constellation/.github/workflows/e2e-attestationconfigapi.yml

name: e2e test attestationconfig API

on:
  workflow_dispatch:
  push:
    branches:
      - main
      - "release/**"
    paths:
      - "internal/api/**"
      - ".github/workflows/e2e-attestationconfigapi.yml"
      - "go.mod"
  pull_request:
    paths:
      - "internal/api/**"
      - ".github/workflows/e2e-attestationconfigapi.yml"
      - "go.mod"

jobs:
  e2e-api:
    strategy:
      fail-fast: false
      max-parallel: 1
      matrix:
        csp: ["azure", "aws", "gcp"]
    runs-on: ubuntu-22.04
    permissions:
      id-token: write
      contents: read
      packages: write
    steps:
      - name: Checkout
        id: checkout
        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
        with:
          # Don't trigger in forks, use head on pull requests, use default otherwise.
          ref: ${{ !github.event.pull_request.head.repo.fork && github.head_ref || github.event.pull_request.head.sha || '' }}

      - name: Run Attestationconfig API E2E
        uses: ./.github/actions/e2e_attestationconfigapi
        with:
          buildBuddyApiKey: ${{ secrets.BUILDBUDDY_ORG_API_KEY }}
          cosignPrivateKey: ${{ secrets.COSIGN_DEV_PRIVATE_KEY }}
          cosignPassword: ${{ secrets.COSIGN_DEV_PASSWORD }}
          csp: ${{ matrix.csp }}