Skip to content

CI/CD master

CI/CD master #1152

Workflow file for this run

name: CI/CD master
on:
workflow_run:
workflows:
- golangci-lint
types:
- completed
jobs:
initial:
name: Initializing
runs-on: ${{ matrix.platform }}
if: ${{ github.event.workflow_run.conclusion == 'success' }}
strategy:
matrix:
go-version: ['1.21.x', '1.22.x', '1.23.x']
platform: [ubuntu-latest]
steps:
- uses: actions/checkout@v4
- name: Set up Go ${{ matrix.go-version }}
uses: actions/setup-go@v5
with:
go-version: ${{ matrix.go-version }}
- name: Go modules Cache
uses: actions/cache@v4
id: go-cache
with:
path: ~/go/pkg/mod
key: ${{ runner.os }}-go-${{ matrix.go-version }}-${{ hashFiles('**/go.sum') }}
restore-keys: ${{ runner.os }}-go-
- if: steps.go-cache.outputs.cache-hit != 'true'
run: go mod download
- name: Install SWAGGER
run: go install github.com/swaggo/swag/cmd/swag@latest
- name: Update SWAGGER
working-directory: ./app
run: swag init --parseDependency --parseDepth=1
- name: Test
run: go test -v -coverprofile=profile.cov -race ./...
- name: Send goveralls coverage
uses: shogo82148/actions-goveralls@v1
with:
path-to-profile: profile.cov
flag-name: Go-${{ matrix.go }}
parallel: true
- name: Build
working-directory: ./app
run: |
CGO_ENABLED=0 GOOS=linux go build \
-ldflags "-X main.version=$(git rev-parse --short HEAD) -X main.buildTime=$(date -u +'%Y-%m-%dT%H:%M:%SZ')" \
-v -o app-${{ matrix.go-version }}
- name: Upload Build results
uses: actions/upload-artifact@v4
with:
name: Go-results-${{ matrix.go-version }}
path: ./app/app-${{ matrix.go-version }}
check-coverage:
name: Check coverage
needs: [initial]
runs-on: ubuntu-latest
steps:
- uses: shogo82148/actions-goveralls@v1
with:
parallel-finished: true
docker-check-vulnerabilities:
runs-on: ubuntu-latest
needs: initial
steps:
- uses: actions/checkout@v4
- name: Checkov Dockerfile Scan
uses: bridgecrewio/[email protected]
with:
directory: .
framework: dockerfile
- name: Upload SARIF file
uses: github/codeql-action/upload-sarif@v3
with:
sarif_file: results.sarif
Docker-Hub:
if: ${{ github.event.workflow_run.event == 'push' }}
runs-on: ubuntu-latest
needs: docker-check-vulnerabilities
steps:
- uses: actions/checkout@v4
- name: Download the latest artifact
uses: actions/download-artifact@v4
with:
path: app
pattern: Go-results-*
- shell: bash
run: |
latest_version=$(ls -d app/Go-results-*/app-* | sort -V | tail -n 1)
echo $latest_version
mv $latest_version s3stream
- name: Set up QEMU
uses: docker/setup-qemu-action@v3
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3
- name: Login to Docker Hub
uses: docker/login-action@v3
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }}
- name: Push to Docker Hub
uses: docker/build-push-action@v6
with:
context: .
push: true
tags: arturmon/s3stream:latest
cache-from: type=gha
cache-to: type=gha,mode=max
Docker-GHCR:
if: ${{ github.event.workflow_run.event == 'push' }}
runs-on: ubuntu-latest
needs: docker-check-vulnerabilities
steps:
- uses: actions/checkout@v4
- name: Download the latest artifact
uses: actions/download-artifact@v4
with:
path: app
pattern: Go-results-*
- shell: bash
run: |
latest_version=$(ls -d app/Go-results-*/app-* | sort -V | tail -n 1)
echo $latest_version
mv $latest_version s3stream
- name: Set up QEMU
uses: docker/setup-qemu-action@v3
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3
- name: Login to GitHub Container Registry
uses: docker/login-action@v3
with:
registry: ghcr.io
username: ${{ github.actor }}
password: ${{ secrets.GITHUB_TOKEN }}
- name: Push to GitHub Container Registry
uses: docker/build-push-action@v6
with:
context: .
push: true
tags: ghcr.io/arturmon/s3stream:latest
cache-from: type=gha
cache-to: type=gha,mode=max
#Clean-old-Deploy:
# if: ${{ github.event_name == 'push' }}
# runs-on: ubuntu-latest
# environment: ${{ vars.ENVIRONMENT_STAGE }}
# needs: Docker
# steps:
# - name: Stop and Remove Old Containers
# uses: appleboy/[email protected]
# with:
# key: ${{ secrets.SSH_PRIVATE_KEY }}
# host: ${{ secrets.REMOTE_HOST }}
# port: 22
# username: ${{ secrets.REMOTE_USER }}
# script: |
# # Stop and remove the old containers
# podman stop albums-app || true
# podman rm albums-app || true
# Remove the old image
# podman rmi docker.io/arturmon/albums:latest || true
#Deploy:
# if: ${{ github.event_name == 'push' }}
# runs-on: ubuntu-latest
# environment: ${{ vars.ENVIRONMENT_STAGE }}
# needs: Clean-old-Deploy
# steps:
# - name: Deploy to Staging server
# uses: appleboy/[email protected]
# with:
# key: ${{ secrets.SSH_PRIVATE_KEY }}
# host: ${{ secrets.REMOTE_HOST }}
# port: 22
# username: ${{ secrets.REMOTE_USER }}
# script: |
# echo "======VERSION======"
# podman version
# echo "======INFO========="
# podman info
# echo "======DEPLOY======="
# podman pod create --name albums -p 3000:3000
# podman run --pod albums --privileged --name postgresql-server \
# -e POSTGRESQL_USERNAME="root" \
# -e POSTGRESQL_PASSWORD="${{ secrets.POSTGRESQL_PASSWORD }}" \
# -e POSTGRESQL_DATABASE="db_issue_album" \
# -d docker.io/bitnami/postgresql:latest
# echo "Up rabbitmq...."
# podman run --pod albums --privileged --name rabbitmq \
# -e RABBITMQ_DEFAULT_USER=user \
# -e RABBITMQ_DEFAULT_PASS=password \
# -d docker.io/rabbitmq:3.12.2
# podman run --pod albums --privileged --name albums-app \
# -e STORAGE_HOST="postgresql-server" \
# -e MQ_BROKER="rabbitmq" \
# -e LOG_LEVEL="info" \
# -d docker.io/arturmon/albums:latest
# - name: Wait for Albums App to Start
# uses: appleboy/[email protected]
# with:
# key: ${{ secrets.SSH_PRIVATE_KEY }}
# host: ${{ secrets.REMOTE_HOST }}
# port: 22
# username: ${{ secrets.REMOTE_USER }}
# script: |
# # Wait for the albums-app container to be up and running
# while ! podman inspect -f '{{.State.Running}}' albums-app; do sleep 5; done