Merge pull request #133 from NOWUM/dependabot-update #89

Workflow file for this run

	name: CI/CD main

	on:
	push:
	branches:
	- main

	jobs:
	# Inspect the information that is accessible in each context
	# https://docs.github.com/en/actions/learn-github-actions/contexts#example-printing-context-information-to-the-log-file
	# You can delete this section
	jobinfo:
	runs-on: ubuntu-latest
	steps:
	- name: Dump GitHub context
	env:
	GITHUB_CONTEXT: ${{ toJSON(github) }}
	run: echo "$GITHUB_CONTEXT"
	- name: Dump job context
	env:
	JOB_CONTEXT: ${{ toJSON(job) }}
	run: echo "$JOB_CONTEXT"
	- name: Dump steps context
	env:
	STEPS_CONTEXT: ${{ toJSON(steps) }}
	run: echo "$STEPS_CONTEXT"
	- name: Dump runner context
	env:
	RUNNER_CONTEXT: ${{ toJSON(runner) }}
	run: echo "$RUNNER_CONTEXT"
	- name: Dump strategy context
	env:
	STRATEGY_CONTEXT: ${{ toJSON(strategy) }}
	run: echo "$STRATEGY_CONTEXT"
	- name: Dump matrix context
	env:
	MATRIX_CONTEXT: ${{ toJSON(matrix) }}
	run: echo "$MATRIX_CONTEXT"

	# Check linting
	lint:
	runs-on: ubuntu-latest
	steps:
	- name: Checkout
	uses: actions/checkout@v3

	- name: Setup Python
	uses: actions/setup-python@v4
	with:
	python-version: '3.10'

	- name: Cache pip
	uses: actions/cache@v3
	with:
	path: ~/.cache/pip
	key: lint-${{ hashFiles('pyproject.toml') }}-${{ hashFiles('requirements**.txt') }}

	- name: Install requirements
	run: \|
	pip install -e .[test]

	- name: flake8 Lint
	uses: reviewdog/action-flake8@v3
	with:
	github_token: ${{ github.token }}


	# Checks if all tests pass
	test:
	runs-on: ubuntu-latest
	steps:
	- name: Checkout
	uses: actions/checkout@v3

	- name: Setup Python
	uses: actions/setup-python@v4
	with:
	python-version: '3.10'
	architecture: 'x64'

	- name: Cache pip
	uses: actions/cache@v3
	with:
	path: ~/.cache/pip
	key: test-${{ hashFiles('pyproject.toml') }}-${{ hashFiles('requirements**.txt') }}

	- name: Install requirements
	run: \|
	pip install --upgrade --upgrade-strategy eager -r requirements-dev.txt -e .

	- name: Run tests
	run: \|
	pytest --cov=./ensysmod --cov-report=xml --junitxml="result.xml" ./tests

	- name: Upload tests results
	uses: actions/upload-artifact@v3
	if: always()
	with:
	name: test-results
	path: \|
	coverage.xml
	result.xml


	uplaod_coverage_results:
	needs: test
	runs-on: ubuntu-latest
	name: "Upload code coverage"
	if: always()
	steps:
	- name: Checkout
	uses: actions/checkout@v3

	- name: Download tests results
	uses: actions/download-artifact@v2
	with:
	name: test-results

	- name: Check files
	run: \|
	cat ./coverage.xml

	- name: Upload coverage to Codecov
	uses: codecov/codecov-action@v3
	env:
	CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }}
	with:
	flags: pytest
	fail_ci_if_error: true


	publish_test_results:
	needs: test
	runs-on: ubuntu-latest
	name: "Publish unit test results"
	if: always()
	steps:
	- name: Download tests results
	uses: actions/download-artifact@v2
	with:
	name: test-results

	- name: Publish Unit Test Results
	uses: EnricoMi/publish-unit-test-result-action@v2
	with:
	files: result.xml
	report_individual_runs: true



	# Test if project still runs on every os
	test_build:
	needs: [test, lint]
	runs-on: ${{ matrix.os }}
	name: Build Python ${{ matrix.py }} @ ${{ matrix.os }}
	strategy:
	fail-fast: true
	matrix:
	os: ["ubuntu-latest", "windows-latest", "macos-latest"]
	py: ["3.9", "3.10"]
	steps:
	- name: Checkout
	uses: actions/checkout@v3

	- name: Setup Python
	uses: actions/setup-python@v4
	with:
	python-version: '3.10'
	architecture: 'x64'

	- name: Cache pip
	uses: actions/cache@v3
	with:
	path: ~/.cache/pip
	key: ${{matrix.os}}-${{ matrix.py }}-${{ hashFiles('pyproject.toml') }}-${{ hashFiles('requirements**.txt') }}

	- name: Install requirements
	run: \|
	pip install --upgrade --upgrade-strategy eager -r requirements-dev.txt -e .


	- name: Run tests
	run: \|
	pytest ./tests



	build_dev_image:
	needs: [ test, lint, test_build ]
	runs-on: ubuntu-latest
	name: "Build dev image"
	if: ${{ success() && github.actor != 'dependabot[bot]' }}
	outputs:
	image_tag: ${{ steps.get_tag.outputs.DOCKER_TAG }}
	steps:
	- name: Checkout
	uses: actions/checkout@v3

	- name: Login to GitHub Container Registry
	uses: docker/login-action@v2
	with:
	registry: ghcr.io
	username: ${{ github.actor }}
	password: ${{ github.token }}

	- name: Get tag for docker image
	id: get_tag
	run: \|
	DOCKER_TAG=ghcr.io/${{ github.repository }}:main
	DOCKER_TAG=${DOCKER_TAG,,}
	echo ::set-output name=DOCKER_TAG::"${DOCKER_TAG}"

	- name: Build the Docker image
	run: \|
	docker build . --tag ${{ steps.get_tag.outputs.DOCKER_TAG }}

	- name: Push the Docker image to GitHub Container Registry
	run: \|
	docker push ${{ steps.get_tag.outputs.DOCKER_TAG }}


	deploy_dev:
	needs: [ build_dev_image ]
	runs-on: ubuntu-latest
	concurrency: ssh-connection # only one ssh connection at a time
	name: "Deploy dev image"
	if: ${{ success() && github.actor != 'dependabot[bot]' }}
	steps:
	- name: Update deployment status - start
	uses: bobheadxi/deployments@v1.4.0
	id: deployment
	with:
	step: start
	token: ${{ github.token }}
	env: Development
	no_override: false
	desc: "Development deployment for main branch"
	ref: "main" # dev deployment of main branch
	transient: true

	- name: Install VPN
	run: \|
	sudo /sbin/modprobe tun
	sudo apt install openconnect

	- name: Connect VPN
	run: \|
	echo "${{ secrets.VPN_PASS }}" \| sudo openconnect ${{ secrets.VPN_URL }} --background --user=${{ secrets.VPN_USER }} --passwd-on-stdin

	- name: Deploy docker container on private server
	uses: appleboy/ssh-action@v0.1.4
	with:
	host: ${{ secrets.SSH_URL }}
	username: ${{ secrets.SSH_USER }}
	password: ${{ secrets.SSH_PASS }}
	script: \|
	docker system prune -af
	docker pull ${{ needs.build_dev_image.outputs.image_tag }}
	docker ps --filter publish=9000
	docker rm -f $(docker ps --filter publish=9000 -aq)
	docker run -d -p 9000:8080 --name "dev" ${{ needs.build_dev_image.outputs.image_tag }}

	- name: Disconnect VPN
	if: ${{ always() }}
	run: \|
	sudo pkill openconnect

	- name: Get env url
	id: get_env_url
	run: \|
	ENV_URL="http://${{ secrets.SSH_URL }}:9000"
	echo ::set-output name=ENV_URL::"${ENV_URL}"

	- name: Update deployment status - finish
	uses: bobheadxi/deployments@v1.4.0
	if: always()
	with:
	step: finish
	token: ${{ github.token }}
	status: ${{ job.status }}
	deployment_id: ${{ steps.deployment.outputs.deployment_id }}
	env_url: ${{ steps.get_env_url.outputs.env_url }}

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Merge pull request #133 from NOWUM/dependabot-update #89

Workflow file

Merge pull request #133 from NOWUM/dependabot-update #89

Jobs

Run details

Workflow file for this run