update .github/workflows #1
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Publish artifacts | |
| on: | |
| release: | |
| types: [published] | |
| push: | |
| branches: | |
| - main | |
| pull_request: | |
| branches: | |
| - main | |
| # note: we do not use any concurrency here, in order to avoid queued release workflows being cancelled by | |
| # higher priority push/pull_request workflows | |
| env: | |
| REGCTL_VERSION: v0.4.8 | |
| REGISTRY: ghcr.io | |
| defaults: | |
| run: | |
| shell: bash | |
| jobs: | |
| test: | |
| name: Run tests | |
| runs-on: ubuntu-22.04 | |
| steps: | |
| - name: Checkout repository | |
| uses: actions/checkout@v3 | |
| - name: Setup go | |
| uses: actions/setup-go@v4 | |
| with: | |
| go-version-file: 'go.mod' | |
| - name: Check that license header boilerplate is correct | |
| run: | | |
| this_year=$(date +%Y) | |
| last_year=$((this_year-1)) | |
| repository=$(echo ${{ github.repository }} | cut -d/ -f2) | |
| boilerplate=hack/boilerplate.go.txt | |
| tempdir=$(mktemp -d) | |
| trap 'rm -rf $tempdir' EXIT | |
| cat > $tempdir/boilerplate-this-year <<END | |
| /* | |
| SPDX-FileCopyrightText: $this_year SAP SE or an SAP affiliate company and $repository contributors | |
| SPDX-License-Identifier: Apache-2.0 | |
| */ | |
| END | |
| cat > $tempdir/boilerplate-last-year <<END | |
| /* | |
| SPDX-FileCopyrightText: $last_year SAP SE or an SAP affiliate company and $repository contributors | |
| SPDX-License-Identifier: Apache-2.0 | |
| */ | |
| END | |
| if diff -q $boilerplate $tempdir/boilerplate-this-year >/dev/null; then | |
| exit 0 | |
| fi | |
| if diff -q $boilerplate $tempdir/boilerplate-last-year >/dev/null; then | |
| >&1 echo "Warning: license boilerplate outdated ($last_year); next year, this will result in an error." | |
| exit 0 | |
| fi | |
| >&1 echo "Error: incorrect license boilerplate." | |
| exit 1 | |
| END | |
| - name: Check that license headers are correct | |
| run: | | |
| boilerplate=hack/boilerplate.go.txt | |
| tempdir=$(mktemp -d) | |
| trap 'rm -rf $tempdir' EXIT | |
| boilerplate_linecount=$(wc -l $boilerplate | awk '{print $1}') | |
| errors=0 | |
| for f in $(find . -name "*.go"); do | |
| if head -n 1 $f | grep -q "!ignore_autogenerated"; then | |
| continue | |
| fi | |
| head -n $boilerplate_linecount $f > $tempdir/out | |
| if ! diff -q $tempdir/out $boilerplate >/dev/null; then | |
| >&1 echo "Error: incorrect license header found in $f." | |
| errors=$((errors+1)) | |
| fi | |
| rm -f $tempdir/out | |
| done | |
| if [ $errors -gt 0 ]; then | |
| exit 1 | |
| fi | |
| - name: Check that generated artifacts are up-to-date | |
| run: | | |
| make generate | |
| echo "Running 'git status' ..." | |
| git status --porcelain | tee status.out | |
| if [[ -s status.out ]]; then | |
| >&1 echo "Generated artifacts are not up-to-date; probably 'make generate' was not run before committing." | |
| exit 1 | |
| else | |
| echo "Generated artifacts are up-to-date." | |
| fi | |
| - name: Check that manifests are up-to-date | |
| run: | | |
| make manifests | |
| echo "Running 'git status' ..." | |
| git status --porcelain | tee status.out | |
| if [[ -s status.out ]]; then | |
| >&1 echo "Manifests are not up-to-date; probably 'make manifests' was not run before committing." | |
| exit 1 | |
| else | |
| echo "Manifests are up-to-date." | |
| fi | |
| build-docker: | |
| name: Build Docker image | |
| runs-on: ubuntu-22.04 | |
| needs: test | |
| permissions: | |
| contents: read | |
| packages: write | |
| env: | |
| IMAGE_NAME: ${{ github.repository }} | |
| steps: | |
| - name: Checkout repository | |
| uses: actions/checkout@v3 | |
| - name: Set up Docker Buildx | |
| uses: docker/setup-buildx-action@v2 | |
| - name: Log in to the Container registry | |
| uses: docker/login-action@v2 | |
| with: | |
| registry: ${{ env.REGISTRY }} | |
| username: ${{ github.actor }} | |
| password: ${{ github.token }} | |
| - name: Prepare custom labels for Docker | |
| id: labels | |
| run: | | |
| echo "labels<<EOF" >> $GITHUB_OUTPUT | |
| for c in pkg/operator/data/charts/*/Chart.yaml; do | |
| name=$(yq .name $c) | |
| version=$(yq .version $c) | |
| app_version=$(yq .appVersion $c) | |
| echo "com.sap.cs.image.content.charts.$name.version=$version" >> $GITHUB_OUTPUT | |
| if [ ! -z "$app_version" ]; then | |
| echo "com.sap.cs.image.content.charts.$name.app-version=$app_version" >> $GITHUB_OUTPUT | |
| fi | |
| done | |
| echo "EOF" >> $GITHUB_OUTPUT | |
| - name: Extract metadata (tags, labels) for Docker | |
| id: meta | |
| uses: docker/metadata-action@v4 | |
| with: | |
| images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }} | |
| labels: ${{ steps.labels.outputs.labels }} | |
| - name: Build Docker image | |
| uses: docker/build-push-action@v4 | |
| with: | |
| platforms: linux/amd64,linux/arm64 | |
| context: . | |
| cache-from: | | |
| type=gha,scope=sha-${{ github.sha }} | |
| type=gha,scope=${{ github.ref_name }} | |
| type=gha,scope=${{ github.base_ref || 'main' }} | |
| type=gha,scope=main | |
| cache-to: | | |
| type=gha,scope=sha-${{ github.sha }},mode=max | |
| type=gha,scope=${{ github.ref_name }},mode=max | |
| push: ${{ github.event_name == 'release' }} | |
| tags: ${{ steps.meta.outputs.tags }} | |
| labels: ${{ steps.meta.outputs.labels }} | |
| build-crds: | |
| name: Build CRD image | |
| runs-on: ubuntu-22.04 | |
| needs: test | |
| if: github.event_name == 'release' | |
| permissions: | |
| contents: read | |
| packages: write | |
| steps: | |
| - name: Checkout repository | |
| uses: actions/checkout@v3 | |
| - name: Setup regctl | |
| uses: regclient/actions/regctl-installer@main | |
| with: | |
| release: ${{ env.REGCTL_VERSION }} | |
| install-dir: ${{ runner.temp }}/bin | |
| - name: Log in to the registry | |
| # regctl-login action is currently broken ... | |
| # uses: regclient/actions/regctl-login@main | |
| # with: | |
| # registry: ${{ env.REGISTRY }} | |
| # username: ${{ github.actor }} | |
| # password: ${{ github.token }} | |
| run: | | |
| regctl registry login $REGISTRY --user ${{ github.actor }} --pass-stdin <<< ${{ github.token }} | |
| - name: Build artifact | |
| run: | | |
| cd crds | |
| repository=${{ github.repository }}/crds | |
| tar cvz * | regctl artifact put -m application/gzip $REGISTRY/${repository,,}:${{ github.event.release.tag_name }} |