Merge pull request #1393 from WideChat/revert_ee_changes #1199
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Build and Test | |
on: | |
release: | |
types: [published] | |
pull_request: | |
branches: '**' | |
push: | |
branches: | |
- develop | |
concurrency: | |
group: ${{ github.workflow }}-${{ github.head_ref || github.run_id }} | |
cancel-in-progress: true | |
env: | |
CI: true | |
MONGO_URL: mongodb://localhost:27017/rocketchat?replicaSet=rs0&directConnection=true | |
MONGO_OPLOG_URL: mongodb://mongodb:27017/local?replicaSet=rs0&directConnection=true | |
TOOL_NODE_FLAGS: --max_old_space_size=8192 --optimize_for_size --gc-interval=100 | |
TURBO_TEAM: ${{ secrets.TURBO_TEAM }} | |
jobs: | |
release-versions: | |
runs-on: ubuntu-latest | |
outputs: | |
release: ${{ steps.by-tag.outputs.release }} | |
latest-release: ${{ steps.latest.outputs.latest-release }} | |
docker-tag: ${{ steps.docker.outputs.docker-tag }} | |
gh-docker-tag: ${{ steps.docker.outputs.gh-docker-tag }} | |
steps: | |
- id: by-tag | |
run: | | |
if echo "$GITHUB_REF_NAME" | grep -Eq '^[0-9]+\.[0-9]+\.[0-9]+$' ; then | |
RELEASE="latest" | |
elif echo "$GITHUB_REF_NAME" | grep -Eq '^[0-9]+\.[0-9]+\.[0-9]+-rc\.[0-9]+$' ; then | |
RELEASE="release-candidate" | |
fi | |
echo "RELEASE: ${RELEASE}" | |
echo "release=${RELEASE}" >> $GITHUB_OUTPUT | |
- id: latest | |
run: | | |
LATEST_RELEASE="$( | |
git -c 'versionsort.suffix=-' ls-remote -t --exit-code --refs --sort=-v:refname "https://github.com/$GITHUB_REPOSITORY" '*' | | |
awk -F/ '$NF !~ /rc|beta/ { print $NF; exit }' | |
)" | |
echo "LATEST_RELEASE: ${LATEST_RELEASE}" | |
echo "latest-release=${LATEST_RELEASE}" >> $GITHUB_OUTPUT | |
- id: docker | |
run: | | |
if [[ '${{ github.event_name }}' == 'pull_request' ]]; then | |
DOCKER_TAG="pr-${{ github.event.number }}" | |
else | |
DOCKER_TAG="gh-${{ github.run_id }}" | |
fi | |
echo "DOCKER_TAG: ${DOCKER_TAG}" | |
echo "gh-docker-tag=${DOCKER_TAG}" >> $GITHUB_OUTPUT | |
build: | |
runs-on: ubuntu-20.04 | |
steps: | |
- name: Github Info | |
run: | | |
echo "GITHUB_ACTION: $GITHUB_ACTION" | |
echo "GITHUB_ACTOR: $GITHUB_ACTOR" | |
echo "GITHUB_REF: $GITHUB_REF" | |
echo "GITHUB_HEAD_REF: $GITHUB_HEAD_REF" | |
echo "GITHUB_BASE_REF: $GITHUB_BASE_REF" | |
echo "github.event_name: ${{ github.event_name }}" | |
cat $GITHUB_EVENT_PATH | |
- name: Set Swap Space | |
uses: pierotofy/set-swap-space@master | |
with: | |
swap-size-gb: 4 | |
- uses: actions/checkout@v3 | |
- name: Use Node.js 14.19.3 | |
uses: actions/setup-node@v3 | |
with: | |
node-version: '14.19.3' | |
cache: 'yarn' | |
- name: Free disk space | |
run: | | |
sudo apt clean | |
docker rmi $(docker image ls -aq) | |
df -h | |
- name: Cache meteor local | |
uses: actions/cache@v2 | |
with: | |
path: ./apps/meteor/.meteor/local | |
key: meteor-local-cache-${{ runner.OS }}-${{ hashFiles('apps/meteor/.meteor/versions') }} | |
restore-keys: | | |
meteor-local-cache-${{ runner.os }}- | |
- name: Cache meteor | |
uses: actions/cache@v2 | |
with: | |
path: ~/.meteor | |
key: meteor-cache-${{ runner.OS }}-${{ hashFiles('apps/meteor/.meteor/release') }} | |
restore-keys: | | |
meteor-cache-${{ runner.os }}- | |
- name: Install Meteor | |
run: | | |
# Restore bin from cache | |
set +e | |
METEOR_SYMLINK_TARGET=$(readlink ~/.meteor/meteor) | |
METEOR_TOOL_DIRECTORY=$(dirname "$METEOR_SYMLINK_TARGET") | |
set -e | |
LAUNCHER=$HOME/.meteor/$METEOR_TOOL_DIRECTORY/scripts/admin/launch-meteor | |
if [ -e $LAUNCHER ] | |
then | |
echo "Cached Meteor bin found, restoring it" | |
sudo cp "$LAUNCHER" "/usr/local/bin/meteor" | |
else | |
echo "No cached Meteor bin found." | |
fi | |
# only install meteor if bin isn't found | |
command -v meteor >/dev/null 2>&1 || curl https://install.meteor.com | sed s/--progress-bar/-sL/g | /bin/sh | |
- name: Versions | |
run: | | |
npm --versions | |
yarn -v | |
node -v | |
meteor --version | |
meteor npm --versions | |
meteor node -v | |
git version | |
- name: yarn install | |
run: | | |
git config --global url."https://".insteadOf git:// | |
yarn | |
- name: TurboRepo local server | |
uses: felixmosh/turborepo-gh-artifacts@v1 | |
with: | |
repo-token: ${{ secrets.RC_TURBO_GH_TOKEN }} | |
server-token: ${{ secrets.TURBO_SERVER_TOKEN }} | |
- name: Lint | |
run: yarn lint --api="http://127.0.0.1:9080" --token="${{ secrets.TURBO_SERVER_TOKEN }}" --team='rc' | |
- name: Translation check | |
run: yarn turbo run translation-check --api="http://127.0.0.1:9080" --token="${{ secrets.TURBO_SERVER_TOKEN }}" --team='rc' | |
# - name: TS typecheck | |
# run: yarn turbo run typecheck --api="http://127.0.0.1:9080" --token="${{ secrets.TURBO_SERVER_TOKEN }}" --team='rc' | |
- name: Reset Meteor | |
if: startsWith(github.ref, 'refs/tags/') == 'true' || github.ref == 'refs/heads/develop' | |
run: | | |
cd ./apps/meteor | |
meteor reset | |
- name: Build Rocket.Chat From Pull Request | |
if: startsWith(github.ref, 'refs/pull/') == true | |
env: | |
METEOR_PROFILE: 1000 | |
run: yarn build:ci --api="http://127.0.0.1:9080" -- --debug --directory dist | |
- name: Build Rocket.Chat | |
if: startsWith(github.ref, 'refs/pull/') != true | |
run: yarn build:ci --api="http://127.0.0.1:9080" -- --directory dist | |
- name: Prepare build | |
run: | | |
cd apps/meteor/dist | |
tar czf /tmp/Rocket.Chat.tar.gz bundle | |
- name: Store build | |
uses: actions/upload-artifact@v2 | |
with: | |
name: build | |
path: /tmp/Rocket.Chat.tar.gz | |
build-docker-preview: | |
runs-on: ubuntu-20.04 | |
needs: [build, release-versions] | |
if: github.event_name == 'DEACTIVATED' | |
# if: github.event_name == 'release' || github.ref == 'refs/heads/develop' | |
steps: | |
- uses: actions/checkout@v3 | |
- name: Use Node.js ${{ matrix.node-version }} | |
uses: actions/setup-node@v3 | |
with: | |
node-version: ${{ matrix.node-version }} | |
cache: 'yarn' | |
- name: Restore build | |
uses: actions/download-artifact@v2 | |
with: | |
name: build | |
path: /tmp/build | |
- name: Unpack build | |
run: | | |
cd /tmp/build | |
tar xzf Rocket.Chat.tar.gz | |
rm Rocket.Chat.tar.gz | |
- name: Build Docker image | |
id: build-docker-image-preview | |
uses: ./.github/actions/build-docker-image | |
with: | |
root-dir: /tmp/build | |
docker-tag: ${{ needs.release-versions.outputs.gh-docker-tag }} | |
release: preview | |
username: ${{ secrets.CR_USER }} | |
password: ${{ secrets.CR_PAT }} | |
test: | |
runs-on: ubuntu-20.04 | |
needs: [build, release-versions] | |
strategy: | |
matrix: | |
node-version: ['14.19.3'] | |
mongodb-version: ['4.2', '4.4', '5.0'] | |
steps: | |
- name: Launch MongoDB | |
uses: supercharge/mongodb-github-action@1.7.0 | |
with: | |
mongodb-version: ${{ matrix.mongodb-version }} | |
mongodb-replica-set: rs0 | |
- uses: actions/checkout@v3 | |
- name: Use Node.js ${{ matrix.node-version }} | |
uses: actions/setup-node@v3 | |
with: | |
node-version: ${{ matrix.node-version }} | |
cache: 'yarn' | |
- name: yarn install | |
run: | | |
git config --global url."https://".insteadOf git:// | |
yarn | |
- name: TurboRepo local server | |
uses: felixmosh/turborepo-gh-artifacts@v1 | |
with: | |
repo-token: ${{ secrets.RC_TURBO_GH_TOKEN }} | |
server-token: ${{ secrets.TURBO_SERVER_TOKEN }} | |
- name: Unit Test | |
run: yarn testunit --api="http://127.0.0.1:9080" --token="${{ secrets.TURBO_SERVER_TOKEN }}" --team='rc' | |
- name: Restore build | |
uses: actions/download-artifact@v2 | |
with: | |
name: build | |
path: /tmp/build | |
- name: Unpack build | |
run: | | |
cd /tmp/build | |
tar xzf Rocket.Chat.tar.gz | |
rm Rocket.Chat.tar.gz | |
- name: Start containers | |
env: | |
MONGO_URL: 'mongodb://host.docker.internal:27017/rocketchat?replicaSet=rs0&directConnection=true' | |
MONGO_OPLOG_URL: 'mongodb://mongodb:27017/local?replicaSet=rs0&directConnection=true' | |
run: | | |
export LOWERCASE_REPOSITORY=$(echo "${{ github.repository_owner }}" | tr "[:upper:]" "[:lower:]") | |
# test alpine image on mongo 5.0 (no special reason to be mongo 5.0 but we need to test alpine at least once) | |
if [[ '${{ matrix.mongodb-version }}' = '5.0' ]]; then | |
export RC_DOCKERFILE="${{ github.workspace }}/apps/meteor/.docker/Dockerfile.alpine" | |
export RC_DOCKER_TAG="${{ needs.release-versions.outputs.gh-docker-tag }}.alpine" | |
else | |
export RC_DOCKERFILE="${{ github.workspace }}/apps/meteor/.docker/Dockerfile" | |
export RC_DOCKER_TAG="${{ needs.release-versions.outputs.gh-docker-tag }}.official" | |
fi; | |
docker compose -f docker-compose-ci.yml up -d --build rocketchat | |
sleep 10 | |
until echo "$(docker compose -f docker-compose-ci.yml logs rocketchat)" | grep -q "SERVER RUNNING"; do | |
echo "Waiting Rocket.Chat to start up" | |
((c++)) && ((c==10)) && docker compose -f docker-compose-ci.yml logs rocketchat && exit 1 | |
sleep 10 | |
done | |
- name: Login to GitHub Container Registry | |
if: github.event.pull_request.head.repo.full_name == github.repository || github.event_name == 'release' || github.ref == 'refs/heads/develop' | |
uses: docker/login-action@v2 | |
with: | |
registry: ghcr.io | |
username: ${{ secrets.CR_USER }} | |
password: ${{ secrets.CR_PAT }} | |
- name: Publish Docker images to GitHub Container Registry | |
if: github.event.pull_request.head.repo.full_name == github.repository || github.event_name == 'release' || github.ref == 'refs/heads/develop' | |
run: | | |
export LOWERCASE_REPOSITORY=$(echo "${{ github.repository_owner }}" | tr "[:upper:]" "[:lower:]") | |
# test alpine image on mongo 5.0 (no special reason to be mongo 5.0 but we need to test alpine at least once) | |
if [[ '${{ matrix.mongodb-version }}' = '5.0' ]]; then | |
export RC_DOCKER_TAG="${{ needs.release-versions.outputs.gh-docker-tag }}.alpine" | |
else | |
export RC_DOCKER_TAG="${{ needs.release-versions.outputs.gh-docker-tag }}.official" | |
fi; | |
docker compose -f docker-compose-ci.yml push rocketchat | |
if [[ '${{ matrix.mongodb-version }}' = '4.4' ]]; then | |
IMAGE_NAME_BASE="ghcr.io/${LOWERCASE_REPOSITORY}/rocket.chat:${{ needs.release-versions.outputs.gh-docker-tag }}" | |
echo "Push Docker image: ${IMAGE_NAME_BASE}" | |
docker tag ${IMAGE_NAME_BASE}.official $IMAGE_NAME_BASE | |
docker push $IMAGE_NAME_BASE | |
fi; | |
- name: E2E Test API | |
run: | | |
docker ps | |
docker compose -f docker-compose-ci.yml logs rocketchat --tail=50 | |
cd ./apps/meteor | |
for i in $(seq 1 5); do | |
npm run testapi && s=0 && break || s=$? | |
docker compose -f ../../docker-compose-ci.yml logs rocketchat --tail=100 | |
docker compose -f ../../docker-compose-ci.yml stop rocketchat | |
docker exec mongodb mongo rocketchat --eval 'db.dropDatabase()' | |
NOW=$(date "+%Y-%m-%dT%H:%M:%SZ") | |
docker compose -f ../../docker-compose-ci.yml start rocketchat | |
until echo "$(docker compose -f ../../docker-compose-ci.yml logs rocketchat --since $NOW)" | grep -q "SERVER RUNNING"; do | |
echo "Waiting Rocket.Chat to start up" | |
((c++)) && ((c==10)) && exit 1 | |
sleep 10 | |
done; | |
done; | |
exit $s | |
- name: Cache Playwright binaries | |
uses: actions/cache@v3 | |
id: cache-playwright | |
with: | |
path: | | |
~/.cache/ms-playwright | |
# This is the version of Playwright that we are using, if you are willing to upgrade, you should update this. | |
key: playwright-1.23.1 | |
- name: Install Playwright | |
if: steps.cache-playwright.outputs.cache-hit != 'true' | |
run: | | |
cd ./apps/meteor | |
npx playwright install --with-deps | |
- name: E2E Test UI | |
run: | | |
docker ps | |
docker compose -f docker-compose-ci.yml logs rocketchat --tail=50 | |
docker exec mongodb mongo rocketchat --eval 'db.dropDatabase()' | |
NOW=$(date "+%Y-%m-%dT%H:%M:%SZ") | |
docker compose -f docker-compose-ci.yml restart rocketchat | |
until echo "$(docker compose -f docker-compose-ci.yml logs rocketchat --since $NOW)" | grep -q "SERVER RUNNING"; do | |
echo "Waiting Rocket.Chat to start up" | |
((c++)) && ((c==10)) && exit 1 | |
sleep 10 | |
done | |
cd ./apps/meteor | |
yarn test:e2e | |
- name: Store playwright test trace | |
uses: actions/upload-artifact@v2 | |
if: always() | |
with: | |
name: playwright-test-trace | |
path: ./apps/meteor/tests/e2e/.playwright* | |
test-ee: | |
runs-on: ubuntu-20.04 | |
needs: [build, release-versions] | |
strategy: | |
matrix: | |
node-version: ['14.19.3'] | |
mongodb-version-ee: ['4.4'] | |
steps: | |
- name: Launch MongoDB | |
uses: supercharge/mongodb-github-action@1.7.0 | |
with: | |
mongodb-version: ${{ matrix.mongodb-version-ee }} | |
mongodb-replica-set: rs0 | |
- uses: actions/checkout@v3 | |
- name: Use Node.js ${{ matrix.node-version }} | |
uses: actions/setup-node@v3 | |
with: | |
node-version: ${{ matrix.node-version }} | |
cache: 'yarn' | |
- name: TurboRepo local server | |
uses: felixmosh/turborepo-gh-artifacts@v1 | |
with: | |
repo-token: ${{ secrets.RC_TURBO_GH_TOKEN }} | |
server-token: ${{ secrets.TURBO_SERVER_TOKEN }} | |
- name: yarn install | |
run: | | |
git config --global url."https://".insteadOf git:// | |
yarn | |
- name: Unit Test | |
run: yarn testunit --api="http://127.0.0.1:9080" --token="${{ secrets.TURBO_SERVER_TOKEN }}" --team='rc' | |
- name: Restore build | |
uses: actions/download-artifact@v2 | |
with: | |
name: build | |
path: /tmp/build | |
- name: Unpack build | |
run: | | |
cd /tmp/build | |
tar xzf Rocket.Chat.tar.gz | |
rm Rocket.Chat.tar.gz | |
- name: Start containers | |
env: | |
MONGO_URL: 'mongodb://host.docker.internal:27017/rocketchat?replicaSet=rs0&directConnection=true' | |
RC_DOCKERFILE: '${{ github.workspace }}/apps/meteor/.docker/Dockerfile' | |
RC_DOCKER_TAG: '${{ needs.release-versions.outputs.gh-docker-tag }}.official' | |
DOCKER_TAG: ${{ needs.release-versions.outputs.gh-docker-tag }} | |
TRANSPORTER: nats://nats:4222 | |
ENTERPRISE_LICENSE: WMa5i+/t/LZbYOj8u3XUkivRhWBtWO6ycUjaZoVAw2DxMfdyBIAa2gMMI4x7Z2BrTZIZhFEImfOxcXcgD0QbXHGBJaMI+eYG+eofnVWi2VA7RWbpvWTULgPFgyJ4UEFeCOzVjcBLTQbmMSam3u0RlekWJkfAO0KnmLtsaEYNNA2rz1U+CLI/CdNGfdqrBu5PZZbGkH0KEzyIZMaykOjzvX+C6vd7fRxh23HecwhkBbqE8eQsCBt2ad0qC4MoVXsDaSOmSzGW+aXjuXt/9zjvrLlsmWQTSlkrEHdNkdywm0UkGxqz3+CP99n0WggUBioUiChjMuNMoceWvDvmxYP9Ml2NpYU7SnfhjmMFyXOah8ofzv8w509Y7XODvQBz+iB4Co9YnF3vT96HDDQyAV5t4jATE+0t37EAXmwjTi3qqyP7DLGK/revl+mlcwJ5kS4zZBsm1E4519FkXQOZSyWRnPdjqvh4mCLqoispZ49wKvklDvjPxCSP9us6cVXLDg7NTJr/4pfxLPOkvv7qCgugDvlDx17bXpQFPSDxmpw66FLzvb5Id0dkWjOzrRYSXb0bFWoUQjtHFzmcpFkyVhOKrQ9zA9+Zm7vXmU9Y2l2dK79EloOuHMSYAqsPEag8GMW6vI/cT4iIjHGGDePKnD0HblvTEKzql11cfT/abf2IiaY= | |
run: | | |
export LOWERCASE_REPOSITORY=$(echo "${{ github.repository_owner }}" | tr "[:upper:]" "[:lower:]") | |
docker compose -f docker-compose-ci.yml up -d --build | |
sleep 10 | |
until echo "$(docker compose -f docker-compose-ci.yml logs ddp-streamer-service)" | grep -q "NetworkBroker started successfully"; do | |
echo "Waiting 'ddp-streamer' to start up" | |
((c++)) && ((c==10)) && docker compose -f docker-compose-ci.yml logs ddp-streamer-service && exit 1 | |
sleep 10 | |
done | |
until echo "$(docker compose -f docker-compose-ci.yml logs rocketchat)" | grep -q "SERVER RUNNING"; do | |
echo "Waiting Rocket.Chat to start up" | |
((c++)) && ((c==10)) && docker compose -f docker-compose-ci.yml logs rocketchat && exit 1 | |
sleep 10 | |
done | |
- name: Login to GitHub Container Registry | |
if: github.event.pull_request.head.repo.full_name == github.repository || github.event_name == 'release' || github.ref == 'refs/heads/develop' | |
uses: docker/login-action@v2 | |
with: | |
registry: ghcr.io | |
username: ${{ secrets.CR_USER }} | |
password: ${{ secrets.CR_PAT }} | |
- name: Publish Docker images to GitHub Container Registry | |
if: github.event.pull_request.head.repo.full_name == github.repository || github.event_name == 'release' || github.ref == 'refs/heads/develop' | |
env: | |
DOCKER_TAG: ${{ needs.release-versions.outputs.gh-docker-tag }} | |
run: | | |
export LOWERCASE_REPOSITORY=$(echo "${{ github.repository_owner }}" | tr "[:upper:]" "[:lower:]") | |
docker compose -f docker-compose-ci.yml push \ | |
authorization-service \ | |
account-service \ | |
ddp-streamer-service \ | |
presence-service \ | |
stream-hub-service | |
- name: E2E Test API | |
run: | | |
docker ps | |
docker compose -f docker-compose-ci.yml logs --tail=50 | |
cd ./apps/meteor | |
for i in $(seq 1 5); do | |
IS_EE=true npm run testapi && s=0 && break || s=$?; | |
docker compose -f ../../docker-compose-ci.yml logs --tail=100 | |
docker compose -f ../../docker-compose-ci.yml stop | |
docker exec mongodb mongo rocketchat --eval 'db.dropDatabase()' | |
NOW=$(date "+%Y-%m-%dT%H:%M:%SZ") | |
docker compose -f ../../docker-compose-ci.yml start | |
until echo "$(docker compose -f ../../docker-compose-ci.yml logs rocketchat --since $NOW)" | grep -q "SERVER RUNNING"; do | |
echo "Waiting Rocket.Chat to start up" | |
((c++)) && ((c==10)) && exit 1 | |
sleep 10 | |
done; | |
done; | |
exit $s | |
- name: Cache Playwright binaries | |
uses: actions/cache@v3 | |
id: cache-playwright | |
with: | |
path: | | |
~/.cache/ms-playwright | |
# This is the version of Playwright that we are using, if you are willing to upgrade, you should update this. | |
key: playwright-1.23.1 | |
- name: Install Playwright | |
run: | | |
cd ./apps/meteor | |
npx playwright install --with-deps | |
- name: E2E Test UI | |
run: | | |
docker ps | |
docker compose -f docker-compose-ci.yml logs rocketchat --tail=50 | |
docker exec mongodb mongo rocketchat --eval 'db.dropDatabase()' | |
NOW=$(date "+%Y-%m-%dT%H:%M:%SZ") | |
docker compose -f docker-compose-ci.yml restart | |
until echo "$(docker compose -f docker-compose-ci.yml logs rocketchat --since $NOW)" | grep -q "SERVER RUNNING"; do | |
echo "Waiting Rocket.Chat to start up" | |
((c++)) && ((c==10)) && exit 1 | |
sleep 10 | |
done | |
cd ./apps/meteor | |
E2E_COVERAGE=true IS_EE=true yarn test:e2e | |
- name: Store playwright test trace | |
uses: actions/upload-artifact@v2 | |
if: always() | |
with: | |
name: e2e-ee-testtrace | |
path: ./apps/meteor/tests/e2e/.playwright* | |
- name: Extract e2e:ee:coverage | |
run: | | |
cd ./apps/meteor | |
yarn test:e2e:nyc | |
- uses: codecov/codecov-action@v3 | |
with: | |
directory: ./apps/meteor | |
flags: e2e | |
verbose: true | |
- name: Store e2e-ee-coverage | |
uses: actions/upload-artifact@v2 | |
with: | |
name: e2e-ee-coverage | |
path: ./apps/meteor/coverage* | |
deploy: | |
runs-on: ubuntu-20.04 | |
if: github.event_name == 'DEACTIVATED' | |
# if: github.event_name == 'release' || github.ref == 'refs/heads/develop' | |
needs: [test, release-versions] | |
steps: | |
- uses: actions/checkout@v3 | |
- name: Restore build | |
uses: actions/download-artifact@v2 | |
with: | |
name: build | |
path: /tmp/build | |
- name: Publish assets | |
env: | |
AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }} | |
AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }} | |
AWS_DEFAULT_REGION: 'us-east-1' | |
GPG_PASSWORD: ${{ secrets.GPG_PASSWORD }} | |
REDHAT_REGISTRY_PID: ${{ secrets.REDHAT_REGISTRY_PID }} | |
REDHAT_REGISTRY_KEY: ${{ secrets.REDHAT_REGISTRY_KEY }} | |
UPDATE_TOKEN: ${{ secrets.UPDATE_TOKEN }} | |
run: | | |
REPO_VERSION=$(node -p "require('./package.json').version") | |
if [[ '${{ github.event_name }}' = 'release' ]]; then | |
GIT_TAG="${GITHUB_REF#*tags/}" | |
GIT_BRANCH="" | |
ARTIFACT_NAME="${REPO_VERSION}" | |
RC_VERSION=$GIT_TAG | |
if [[ '${{ needs.release-versions.outputs.release }}' = 'release-candidate' ]]; then | |
SNAP_CHANNEL=candidate | |
RC_RELEASE=candidate | |
elif [[ '${{ needs.release-versions.outputs.release }}' = 'latest' ]]; then | |
SNAP_CHANNEL=stable | |
RC_RELEASE=stable | |
fi | |
else | |
GIT_TAG="" | |
GIT_BRANCH="${GITHUB_REF#*heads/}" | |
ARTIFACT_NAME="${REPO_VERSION}.$GITHUB_SHA" | |
RC_VERSION="${REPO_VERSION}" | |
SNAP_CHANNEL=edge | |
RC_RELEASE=develop | |
fi; | |
ROCKET_DEPLOY_DIR="/tmp/deploy" | |
FILENAME="$ROCKET_DEPLOY_DIR/rocket.chat-$ARTIFACT_NAME.tgz"; | |
aws s3 cp s3://rocketchat/sign.key.gpg .github/sign.key.gpg | |
mkdir -p $ROCKET_DEPLOY_DIR | |
cp .github/sign.key.gpg /tmp | |
gpg --yes --batch --passphrase=$GPG_PASSWORD /tmp/sign.key.gpg | |
gpg --allow-secret-key-import --import /tmp/sign.key | |
rm /tmp/sign.key | |
ln -s /tmp/build/Rocket.Chat.tar.gz "$FILENAME" | |
gpg --armor --detach-sign "$FILENAME" | |
aws s3 cp $ROCKET_DEPLOY_DIR/ s3://download.rocket.chat/build/ --recursive | |
curl -H "Content-Type: application/json" -H "X-Update-Token: $UPDATE_TOKEN" -d \ | |
"{\"nodeVersion\": \"14.19.3\", \"compatibleMongoVersions\": [\"4.2\", \"4.4\", \"5.0\"], \"commit\": \"$GITHUB_SHA\", \"tag\": \"$RC_VERSION\", \"branch\": \"$GIT_BRANCH\", \"artifactName\": \"$ARTIFACT_NAME\", \"releaseType\": \"$RC_RELEASE\"}" \ | |
https://releases.rocket.chat/update | |
# Makes build fail if the release isn't there | |
curl --fail https://releases.rocket.chat/$RC_VERSION/info | |
if [[ $GIT_TAG ]]; then | |
curl -X POST \ | |
https://connect.redhat.com/api/v2/projects/$REDHAT_REGISTRY_PID/build \ | |
-H "Authorization: Bearer $REDHAT_REGISTRY_KEY" \ | |
-H 'Cache-Control: no-cache' \ | |
-H 'Content-Type: application/json' \ | |
-d '{"tag":"'$GIT_TAG'"}' | |
fi | |
docker-image-publish: | |
runs-on: ubuntu-20.04 | |
needs: [deploy, build-docker-preview, release-versions] | |
strategy: | |
matrix: | |
# this is currently a mix of variants and different images | |
release: ['official', 'preview', 'alpine'] | |
env: | |
IMAGE_NAME: 'rocketchat/rocket.chat' | |
steps: | |
- name: Login to DockerHub | |
uses: docker/login-action@v2 | |
with: | |
username: ${{ secrets.DOCKER_USER }} | |
password: ${{ secrets.DOCKER_PASS }} | |
- name: Login to GitHub Container Registry | |
uses: docker/login-action@v2 | |
with: | |
registry: ghcr.io | |
username: ${{ secrets.CR_USER }} | |
password: ${{ secrets.CR_PAT }} | |
- name: Get Docker image name | |
id: gh-docker | |
run: | | |
LOWERCASE_REPOSITORY=$(echo "${{ github.repository_owner }}" | tr "[:upper:]" "[:lower:]") | |
GH_IMAGE_NAME="ghcr.io/${LOWERCASE_REPOSITORY}/rocket.chat:${{ needs.release-versions.outputs.gh-docker-tag }}.${{ matrix.release }}" | |
echo "GH_IMAGE_NAME: $GH_IMAGE_NAME" | |
echo "gh-image-name=${GH_IMAGE_NAME}" >> $GITHUB_OUTPUT | |
- name: Pull Docker image | |
run: docker pull ${{ steps.gh-docker.outputs.gh-image-name }} | |
- name: Publish Docker image | |
run: | | |
if [[ '${{ matrix.release }}' = 'preview' ]]; then | |
IMAGE_NAME="${IMAGE_NAME}.preview" | |
fi; | |
# 'develop' or 'tag' | |
DOCKER_TAG=$GITHUB_REF_NAME | |
# append the variant name to docker tag | |
if [[ '${{ matrix.release }}' = 'alpine' ]]; then | |
DOCKER_TAG="${DOCKER_TAG}-${{ matrix.release }}" | |
fi; | |
echo "IMAGE_NAME: $IMAGE_NAME" | |
echo "DOCKER_TAG: $DOCKER_TAG" | |
# tag and push the specific tag version | |
docker tag ${{ steps.gh-docker.outputs.gh-image-name }} $IMAGE_NAME:$DOCKER_TAG | |
docker push $IMAGE_NAME:$DOCKER_TAG | |
if [[ $GITHUB_REF == refs/tags/* ]]; then | |
RELEASE="${{ needs.release-versions.outputs.release }}" | |
if [[ '${{ matrix.release }}' = 'alpine' ]]; then | |
RELEASE="${RELEASE}-${{ matrix.release }}" | |
fi; | |
echo "RELEASE: $RELEASE" | |
if [[ $RELEASE == 'latest' ]]; then | |
if [[ '${{ needs.release-versions.outputs.latest-release }}' == $GITHUB_REF_NAME ]]; then | |
docker tag ${{ steps.gh-docker.outputs.gh-image-name }} $IMAGE_NAME:$RELEASE | |
docker push $IMAGE_NAME:$RELEASE | |
fi | |
else | |
docker tag ${{ steps.gh-docker.outputs.gh-image-name }} $IMAGE_NAME:$RELEASE | |
docker push $IMAGE_NAME:$RELEASE | |
fi | |
fi | |
services-docker-image-publish: | |
runs-on: ubuntu-20.04 | |
needs: [deploy, release-versions] | |
strategy: | |
matrix: | |
service: ['account', 'authorization', 'ddp-streamer', 'presence', 'stream-hub'] | |
steps: | |
- name: Login to DockerHub | |
uses: docker/login-action@v2 | |
with: | |
username: ${{ secrets.DOCKER_USER }} | |
password: ${{ secrets.DOCKER_PASS }} | |
- name: Login to GitHub Container Registry | |
uses: docker/login-action@v2 | |
with: | |
registry: ghcr.io | |
username: ${{ secrets.CR_USER }} | |
password: ${{ secrets.CR_PAT }} | |
- name: Get Docker image name | |
id: gh-docker | |
run: | | |
LOWERCASE_REPOSITORY=$(echo "${{ github.repository_owner }}" | tr "[:upper:]" "[:lower:]") | |
GH_IMAGE_NAME="ghcr.io/${LOWERCASE_REPOSITORY}/${{ matrix.service }}-service:${{ needs.release-versions.outputs.gh-docker-tag }}" | |
echo "GH_IMAGE_NAME: $GH_IMAGE_NAME" | |
echo "gh-image-name=${GH_IMAGE_NAME}" >> $GITHUB_OUTPUT | |
- name: Pull Docker image | |
run: docker pull ${{ steps.gh-docker.outputs.gh-image-name }} | |
- name: Publish Docker images | |
run: | | |
DH_IMAGE_NAME="rocketchat/${{ matrix.service }}-service" | |
# 'develop' or 'tag' | |
DOCKER_TAG=$GITHUB_REF_NAME | |
echo "DH_IMAGE_NAME: $DH_IMAGE_NAME" | |
echo "DOCKER_TAG: $DOCKER_TAG" | |
# tag and push the specific tag version | |
docker tag ${{ steps.gh-docker.outputs.gh-image-name }} $DH_IMAGE_NAME:$DOCKER_TAG | |
docker push $DH_IMAGE_NAME:$DOCKER_TAG | |
if [[ $GITHUB_REF == refs/tags/* ]]; then | |
RELEASE="${{ needs.release-versions.outputs.release }}" | |
echo "RELEASE: $RELEASE" | |
if [[ $RELEASE == 'latest' ]]; then | |
if [[ '${{ needs.release-versions.outputs.latest-release }}' == $GITHUB_REF_NAME ]]; then | |
docker tag ${{ steps.gh-docker.outputs.gh-image-name }} $DH_IMAGE_NAME:$RELEASE | |
docker push $DH_IMAGE_NAME:$RELEASE | |
fi | |
else | |
docker tag ${{ steps.gh-docker.outputs.gh-image-name }} $DH_IMAGE_NAME:$RELEASE | |
docker push $DH_IMAGE_NAME:$RELEASE | |
fi | |
fi | |
acc-ecr-push: | |
runs-on: ubuntu-latest | |
if: ${{ github.ref == 'refs/heads/develop' && github.event_name == 'push' }} | |
needs: test | |
steps: | |
- uses: actions/checkout@v2 | |
- name: Use Node.js 14.18.3 | |
uses: actions/setup-node@v2 | |
with: | |
node-version: "14.18.3" | |
- name: Parse for branch | |
run: | | |
git_hash=$(git rev-parse --short "$GITHUB_SHA") | |
rocket_version=$(node -pe "require('./package.json').version") | |
echo "PR_TAG=v$rocket_version.$git_hash" >> $GITHUB_ENV | |
- name: Restore build | |
uses: actions/download-artifact@v1 | |
with: | |
name: build | |
path: /tmp/build | |
- name: Unpack build | |
run: | | |
cd /tmp/build | |
tar xzf Rocket.Chat.tar.gz | |
rm Rocket.Chat.tar.gz | |
cp "${GITHUB_WORKSPACE}/apps/meteor/.docker/Dockerfile" . | |
## Push to ACC:rocketchat | |
- name: Configure AWS credentials in ACC | |
uses: aws-actions/configure-aws-credentials@v1 | |
with: | |
aws-access-key-id: ${{ secrets.ACC_ACCESS_KEY }} | |
aws-secret-access-key: ${{ secrets.ACC_SECRET_ACCESS_KEY }} | |
aws-region: us-east-1 | |
- name: Login to Amazon ECR | |
id: login-ecr | |
uses: aws-actions/amazon-ecr-login@v1 | |
- name: Build, tag, and push image to Amazon ECR in ACC | |
id: build-image-acc | |
env: | |
ECR_REGISTRY: ${{ steps.login-ecr.outputs.registry }} | |
ECR_REPOSITORY: rocketchat | |
IMAGE_TAG: ${{ env.PR_TAG }} | |
run: | | |
# Build a docker container and push it to ECR | |
cd /tmp/build | |
docker build -t $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG . | |
docker push $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG | |
echo "name=ACC_IMAGE::$ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG" >> $GITHUB_OUTPUT | |