Add caching for web / test container builds in CI #13
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Run CI checks | |
on: pull_request | |
jobs: | |
run_lint: | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v3 | |
- name: Install poetry | |
run: pipx install poetry | |
- uses: actions/cache@v3 | |
# We need to use this caching strategy (rather than setting `cache: poetry` in setup-python) | |
# because our use of dependency groups. We want separate caches for each dependency group. | |
# https://github.com/actions/setup-python/issues/505 | |
env: | |
SEGMENT_DOWNLOAD_TIMEOUT_MIN: "15" | |
with: | |
path: | | |
~/.cache/pypoetry/virtualenvs | |
~/.cache/pypoetry/cache | |
~/.cache/pypoetry/artifacts | |
key: poetry-dev-${{ hashFiles('poetry.lock') }} | |
- uses: actions/setup-python@v4 | |
with: | |
python-version: "3.11" | |
- name: Install dependencies | |
run: make install | |
- name: Run linting and formatting checks | |
run: make lint | |
docs_test: | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v3 | |
- name: Install poetry | |
run: pipx install poetry | |
- uses: actions/setup-python@v4 | |
with: | |
python-version: "3.11" | |
- uses: actions/cache@v3 | |
# We need to use this caching strategy (rather than setting `cache: poetry`` in setup-python) | |
# because our use of dependency groups. We want separate caches for each dependency group. | |
# https://github.com/actions/setup-python/issues/505 | |
env: | |
SEGMENT_DOWNLOAD_TIMEOUT_MIN: "15" | |
with: | |
path: | | |
~/.cache/pypoetry/virtualenvs | |
~/.cache/pypoetry/cache | |
~/.cache/pypoetry/artifacts | |
key: poetry-docs-${{ hashFiles('poetry.lock') }} | |
- name: Check documentation build | |
run: make docs | |
run_test: | |
runs-on: ubuntu-latest | |
services: | |
postgres: | |
image: postgres:12 | |
env: | |
POSTGRES_DB: testdb | |
POSTGRES_USER: postgres | |
POSTGRES_PASSWORD: postgres # pragma: allowlist secret | |
POSTGRES_HOST_AUTH_METHOD: trust | |
LC_COLLATE: en_US.UTF8 | |
LC_CTYPE: en_US.UTF8 | |
ports: | |
- 5432:5432 | |
options: >- | |
--health-cmd pg_isready | |
--health-interval 10s | |
--health-timeout 5s | |
--health-retries 5 | |
steps: | |
- uses: actions/checkout@v3 | |
- name: Install poetry | |
run: pipx install poetry | |
- uses: actions/setup-python@v4 | |
with: | |
python-version: "3.11" | |
- uses: actions/cache@v3 | |
# We need to use this caching strategy (rather than setting `cache: poetry`` in setup-python) | |
# because our use of dependency groups. We want separate caches for each dependency group. | |
# https://github.com/actions/setup-python/issues/505 | |
env: | |
SEGMENT_DOWNLOAD_TIMEOUT_MIN: "15" | |
with: | |
path: | | |
~/.cache/pypoetry/virtualenvs | |
~/.cache/pypoetry/cache | |
~/.cache/pypoetry/artifacts | |
key: poetry-dev-${{ hashFiles('poetry.lock') }} | |
- name: Install dependencies | |
run: make install | |
- name: Run tests | |
run: make test | |
integration_test: | |
runs-on: ubuntu-latest | |
env: | |
DOCKER_CACHE: /tmp/docker-cache | |
steps: | |
- uses: actions/checkout@v3 | |
- run: | | |
mkdir -p ${DOCKER_CACHE}/web | |
mkdir -p ${DOCKER_CACHE}/tests | |
- name: Compute cache key | |
run: echo "CACHE_KEY=$(git ls-tree --full-tree -r --name-only HEAD | grep -v -f RemoteSettings.dockerignore | git hash-object --stdin)" >> $GITHUB_ENV | |
- uses: actions/cache@v3 | |
with: | |
path: ${{ env.DOCKER_CACHE}} | |
key: docker-build-${{ hashFiles('RemoteSettings.Dockerfile', 'IntegrationTests.Dockerfile') }}-${{ env.CACHE_KEY }} | |
restore-keys: | | |
docker-build-${{ hashFiles('RemoteSettings.Dockerfile', 'IntegrationTests.Dockerfile') }}-${{ env.CACHE_KEY }} | |
docker-build-${{ hashFiles('RemoteSettings.Dockerfile', 'IntegrationTests.Dockerfile') }}- | |
docker-build- | |
- name: Set up Docker Buildx | |
uses: docker/setup-buildx-action@v3 | |
with: | |
install: true | |
- name: Pre-build image caches | |
run: | | |
docker buildx build \ | |
--cache-from type=local,src=${DOCKER_CACHE}/web \ | |
--cache-to type=local,dest=${DOCKER_CACHE}/web,mode=max \ | |
--file RemoteSettings.Dockerfile . | |
docker buildx build \ | |
--cache-from type=local,src=${DOCKER_CACHE}/tests \ | |
--cache-to type=local,dest=${DOCKER_CACHE}/tests,mode=max \ | |
--file IntegrationTests.Dockerfile . | |
- name: Run integration tests | |
run: make integration-test | |
browser-test: | |
runs-on: ubuntu-latest | |
env: | |
DOCKER_CACHE: /tmp/docker-cache | |
steps: | |
- uses: actions/checkout@v3 | |
- run: | | |
mkdir -p ${DOCKER_CACHE}/web | |
mkdir -p ${DOCKER_CACHE}/tests | |
- name: Compute cache key | |
run: echo "CACHE_KEY=$(git ls-tree --full-tree -r --name-only HEAD | grep -v -f RemoteSettings.dockerignore | git hash-object --stdin)" >> $GITHUB_ENV | |
- uses: actions/cache@v3 | |
with: | |
path: ${{ env.DOCKER_CACHE}} | |
key: docker-build-${{ hashFiles('RemoteSettings.Dockerfile', 'IntegrationTests.Dockerfile') }}-${{ env.CACHE_KEY }} | |
restore-keys: | | |
docker-build-${{ hashFiles('RemoteSettings.Dockerfile', 'IntegrationTests.Dockerfile') }}-${{ env.CACHE_KEY }} | |
docker-build-${{ hashFiles('RemoteSettings.Dockerfile', 'IntegrationTests.Dockerfile') }}- | |
docker-build- | |
- name: Set up Docker Buildx | |
uses: docker/setup-buildx-action@v3 | |
with: | |
install: true | |
- name: Pre-build image caches | |
run: | | |
docker buildx build \ | |
--cache-from type=local,src=${DOCKER_CACHE}/web \ | |
--cache-to type=local,dest=${DOCKER_CACHE}/web,mode=max \ | |
--file RemoteSettings.Dockerfile . | |
docker buildx build \ | |
--cache-from type=local,src=${DOCKER_CACHE}/tests \ | |
--cache-to type=local,dest=${DOCKER_CACHE}/tests,mode=max \ | |
--file IntegrationTests.Dockerfile . | |
- name: Run browser tests | |
run: make browser-test | |
review-dependabot-pr: | |
permissions: | |
contents: write | |
pull-requests: write | |
runs-on: ubuntu-latest | |
if: ${{ github.actor == 'dependabot[bot]' }} | |
steps: | |
- name: Enable Dependabot automation | |
uses: mozilla/syseng-pod/actions/dependabot-automerge@main |