refactor(encryption): Replace security annotations with respective attributes #6602
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# This workflow is provided via the organization template repository | |
# | |
# https://github.com/nextcloud/.github | |
# https://docs.github.com/en/actions/learn-github-actions/sharing-workflows-with-your-organization | |
# | |
# SPDX-FileCopyrightText: 2023-2024 Nextcloud GmbH and Nextcloud contributors | |
# SPDX-License-Identifier: MIT | |
name: PHPUnit MariaDB | |
on: | |
pull_request: | |
schedule: | |
- cron: "5 2 * * *" | |
permissions: | |
contents: read | |
concurrency: | |
group: phpunit-mariadb-${{ github.head_ref || github.run_id }} | |
cancel-in-progress: true | |
jobs: | |
changes: | |
runs-on: ubuntu-latest-low | |
outputs: | |
src: ${{ steps.changes.outputs.src}} | |
steps: | |
- uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2 | |
id: changes | |
continue-on-error: true | |
with: | |
filters: | | |
src: | |
- '.github/workflows/**' | |
- '3rdparty/**' | |
- '**/appinfo/**' | |
- '**/lib/**' | |
- '**/templates/**' | |
- '**/tests/**' | |
- 'vendor/**' | |
- 'vendor-bin/**' | |
- '.php-cs-fixer.dist.php' | |
- 'composer.json' | |
- 'composer.lock' | |
- '**.php' | |
phpunit-mariadb: | |
runs-on: ubuntu-latest | |
needs: changes | |
if: needs.changes.outputs.src != 'false' | |
strategy: | |
matrix: | |
php-versions: ['8.1'] | |
mariadb-versions: ['10.3', '10.6', '10.11', '11.4'] | |
include: | |
- php-versions: '8.3' | |
mariadb-versions: '10.11' | |
coverage: ${{ github.event_name != 'pull_request' }} | |
name: MariaDB ${{ matrix.mariadb-versions }} (PHP ${{ matrix.php-versions }}) - database tests | |
services: | |
cache: | |
image: ghcr.io/nextcloud/continuous-integration-redis:latest | |
ports: | |
- 6379:6379/tcp | |
options: --health-cmd="redis-cli ping" --health-interval=10s --health-timeout=5s --health-retries=3 | |
mariadb: | |
image: mariadb:${{ matrix.mariadb-versions }} | |
ports: | |
- 4444:3306/tcp | |
env: | |
MYSQL_ROOT_PASSWORD: rootpassword | |
MYSQL_USER: oc_autotest | |
MYSQL_PASSWORD: nextcloud | |
MYSQL_DATABASE: oc_autotest | |
options: --health-cmd="${{ matrix.mariadb-versions <= 10.4 && 'mysqladmin' || 'mariadb-admin'}} ping" --health-interval 5s --health-timeout 2s --health-retries 5 | |
steps: | |
- name: Checkout server | |
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 | |
with: | |
submodules: true | |
- name: Set up php ${{ matrix.php-versions }} | |
uses: shivammathur/setup-php@2e947f1f6932d141d076ca441d0e1e881775e95b #v2.31.0 | |
with: | |
php-version: ${{ matrix.php-versions }} | |
# https://docs.nextcloud.com/server/stable/admin_manual/installation/source_installation.html#prerequisites-for-manual-installation | |
extensions: bz2, ctype, curl, dom, fileinfo, gd, iconv, intl, json, libxml, mbstring, openssl, pcntl, posix, redis, session, simplexml, xmlreader, xmlwriter, zip, zlib, mysql, pdo_mysql | |
coverage: ${{ matrix.coverage && 'xdebug' || 'none' }} | |
ini-file: development | |
env: | |
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
- name: Set up dependencies | |
run: composer i | |
- name: Enable ONLY_FULL_GROUP_BY MariaDB option | |
run: | | |
echo "SET GLOBAL sql_mode=(SELECT CONCAT(@@sql_mode,',ONLY_FULL_GROUP_BY'));" | mysql -h 127.0.0.1 -P 4444 -u root -prootpassword | |
echo 'SELECT @@sql_mode;' | mysql -h 127.0.0.1 -P 4444 -u root -prootpassword | |
- name: Set up Nextcloud | |
env: | |
DB_PORT: 4444 | |
run: | | |
mkdir data | |
cp tests/redis.config.php config/ | |
cp tests/preseed-config.php config/config.php | |
./occ maintenance:install --verbose --database=mysql --database-name=nextcloud --database-host=127.0.0.1 --database-port=$DB_PORT --database-user=root --database-pass=rootpassword --admin-user admin --admin-pass admin | |
php -f tests/enable_all.php | grep -i -C9999 error && echo "Error during app setup" && exit 1 || exit 0 | |
- name: PHPUnit | |
run: composer run test:db ${{ matrix.coverage && ' -- --coverage-clover ./clover.db.xml' || '' }} | |
- name: Upload db code coverage | |
if: ${{ !cancelled() && matrix.coverage }} | |
uses: codecov/[email protected] | |
with: | |
files: ./clover.db.xml | |
flags: phpunit-mariadb | |
summary: | |
permissions: | |
contents: none | |
runs-on: ubuntu-latest-low | |
needs: [changes, phpunit-mariadb] | |
if: always() | |
name: phpunit-mariadb-summary | |
steps: | |
- name: Summary status | |
run: if ${{ needs.changes.outputs.src != 'false' && needs.phpunit-mariadb.result != 'success' }}; then exit 1; fi |