From a9b44343686a6687d39d3fd0451ac3459227d462 Mon Sep 17 00:00:00 2001 From: Tim Riffer Date: Fri, 27 Sep 2024 19:03:20 +0200 Subject: [PATCH] Fix main integration test on schedule (#1319) * On schedule triffer of main integration test, get the SHA for the image from the last successful run of main integration job * Fix requesting sha * Simplify js * Add github-script action to the allow list --- .github/workflows/main-integration.yaml | 64 ++++++++++++++++++----- .github/workflows/verify-commit-pins.yaml | 3 +- 2 files changed, 52 insertions(+), 15 deletions(-) diff --git a/.github/workflows/main-integration.yaml b/.github/workflows/main-integration.yaml index 2bed808f2..2ff8feceb 100644 --- a/.github/workflows/main-integration.yaml +++ b/.github/workflows/main-integration.yaml @@ -22,15 +22,51 @@ on: jobs: build: - name: build api-gateway image - uses: kyma-project/test-infra/.github/workflows/image-builder.yml@main - with: - name: api-gateway-manager - dockerfile: Dockerfile - context: . - build-args: | - VERSION=${{ github.sha }} - tags: "${{ github.sha }}" + runs-on: ubuntu-latest + outputs: + sha: ${{ steps.get-sha.outputs.sha }} + steps: + - name: build api-gateway image + uses: kyma-project/test-infra/.github/workflows/image-builder.yml@main + if: ${{ github.event_name != 'schedule' }} + with: + name: api-gateway-manager + dockerfile: Dockerfile + context: . + build-args: | + VERSION=${{ github.sha }} + tags: "${{ github.sha }}" + - name: Get SHA from latest run of main integration triggered by push + id: get-latest-push-sha + uses: actions/github-script@v6 + if: ${{ github.event_name == 'schedule' }} + with: + script: | + const { data } = await github.rest.actions.listWorkflowRuns({ + owner: context.repo.owner, + repo: context.repo.repo, + workflow_id: 'main-integration.yaml', + branch: 'main', + status: 'success', + per_page: 40 + }); + const pushRuns = data.workflow_runs.filter(run => run.event === 'push'); + + if (pushRuns.length === 0) { + throw new Error('No successful push runs found'); + } + + const latestRun = pushRuns[0]; + + core.setOutput('sha', latestRun.head_sha); + - name: Set output SHA + id: get-sha + run: | + if [ "${{ github.event_name }}" != "schedule" ]; then + echo "sha=${{ github.sha }}" >> $GITHUB_OUTPUT + else + echo "sha=${{ steps.get-latest-push-sha.outputs.sha }}" >> $GITHUB_OUTPUT + fi integration-tests: name: Integration tests @@ -42,7 +78,7 @@ jobs: fetch-depth: 0 - uses: ./.github/actions/integration-tests with: - manager_image: "europe-docker.pkg.dev/kyma-project/prod/api-gateway-manager:${{ github.sha }}" + manager_image: "europe-docker.pkg.dev/kyma-project/prod/api-gateway-manager:${{ needs.build.outputs.sha }}" client_id: ${{ secrets.CLIENT_ID }} client_secret: ${{ secrets.CLIENT_SECRET }} oidc_well_known_url: "${{ secrets.OIDC_ISSUER_URL }}/.well-known/openid-configuration" @@ -61,7 +97,7 @@ jobs: fetch-depth: 0 - uses: ./.github/actions/integration-tests with: - manager_image: "europe-docker.pkg.dev/kyma-project/prod/api-gateway-manager:${{ github.sha }}" + manager_image: "europe-docker.pkg.dev/kyma-project/prod/api-gateway-manager:${{ needs.build.outputs.sha }}" test_make_target: ${{ matrix.test_make_target }} upgrade-tests: @@ -74,7 +110,7 @@ jobs: fetch-depth: 0 - uses: ./.github/actions/upgrade-test with: - manager_image: "europe-docker.pkg.dev/kyma-project/prod/api-gateway-manager:${{ github.sha }}" + manager_image: "europe-docker.pkg.dev/kyma-project/prod/api-gateway-manager:${{ needs.build.outputs.sha }}" client_id: ${{ secrets.CLIENT_ID }} client_secret: ${{ secrets.CLIENT_SECRET }} oidc_well_known_url: "${{ secrets.OIDC_ISSUER_URL }}/.well-known/openid-configuration" @@ -91,7 +127,7 @@ jobs: fetch-depth: 0 - uses: ./.github/actions/integration-test-gardener with: - manager_image: "europe-docker.pkg.dev/kyma-project/prod/api-gateway-manager:${{ github.sha }}" + manager_image: "europe-docker.pkg.dev/kyma-project/prod/api-gateway-manager:${{ needs.build.outputs.sha }}" gardener_secret: ${{ secrets.GARDENER_TOKEN }} script: ./hack/ci/custom-domain-gardener-gcp.sh client_id: ${{ secrets.CLIENT_ID }} @@ -110,7 +146,7 @@ jobs: fetch-depth: 0 - uses: ./.github/actions/integration-test-gardener with: - manager_image: "europe-docker.pkg.dev/kyma-project/prod/api-gateway-manager:${{ github.sha }}" + manager_image: "europe-docker.pkg.dev/kyma-project/prod/api-gateway-manager:${{ needs.build.outputs.sha }}" gardener_secret: ${{ secrets.GARDENER_TOKEN }} script: ./hack/ci/custom-domain-gardener-aws.sh client_id: ${{ secrets.CLIENT_ID }} diff --git a/.github/workflows/verify-commit-pins.yaml b/.github/workflows/verify-commit-pins.yaml index 3b74ead25..c028a7e60 100644 --- a/.github/workflows/verify-commit-pins.yaml +++ b/.github/workflows/verify-commit-pins.yaml @@ -19,5 +19,6 @@ jobs: allowlist: | actions/checkout actions/setup-go + actions/github-script actions/upload-artifact - kyma-project/test-infra \ No newline at end of file + kyma-project/test-infra