diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml index 1f8ebd32..cddb597d 100644 --- a/.github/workflows/main.yml +++ b/.github/workflows/main.yml @@ -6,6 +6,8 @@ on: pull_request: branches: - '**' + release: + types: [ published ] workflow_dispatch: env: @@ -167,11 +169,11 @@ jobs: files: .coverage/*,packages/*/.coverage/* publish-to-ipfs: - # TODO: make this run also on release - if: github.ref == 'refs/heads/main' + # NOTE: workflow_dispatch here allows maintainer to manually run against any branch, and it will produce a CAR with CID that is pinned + # TODO: if: github.event_name == 'workflow_dispatch' || (github.event_name == 'push' && github.ref == 'refs/heads/main') || (github.event_name == 'release' && github.event.action == 'published') needs: build runs-on: ubuntu-latest - environment: Deploy # CF and Clusteer secrets + environment: Deploy # Clusteer secrets concurrency: # only one job runs at a time == DNSLinks are updated in-order group: ${{ github.workflow }}-${{ github.ref }} @@ -249,8 +251,8 @@ jobs: CLUSTER_USER: ${{ secrets.CLUSTER_USER }} CLUSTER_PASSWORD: ${{ secrets.CLUSTER_PASSWORD }} timeout-minutes: 60 - - name: Update DNSLink at inbrowser.dev (Dev Testing) - if: github.ref == 'refs/heads/main' + - name: Update DNSLink at inbrowser.dev (Staging for Dev Testing) if main branch was updated + if: (github.event_name == 'workflow_dispatch' || github.event_name == 'push') && github.ref == 'refs/heads/main' run: | curl --request PUT --header "Authorization: Bearer ${AUTH_TOKEN}" --header 'Content-Type: application/json' \ --url "https://api.cloudflare.com/client/v4/zones/${ZONE_ID}/dns_records/${RECORD_ID}" \ @@ -261,9 +263,8 @@ jobs: ZONE_ID: ${{ secrets.CF_INBROWSERDEV_ZONE_ID }} RECORD_ID: ${{ secrets.CF_INBROWSERDEV_RECORD_ID }} AUTH_TOKEN: ${{ secrets.CF_INBROWSERDEV_AUTH_TOKEN }} - - name: Update DNSLink at inbrowser.link (Stable Production) - # TODO: make this run only on release - if: github.ref == 'refs/heads/main' + - name: Update DNSLink at inbrowser.link (Stable Production) if new release was published + if: github.event_name == 'release' && github.event.action == 'published' run: | curl --request PUT --header "Authorization: Bearer ${AUTH_TOKEN}" --header 'Content-Type: application/json' \ --url "https://api.cloudflare.com/client/v4/zones/${ZONE_ID}/dns_records/${RECORD_ID}" \ @@ -276,7 +277,7 @@ jobs: AUTH_TOKEN: ${{ secrets.CF_INBROWSERLINK_AUTH_TOKEN }} pin-to-w3: # ported from ipfs/ipfs-webui - if: ${{ success() && needs.publish-to-ipfs.outputs.cid }} + if: needs.publish-to-ipfs.outputs.cid needs: publish-to-ipfs runs-on: ubuntu-latest environment: web3.storage @@ -313,7 +314,7 @@ jobs: W3CLI_SPACE_DELEGATION_PROOF_BASE64_STRING: ${{ secrets.W3CLI_SPACE_DELEGATION_PROOF_BASE64_STRING }} pin-to-scaleway: - if: ${{ success() && needs.publish-to-ipfs.outputs.cid }} + if: needs.publish-to-ipfs.outputs.cid needs: publish-to-ipfs runs-on: ubuntu-latest environment: Scaleway @@ -349,15 +350,29 @@ jobs: env: CID: ${{ needs.publish-to-ipfs.outputs.cid }} - smoke-test-http: # basic smoke test that lets us know when eother caching or content routing does not work - if: ${{ success() && needs.publish-to-ipfs.outputs.cid }} - needs: [ publish-to-ipfs, pin-to-scaleway, pin-to-w3 ] + smoke-test-cached-http: # basic smoke test that lets us know when stale-while-revalidate caching does not work on either env + if: needs.publish-to-ipfs.outputs.cid + needs: [ publish-to-ipfs ] runs-on: ubuntu-latest + strategy: + matrix: + dnslink: + - inbrowser.link + - inbrowser.dev steps: - - name: Smoke-test instant (cached, stale-while-revalidate) /ipfs-sw-main.js at inbrowser.link - run: curl --retry 3 --retry-delay 61 --retry-all-errors -v https://inbrowser.link/ipfs-sw-main.js > /dev/null - - name: Smoke-test instant (cached, stale-while-revalidate) /ipfs-sw-main.js at inbrowser.dev - run: curl --retry 3 --retry-delay 61 --retry-all-errors -v https://inbrowser.dev/ipfs-sw-main.js > /dev/null - - name: Smoke-test fetching the new CID as CAR from trustless-gateway.link - run: curl --retry 3 --retry-delay 61 --retry-all-errors -v "https://trustless-gateway.link/ipfs/${{ needs.publish-to-ipfs.outputs.cid }}?format=car" > /dev/null + - name: Smoke-test instant (cached, stale-while-revalidate) /ipfs-sw-main.js at ${{ matrix.dnslink }} + run: curl --retry 3 --retry-delay 61 --retry-all-errors -v https://${{ matrix.dnslink }}/ipfs-sw-main.js > /dev/null + smoke-test-fresh-http: # basic smoke test that lets us know when there are content routing with the new CID + if: needs.publish-to-ipfs.outputs.cid + needs: [ publish-to-ipfs, pin-to-scaleway, pin-to-w3 ] + runs-on: ubuntu-latest + strategy: + matrix: + gateway: + - trustless-gateway.link + - cloudflare-ipfs.com + - w3s.link + steps: + - name: Smoke-test fetching the new CID as CAR from ${{ matrix.gateway }} + run: curl --retry 3 --retry-delay 61 --retry-all-errors -v "https://${{ matrix.gateway }}/ipfs/${{ needs.publish-to-ipfs.outputs.cid }}?format=car" > /dev/null