adding integration tests #66
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Makefile CI | |
on: | |
push: | |
branches: ["main"] | |
tags: ["*"] | |
pull_request: | |
branches: ["main"] | |
jobs: | |
test: | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
- uses: actions/setup-node@v4 | |
name: setup node | |
with: | |
node-version: 20 | |
- uses: docker-practice/actions-setup-docker@master | |
- name: install nextcloud | |
env: | |
CLIENT_ID: ${{ secrets.VAAS_CLIENT_ID }} | |
CLIENT_SECRET: ${{ secrets.VAAS_CLIENT_SECRET }} | |
run: ./install.sh | |
- name: create testuser | |
run: | | |
docker exec --env OC_PASS=myfancysecurepassword234 --user www-data nextcloud-container php occ user:add testuser --password-from-env | |
- name: create testfiles | |
run: | | |
echo 'nothingwronghere' > /tmp/clean.txt | |
echo 'X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*' > /tmp/eicar.com.txt | |
curl --output /tmp/pup.exe http://amtso.eicar.org/PotentiallyUnwanted.exe | |
- name: test admin eicar Upload | |
run: | | |
curl --silent -u admin:admin -T /tmp/eicar.com.txt http://127.0.0.1/remote.php/dav/files/admin/eicar.com.txt \ | |
| grep -o "Virus EICAR-Test-File is detected in the file. Upload cannot be completed." \ | |
|| exit 1 | |
- name: test admin clean Upload | |
run: | | |
STATUS_CODE=$(curl --silent -w "%{http_code}" -u admin:admin -T /tmp/clean.txt http://127.0.0.1/remote.php/dav/files/admin/clean.txt) | |
[[ $STATUS_CODE -ge 200 && $STATUS_CODE -lt 300 ]] || exit 1 | |
- name: test admin pup Upload | |
run: | | |
STATUS_CODE=$(curl --silent -w "%{http_code}" -u admin:admin -T /tmp/pup.exe http://127.0.0.1/remote.php/dav/files/admin/pup.exe) | |
[[ $STATUS_CODE -ge 200 && $STATUS_CODE -lt 300 ]] || exit 1 | |
- name: test testuser eicar Upload | |
run: | | |
curl --silent -u testuser:myfancysecurepassword234 -T /tmp/eicar.com.txt http://127.0.0.1/remote.php/dav/files/testuser/eicar.com.txt \ | |
| grep -o "Virus EICAR-Test-File is detected in the file. Upload cannot be completed." \ | |
|| exit 1 | |
- name: test testuser clean Upload | |
run: | | |
STATUS_CODE=$(curl --silent -w "%{http_code}" -u testuser:myfancysecurepassword234 -T /tmp/clean.txt http://127.0.0.1/remote.php/dav/files/testuser/clean.txt) | |
[[ $STATUS_CODE -ge 200 && $STATUS_CODE -lt 300 ]] || exit 1 | |
- name: test testuser pup Upload | |
run: | | |
STATUS_CODE=$(curl --silent -w "%{http_code}" -u testuser:myfancysecurepassword234 -T /tmp/pup.exe http://127.0.0.1/remote.php/dav/files/testuser/pup.exe) | |
[[ $STATUS_CODE -ge 200 && $STATUS_CODE -lt 300 ]] || exit 1 | |
- name: test upload when vaas does not function | |
env: | |
CLIENT_ID: ${{ secrets.VAAS_CLIENT_ID }} | |
CLIENT_SECRET: ${{ secrets.VAAS_CLIENT_SECRET }} | |
run: | | |
docker exec --user www-data -i nextcloud-container php occ config:app:set gdatavaas clientSecret --value="WRONG_PASSWORD" | |
STATUS_CODE=$(curl --silent -w "%{http_code}" -u admin:admin -T /tmp/eicar.com.txt http://127.0.0.1/remote.php/dav/files/admin/eicar.com.txt) | |
[[ $STATUS_CODE -ge 200 && $STATUS_CODE -lt 300 ]] || exit 1 | |
docker exec --user www-data -i nextcloud-container php occ config:app:set gdatavaas clientSecret --value="$CLIENT_SECRET" | |
- uses: actions/upload-artifact@master | |
with: | |
name: build-dir | |
path: build/ | |
release: | |
needs: | |
- test | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
- uses: actions/download-artifact@master | |
with: | |
name: build-dir | |
path: build/ | |
- name: replace version | |
id: replace-version | |
if: startsWith(github.ref, 'refs/tags/') | |
run: | | |
RELEASE_VERSION=${GITHUB_REF#refs/tags/} | |
sed -i "s/<version>0.0.0<\/version>/<version>$RELEASE_VERSION<\/version>/g" ./appinfo/info.xml | |
echo "RELEASE_VERSION=$RELEASE_VERSION" >> $GITHUB_OUTPUT | |
- name: Github Release | |
uses: softprops/action-gh-release@v2 | |
if: startsWith(github.ref, 'refs/tags/') | |
with: | |
files: build/artifacts/* | |
# - uses: docker-practice/actions-setup-docker@master | |
# - name: Upload to appstore | |
# env: | |
# APPSTORE_TOKEN: ${{ secrets.VAAS_APPSTORE_TOKEN }} | |
# NEXTCLOUD_KEY: ${{ secrets.VAAS_NEXTCLOUD_KEY }} | |
# run: | | |
# echo $NEXTCLOUD_KEY > ./gdatavaas.key | |
# SIGNATURE=$(openssl dgst -sha512 -sign ~/gdatavaas.key build/artifacts/gdatavaas.tar.gz | openssl base64) | |
# docker run -v./gdatavaas.key:./gdatavaas.key -v./build/artifacts/gdatavaas.tar.gz:./build/artifacts/gdatavaas.tar.gz -it --entrypoint php nextcloud:28 occ integrity:sign-app --privateKey=./gdatavaas.key --certificate=./gdatavaas.crt --path=./build/artifacts/gdatavaas.tar.gz | |
- name: Attach tarball to github release | |
uses: svenstaro/upload-release-action@v2 | |
if: startsWith(github.ref, 'refs/tags/') | |
id: attach_to_release | |
with: | |
repo_token: ${{ secrets.GITHUB_TOKEN }} | |
file: ./build/artifacts/gdatavaas.tar.gz | |
asset_name: gdatavaas-${{ steps.replace-version.outputs.RELEASE_VERSION }}.tar.gz | |
tag: ${{ github.ref }} | |
overwrite: true | |
# - name: Upload app to Nextcloud appstore | |
# uses: nextcloud-releases/nextcloud-appstore-push-action@v1 | |
# with: | |
# app_name: gdatavaas | |
# appstore_token: ${{ secrets.VAAS_APPSTORE_TOKEN }} | |
# download_url: ${{ steps.attach_to_release.outputs.browser_download_url }} | |
# app_private_key: ${{ secrets.VAAS_NEXTCLOUD_KEY }} |