Skip to content
Build and deploy aivia

Bump actions/setup-java from 4.5.0 to 4.6.0 #386

Sign in to view logs

Bump actions/setup-java from 4.5.0 to 4.6.0

Bump actions/setup-java from 4.5.0 to 4.6.0 #386

Workflow file for this run

.github/workflows/main.yaml at 0c27b4d
name: "Build and deploy aivia"
on:
push:
paths-ignore:
- "*.md"
concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true
jobs:
build:
name: "build"
runs-on: "ubuntu-latest"
permissions:
contents: read
id-token: write
steps:
- uses: "actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683" # ratchet:actions/checkout@v3
- uses: "gradle/actions/wrapper-validation@0bdd871935719febd78681f197cd39af5b6e16a6" # ratchet:gradle/actions/wrapper-validation@v3
- uses: "actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57" # ratchet:actions/cache@v3
with:
"path": "~/.gradle/caches"
"key": "${{ runner.os }}-gradle-${{ hashFiles('**/*.gradle.kts') }}"
"restore-keys": "${{ runner.os }}-gradle-"
- name: Install cosign
uses: sigstore/cosign-installer@dc72c7d5c4d10cd6bcb8cf6e3fd625a9e5e537da # ratchet:sigstore/cosign-installer@main
with:
cosign-release: 'v2.2.1'
- name: Verify distroless base image
run: cosign verify --certificate-identity "keyless@distroless.iam.gserviceaccount.com" --certificate-oidc-issuer "https://accounts.google.com" gcr.io/distroless/java21-debian12:nonroot
- uses: "actions/setup-java@7a6d8a8234af8eb26422e24e3006232cccaa061b" # ratchet:actions/setup-java@v3
with:
"java-version": "21"
"distribution": "temurin"
- name: "compile and run tests"
run: "./gradlew build"
- uses: nais/platform-build-push-sign@main # ratchet:exclude
id: build-push-sign
with:
name: aivia
google_service_account: gh-aivia
push: ${{ github.actor != 'dependabot[bot]' && github.ref == 'refs/heads/main' }}
workload_identity_provider: ${{ secrets.NAIS_IO_WORKLOAD_IDENTITY_PROVIDER }}
outputs:
image: "${{ steps.build-push-sign.outputs.tag }}"
deploy:
name: "deploy for testing"
if: github.ref == 'refs/heads/main'
runs-on: ubuntu-latest
needs: build
steps:
- uses: "actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683" # ratchet:actions/checkout@v3
- uses: nais/deploy/actions/deploy@v2 # ratchet:exclude
env:
APIKEY: ${{ secrets.NAIS_DEPLOY_APIKEY }}
CLUSTER: dev-gcp
RESOURCE: src/test/resources/aiven-topics.yaml,src/test/resources/configmap.yaml,nais/nais.yaml
VAR: image=${{ needs.build.outputs.image }}