Git-Mirrors/constellation
1
0
Fork 0
mirror of https://github.com/edgelesssys/constellation.git synced 2024-10-01 01:36:09 -04:00
Code Issues Packages Projects Releases Wiki Activity

debug: test issue create action

Browse Source 
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
This commit is contained in:
Paul Meyer 2023-11-15 18:16:08 +01:00
parent acb972478f
commit cc7ecf4728
1 changed files with 18 additions and 180 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

198
.github/workflows/versionsapi.yml vendored
View File

@ -2,195 +2,33 @@ name: Versionsapi cli
on: on:
workflow_dispatch: workflow_dispatch:
inputs:
command:
description: Command to run
required: true
type: choice
options:
- latest
- list
- add
- remove
ref:
description: --ref flag
required: false
type: string
stream:
description: --stream flag
required: false
type: string
version:
description: --version flag
required: false
type: string
kind:
description: --kind flag
required: false
type: string
version_path:
description: --version-path flag
required: false
type: string
add_latest:
description: --latest flag
required: false
default: false
type: boolean
add_release:
description: --release flag
required: false
default: false
type: boolean
rm_all:
description: --all flag
required: false
default: false
type: boolean
dryrun:
description: --dryrun flag
required: false
default: false
type: boolean
workflow_call:
inputs:
command:
description: Command to run
required: true
type: string
ref:
description: --ref flag
required: false
type: string
stream:
description: --stream flag
required: false
type: string
version:
description: --version flag
required: false
type: string
kind:
description: --kind flag
required: false
type: string
version_path:
description: --version-path flag
required: false
type: string
add_latest:
description: --latest flag
required: false
type: boolean
add_release:
description: --release flag
required: false
type: boolean
rm_all:
description: --all flag
required: false
type: boolean
dryrun:
description: --dryrun flag
required: false
default: false
type: boolean
outputs:
output:
description: Output of the command
value: ${{ jobs.versionsapi.outputs.output }}
concurrency:
group: versionsapi
cancel-in-progress: false
jobs: jobs:
versionsapi: versionsapi:
runs-on: ubuntu-22.04 runs-on: ubuntu-22.04
permissions: permissions:
id-token: write issues: write
contents: read repository-projects: write
outputs:
output: ${{ steps.run.outputs.output }}
steps: steps:
- name: Check out repository - name: Check out repository
id: checkout id: checkout
uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
with: with:
ref: ${{ !github.event.pull_request.head.repo.fork && github.head_ref || '' }} ref: ${{ !github.event.pull_request.head.repo.fork && github.head_ref || '' }}
- uses: ./.github/actions/gh_create_issue
- name: Check required rights id: gh_create_issue
id: check-rights
shell: bash
run: |
case "${{ inputs.command }}" in
add)
echo "Write access to S3 bucket required."
echo "write=true" | tee -a "$GITHUB_OUTPUT"
echo "No authentication at cloud provider required."
echo "auth=false" | tee -a "$GITHUB_OUTPUT"
;;
remove)
echo "Write access to S3 bucket required."
echo "write=true" | tee -a "$GITHUB_OUTPUT"
echo "Authentication at cloud provider required."
echo "auth=true" | tee -a "$GITHUB_OUTPUT"
;;
latest | list)
echo "Only read access required."
echo "write=false" | tee -a "$GITHUB_OUTPUT"
echo "auth=false" | tee -a "$GITHUB_OUTPUT"
;;
*)
echo "Unknown command '${{ inputs.command }}'."
exit 1
;;
esac
- name: Login to AWS without write access
if: steps.check-rights.outputs.write == 'false'
uses: aws-actions/configure-aws-credentials@010d0da01d0b5a38af31e9c3470dbfdabdecca3a # v4.0.1
with: with:
role-to-assume: arn:aws:iam::795746500882:role/GithubConstellationVersionsAPIRead title: test
aws-region: eu-central-1 body: test
repo: issues
- name: Login to AWS with write access labels: test
if: steps.check-rights.outputs.write == 'true' && steps.check-rights.outputs.auth == 'false' assignee: katexochen
uses: aws-actions/configure-aws-credentials@010d0da01d0b5a38af31e9c3470dbfdabdecca3a # v4.0.1 project: Constellation bugs
with: fields: |
role-to-assume: arn:aws:iam::795746500882:role/GithubConstellationVersionsAPIWrite kubernetesVersion: v1.18.0
aws-region: eu-central-1 cloudProvider: azure
test: e2e
- name: Login to AWS with write and image remove access workflow: wf
if: steps.check-rights.outputs.write == 'true' && steps.check-rights.outputs.auth == 'true' refStream: main
uses: aws-actions/configure-aws-credentials@010d0da01d0b5a38af31e9c3470dbfdabdecca3a # v4.0.1 token: ${{ secrets.PROJECT_WRITE_TOKEN }}
with: - run: echo ${{ steps.gh_create_issue.outputs.issue-url }}
role-to-assume: arn:aws:iam::795746500882:role/GithubConstellationVersionsAPIRemove
aws-region: eu-central-1
- name: Login to Azure
if: steps.check-rights.outputs.auth == 'true'
uses: ./.github/actions/login_azure
with:
azure_credentials: ${{ secrets.AZURE_CREDENTIALS }}
- name: Login to GCP
if: steps.check-rights.outputs.auth == 'true'
uses: ./.github/actions/login_gcp
with:
service_account: "constellation-cos-builder@constellation-331613.iam.gserviceaccount.com"
- name: Execute versionsapi CLI
id: run
uses: ./.github/actions/versionsapi
with:
command: ${{ inputs.command }}
ref: ${{ inputs.ref }}
stream: ${{ inputs.stream }}
version: ${{ inputs.version }}
kind: ${{ inputs.kind }}
version_path: ${{ inputs.version_path }}
add_latest: ${{ inputs.add_latest }}
add_release: ${{ inputs.add_release }}
rm_all: ${{ inputs.rm_all }}
dryrun: ${{ inputs.dryrun }}