Skip to content

FLA-1566 Critical Vulnerabilies. Bumped Java -> 17, Sprint -> 3 #490

FLA-1566 Critical Vulnerabilies. Bumped Java -> 17, Sprint -> 3

FLA-1566 Critical Vulnerabilies. Bumped Java -> 17, Sprint -> 3 #490

Workflow file for this run

name: Cucumber Tests
on:
pull_request:
branches: [main]
push:
branches: [main]
workflow_dispatch:
jobs:
ai-reviewer-api-gcr:
name: Ai Reviewer Api GCR
runs-on: ubuntu-latest
steps:
- name: Pull Git repo.
uses: actions/checkout@v2
- name: Login to Docker Hub
uses: docker/login-action@v1
with:
registry: docker.pkg.github.com
username: ${{ github.repository_owner }}
password: ${{ secrets.GITHUB_TOKEN }}
- name: Pull ai-reviewer-api-builder
run: docker pull docker.pkg.github.com/$GITHUB_REPOSITORY/ai-reviewer-api:builder || true
- name: build ai-reviewer-api-builder
run: docker build ./src/backend
-f ./src/backend/Dockerfile.ai-reviewer-api
--target build
-t ai-reviewer-api:builder
--build-arg SERVICE_NAME=ai-reviewer-api
--build-arg MVN_PROFILE=ai-reviewer
--build-arg STARTERS_V=v1.0.0
--cache-from=docker.pkg.github.com/$GITHUB_REPOSITORY/ai-reviewer-api:builder
- name: tag & push ai-reviewer-api to git container registry
if: github.event.pull_request.head.repo.full_name == github.repository
run: docker tag ai-reviewer-api:builder docker.pkg.github.com/$GITHUB_REPOSITORY/ai-reviewer-api:builder && docker push docker.pkg.github.com/$GITHUB_REPOSITORY/ai-reviewer-api:builder
ai-reviewer-mock-api-gcr:
name: Ai Reviewer Mock Api GCR
runs-on: ubuntu-latest
steps:
- name: Pull Git repo.
uses: actions/checkout@v2
- name: Login to Docker Hub
uses: docker/login-action@v1
with:
registry: docker.pkg.github.com
username: ${{ github.repository_owner }}
password: ${{ secrets.GITHUB_TOKEN }}
- name: Pull ai-reviewer-mock-api-builder
run: docker pull docker.pkg.github.com/$GITHUB_REPOSITORY/ai-reviewer-mock-api:builder || true
- name: build ai-reviewer-mock-api
run: docker build ./src/backend
-f ./src/backend/Dockerfile.ai-reviewer-mock-api
--target build
-t ai-reviewer-mock-api:builder
--build-arg SERVICE_NAME=ai-reviewer-mock-api
--build-arg MVN_PROFILE=ai-reviewer-mock
--build-arg STARTERS_V=v1.0.0
--cache-from=docker.pkg.github.com/$GITHUB_REPOSITORY/ai-reviewer-mock-api:builder
- name: tag & push ai-reviewer-mock-api to git container registry
if: github.event.pull_request.head.repo.full_name == github.repository
run: docker tag ai-reviewer-mock-api:builder docker.pkg.github.com/$GITHUB_REPOSITORY/ai-reviewer-mock-api:builder && docker push docker.pkg.github.com/$GITHUB_REPOSITORY/ai-reviewer-mock-api:builder
ai-reviewer-admin-gcr:
name: Ai Reviewer Admin GCR
runs-on: ubuntu-latest
steps:
- name: Pull Git repo.
uses: actions/checkout@v2
- name: Login to Docker Hub
uses: docker/login-action@v1
with:
registry: docker.pkg.github.com
username: ${{ github.repository_owner }}
password: ${{ secrets.GITHUB_TOKEN }}
- name: Pull ai-reviewer-admin-builder
run: docker pull docker.pkg.github.com/$GITHUB_REPOSITORY/ai-reviewer-admin:builder || true
- name: build ai-reviewer-admin-builder
run: docker build ./src/frontend/ai-reviewer-admin
--target build
-t ai-reviewer-admin:builder
--cache-from=docker.pkg.github.com/$GITHUB_REPOSITORY/ai-reviewer-admin:builder
- name: tag & push ai-reviewer-admin to git container registry
if: github.event.pull_request.head.repo.full_name == github.repository
run: docker tag ai-reviewer-admin:builder docker.pkg.github.com/$GITHUB_REPOSITORY/ai-reviewer-admin:builder && docker push docker.pkg.github.com/$GITHUB_REPOSITORY/ai-reviewer-admin:builder
ai-keycloak-config-gcr:
name: Ai-Keycloack Config GCR
runs-on: ubuntu-latest
steps:
- name: Pull Git repo.
uses: actions/checkout@v2
- name: Login to Docker Hub
uses: docker/login-action@v1
with:
registry: docker.pkg.github.com
username: ${{ github.repository_owner }}
password: ${{ secrets.GITHUB_TOKEN }}
- name: Pull ai-reviewer-api-builder
run: docker pull docker.pkg.github.com/$GITHUB_REPOSITORY/ai-keycloak-config:demo || true
- name: Pull ai-reviewer-api-builder
run: docker build ./infrastructure/keycloak
-t ai-keycloak-config:demo
--build-arg KEYCLOAK_URL=http://keycloak:8080
--cache-from=docker.pkg.github.com/$GITHUB_REPOSITORY/ai-keycloak-config:demo
- name: tag & push ai-keycloak-config to git container registry
if: github.event.pull_request.head.repo.full_name == github.repository
run: docker tag ai-keycloak-config:demo docker.pkg.github.com/$GITHUB_REPOSITORY/ai-keycloak-config:demo && docker push docker.pkg.github.com/$GITHUB_REPOSITORY/ai-keycloak-config:demo
# cucumber-tests:
# name: Runs cucumber-tests
# runs-on: ubuntu-latest
# needs: [ai-reviewer-api-gcr, ai-reviewer-mock-api-gcr, ai-reviewer-admin-gcr, ai-reviewer-cso-api-gcr, ai-keycloak-config-gcr]
# steps:
# - name: Pull Git repo.
# uses: actions/checkout@v2
# pulling images is faster than caching in most of the case
# - name: pull available docker images first
# run: docker-compose pull -q --parallel redis clamav mongodb keycloak#
# - name: Standup Infra
# run: docker-compose up -d redis clamav mongodb keycloak
# - name: Login to Docker Hub
# uses: docker/login-action@v1
# with:
# registry: docker.pkg.github.com
# username: ${{ github.repository_owner }}
# password: ${{ secrets.GITHUB_TOKEN }}
# - name: Cache local Maven repository
# uses: actions/cache@v2
# with:
# path: ~/.m2/repository
# key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }}
# restore-keys: |
# ${{ runner.os }}-maven-
# - name: Pull images (Local REPO only)
# if: github.event.pull_request.head.repo.full_name == github.repository
# run: docker-compose -f docker-compose.yml -f test/docker-compose-integration.yml pull --parallel -q ai-reviewer-api ai-reviewer-mock-api ai-reviewer-admin ai-reviewer-cso-api keycloak-config
# - name: Standup Docker Pods (Local REPO only)
# if: github.event.pull_request.head.repo.full_name == github.repository
# run: docker-compose -f docker-compose.yml -f test/docker-compose-integration.yml up -d ai-reviewer-api ai-reviewer-mock-api ai-reviewer-admin ai-reviewer-cso-api
# - name: Standup Docker Pods (FORK only)
# if: github.event.pull_request.head.repo.full_name != github.repository
# run: docker-compose up -d ai-reviewer-api ai-reviewer-mock-api ai-reviewer-admin ai-reviewer-cso-api
# - name: Configure keycloak (Local REPO only)
# if: github.event.pull_request.head.repo.full_name == github.repository
# run: |
# docker-compose -f docker-compose.yml -f test/docker-compose-integration.yml up keycloak-config
# - name: Configure keycloak (FORK only)
# if: github.event.pull_request.head.repo.full_name != github.repository
# run: |
# docker-compose up keycloak-config
# - name: Running Integration Tests
# env:
# DOCKERIZE_VERSION: v0.6.1
# continue-on-error: true
# id: cucumber-test
# run: |
#Maven requires chrome driver.
# wget -q https://dl.google.com/linux/direct/google-chrome-stable_current_amd64.deb
# sudo apt-get -qq -y install ./google-chrome-stable_current_amd64.deb
#We need to test if ai-reviewer-api pod and service is running before we can proceed. Using dockerize to proceed only after the below ports can be reached.
# wget -q https://github.com/jwilder/dockerize/releases/download/$DOCKERIZE_VERSION/dockerize-linux-amd64-$DOCKERIZE_VERSION.tar.gz
# tar -xzvf dockerize-linux-amd64-$DOCKERIZE_VERSION.tar.gz
# ./dockerize -wait http://127.0.0.1:1337/api/isServerUp -timeout 120s -wait http://127.0.0.1:8090/actuator/health -timeout 120s -wait http://127.0.0.1:3002/actuator/health -timeout 120s -wait http://127.0.0.1:8686/actuator/health -timeout 120s
# mvn verify -ntp -f test/pom.xml
#Upload Spark report for debugging purposes
# - name: Upload Spark report for debugging purposes
# uses: actions/upload-artifact@v2
# with:
# name: cucumber-spark-report
# path: ./test/test-output/extent/Spark/Index.html
#Upload Cucumber JSON for debugging purposes
# - name: Upload Cucumber JSON for debugging purposes
# uses: actions/upload-artifact@v2
# with:
# name: cucumber-json-report
# path: ./test/target/cucumber-reports/CucumberTestReport.json
# - name: Set action status
# if: steps.cucumber-test.outcome != 'success'
# run: exit 1