Move subordinate CA tests into separate workflow #4562
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: IPA Tests | |
on: [push, pull_request] | |
env: | |
BASE_IMAGE: ${{ vars.BASE_IMAGE || 'registry.fedoraproject.org/fedora:latest' }} | |
COPR_REPO: ${{ vars.COPR_REPO || '@pki/master' }} | |
jobs: | |
init: | |
name: Initialization | |
uses: ./.github/workflows/init.yml | |
secrets: inherit | |
build: | |
name: Building IPA images | |
needs: init | |
runs-on: ubuntu-latest | |
steps: | |
- name: Clone repository | |
uses: actions/checkout@v3 | |
- name: Set up Docker Buildx | |
uses: docker/setup-buildx-action@v2 | |
- name: Cache Docker layers | |
id: cache-buildx | |
uses: actions/cache@v3 | |
with: | |
key: buildx-${{ hashFiles('pki.spec') }} | |
path: /tmp/.buildx-cache | |
- name: Build pki-deps image | |
uses: docker/build-push-action@v3 | |
with: | |
context: . | |
build-args: | | |
BASE_IMAGE=${{ env.BASE_IMAGE }} | |
COPR_REPO=${{ env.COPR_REPO }} | |
tags: pki-deps | |
target: pki-deps | |
cache-to: type=local,dest=/tmp/.buildx-cache | |
if: steps.cache-buildx.outputs.cache-hit != 'true' | |
- name: Build pki-builder-deps image | |
uses: docker/build-push-action@v3 | |
with: | |
context: . | |
build-args: | | |
BASE_IMAGE=${{ env.BASE_IMAGE }} | |
COPR_REPO=${{ env.COPR_REPO }} | |
tags: pki-builder-deps | |
target: pki-builder-deps | |
cache-to: type=local,dest=/tmp/.buildx-cache | |
if: steps.cache-buildx.outputs.cache-hit != 'true' | |
- name: Build ipa-runner image | |
uses: docker/build-push-action@v3 | |
with: | |
context: . | |
build-args: | | |
BASE_IMAGE=${{ env.BASE_IMAGE }} | |
COPR_REPO=${{ env.COPR_REPO }} | |
BUILD_OPTS=--with-pkgs=base,server,ca,kra,acme --without-test | |
tags: ipa-runner | |
target: ipa-runner | |
cache-from: type=local,src=/tmp/.buildx-cache | |
outputs: type=docker | |
- name: Save IPA images | |
run: | | |
docker images | |
docker save -o ipa-images.tar ipa-runner | |
- name: Store IPA images | |
uses: actions/cache@v3 | |
with: | |
key: ipa-images-${{ github.sha }} | |
path: ipa-images.tar | |
ipa-basic-test: | |
name: Basic IPA | |
needs: [init, build] | |
uses: ./.github/workflows/ipa-basic-test.yml | |
with: | |
db-image: ${{ needs.init.outputs.db-image }} | |
ipa-acme-test: | |
name: IPA ACME | |
needs: [init, build] | |
uses: ./.github/workflows/ipa-acme-test.yml | |
with: | |
db-image: ${{ needs.init.outputs.db-image }} | |
ipa-subca-test: | |
name: IPA with Sub-CA | |
needs: [init, build] | |
uses: ./.github/workflows/ipa-subca-test.yml | |
with: | |
db-image: ${{ needs.init.outputs.db-image }} | |
ipa-clone-test: | |
name: IPA clone | |
needs: [init, build] | |
uses: ./.github/workflows/ipa-clone-test.yml | |
with: | |
db-image: ${{ needs.init.outputs.db-image }} |