signoff for upmerge git commit (#1889) #3173
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Test Samples (k3d and EKS) | |
on: | |
workflow_dispatch: | |
inputs: | |
version: | |
description: "Radius version number to use (e.g. 0.1.0, 0.1.0-rc1, edge)." | |
required: false | |
type: string | |
push: | |
branches: | |
- v*.* | |
- edge | |
paths: | |
- "samples/**" | |
- ".github/workflows/**" | |
pull_request: | |
types: [opened, synchronize, reopened] | |
branches: | |
- v*.* | |
- edge | |
schedule: # Run every day at 12 PM | |
- cron: "0 12 * * *" | |
env: | |
RUN_IDENTIFIER: samplestest-${{ github.run_id }}-${{ github.run_attempt }} | |
jobs: | |
test: | |
name: Sample tests | |
runs-on: ${{ matrix.os }} | |
strategy: | |
fail-fast: false | |
matrix: | |
include: | |
- name: demo | |
os: ubuntu-latest | |
runOnPullRequest: true | |
app: demo | |
env: default | |
path: ./samples/demo/app.bicep | |
deployArgs: --application demo -p image=sampleregistry:5000/samples/demo | |
exposeArgs: --application demo | |
uiTestFile: tests/demo/demo.app.spec.ts | |
port: 3000 | |
container: demo | |
enableDapr: false | |
images: samples/demo | |
directories: samples/demo/ | |
- name: dapr | |
os: ubuntu-latest-m | |
runOnPullRequest: true | |
app: dapr | |
env: default | |
path: ./samples/dapr/dapr.bicep | |
deployArgs: -p frontendImage=sampleregistry:5000/samples/dapr-frontend -p backendImage=sampleregistry:5000/samples/dapr-backend | |
enableDapr: true | |
images: samples/dapr-frontend,samples/dapr-backend | |
directories: samples/dapr/ui/,samples/dapr/nodeapp/ | |
- name: volumes | |
os: ubuntu-latest | |
runOnPullRequest: true | |
app: myapp | |
env: default | |
path: ./samples/volumes/app.bicep | |
deployArgs: -p image=sampleregistry:5000/samples/volumes | |
enableDapr: false | |
images: samples/volumes | |
directories: samples/volumes/ | |
- name: eshop-containers | |
os: ubuntu-latest-m | |
runOnPullRequest: true | |
app: eshop | |
env: default | |
path: ./samples/eshop/eshop.bicep | |
uiTestFile: tests/eshop/eshop.app.spec.ts | |
enableDapr: false | |
- name: eshop-azure | |
os: ubuntu-latest-m | |
runOnPullRequest: false | |
app: eshop | |
env: azure | |
path: ./samples/eshop/eshop.bicep | |
uiTestFile: tests/eshop/eshop.app.spec.ts | |
credential: azure | |
enableDapr: false | |
- name: eshop-aws | |
os: ubuntu-latest-m | |
runOnPullRequest: false | |
app: eshop | |
env: aws | |
path: ./samples/eshop/eshop.bicep | |
uiTestFile: tests/eshop/eshop.app.spec.ts | |
credential: aws | |
enableDapr: false | |
env: | |
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
AZURE_LOCATION: westus3 | |
AWS_REGION: us-west-2 | |
AWS_ZONES: us-west-2a,us-west-2b,us-west-2c | |
steps: | |
# Setup the test assets and configuration | |
- name: Generate output variables | |
id: gen-id | |
run: | | |
RUN_IDENTIFIER=${{ env.RUN_IDENTIFIER }}-${{ matrix.name }} | |
if [[ "${{ github.event_name }}" == "pull_request" && "${{ matrix.runOnPullRequest }}" == "false" ]]; then | |
RUN_TEST=false | |
else | |
RUN_TEST=true | |
fi | |
if [[ "${{ matrix.enableDapr }}" == "true" ]]; then | |
ENABLE_DAPR=true | |
else | |
ENABLE_DAPR=false | |
fi | |
# Set output variables to be used in the other jobs | |
echo "RUN_IDENTIFIER=${RUN_IDENTIFIER}" >> $GITHUB_OUTPUT | |
echo "TEST_AZURE_RESOURCE_GROUP=rg-${RUN_IDENTIFIER}" >> $GITHUB_OUTPUT | |
echo "TEST_EKS_CLUSTER_NAME=eks-${RUN_IDENTIFIER}" >> $GITHUB_OUTPUT | |
echo "RUN_TEST=${RUN_TEST}" >> $GITHUB_OUTPUT | |
echo "ENABLE_DAPR=${ENABLE_DAPR}" >> $GITHUB_OUTPUT | |
- name: Generate Radius version variables | |
id: gen-radius-version | |
if: steps.gen-id.outputs.RUN_TEST == 'true' | |
run: | | |
RADIUS_VERSION=edge | |
if [[ "${{ github.event_name }}" == "workflow_dispatch" ]]; then | |
RADIUS_VERSION=${{ github.event.inputs.version }} | |
elif [[ "${{ github.event_name }}" == "push" ]]; then | |
# Get the target branch of the push event | |
TARGET_BRANCH=${{ github.ref }} | |
if [[ "$TARGET_BRANCH" == "refs/heads/edge" ]]; then | |
RADIUS_VERSION=edge | |
elif [[ "$TARGET_BRANCH" =~ ^refs/heads/v[0-9]+\.[0-9]+$ ]]; then | |
# Example: refs/heads/v0.1 -> 0.1 | |
RADIUS_VERSION=$(echo ${{ github.ref }} | cut -d '/' -f 3 | cut -d 'v' -f 2) | |
fi | |
elif [[ "${{ github.event_name }}" == "pull_request" ]]; then | |
# Get the target branch of the pull request | |
TARGET_BRANCH=${{ github.event.pull_request.base.ref }} | |
if [[ "$TARGET_BRANCH" == "edge" ]]; then | |
RADIUS_VERSION=edge | |
elif [[ "$TARGET_BRANCH" =~ ^refs/pull/v[0-9]+\.[0-9]+/merge$ ]]; then | |
# Example: refs/pull/v0.1/merge -> 0.1 | |
RADIUS_VERSION=$(echo ${{ github.ref }} | cut -d '/' -f 3 | cut -d 'v' -f 2) | |
fi | |
elif [[ "${{ github.event_name }}" == "schedule" ]]; then | |
# Get the branch of the schedule event | |
TARGET_BRANCH=${{ github.ref }} | |
if [[ "$TARGET_BRANCH" == "refs/heads/edge" ]]; then | |
RADIUS_VERSION=edge | |
elif [[ "$TARGET_BRANCH" =~ ^refs/heads/v[0-9]+\.[0-9]+$ ]]; then | |
# Example: refs/heads/v0.1 -> 0.1 | |
RADIUS_VERSION=$(echo ${{ github.ref }} | cut -d '/' -f 3 | cut -d 'v' -f 2) | |
else | |
echo "Invalid branch name: $TARGET_BRANCH" | |
exit 1 | |
fi | |
else | |
echo "Invalid event name: ${{ github.event_name }}" | |
exit 1 | |
fi | |
echo "RADIUS_VERSION=$RADIUS_VERSION" >> $GITHUB_OUTPUT | |
- name: Checkout code | |
if: steps.gen-id.outputs.RUN_TEST == 'true' | |
uses: actions/checkout@v4 | |
- name: Ensure inputs.version is valid semver | |
if: steps.gen-id.outputs.RUN_TEST == 'true' && inputs.version != '' | |
run: | | |
python ./.github/scripts/validate_semver.py ${{ inputs.version }} | |
- name: Setup Node | |
if: steps.gen-id.outputs.RUN_TEST == 'true' | |
uses: actions/setup-node@v4 | |
with: | |
node-version: 20 | |
- name: az CLI login | |
if: steps.gen-id.outputs.RUN_TEST == 'true' && matrix.credential == 'azure' | |
run: | | |
az login --service-principal \ | |
--username ${{ secrets.AZURE_SP_TESTS_APPID }} \ | |
--password ${{ secrets.AZURE_SP_TESTS_PASSWORD }} \ | |
--tenant ${{ secrets.AZURE_SP_TESTS_TENANTID }} | |
- name: Configure AWS | |
if: steps.gen-id.outputs.RUN_TEST == 'true' && matrix.credential == 'aws' | |
run: | | |
aws configure set aws_access_key_id ${{ secrets.AWS_ACCESS_KEY_ID }} | |
aws configure set aws_secret_access_key ${{ secrets.AWS_SECRET_ACCESS_KEY }} | |
aws configure set region ${{ env.AWS_REGION }} | |
aws configure set output json | |
- name: Download k3d | |
if: steps.gen-id.outputs.RUN_TEST == 'true' | |
run: wget -q -O - https://raw.githubusercontent.com/k3d-io/k3d/main/install.sh | bash | |
- name: Create k3d cluster | |
if: steps.gen-id.outputs.RUN_TEST == 'true' | |
# Map localhost port 80 on the external load balancer, and disable traefik and the internal load balancer. | |
run: k3d cluster create --agents 2 -p "80:80@loadbalancer" --k3s-arg "--disable=traefik@server:*" --k3s-arg "--disable=servicelb@server:*" --registry-create sampleregistry:51351 | |
- name: Build images | |
if: steps.gen-id.outputs.RUN_TEST == 'true' && matrix.images != '' | |
run: | | |
# split images and directories into arrays | |
IFS=',' read -ra images <<< "${{ matrix.images }}" | |
IFS=',' read -ra directories <<< "${{ matrix.directories }}" | |
echo "Building images: $images" | |
echo "Directories: $directories" | |
for index in "${!images[@]}"; do | |
image=${images[$index]} | |
directory=${directories[$index]} | |
echo "Building image $image from directory $directory" | |
docker build -t localhost:51351/$image:latest $directory | |
docker push localhost:51351/$image:latest | |
done | |
# Create and install test environment | |
- name: Create Azure resource group | |
if: steps.gen-id.outputs.RUN_TEST == 'true' && matrix.credential == 'azure' | |
id: create-azure-resource-group | |
run: | | |
current_time=$(date +%s) | |
az group create \ | |
--location ${{ env.AZURE_LOCATION }} \ | |
--name ${{ steps.gen-id.outputs.TEST_AZURE_RESOURCE_GROUP }} \ | |
--subscription ${{ secrets.AZURE_SUBSCRIPTIONID_TESTS }} \ | |
--tags creationTime=$current_time | |
while [ $(az group exists --name ${{ steps.gen-id.outputs.TEST_AZURE_RESOURCE_GROUP }} --subscription ${{ secrets.AZURE_SUBSCRIPTIONID_TESTS }}) = false ]; do | |
echo "Waiting for resource group ${{ steps.gen-id.outputs.TEST_AZURE_RESOURCE_GROUP }} to be created..." | |
sleep 5 | |
done | |
- name: Create EKS Cluster | |
if: steps.gen-id.outputs.RUN_TEST == 'true' && matrix.credential == 'aws' | |
id: create-eks | |
run: | | |
curl --silent --location "https://github.com/weaveworks/eksctl/releases/latest/download/eksctl_$(uname -s)_amd64.tar.gz" | tar xz -C /tmp | |
sudo mv /tmp/eksctl /usr/local/bin | |
eksctl create cluster \ | |
--name ${{ steps.gen-id.outputs.TEST_EKS_CLUSTER_NAME }} \ | |
--nodes-min 1 --nodes-max 2 --node-type t3.large \ | |
--zones ${{ env.AWS_ZONES }} \ | |
--managed \ | |
--region ${{ env.AWS_REGION }} | |
while [[ "$(eksctl get cluster ${{ steps.gen-id.outputs.TEST_EKS_CLUSTER_NAME }} --region ${{ env.AWS_REGION }} -o json | jq -r .[0].Status)" != "ACTIVE" ]]; do | |
echo "Waiting for EKS cluster to be created..." | |
sleep 60 | |
done | |
aws eks update-kubeconfig --region ${{ env.AWS_REGION }} --name ${{ steps.gen-id.outputs.TEST_EKS_CLUSTER_NAME }} | |
timeout-minutes: 60 | |
continue-on-error: false | |
- name: Install Dapr | |
if: steps.gen-id.outputs.RUN_TEST == 'true' && steps.gen-id.outputs.ENABLE_DAPR == 'true' | |
run: | | |
helm repo add dapr https://dapr.github.io/helm-charts/ | |
helm install dapr dapr/dapr --version=1.6 --namespace dapr-system --create-namespace --wait | |
- name: Download rad CLI | |
if: steps.gen-id.outputs.RUN_TEST == 'true' | |
run: | | |
./.github/scripts/install-radius.sh ${{ steps.gen-radius-version.outputs.RADIUS_VERSION }} | |
- name: Initialize default environment | |
if: steps.gen-id.outputs.RUN_TEST == 'true' | |
run: | | |
if [[ "${{ matrix.credential }}" == "aws" ]]; then | |
rad install kubernetes | |
else | |
rad install kubernetes --set rp.publicEndpointOverride=localhost | |
fi | |
rad group create default | |
rad workspace create kubernetes default --group default | |
rad group switch default | |
rad env create default | |
rad env switch default | |
rad recipe register default -e default -w default --template-kind bicep --template-path ghcr.io/radius-project/recipes/local-dev/rediscaches:${{ steps.gen-radius-version.outputs.RADIUS_VERSION }} --resource-type Applications.Datastores/redisCaches | |
rad recipe register default -e default -w default --template-kind bicep --template-path ghcr.io/radius-project/recipes/local-dev/mongodatabases:${{ steps.gen-radius-version.outputs.RADIUS_VERSION }} --resource-type Applications.Datastores/mongoDatabases | |
rad recipe register default -e default -w default --template-kind bicep --template-path ghcr.io/radius-project/recipes/local-dev/sqldatabases:${{ steps.gen-radius-version.outputs.RADIUS_VERSION }} --resource-type Applications.Datastores/sqlDatabases | |
rad recipe register default -e default -w default --template-kind bicep --template-path ghcr.io/radius-project/recipes/local-dev/rabbitmqqueues:${{ steps.gen-radius-version.outputs.RADIUS_VERSION }} --resource-type Applications.Messaging/rabbitMQQueues | |
- name: Configure cloud credentials | |
if: steps.gen-id.outputs.RUN_TEST == 'true' && ( matrix.credential == 'azure' || matrix.credential == 'aws') | |
run: | | |
if [[ "${{ matrix.credential }}" == "azure" ]]; then | |
rad env update default --azure-subscription-id ${{ secrets.AZURE_SUBSCRIPTIONID_TESTS }} --azure-resource-group ${{ steps.gen-id.outputs.TEST_AZURE_RESOURCE_GROUP }} | |
rad credential register azure sp --client-id ${{ secrets.AZURE_SP_TESTS_APPID }} --client-secret ${{ secrets.AZURE_SP_TESTS_PASSWORD }} --tenant-id ${{ secrets.AZURE_SP_TESTS_TENANTID }} | |
fi | |
if [[ "${{ matrix.credential }}" == "aws" ]]; then | |
rad env update default --aws-region ${{ env.AWS_REGION }} --aws-account-id ${{ secrets.AWS_ACCOUNT_ID }} | |
rad credential register aws access-key --access-key-id ${{ secrets.AWS_ACCESS_KEY_ID }} --secret-access-key ${{ secrets.AWS_SECRET_ACCESS_KEY }} | |
fi | |
## This step is temporary until we have Recipe Packs for Azure & AWS and update the eShop sample | |
- name: Initialize eShop environments | |
if: steps.gen-id.outputs.RUN_TEST == 'true' && matrix.app == 'eshop' | |
run: | | |
if [[ "${{ matrix.credential }}" == "azure" ]]; then | |
rad deploy ./samples/eshop/environments/azure.bicep -p azureResourceGroup=${{ steps.gen-id.outputs.TEST_AZURE_RESOURCE_GROUP }} -p azureSubscriptionId=${{ secrets.AZURE_SUBSCRIPTIONID_TESTS }} | |
elif [[ "${{ matrix.credential }}" == "aws" ]]; then | |
rad deploy ./samples/eshop/environments/aws.bicep -p awsAccountId=${{ secrets.AWS_ACCOUNT_ID }} -p awsRegion=${{ env.AWS_REGION }} -p eksClusterName=${{ steps.gen-id.outputs.TEST_EKS_CLUSTER_NAME }} | |
fi | |
rad env switch ${{ matrix.env }} | |
# Deploy application and run tests | |
# Retry the deployment step in case of transient failures | |
- name: Deploy app | |
if: steps.gen-id.outputs.RUN_TEST == 'true' | |
id: deploy-app | |
uses: nick-fields/retry@v3 | |
with: | |
timeout_minutes: 30 | |
max_attempts: 3 | |
retry_wait_seconds: 30 | |
command: rad deploy ${{ matrix.path }} ${{ matrix.deployArgs }} | |
- name: Run Playwright Test | |
if: steps.gen-id.outputs.RUN_TEST == 'true' && matrix.uiTestFile != '' | |
id: run-playwright-test | |
run: | | |
if [[ "${{ matrix.container }}" != "" ]]; then | |
rad resource expose containers ${{ matrix.container }} ${{ matrix.exposeArgs }} --port ${{ matrix.port }} & | |
export ENDPOINT="http://localhost:3000/" | |
else | |
endpoint="$(rad app status -a ${{ matrix.app }} | sed 's/ /\n/g' | grep http)" | |
echo "Endpoint: $endpoint" | |
export ENDPOINT=$endpoint | |
fi | |
cd playwright/ | |
npm ci | |
npx playwright install --with-deps | |
npx playwright test ${{ matrix.uiTestFile }} --retries 3 | |
- name: Upload Playwright Results | |
uses: actions/upload-artifact@v4 | |
if: always() && (steps.run-playwright-test.outcome == 'success' || steps.run-playwright-test.outcome == 'failure') | |
with: | |
name: playwright-report-${{ matrix.name }} | |
path: playwright/playwright-report/ | |
retention-days: 30 | |
if-no-files-found: error | |
- name: Upload Playwright Videos | |
uses: actions/upload-artifact@v4 | |
if: always() && steps.run-playwright-test.outcome == 'failure' | |
with: | |
name: playwright-video-${{ matrix.name }} | |
path: playwright/test-results/ | |
retention-days: 30 | |
if-no-files-found: error | |
# Handle failures | |
- name: Get Pod logs for failed tests | |
id: get-pod-logs | |
if: failure() && (steps.run-playwright-test.outcome == 'failure' || steps.deploy-app.outcome == 'failure') | |
run: | | |
# Create pod-logs directory | |
mkdir -p playwright/pod-logs/${{ matrix.name }} | |
# Get pod logs and save to file | |
namespace="${{ matrix.env }}-${{ matrix.app }}" | |
label="radapp.io/application=${{ matrix.app }}" | |
pod_names=($(kubectl get pods -l $label -n $namespace -o jsonpath='{.items[*].metadata.name}')) | |
for pod_name in "${pod_names[@]}"; do | |
kubectl logs $pod_name -n $namespace > playwright/pod-logs/${{ matrix.name }}/${pod_name}.txt | |
done | |
echo "Pod logs saved to playwright/pod-logs/${{ matrix.name }}/" | |
# Get kubernetes events and save to file | |
kubectl get events -n $namespace > playwright/pod-logs/${{ matrix.name }}/events.txt | |
- name: Upload Pod logs for failed tests | |
uses: actions/upload-artifact@v4 | |
if: failure() && steps.get-pod-logs.outcome == 'success' | |
with: | |
name: ${{ matrix.name }}-pod-logs | |
path: playwright/pod-logs/${{ matrix.name }} | |
retention-days: 30 | |
if-no-files-found: error | |
- name: Create GitHub issue on failure | |
if: failure() && github.event_name == 'schedule' | |
run: gh issue create --title "Samples deployment failed for ${{ matrix.name }}" --body "Test failed on ${{ github.repository }}. See [workflow logs](${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}) for more details." --repo ${{ github.repository }} --label test-failure | |
# Cleanup | |
- name: Delete app | |
if: steps.gen-id.outputs.RUN_TEST == 'true' && steps.deploy-app.outcome == 'success' | |
run: | | |
if command -v rad &> /dev/null; then | |
rad app delete ${{ matrix.app }} -y | |
fi | |
- name: Delete Azure resource group | |
if: steps.gen-id.outputs.RUN_TEST == 'true' && steps.create-azure-resource-group.outcome == 'success' | |
run: | | |
# Delete Azure resources created by the test | |
# if deletion fails, purge workflow will purge the resource group and its resources later | |
az group delete \ | |
--subscription ${{ secrets.AZURE_SUBSCRIPTIONID_TESTS }} \ | |
--name ${{ steps.gen-id.outputs.TEST_AZURE_RESOURCE_GROUP }} \ | |
--yes | |
- name: Delete AWS Resources | |
if: steps.gen-id.outputs.RUN_TEST == 'true' && matrix.credential == 'aws' && steps.deploy-app.outcome == 'success' | |
run: | | |
# Delete all AWS resources created by the test | |
./.github/scripts/delete-aws-resources.sh '/planes/radius/local/resourcegroups/default/providers/Applications.Core/applications/${{ matrix.app }}' | |
- name: Delete EKS Cluster ${{ steps.gen-id.outputs.TEST_EKS_CLUSTER_NAME }} | |
if: steps.create-eks.outcome == 'success' | |
run: | | |
echo "Deleting EKS cluster: ${{ steps.gen-id.outputs.TEST_EKS_CLUSTER_NAME }}" | |
eksctl delete cluster --name ${{ steps.gen-id.outputs.TEST_EKS_CLUSTER_NAME }} --region ${{ env.AWS_REGION }} --wait --force |