Do some cleanup

pulumi · Jul 6, 2024 · 989201a · 989201a
1 parent 3ee0a4e
commit 989201a
Show file tree

Hide file tree

Showing 10 changed files with 272 additions and 2,543 deletions.
diff --git a/.github/actions/setup/action.yml b/.github/actions/setup/action.yml
@@ -0,0 +1,173 @@
+name: Setup
+description: Sets up the environment for CI runs.
+
+inputs:
+  aws-access-key-id:
+    required: true
+
+  aws-secret-access-key:
+    required: true
+
+  aws-role-to-assume:
+    required: true
+
+  github-token:
+    required: true
+
+  node-version:
+    default: 18
+
+  python-version:
+    default: 3.8
+
+  go-version:
+    default: 1.21
+
+  dotnet-version:
+    default: 6
+
+  gotestfmt-version:
+    default: v2.5.0
+
+  pulumi-version:
+    default: dev
+
+  google-service-account-email:
+    default: pulumi-ci@pulumi-ci-gcp-provider.iam.gserviceaccount.com
+
+  google-project-number:
+    default: 895284651812
+
+  google-workload-identity-pool:
+    default: pulumi-ci
+
+  google-workload-identity-provider:
+    default: pulumi-ci
+
+  aws-region:
+    default: us-west-2
+
+  aws-role-duration-seconds:
+    default: 7200
+
+  aws-role-session-name:
+    default: examples@github-actions
+
+outputs:
+  aws-access-key-id:
+    value: ${{ steps.aws-auth.outputs.aws-access-key-id }}
+
+  aws-secret-access-key:
+    value: ${{ steps.aws-auth.outputs.aws-secret-access-key }}
+
+  aws-session-token:
+    value: ${{ steps.aws-auth.outputs.aws-session-token }}
+
+  aws-region:
+    value: ${{ inputs.aws-region }}
+
+runs:
+  using: composite
+  steps:
+
+    - name: Install .NET
+      uses: actions/setup-dotnet@v4
+      with:
+        dotnet-version: ${{inputs.dotnet-version}}
+
+    - name: Install Node.js
+      uses: actions/setup-node@v4
+      with:
+        node-version: ${{inputs.node-version}}
+
+    - name: Install Python
+      uses: actions/setup-python@v5
+      with:
+        python-version: ${{inputs.python-version}}
+
+    - name: Install Python deps
+      run: |
+        # pip3 install virtualenv==20.0.23
+        pip3 install pipenv
+      shell: bash
+
+    - name: Install Go
+      uses: actions/setup-go@v5
+      with:
+        go-version: ${{inputs.go-version}}
+
+    - name: Install aws-iam-authenticator
+      run: |
+        curl https://amazon-eks.s3-us-west-2.amazonaws.com/1.13.7/2019-06-11/bin/linux/amd64/aws-iam-authenticator -o aws-iam-authenticator
+        chmod +x ./aws-iam-authenticator
+        sudo mv aws-iam-authenticator /usr/local/bin
+      shell: bash
+
+    - name: Install Kubectl
+      run: |
+        curl -LO https://storage.googleapis.com/kubernetes-release/release/$(curl -s https://storage.googleapis.com/kubernetes-release/release/stable.txt)/bin/linux/amd64/kubectl
+        chmod +x ./kubectl
+        sudo mv kubectl /usr/local/bin
+      shell: bash
+
+    - name: Install and configure Helm
+      run: |
+        curl -o- -L https://raw.githubusercontent.com/kubernetes/helm/master/scripts/get | bash
+        helm init -c
+        helm repo add bitnami https://charts.bitnami.com/bitnami
+      shell: bash
+
+    - name: Install gcloud auth
+      uses: google-github-actions/setup-gcloud@v2
+      with:
+        install_components: gke-gcloud-auth-plugin
+
+    - name: Install testing dependencies
+      run: make ensure
+      shell: bash
+
+    - name: Install gotestfmt
+      uses: GoTestTools/gotestfmt-action@v2
+      with:
+        version: ${{ inputs.gotestfmt-version }}
+        token: ${{ inputs.github-token }}
+
+    - name: Install Pulumi
+      uses: pulumi/actions@v5
+      with:
+        pulumi-version: ${{ inputs.pulumi-version }}
+
+    - run: echo "Pulumi $(pulumi version) is installed"
+      shell: bash
+
+    - name: Authenticate with AWS
+      id: aws-auth
+      uses: aws-actions/configure-aws-credentials@v4
+      with:
+        aws-access-key-id: ${{ inputs.aws-access-key-id }}
+        aws-secret-access-key: ${{ inputs.aws-secret-access-key }}
+        aws-region: ${{ inputs.aws-region }}
+        role-to-assume: ${{ inputs.aws-role-to-assume }}
+        role-duration-seconds: ${{ inputs.role-duration-seconds }}
+        role-session-name: ${{ inputs.role-session-name }}
+        unset-current-credentials: true
+        output-credentials: true
+
+    - name: Run aws sts get-caller-identity
+      run: aws sts get-caller-identity
+      env:
+        AWS_ACCESS_KEY_ID: ${{ steps.aws-auth.outputs.aws-access-key-id }}
+        AWS_SECRET_ACCESS_KEY: ${{ steps.aws-auth.outputs.aws-secret-access-key }}
+        AWS_SESSION_TOKEN: ${{ steps.aws-auth.outputs.aws-session-token }}
+        AWS_REGION: ${{ steps.aws-auth.outputs.aws-region }}
+      shell: bash
+
+    - name: Authenticate with Google Cloud
+      uses: google-github-actions/auth@v2
+      with:
+        service_account: ${{ inputs.google-service-account-email }}
+        workload_identity_provider: projects/${{ inputs.google-project-number }}/locations/global/workloadIdentityPools/${{ inputs.google-workload-identity-pool }}/providers/${{ inputs.google-workload-identity-provider }}
+
+    - name: Authenticate with Google Cloud Registry
+      run: gcloud --quiet auth configure-docker
+      shell: bash
diff --git a/.github/workflows/README.md b/.github/workflows/README.md
diff --git a/.github/workflows/command_dispatch.yml → .github/workflows/command-dispatch.yml b/.github/workflows/command_dispatch.yml → .github/workflows/command-dispatch.yml
@@ -1,4 +1,4 @@
-name: Command Dispatch for testing
+name: Command dispatch for testing
 on:
   issue_comment:
     types:
@@ -13,7 +13,7 @@ jobs:
     - name: Run Build
       uses: peter-evans/slash-command-dispatch@v2
       with:
-        commands: run-example-tests
+        commands: run-tests
         issue-type: pull-request
         permission: write
         reaction-token: ${{ secrets.GITHUB_TOKEN }}