Use Java 21 on RHEL 10 #275
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: PKI Tests | |
on: [push, pull_request] | |
env: | |
NAMESPACE: ${{ vars.REGISTRY_NAMESPACE || 'dogtagpki' }} | |
jobs: | |
build: | |
name: Waiting for build | |
runs-on: ubuntu-latest | |
steps: | |
- name: Wait for build | |
uses: lewagon/[email protected] | |
with: | |
ref: ${{ github.ref }} | |
check-name: 'Building LDAP SDK' | |
repo-token: ${{ secrets.GITHUB_TOKEN }} | |
wait-interval: 30 | |
if: github.event_name == 'push' | |
- name: Wait for build | |
uses: lewagon/[email protected] | |
with: | |
ref: ${{ github.event.pull_request.head.sha }} | |
check-name: 'Building LDAP SDK' | |
repo-token: ${{ secrets.GITHUB_TOKEN }} | |
wait-interval: 30 | |
if: github.event_name == 'pull_request' | |
ca-test: | |
name: Installing CA | |
needs: build | |
runs-on: ubuntu-latest | |
env: | |
SHARED: /tmp/workdir/ldapjdk | |
steps: | |
- name: Clone the repository | |
uses: actions/checkout@v4 | |
- name: Retrieve LDAP SDK image | |
uses: actions/cache@v4 | |
with: | |
key: ldapjdk-images-${{ github.sha }} | |
path: ldapjdk-images.tar | |
- name: Load LDAP SDK image | |
run: docker load --input ldapjdk-images.tar | |
- name: Run container | |
run: | | |
tests/bin/runner-init.sh pki | |
env: | |
HOSTNAME: pki.example.com | |
- name: Import PKI packages | |
run: | | |
docker create --name=pki-dist quay.io/$NAMESPACE/pki-dist:latest | |
docker cp pki-dist:/root/RPMS/. /tmp/RPMS/ | |
docker rm -f pki-dist | |
- name: Install packages | |
run: | | |
docker exec pki dnf install -y 389-ds-base | |
docker cp /tmp/RPMS/. pki:/root/RPMS/ | |
docker exec pki bash -c "dnf localinstall -y /root/RPMS/*" | |
- name: Install DS | |
run: docker exec pki ${SHARED}/tests/bin/ds-create.sh | |
- name: Install CA | |
run: docker exec pki pkispawn -f /usr/share/pki/server/examples/installation/ca.cfg -s CA -v | |
- name: Run PKI healthcheck | |
run: docker exec pki pki-healthcheck --debug | |
- name: Verify CA admin | |
run: | | |
docker exec pki pki-server cert-export ca_signing --cert-file ca_signing.crt | |
docker exec pki pki nss-cert-import \ | |
--cert ca_signing.crt \ | |
--trust CT,C,C \ | |
ca_signing | |
docker exec pki pki pkcs12-import \ | |
--pkcs12 /root/.dogtag/pki-tomcat/ca_admin_cert.p12 \ | |
--pkcs12-password Secret.123 | |
docker exec pki pki -n caadmin ca-user-show caadmin | |
- name: Gather artifacts | |
if: always() | |
run: | | |
tests/bin/ds-artifacts-save.sh pki | |
tests/bin/pki-artifacts-save.sh pki | |
- name: Remove CA | |
run: docker exec pki pkidestroy -i pki-tomcat -s CA -v | |
- name: Remove DS | |
run: docker exec pki ${SHARED}/tests/bin/ds-remove.sh | |
- name: Upload artifacts | |
if: always() | |
uses: actions/upload-artifact@v4 | |
with: | |
name: ca | |
path: | | |
/tmp/artifacts/pki |