1223: Updating to bouncy castle version 1.77 #522
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Pull Request - Build and Deploy | |
| on: | |
| pull_request: | |
| branches: | |
| - master | |
| paths-ignore: | |
| - README.md | |
| env: | |
| HELM_DIRECTORY: _infra/helm/ | |
| SERVICE_NAME: securebanking-openbanking-uk-rcs | |
| PR_NUMBER: pr-${{ github.event.number }} | |
| jobs: | |
| check: | |
| runs-on: ubuntu-latest | |
| name: Check PR | |
| steps: | |
| - uses: actions/checkout@v3 | |
| - name: Template Helm | |
| run: | | |
| helm template $HELM_DIRECTORY/$SERVICE_NAME | |
| - name: Check Copyright | |
| run: mvn license:check | |
| build: | |
| runs-on: ubuntu-latest | |
| name: Build Image | |
| needs: check | |
| steps: | |
| - name: Checkout Code | |
| uses: actions/checkout@v3 | |
| - name: Get Version | |
| id: get_version | |
| run: | | |
| echo "VERSION=$( mvn help:evaluate -Dexpression=project.version -q -DforceStdout )" >> $GITHUB_ENV | |
| echo "MAVEN_SERVER_ID=maven.forgerock.org-community" >> $GITHUB_ENV | |
| - name: Set Up Snapshot Forgerock Maven Repository | |
| if: contains( env.VERSION, 'SNAPSHOT') | |
| run: | | |
| echo "MAVEN_SERVER_ID=maven.forgerock.org-community-snapshots" >> $GITHUB_ENV | |
| # set java and cache | |
| - name: Set Java and Maven Cache | |
| uses: actions/setup-java@v3 | |
| id: set_java_maven | |
| with: | |
| distribution: 'adopt' | |
| java-version: '14' | |
| architecture: x64 | |
| cache: 'maven' | |
| server-id: ${{ env.MAVEN_SERVER_ID }} # Value of the distributionManagement/repository/id field of the pom.xml | |
| server-username: FR_ARTIFACTORY_USER # env variable for username in deploy | |
| server-password: FR_ARTIFACTORY_USER_ENCRYPTED_PASSWORD # env variable for token in deploy | |
| - name: Auth GCP | |
| uses: google-github-actions/auth@v2 | |
| with: | |
| credentials_json: ${{ secrets.DEV_GAR_KEY }} | |
| - name: Set up Cloud SDK | |
| uses: google-github-actions/setup-gcloud@v1.1.1 | |
| - name: Test Changes | |
| run: | | |
| make verify | |
| - name: Deploy Artifact Package | |
| run: mvn -B deploy -DskipTests -DskipITs -DdockerCompose.skip -Ddockerfile.skip | |
| env: | |
| FR_ARTIFACTORY_USER: ${{ secrets.FR_ARTIFACTORY_USER }} | |
| FR_ARTIFACTORY_USER_ENCRYPTED_PASSWORD: ${{ secrets.FR_ARTIFACTORY_USER_ENCRYPTED_PASSWORD }} | |
| - name: Auth Docker | |
| run: | | |
| gcloud auth configure-docker europe-west4-docker.pkg.dev | |
| - name: Build Docker Image | |
| run: | | |
| make docker tag=${{ env.PR_NUMBER }} | |
| deploy: | |
| runs-on: ubuntu-latest | |
| name: Deploy | |
| needs: build | |
| steps: | |
| - name: Create Lowercase Github Username | |
| id: toLowerCase | |
| run: echo "GITHUB_USER=$(echo ${{github.actor}} | tr '[:upper:]' '[:lower:]')" >> ${GITHUB_ENV} | |
| - name: 'Update Environment' | |
| uses: codefresh-io/codefresh-pipeline-runner@master | |
| if: github.actor != 'dependabot[bot]' | |
| with: | |
| args: '-v TAG=${{ env.PR_NUMBER }} -v ARGO_VALUES_PREFIX=remoteConsentServer -v SERVICE_NAME=remote-consent-server -v ENVIRONMENT=${{ env.GITHUB_USER }} -v BRANCH=${{ github.head_ref }}' | |
| env: | |
| PIPELINE_NAME: 'ForgeCloud/sbat-infra/service-build' | |
| CF_API_KEY: ${{ secrets.CF_API_KEY }} | |
| TRIGGER_NAME: github-actions-trigger-rcs | |
| id: run-pipeline |