feat: appdata experimental v2 #299
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: API containers | |
on: | |
workflow_dispatch: | |
pull_request: | |
branches: | |
- main | |
paths: | |
- "api/source/**" | |
- "test/api/**" | |
- "Dockerfile" | |
- ".github/workflows/api-container-tests.yml" | |
jobs: | |
fetch-mysql-versions: | |
runs-on: ubuntu-latest | |
outputs: | |
MYSQL_VERSIONS: ${{ steps.fetch-versions.outputs.version_array }} | |
steps: | |
- name: Fetch MySQL Versions | |
id: fetch-versions | |
run: | | |
VERSIONS=$(echo $(curl -s "https://registry.hub.docker.com/v2/repositories/library/mysql/tags/?page_size=100" | jq -r '.results[].name | select(test("^8\\.0\\.\\d+$"))' | sort -V | tail -n3 | cat <(echo "8.0.21") - | jq -Rnc '[inputs]')) | |
echo "version_array=$VERSIONS" >> $GITHUB_OUTPUT | |
test_api: | |
needs: fetch-mysql-versions | |
name: ${{ matrix.container.name }} and MySQL ${{ matrix.mysql_version }} | |
runs-on: ubuntu-latest | |
strategy: | |
matrix: | |
container: | |
- name: "stig-manager-alpine" | |
build_arg: "node:lts-alpine" | |
mysql_version: ${{fromJson(needs.fetch-mysql-versions.outputs.MYSQL_VERSIONS)}} | |
steps: | |
- name: Check out the repo | |
uses: actions/checkout@v4 | |
- name: Build image for ${{ matrix.container.name }} | |
id: image-build | |
run: | | |
docker build -t ${{ matrix.container.name }} --build-arg BASE_IMAGE=${{ matrix.container.build_arg }} . | |
- name: Run mock Keycloak | |
id: id-run | |
working-directory: ./test/api/mock-keycloak | |
run: | | |
python3 -m http.server 8080 & | |
- name: Run MySQL container version ${{ matrix.mysql_version }} | |
id: mysql-run | |
run: | | |
docker run -d --name stig-manager-db \ | |
-p 3306:3306 \ | |
-e MYSQL_ROOT_PASSWORD=rootpw \ | |
-e MYSQL_DATABASE=stigman \ | |
-e MYSQL_USER=stigman \ | |
-e MYSQL_PASSWORD=stigman \ | |
mysql:${{ matrix.mysql_version }} | |
- name: Run STIG Manager container ${{ matrix.container.name }} | |
id: api-run | |
run: | | |
docker run -d --name stig-manager-api \ | |
--net=host \ | |
-e STIGMAN_API_PORT=64001 \ | |
-e STIGMAN_DB_HOST=localhost \ | |
-e STIGMAN_DB_PORT=3306 \ | |
-e STIGMAN_DB_PASSWORD=stigman \ | |
-e STIGMAN_API_AUTHORITY=http://127.0.0.1:8080/auth/realms/stigman \ | |
-e STIGMAN_DEV_RESPONSE_VALIDATION=logOnly \ | |
-e STIGMAN_EXPERIMENTAL_APPDATA=true \ | |
${{ matrix.container.name }} | |
- name: Install test dependencies | |
run: npm ci | |
working-directory: ./test/api/ | |
- name: Wait for bootstrap | |
run: for i in {1..10}; do [ $i -gt 1 ] && sleep 5; curl --output /dev/null --silent --fail http://localhost:64001/api/op/configuration && s=0 && break || s=$?; printf '.'; done; (exit $s) | |
- name: Run tests with coverage | |
working-directory: ./test/api/ | |
run: npm test | |
- name: Upload mocha test report | |
id: artifact-upload-mocha | |
uses: actions/upload-artifact@v4 | |
if: ${{ always() }} | |
with: | |
name: mocha-report-${{ matrix.container.name }}-${{ matrix.mysql_version }} | |
path: ./test/api/mochawesome-report | |
- name: Extract API container log | |
id: api-log-extract | |
if: ${{ always() }} | |
working-directory: ./test/api | |
run: | | |
docker logs stig-manager-api > api-log-${{ matrix.container.name }}-${{ matrix.mysql_version }}-${{ github.run_id }}.json | |
- name: Upload API log artifact | |
uses: actions/upload-artifact@v4 | |
id: api-log-upload | |
if: ${{ always() }} | |
with: | |
name: api-log-${{ matrix.container.name }}-${{ matrix.mysql_version }}-${{ github.run_id }} | |
path: ./test/api/api-log-${{ matrix.container.name }}-${{ matrix.mysql_version }}-${{ github.run_id }}.json | |
- name: Collect all container logs on failure | |
if: ${{ cancelled() || failure() }} | |
uses: jwalton/gh-docker-logs@54a2a89cd6a2c929525f26ca67a7a4857a5dc1d9 # pin@v1 | |
with: | |
dest: "./logs-${{ matrix.container.name }}-${{ matrix.mysql_version }}" | |
- name: Tar container logs | |
if: ${{ cancelled() || failure() }} | |
run: tar cvzf ./logs-${{ matrix.container.name }}-${{ matrix.mysql_version }}.tgz ./logs-${{ matrix.container.name }}-${{ matrix.mysql_version }} | |
- name: Upload container logs artifact | |
if: ${{ cancelled() || failure() }} | |
uses: actions/upload-artifact@v4 | |
with: | |
name: logs-${{ matrix.container.name }}-${{ matrix.mysql_version }}.tgz | |
path: ./logs-${{ matrix.container.name }}-${{ matrix.mysql_version }}.tgz | |