-
Notifications
You must be signed in to change notification settings - Fork 1
141 lines (136 loc) · 5.32 KB
/
main.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
# This is the main workflow which will orchestrate the other workflows:
name: main
on:
push:
branches: [develop, main]
pull_request:
branches: [develop, main]
workflow_dispatch:
concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true
env:
PGUSER: postgres
jobs:
check-nx-affected:
runs-on: ubuntu-latest
outputs:
NX_AFFECTED_E2E: ${{steps.check-nx-affected.outputs.NX_AFFECTED_E2E}}
steps:
- name: Checkout
uses: actions/checkout@v4
with:
fetch-depth: 0
- name: dev env setup
uses: ./.github/actions/dev-env-setup
- name: check nx affected target e2e:ci projects and save output
id: check-nx-affected
run: |
NX_AFFECTED_E2E=$(yarn nx show projects --affected --with-target e2e:ci --base=origin/develop)
echo "NX_AFFECTED_E2E="$NX_AFFECTED_E2E"" >> "$GITHUB_OUTPUT"
working-directory: ./bciers
shell: bash
build-backend:
uses: ./.github/workflows/build-backend.yaml
build-registration:
uses: ./.github/workflows/build-registration.yaml
build-dashboard:
uses: ./.github/workflows/build-dashboard.yaml
build-dashboard-e2e:
uses: ./.github/workflows/build-dashboard-e2e.yaml
build-registration1:
uses: ./.github/workflows/build-registration1.yaml
build-reporting:
uses: ./.github/workflows/build-reporting.yaml
build-coam:
uses: ./.github/workflows/build-coam.yaml
build-administration:
uses: ./.github/workflows/build-administration.yaml
test-code:
needs: [check-nx-affected]
uses: ./.github/workflows/test-code.yaml
test-backend:
needs: [build-backend, check-nx-affected]
uses: ./.github/workflows/test-backend.yaml
secrets: inherit
test-administration-e2e:
needs:
[
build-backend,
build-dashboard-e2e,
build-administration,
check-nx-affected,
]
uses: ./.github/workflows/test-nx-project-e2e.yaml
with:
nx_project: administration
nx_app_port: 4001
image_url: "ghcr.io/bcgov/cas-admin-frontend"
is_nx_affected: ${{contains(needs.check-nx-affected.outputs.NX_AFFECTED_E2E, 'administration') || github.ref_name == 'develop' || github.ref_name == 'main' || github.head_ref == 'develop' || github.head_ref == 'main'}}
secrets: inherit
test-coam-e2e:
needs: [build-backend, build-dashboard-e2e, build-coam, check-nx-affected]
uses: ./.github/workflows/test-nx-project-e2e.yaml
with:
nx_project: coam
nx_app_port: 7000
image_url: "ghcr.io/bcgov/cas-coam-frontend"
is_nx_affected: ${{contains(needs.check-nx-affected.outputs.NX_AFFECTED_E2E, 'coam') || github.ref_name == 'develop' || github.ref_name == 'main' || github.head_ref == 'develop' || github.head_ref == 'main'}}
secrets: inherit
test-reporting-e2e:
needs:
[build-backend, build-dashboard-e2e, build-reporting, check-nx-affected]
uses: ./.github/workflows/test-nx-project-e2e.yaml
with:
nx_project: reporting
nx_app_port: 5000
image_url: "ghcr.io/bcgov/cas-rep-frontend"
is_nx_affected: ${{contains(needs.check-nx-affected.outputs.NX_AFFECTED_E2E, 'reporting') || github.ref_name == 'develop' || github.ref_name == 'main' || github.head_ref == 'develop' || github.head_ref == 'main'}}
secrets: inherit
test-registration1-e2e:
needs: [build-backend, build-registration1, check-nx-affected]
uses: ./.github/workflows/test-registration1-e2e.yaml
secrets: inherit
test-registration-e2e:
needs:
[
build-backend,
build-dashboard-e2e,
build-registration,
check-nx-affected,
]
uses: ./.github/workflows/test-nx-project-e2e.yaml
with:
nx_project: registration
nx_app_port: 4000
image_url: "ghcr.io/bcgov/cas-reg-frontend"
is_nx_affected: ${{contains(needs.check-nx-affected.outputs.NX_AFFECTED_E2E, 'registration') || github.ref_name == 'develop' || github.ref_name == 'main' || github.head_ref == 'develop' || github.head_ref == 'main'}}
secrets: inherit
e2e-finalize:
needs:
[
test-administration-e2e,
test-coam-e2e,
test-reporting-e2e,
test-registration-e2e,
test-registration1-e2e,
]
# Run this job only if all the e2e tests are successful or skipped but not on failure.
# This was needed as just the `needs` condition was skipping the entire job if any of the e2e tests were skipped.
if: |
always() &&
(needs.test-administration-e2e.result == 'success' || needs.test-administration-e2e.result == 'skipped') &&
(needs.test-coam-e2e.result == 'success' || needs.test-coam-e2e.result == 'skipped') &&
(needs.test-reporting-e2e.result == 'success' || needs.test-reporting-e2e.result == 'skipped') &&
(needs.test-registration-e2e.result == 'success' || needs.test-registration-e2e.result == 'skipped') &&
(needs.test-registration1-e2e.result == 'success' || needs.test-registration1-e2e.result == 'skipped')
uses: ./.github/workflows/e2e-finalize.yaml
secrets: inherit
zap-owasp:
# We will need to set up the BCIERS apps to get zap scanned
needs: [build-backend, build-registration1, check-nx-affected]
uses: ./.github/workflows/zap-owasp.yaml
trivy:
uses: ./.github/workflows/trivy.yaml
codeql:
uses: ./.github/workflows/codeql.yaml