Merge pull request #337 from cnescatlab/dependabot/npm_and_yarn/loade… #290
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Description | |
# =========== | |
# This workflow is triggered each time | |
# commits are pushed to GitHub or a pull request is opened. | |
# It launches three jobs in parallel : a build with java 8, | |
# a build with java 11 and a SonarCloud analysis. | |
--- | |
name: Java CI | |
on: [push, pull_request] | |
jobs: | |
build: | |
runs-on: ubuntu-latest | |
strategy: | |
matrix: | |
java: [ '11', '17' ] | |
name: Java ${{ matrix.Java }} CI | |
steps: | |
- name: Check out repository code | |
uses: actions/checkout@v2 | |
with: | |
fetch-depth: 0 | |
- name: Setup java | |
uses: actions/setup-java@v2 | |
with: | |
distribution: 'adopt' | |
java-version: ${{ matrix.java }} | |
- name: Cache Maven packages | |
uses: actions/cache@v2 | |
with: | |
path: ~/.m2 | |
key: ${{ runner.os }}-m2-${{ hashFiles('**/pom.xml') }} | |
restore-keys: ${{ runner.os }}-m2 | |
- name: Cache node_modules | |
uses: actions/cache@v2 | |
with: | |
path: node_modules | |
key: ${{ runner.os }}-modules-${{ hashFiles('**/yarn.lock') }} | |
restore-keys: ${{ runner.os }}-yarn- | |
- name: Build with Maven | |
run: mvn -B clean package | |
- name: Test cnes-report | |
env: | |
SONARQUBE_VERSION: 9.9-community | |
run: | | |
version=$(cat pom.xml | grep "<version>.*</version>" | head -1 |awk -F'[><]' '{print $3}'); | |
echo "Starting docker"; | |
docker run --name sonarqube_${SONARQUBE_VERSION} -d -p 9000:9000 sonarqube:${SONARQUBE_VERSION}; | |
echo "Inject plugin"; | |
docker cp target/sonar-cnes-report-${version}.jar sonarqube_${SONARQUBE_VERSION}:/opt/sonarqube/extensions/plugins/; | |
docker exec -u root sonarqube_${SONARQUBE_VERSION} chown sonarqube:sonarqube /opt/sonarqube/extensions/plugins/sonar-cnes-report-${version}.jar; | |
docker restart sonarqube_${SONARQUBE_VERSION}; | |
echo "Waiting up to 5 minutes for SonarQube..."; | |
counter=0; | |
limit=300; | |
status_sonar=$(curl -s "http://localhost:9000/api/system/status" | grep "\"status\":\"UP\"" > /dev/null; echo $?); | |
while [[ 0 -ne $status_sonar && $counter -le $limit ]]; do | |
sleep 1; | |
counter=$(( $counter + 1 )); | |
status_sonar=$(curl -s "http://localhost:9000/api/system/status" | grep "\"status\":\"UP\"" > /dev/null; echo $?); | |
done; | |
mvn sonar:sonar -Dsonar.host.url=http://localhost:9000 -Dsonar.login=admin -Dsonar.password=admin -Dsonar.organization=default-organization; | |
echo "Waiting for the SonarQube Compute Engine task to be completed..."; | |
ce=$(grep ceTaskUrl= target/sonar/report-task.txt); | |
ceTaskUrl=${ce:10}; | |
continue=true; | |
while [ $continue = true ]; do | |
status=$(curl -s -u admin:admin ${ceTaskUrl} | jq -r '.task.status'); | |
if [ $status = SUCCESS ] | |
then | |
continue=false; | |
elif [ $status = FAILED ] || [ $status = CANCELED ] | |
then | |
exit 1; | |
else | |
sleep 1; | |
fi | |
done; | |
token_sonarqube=$(curl -s -X POST -H "Content-Type: application/x-www-form-urlencoded" -d "name=admin_token" -u admin:admin http://localhost:9000/api/user_tokens/generate | jq -r '.token'); | |
java -jar target/sonar-cnes-report-${version}.jar -t ${token_sonarqube} -p fr.cnes.sonar:cnesreport -s http://localhost:9000; | |
url_cnesreport="http://localhost:9000/api/cnesreport/report?key=fr.cnes.sonar%3Acnesreport&author=github-actions&token=${token_sonarqube}"; | |
curl -u admin:admin ${url_cnesreport} -O -J; | |
code-analysis: | |
runs-on: ubuntu-latest | |
name: SonarCloud Code Analysis | |
# It's not possible to launch an analysis on external pull requests | |
if: ${{ github.repository_owner == 'cnescatlab' }} | |
steps: | |
- name: Check out repository code | |
uses: actions/checkout@v2 | |
with: | |
fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis | |
- name: Setup java | |
uses: actions/setup-java@v2 | |
with: | |
distribution: 'adopt' | |
java-version: '17' | |
- name: Cache Maven packages | |
uses: actions/cache@v2 | |
with: | |
path: ~/.m2 | |
key: ${{ runner.os }}-m2-${{ hashFiles('**/pom.xml') }} | |
restore-keys: ${{ runner.os }}-m2 | |
- name: Cache node_modules | |
uses: actions/cache@v2 | |
with: | |
path: node_modules | |
key: ${{ runner.os }}-modules-${{ hashFiles('**/yarn.lock') }} | |
restore-keys: ${{ runner.os }}-yarn- | |
- name: Cache SonarCloud packages | |
uses: actions/cache@v2 | |
with: | |
path: ~/.sonar/cache | |
key: ${{ runner.os }}-sonar | |
restore-keys: ${{ runner.os }}-sonar | |
- name: Build and analyze | |
env: | |
# Needed to get some information about the pull request, if any | |
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
# SonarCloud access token should be generated from https://sonarcloud.io/account/security/ | |
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} | |
run: mvn clean org.jacoco:jacoco-maven-plugin:prepare-agent package sonar:sonar -Dsonar.token=$SONAR_TOKEN |