[PAYSHIP-2824] GitHub workflow PS8 (#1231)

* GitHub workflow PS8 * Trigger production workflow only with new release * Adapt secrets and buckets storage * Add permissions * devops: comments jobs * Add auth-gcp Github action * Change actions/checkout version * Change actions/checkout version * Test * Fix zip generation * Fix push to bucket storage * Fix .env writting * Fix .env writting * Add date to zip name * Update .gitignore * Fix CI * Fix CI * Set date +2h on zip name * Adapt production workflow * Fix auth GCP action * Fix writting env file * Exclude folders _dev and tests for the zip generation * Exclude folders _dev and tests for the zip generation * Exclude folders _dev and tests for the zip generation * Exclude package.* files from zip generation * Add ps8-clean-buckets workflow * Fix zip installation on PrestaShop * Fix zip installation on PrestaShop * Fix zip installation on PrestaShop * Fix zip installation on PrestaShop * Fix zip installation on PrestaShop * Fix zip installation on PrestaShop * Fix zip installation on PrestaShop * Fix zip installation on PrestaShop * Fix zip installation on PrestaShop --------- Co-authored-by: Maxence Perrin <maxence.perrin@prestashop.com>
PrestaShopCorp · Jul 18, 2024 · 6f42aa7 · 6f42aa7
1 parent d651e71
commit 6f42aa7
Show file tree

Hide file tree

Showing 10 changed files with 354 additions and 187 deletions.
diff --git a/.github/actions/auth-gcp/action.yml b/.github/actions/auth-gcp/action.yml
@@ -0,0 +1,86 @@
+name: 'Auth GCP'
+description: 'Auth gcp, can login to docker artifact registry or install the sdk'
+inputs:
+  auth-mode:
+    description: 'Authentication mode (workload-federation or json-file)'
+    required: true
+    type: choice
+    options:
+      - workload-federation
+      - json-file
+    default: 'workload-federation'
+  registry-login:
+    required: false
+    type: bool
+    default: false
+  credentials-json:
+    required: false
+    type: string
+  setup-gcloud:
+    required: false
+    type: bool
+    default: false
+  service-account:
+    required: false
+    description: Service account email
+    type: string
+  provider:
+    required: false
+    description: gcp workload identity provider
+    type: string
+  gcp-registry-region:
+    required: false
+    description: docker registry gcp
+    default: "europe-west1-docker.pkg.dev"
+    type: string
+  sdk-version:
+    required: true
+    description: which version of google dsl you want to suer
+    default: '>=457.0.0'
+    type: string
+  gke-cluster-name:
+    required: false
+    description: 'If you put the cluster name in this variable it will activate auth to make kubectl'
+    default: ''
+    type: string
+  cluster-region:
+    required: false
+    description: 'Cluster region'
+    type: choice
+    options:
+      - europe-west1
+    default: 'europe-west1'
+
+runs:
+  using: 'composite'
+  steps:
+    - name: Authenticate to Google Cloud with Workload Federation 🔐
+      if: ${{ inputs.auth-mode == 'workload-federation' }}
+      uses: google-github-actions/auth@v2
+      with:
+        workload_identity_provider: ${{ inputs.provider }}
+        service_account: ${{ inputs.service-account }}
+
+    - name: Authenticate to Google Cloud with a JSON file 🔐 (THIS IS DEPRECATED ❌)
+      if: ${{ inputs.auth-mode == 'json-file' }}
+      uses: google-github-actions/auth@v2
+      with:
+        credentials_json: ${{ inputs.credentials-json }}
+
+    - name: Setting up gcloud SDK 🛠
+      if: ${{ inputs.setup-gcloud == 'true' }}
+      uses: google-github-actions/setup-gcloud@v2
+      with:
+        version: ${{ inputs.sdk-version }}
+
+    - name: Login to Docker artifact registry 🐳
+      if: ${{ inputs.registry-login == 'true' }}
+      shell: bash
+      run: gcloud auth configure-docker ${{ inputs.gcp-registry-region }}
+
+    - name: Add cluster authentification 🧊
+      if: ${{ inputs.gke-cluster-name != '' }}
+      uses: 'google-github-actions/get-gke-credentials@v2'
+      with:
+        cluster_name: '${{ inputs.gke-cluster-name }}'
+        location: '${{ inputs.cluster-region }}'
diff --git a/.github/workflows/build-release.yml b/.github/workflows/build-release.yml
diff --git a/.github/workflows/js.yml b/.github/workflows/js.yml
@@ -4,6 +4,7 @@ jobs:
   js-linter:
     name: JS linter
     runs-on: ubuntu-latest
+    if: contains(github.event.pull_request.labels.*.name, 'ready to review')
     steps:
       - name: Checkout
         uses: actions/checkout@v2.0.0

diff --git a/.github/workflows/php.yml b/.github/workflows/php.yml
@@ -2,23 +2,24 @@ name: PHP tests
 on:
   push:
     branches:
-      - 'master'
-      - 'prestashop/8.x'
+      - "master"
+      - "prestashop/8.x"
   pull_request:
     types: [opened, reopened, synchronize, edited]
 
 jobs:
   header-stamp:
     name: Check license headers
     runs-on: ubuntu-latest
+    if: contains(github.event.pull_request.labels.*.name, 'ready to review')
     steps:
       - name: Checkout
         uses: actions/checkout@v2
 
       - name: Setup PHP 7.4
         uses: shivammathur/setup-php@v2
         with:
-          php-version: '7.4'
+          php-version: "7.4"
 
       - name: Cache vendor folder
         uses: actions/cache@v1
@@ -36,9 +37,11 @@ jobs:
 
       - name: Run Header Stamp in Dry Run mode
         run: php vendor/bin/header-stamp --license=vendor/prestashop/header-stamp/assets/afl.txt --exclude=.github,node_modules,vendor,tests,_dev --dry-run
+
   php-linter:
     name: PHP Syntax check 7.2|7.3|7.4
     runs-on: ubuntu-latest
+    if: contains(github.event.pull_request.labels.*.name, 'ready to review')
     steps:
       - name: Checkout
         uses: actions/checkout@v2.0.0
@@ -48,20 +51,24 @@ jobs:
         uses: prestashop/github-action-php-lint/7.3@master
       - name: PHP syntax checker 7.4
         uses: prestashop/github-action-php-lint/7.4@master
+
   php-cs-fixer:
     name: PHP-CS-Fixer
     runs-on: ubuntu-latest
+    if: contains(github.event.pull_request.labels.*.name, 'ready to review')
     steps:
       - name: Checkout
         uses: actions/checkout@v2.0.0
       - name: Run PHP-CS-Fixer
         uses: prestashopcorp/github-action-php-cs-fixer@master
+
   phpstan:
     name: PHPStan
     runs-on: ubuntu-latest
     strategy:
       matrix:
-        presta-versions: ['8.0.0', 'latest']
+        presta-versions: ["8.0.0", "latest"]
+    if: contains(github.event.pull_request.labels.*.name, 'ready to review')
     steps:
       - name: Checkout
         uses: actions/checkout@v2.0.0
@@ -83,19 +90,21 @@ jobs:
       - name: Pull PrestaShop files (Tag ${{ matrix.presta-versions }})
         run: docker run -tid --rm -v ps-volume:/var/www/html --name temp-ps prestashop/prestashop:${{ matrix.presta-versions }}
 
-      - name : Run PHPStan
+      - name: Run PHPStan
         run: docker run --rm --volumes-from temp-ps -v $PWD:/web/module -e _PS_ROOT_DIR_=/var/www/html --workdir=/web/module phpstan/phpstan:0.12 analyse --configuration=/web/module/tests/phpstan/phpstan-PS-8.neon --error-format github
+
   phpunit:
     name: PHPUnit
     runs-on: ubuntu-latest
+    if: contains(github.event.pull_request.labels.*.name, 'ready to review')
     steps:
       - name: Checkout
         uses: actions/checkout@v2
 
       - name: Setup PHP 7.4
         uses: shivammathur/setup-php@v2
         with:
-          php-version: '7.4'
+          php-version: "7.4"
 
       - name: Cache vendor folder
         uses: actions/cache@v1