.github/workflows/central_code_quality_check.yml

# Please do not attempt to edit this flow without the direct consent from the DevOps team. This file is managed centrally.
# Contact @moabu
# Sonar cloud https://sonarcloud.io/organizations/janssenproject/projects
name: Code quality check

on:
  push:
    branches:
      - master
      - main
      - "!update-pycloud-in-**"      
    paths-ignore:
      - 'docker-jans-**/CHANGELOG.md'
      - 'docker-jans-**/version.txt'
      - 'jans-pycloudlib/CHANGELOG.md'
      - 'jans-pycloudlib/jans/pycloudlib/version.py'
      - '**.md'

  pull_request:
    branches:
      - master
      - main
      - "!update-pycloud-in-**"      
    paths-ignore:
      - 'docker-jans-**/CHANGELOG.md'
      - 'docker-jans-**/version.txt'
      - 'jans-pycloudlib/CHANGELOG.md'
      - 'jans-pycloudlib/jans/pycloudlib/version.py'
      - '**.md'
  workflow_dispatch:
jobs:
  build:
    runs-on: ubuntu-latest
    env:
      JVM_PROJECTS: |
        JanssenProject/jans-auth-server
        JanssenProject/jans-orm
        JanssenProject/jans-config-api
        JanssenProject/jans-client-api
        JanssenProject/jans-scim
        JanssenProject/jans-core
        JanssenProject/jans-notify
        JanssenProject/jans-fido2
        JanssenProject/jans-eleven
      NON_JVM_PROJECTS: |
        JanssenProject/jans-setup
        JanssenProject/jans-cli
        JanssenProject/jans-cloud-native
    steps:
      - uses: actions/checkout@v2
        with:
          fetch-depth: 0  # Shallow clones should be disabled for a better relevancy of sonarqube analysis

      - name: Set up JDK 11
        # JanssenProject/jans-cli is too similar to JanssenProject/jans-client-api as the contains function is returning it belonging to the JVM_PROJECT
        if: contains(env.JVM_PROJECTS, github.repository) && github.repository != 'JanssenProject/jans-cli'
        uses: actions/setup-java@v2.5.0
        with:
          java-version: '11'
          distribution: 'adopt'
          
      - name: Cache SonarCloud packages for JVM based project
        # JanssenProject/jans-cli is too similar to JanssenProject/jans-client-api as the contains function is returning it belonging to the JVM_PROJECT
        if: contains(env.JVM_PROJECTS, github.repository) && github.repository != 'JanssenProject/jans-cli'
        uses: actions/cache@v2.1.7
        with:
          path: ~/.sonar/cache
          key: ${{ runner.os }}-sonar
          restore-keys: ${{ runner.os }}-sonar
          
      - name: Build and analyze JVM based project
        # JanssenProject/jans-cli is too similar to JanssenProject/jans-client-api as the contains function is returning it belonging to the JVM_PROJECT
        if: contains(env.JVM_PROJECTS, github.repository) && github.repository != 'JanssenProject/jans-cli'
        env:
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}  # Needed to get PR information, if any
          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
        run: |
          case "$GITHUB_REPOSITORY" in
            "JanssenProject/jans-auth-server")
                    ;&
            "JanssenProject/jans-client-api")
                    ;&
            "JanssenProject/jans-scim")
                    ;&
            "JanssenProject/jans-eleven")
                    ;&
            "JanssenProject/jans-config-api")
                  echo "Run Sonar analysis without test execution"
                  mvn -B -DskipTests=true install org.sonarsource.scanner.maven:sonar-maven-plugin:sonar
                ;;
            *)
            echo "Run Sonar analysis with test execution"
            mvn -B install org.sonarsource.scanner.maven:sonar-maven-plugin:sonar
            ;;
          esac


      - name: Convert repo org name to lowercase for non JVM projects
        if: contains(env.NON_JVM_PROJECTS, github.repository)
        env:
          REPO_OWNER: ${{ github.repository_owner }}
        run: |
          echo "REPO_ORG=${REPO_OWNER,,}" >>${GITHUB_ENV}

      - name: SonarCloud Scan for non-JVM project
        if: contains(env.NON_JVM_PROJECTS, github.repository)
        uses: SonarSource/sonarcloud-github-action@master
        with:
          args: >
            -Dsonar.organization=${{ env.REPO_ORG }}
            -Dsonar.projectKey=${{ github.repository_owner }}_${{ github.event.repository.name }}
        env:
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}  # Needed to get PR information, if any
          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}