue-on-error: true | |
| run: npm list | |
| - uses: cypress-io/github-action@v6 | |
| name: Cypress run | |
| with: | |
| config: pageLoadTimeout=10000,baseUrl=https://nr-compliance-enforcement-cm-test-frontend.apps.silver.devops.gov.bc.ca/ | |
| working-directory: ./frontend | |
| browser: ${{ matrix.browser }} | |
| - uses: actions/upload-artifact@v3 | |
| if: failure() | |
| with: | |
| name: cypress-screenshots | |
| path: ./cypress/screenshots | |
| if-no-files-found: ignore # 'warn' or 'error' are also available, defaults to `warn` | |
| ghcr-cleanup: | |
| name: GHCR Cleanup | |
| runs-on: ubuntu-latest | |
| strategy: | |
| matrix: | |
| name: [database, migrations, backend, frontend] | |
| steps: | |
| - name: Keep last 50 | |
| uses: actions/delete-package-versions@v4 | |
| with: | |
| package-name: "${{ github.event.repository.name }}/${{ matrix.name }}" | |
| package-type: "container" | |
| min-versions-to-keep: 50 | |
| ignore-versions: "^(prod|test)$" | |
| deploys-prod: | |
| name: PROD Deploys | |
| needs: [integration-tests, cypress-e2e] | |
| environment: prod | |
| runs-on: ubuntu-22.04 | |
| strategy: | |
| matrix: | |
| name: [database, backend, frontend] | |
| include: | |
| - name: database | |
| file: database/openshift.deploy.yml | |
| overwrite: false | |
| - name: backend | |
| file: backend/openshift.deploy.yml | |
| parameters: -p PROMOTE_MIGRATION=${{ github.repository }}/migrations:test | |
| overwrite: true | |
| verification_path: /api | |
| - name: frontend | |
| file: frontend/openshift.deploy.yml | |
| overwrite: true | |
| steps: | |
| - uses: bcgov-nr/[email protected] | |
| with: | |
| file: ${{ matrix.file }} | |
| oc_namespace: ${{ vars.OC_NAMESPACE }} | |
| oc_server: ${{ vars.OC_SERVER }} | |
| oc_token: ${{ secrets.OC_TOKEN }} | |
| overwrite: ${{ matrix.overwrite }} | |
| parameters: | |
| -p ZONE=prod -p PROMOTE=${{ github.repository }}/${{ matrix.name }}:test | |
| -p NAME=${{ github.event.repository.name }} ${{ matrix.parameters }} | |
| penetration_test: false | |
| verification_path: ${{ matrix.verification_path }} | |
| image-promotions: | |
| name: Promote images | |
| needs: [deploys-prod] | |
| runs-on: ubuntu-22.04 | |
| permissions: | |
| packages: write | |
| strategy: | |
| matrix: | |
| component: [database, backend, frontend] | |
| steps: | |
| - uses: shrink/actions-docker-registry-tag@v3 | |
| with: | |
| registry: ghcr.io | |
| repository: ${{ github.repository }}/${{ matrix.component }} | |
| target: test | |
| tags: prod | |
| generate-schema-spy: | |
| name: Generate SchemaSpy Documentation | |
| runs-on: ubuntu-22.04 | |
| services: | |
| postgres: | |
| image: postgres | |
| env: | |
| POSTGRES_DB: default | |
| POSTGRES_USER: default | |
| POSTGRES_PASSWORD: default | |
| options: >- | |
| --health-cmd pg_isready | |
| --health-interval 10s | |
| --health-timeout 5s | |
| --health-retries 5 | |
| ports: | |
| - 5432:5432 | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - uses: joshuaavalon/[email protected] | |
| name: Generate SchemaSpy docs for node backend | |
| with: | |
| url: jdbc:postgresql://postgres:5432/default | |
| user: default | |
| password: default | |
| env: | |
| FLYWAY_VALIDATE_MIGRATION_NAMING: true | |
| FLYWAY_LOCATIONS: filesystem:./backend/db/migrations | |
| FLYWAY_DEFAULT_SCHEMA: "users" | |
| - name: Create Output Folder | |
| run: | | |
| mkdir output | |
| chmod a+rwx -R output | |
| - name: Run Schemaspy | |
| run: docker run --network host -v "$PWD/output:/output" schemaspy/schemaspy:6.2.4 -t pgsql -db default -host 127.0.0.1 -port 5432 -u default -p default -schemas users | |
| - name: Deploy to Pages | |
| uses: JamesIves/github-pages-deploy-action@v4 | |
| with: | |
| folder: output | |
| target-folder: schemaspy |