feat(jans-auth-server): OpenID AuthZEN implementation #1851
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Test Linux installer | |
on: | |
workflow_dispatch: | |
push: | |
branches: | |
- main | |
paths: | |
- "jans-linux-setup/**" | |
pull_request: | |
branches: | |
- main | |
paths: | |
- "jans-linux-setup/**" | |
permissions: | |
checks: write | |
pull-requests: write | |
jobs: | |
build: | |
runs-on: ubuntu-20.04 | |
strategy: | |
max-parallel: 6 | |
matrix: | |
# add '"pgsql" when supported | |
persistence-backends: ["MYSQL", "PGSQL", "LDAP", "COUCHBASE", "SPANNER"] | |
python-version: ["3.7"] | |
fail-fast: false | |
steps: | |
- name: Harden Runner | |
uses: step-security/harden-runner@a4aa98b93cab29d9b1101a6143fb8bce00e2eac4 # v2.7.1 | |
with: | |
egress-policy: audit | |
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
- name: Set up Python3 | |
uses: actions/setup-python@0a5c61591373683505ea898e09a3ea4f39ef2b9c # v5.0.0 | |
with: | |
python-version: ${{ matrix.python-version }} | |
- name: Set up Go | |
uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0 | |
with: | |
go-version: 1.18 | |
- name: Import GPG key | |
id: import_gpg | |
uses: crazy-max/ghaction-import-gpg@01dd5d3ca463c7f10f7f4f7b4f177225ac661ee4 # v6.1.0 | |
with: | |
gpg_private_key: ${{ secrets.MOAUTO_GPG_PRIVATE_KEY }} | |
passphrase: ${{ secrets.MOAUTO_GPG_PRIVATE_KEY_PASSPHRASE }} | |
git_user_signingkey: true | |
git_commit_gpgsign: true | |
- name: Configure Git | |
run: | | |
git config --global user.name "mo-auto" | |
git config --global user.email "[email protected]" | |
git config --global user.signingkey "${{ steps.import_gpg.outputs.keyid }}" | |
echo "${{ secrets.MOAUTO_WORKFLOW_TOKEN }}" | gh auth login --with-token | |
- name: Test Jans monolith demo | |
run: | | |
ip=$(ifconfig eth0 | grep -Eo 'inet (addr:)?([0-9]*\.){3}[0-9]*' | grep -Eo '([0-9]*\.){3}[0-9]*' | grep -v '127.0.0.1') | |
sudo chmod u+x automation/startjanssenmonolithdemo.sh | |
sudo RUN_TESTS=true bash ./automation/startjanssenmonolithdemo.sh "demoexample.jans.io" "${{ matrix.persistence-backends }}" "${ip}" "${{ github.sha }}" | |
persistence=$(echo "${{ matrix.persistence-backends }}" | tr '[:upper:]' '[:lower:]') | |
mv /tmp/reports /${{ matrix.persistence-backends }}-reports | |
echo "generating rdbms docs for ${{ matrix.persistence-backends }}..." | |
git clone https://mo-auto:${{ secrets.MOAUTO_WORKFLOW_TOKEN }}@github.com/JanssenProject/jans.git | |
cd jans | |
git config pull.rebase true | |
git checkout -b cn-jans-update-${{ matrix.persistence-backends }}-auto-generated-docs || echo "Branch exists" | |
git pull origin cn-jans-update-${{ matrix.persistence-backends }}-auto-generated-docs || echo "Nothing to pull" | |
sudo bash ./automation/docs/generate-rdbms-docs.sh "$persistence" || echo "generating rdbms docs failed for ${{ matrix.persistence-backends }}!!!" | |
git add . || echo "generating rdbms docs failed !!!" | |
git commit -a -S -m "docs: auto-generated ${{ matrix.persistence-backends }} docs" || echo "Nothing to commit" | |
git push --set-upstream origin cn-jans-update-${{ matrix.persistence-backends }}-auto-generated-docs || echo "generating rdbms docs failed !!!" | |
MESSAGE="fix(docs): autogenerate ${{ matrix.persistence-backends }} RDBMS docs" | |
gh pr create --body "Auto generated RDBMS docs" --title "${MESSAGE}" || echo "PR exists" | |
cd .. | |
echo "generating rdbms docs for ${{ matrix.persistence-backends }} done" | |
export JANS_URL=https://demoexample.jans.io | |
export JANS_CLIENT_ID=9876baac-de39-4c23-8a78-674b59df8c09 | |
export JANS_CLIENT_SECRET=1t5Fin3#security | |
export JANS_INSECURE_CLIENT=true | |
export TF_ACC=1 | |
cd terraform-provider-jans | |
go install github.com/jstemmer/go-junit-report/v2@latest | |
go test -v 2>&1 ./... | go-junit-report > ${{ matrix.persistence-backends }}report.xml | |
cd .. | |
- name: Publish Test Results | |
continue-on-error: true | |
uses: EnricoMi/publish-unit-test-result-action@e780361cd1fc1b1a170624547b3ffda64787d365 # v2.12.0 | |
if: >- | |
github.event.pull_request.head.repo.full_name == github.repository || | |
github.event_name == 'workflow_dispatch' || | |
github.event_name == 'push' | |
with: | |
large_files: true | |
check_name: Java ${{ matrix.persistence-backends }} Tests | |
report_individual_runs: "true" | |
files: | | |
/${{ matrix.persistence-backends }}-reports/*.xml | |
- name: Upload Test Results | |
continue-on-error: true | |
if: always() | |
uses: actions/upload-artifact@26f96dfa697d77e81fd5907df203aa23a56210a8 # v4.3.0 | |
with: | |
name: java-${{ matrix.persistence-backends }}-test-results | |
path: "/${{ matrix.persistence-backends }}-reports/*.xml" | |
- uses: dorny/test-reporter@31a54ee7ebcacc03a09ea97a7e5465a47b84aea5 # v1 | |
continue-on-error: true | |
if: >- | |
github.event.pull_request.head.repo.full_name == github.repository || | |
github.event_name == 'workflow_dispatch' || | |
github.event_name == 'push' | |
id: go | |
with: | |
name: Go ${{ matrix.persistence-backends }} Tests | |
path: './terraform-provider-jans/${{ matrix.persistence-backends }}report.xml' | |
reporter: java-junit | |
- name: Download Artifacts | |
uses: actions/download-artifact@6b208ae046db98c579e8a3aa621ab581ff575935 # v4.1.1 | |
with: | |
name: java-${{ matrix.persistence-backends }}-test-results | |
path: java-${{ matrix.persistence-backends }}-test-results | |
- name: Publish Test Results | |
uses: EnricoMi/publish-unit-test-result-action/composite@e780361cd1fc1b1a170624547b3ffda64787d365 # v2.12.0 | |
with: | |
files: "java-${{ matrix.persistence-backends }}-test-results/**/*.xml" |