Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[DEVOPS-1751] Pipeline for publishing java sdk to gradle #740

Merged
merged 13 commits into from
May 10, 2024
+111 −16
Merged

[DEVOPS-1751] Pipeline for publishing java sdk to gradle #740

Show file tree
Hide file tree
Changes from 12 commits
Commits
Show all changes
13 commits
Select commit Hold shift + click to select a range
9a28e77
Update java sdk to version bump
michalchecinski Apr 24, 2024
eec8e65
Update build.gradle file
michalchecinski Apr 24, 2024
74a1270
Update build-java.yml workflow file and fix publish argument in Maven…
michalchecinski Apr 24, 2024
30d35c7
Change for package
michalchecinski Apr 24, 2024
7b4f738
Add publish java pipeline
michalchecinski Apr 24, 2024
0e14859
Update Azure login and retrieve secrets in publish-java workflow
michalchecinski Apr 25, 2024
76379f0
Update secrets in publish-java workflow
michalchecinski Apr 25, 2024
77a35ad
Update Maven credentials in publish-java workflow
michalchecinski Apr 25, 2024
1859d3e
Update publish-java workflow to conditionally run the package publish…
michalchecinski Apr 25, 2024
9916f55
Fix
michalchecinski May 7, 2024
5472112
Update build.gradle file to include Javadoc and sources JAR generation
michalchecinski May 7, 2024
2a4ae73
Merge branch 'main' into DEVOPS-1751-Pipeline-for-publishing-Java-SDK…
michalchecinski May 7, 2024
9116ee0
Merge branch 'main' into DEVOPS-1751-Pipeline-for-publishing-Java-SDK…
michalchecinski May 10, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
13 changes: 6 additions & 7 deletions .github/workflows/build-java.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,9 @@ on:
push:
branches:
- main
- rc
- hotfix-rc
pull_request:
workflow_dispatch:

jobs:
Expand Down Expand Up @@ -60,10 +63,6 @@ jobs:
name: libbitwarden_c_files-x86_64-pc-windows-msvc
path: languages/java/src/main/resources/win32-x86-64

- name: Publish Maven
uses: gradle/actions/setup-gradle@db19848a5fa7950289d3668fb053140cf3028d43 # v3.3.2
with:
arguments: publish
build-root-directory: languages/java
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
- name: Build Maven
run: ./gradlew build
working-directory: languages/java
81 changes: 81 additions & 0 deletions .github/workflows/publish-java.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,81 @@
name: Publish Java SDK
run-name: Publish Java SDK ${{ inputs.release_type }}

on:
workflow_dispatch:
inputs:
release_type:
description: "Release Options"
required: true
default: "Release"
type: choice
options:
- Release
- Dry Run

env:
_KEY_VAULT: "bitwarden-ci"

jobs:
validate:
name: Setup
runs-on: ubuntu-22.04
outputs:
version: ${{ steps.version.outputs.version }}
steps:
- name: Checkout repo
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1

- name: Branch check
if: ${{ inputs.release_type != 'Dry Run' }}
run: |
if [[ "$GITHUB_REF" != "refs/heads/rc" ]] && [[ "$GITHUB_REF" != "refs/heads/hotfix-rc" ]]; then
echo "==================================="
echo "[!] Can only release from the 'rc' or 'hotfix-rc' branches"
echo "==================================="
exit 1
fi

- name: Get version
id: version
run: |
VERSION=$(cat languages/java/build.gradle | grep -Eo 'version = "[0-9]+\.[0-9]+\.[0-9]+"' | grep -Eo '[0-9]+\.[0-9]+\.[0-9]+')
echo "version=$VERSION" >> $GITHUB_OUTPUT

publish:
name: Publish
runs-on: ubuntu-22.04
needs: validate
steps:
- name: Checkout Repository
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1

- name: Azure login
uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
with:
creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}

- name: Retrieve secrets
id: retrieve-secrets
uses: bitwarden/gh-actions/get-keyvault-secrets@main
with:
keyvault: ${{ env._KEY_VAULT }}
secrets: "maven-sonartype-ssrh-username,
maven-sonartype-ossrh-password"

- name: Setup java
uses: actions/setup-java@387ac29b308b003ca37ba93a6cab5eb57c8f5f93 # v4.0.0
with:
distribution: temurin
java-version: 17

- name: Setup Gradle
uses: gradle/actions/setup-gradle@417ae3ccd767c252f5661f1ace9f835f9654f2b5 # v3.1.0

- name: Publish package to GitHub Packages
if: ${{ inputs.release_type != 'Dry Run' }}
run: ./gradlew publish
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
MAVEN_USERNAME: ${{ steps.retrieve-secrets.outputs.maven-sonartype-ssrh-username }}
MAVEN_PASSWORD: ${{ steps.retrieve-secrets.outputs.maven-sonartype-ossrh-password }}
7 changes: 7 additions & 0 deletions .github/workflows/version-bump.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -18,6 +18,7 @@ on:
- go-sdk
- dotnet-sdk
- php-sdk
- java-sdk
version_number:
description: "New version (example: '2024.1.0')"
required: true
Expand Down Expand Up @@ -140,6 +141,12 @@ jobs:
run: |
sed -i 's/"version": "[0-9]\.[0-9]\.[0-9]"/"version": "${{ inputs.version_number }}"/' ./languages/php/composer.json

### java sdk
- name: Bump java-sdk Version
if: ${{ inputs.project == 'java-sdk' }}
run: |
sed -i 's/version = "[0-9]\.[0-9]\.[0-9]"/version = "${{ inputs.version_number }}"/' ./languages/java/build.gradle

############################
# VERSION BUMP SECTION END #
############################
Expand Down
26 changes: 17 additions & 9 deletions languages/java/build.gradle
View file
Open in desktop
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We should publish with java docs (and optionally source code), maybe add:

java {
    withJavadocJar()
    withSourcesJar()
}

Original file line number Diff line number Diff line change
Expand Up @@ -19,14 +19,14 @@ repositories {
api 'net.java.dev.jna:jna-platform:5.12.1'
}

description = 'BitwardenSDK'
description = 'Bitwarden Secrets Manager Java SDK'
java.sourceCompatibility = JavaVersion.VERSION_1_8

publishing {
publications {
maven(MavenPublication) {
groupId = 'com.bitwarden'
artifactId = 'sdk'
artifactId = 'sdk-secrets'
Copy link
Contributor

@mzieniukbw mzieniukbw Apr 26, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

i though this sdk repo is not specific to secrets manager, but it's for everyone ?
I did not know the Bitwarden SDK / this repo is just for secrets manager, so this change make sense now.


// Determine the version from the git history.
//
Expand All @@ -35,13 +35,8 @@ repositories {

def branchName = "git branch --show-current".execute().text.trim()

if (branchName == "main") {
def content = ['grep', '-o', '^version = ".*"', '../../Cargo.toml'].execute().text.trim()
def match = ~/version = "(.*)"/
def matcher = match.matcher(content)
matcher.find()

version = "${matcher.group(1)}-SNAPSHOT"
if (branchName == "main" || branchName == "rc" || branchName == "hotfix-rc") {
version = "0.1.0"
} else {
// branchName-SNAPSHOT
version = "${branchName.replaceAll('/', '-')}-SNAPSHOT"
Expand All @@ -61,6 +56,14 @@ repositories {
password = System.getenv("GITHUB_TOKEN")
}
}
maven {
name = "OSSRH"
url = "https://s01.oss.sonatype.org/service/local/staging/deploy/maven2/"
credentials {
username = System.getenv("MAVEN_USERNAME")
password = System.getenv("MAVEN_PASSWORD")
}
}
}
}
}
Expand All @@ -73,6 +76,11 @@ tasks.withType(Javadoc) {
options.encoding = 'UTF-8'
}

java {
withJavadocJar()
withSourcesJar()
}

// Gradle build requires GitHub workflow to copy native library to resources
// Uncomment copyNativeLib and jar tasks to use the local build (modify architecture if needed)
//tasks.register('copyNativeLib', Copy) {
Expand Down
Loading