Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Keyfactor Bootstrap Workflow | |
on: | |
workflow_dispatch: | |
pull_request: | |
types: [opened, closed, synchronize, edited, reopened] | |
push: | |
create: | |
branches: | |
- 'release-*.*' | |
jobs: | |
check-pkg-version: | |
runs-on: ubuntu-latest | |
outputs: | |
PR_BASE_REF: ${{ steps.set-outputs.outputs.PR_BASE_REF }} | |
PR_COMMIT_SHA: ${{ steps.set-outputs.outputs.PR_COMMIT_SHA }} | |
GITHUB_SHA: ${{ steps.set-outputs.outputs.GITHUB_SHA }} | |
PR_BASE_TAG: ${{ steps.set-outputs.outputs.PR_BASE_TAG }} | |
IS_FULL_RELEASE: ${{ steps.set-outputs.outputs.IS_FULL_RELEASE }} | |
IS_PRE_RELEASE: ${{ steps.set-outputs.outputs.IS_PRE_RELEASE }} | |
INC_LEVEL: ${{ steps.set-outputs.outputs.INC_LEVEL }} | |
IS_RELEASE_BRANCH: ${{ steps.set-outputs.outputs.IS_RELEASE_BRANCH }} | |
IS_HOTFIX: ${{ steps.set-outputs.outputs.IS_HOTFIX }} | |
LATEST_TAG: ${{ steps.set-outputs.outputs.LATEST_TAG }} | |
steps: | |
- name: Check out the code | |
uses: actions/checkout@v3 | |
- name: Display base.ref from Pull Request | |
id: display-from-pr | |
run: | | |
echo "Event: ${{ github.event_name }}" | tee -a $GITHUB_STEP_SUMMARY | |
echo "Event Action: ${{ github.event.action }}" | tee -a $GITHUB_STEP_SUMMARY | |
echo "PR_BASE_REF=${{ github.event.pull_request.base.ref }}" | tee -a "$GITHUB_ENV" | tee -a $GITHUB_STEP_SUMMARY | |
echo "PR_STATE=${{ github.event.pull_request.state }}" | tee -a "$GITHUB_ENV" | tee -a $GITHUB_STEP_SUMMARY | |
echo "PR_MERGED=${{ github.event.pull_request.merged }}" | tee -a "$GITHUB_ENV" | tee -a $GITHUB_STEP_SUMMARY | |
echo "PR_COMMIT_SHA=${{ github.event.pull_request.merge_commit_sha }}" | tee -a "$GITHUB_ENV" | tee -a $GITHUB_STEP_SUMMARY | |
echo "GITHUB_SHA=${{ github.sha }}" | tee -a "$GITHUB_ENV" | tee -a $GITHUB_STEP_SUMMARY | |
baseref="${{ github.event.pull_request.base.ref }}" | |
basetag="${baseref#release-}" | |
echo "PR_BASE_TAG=$basetag" | tee -a "$GITHUB_ENV" | tee -a $GITHUB_STEP_SUMMARY | |
- name: Display base_ref from Push Event | |
if: github.event_name == 'push' | |
id: display-from-push | |
run: | | |
echo "Branch Ref: ${{ github.ref }}" | tee -a $GITHUB_STEP_SUMMARY | |
echo "Event: ${{ github.event_name }}" | tee -a $GITHUB_STEP_SUMMARY | |
echo "github.sha: ${{ github.sha }}" | tee -a $GITHUB_STEP_SUMMARY | |
- name: Find Latest Tag | |
if: github.event_name == 'pull_request' | |
id: find-latest-tag | |
run: | | |
prbasetag="${{env.PR_BASE_TAG}}" | |
git fetch --tags | |
if [[ -n `git tag` ]]; then | |
echo "Setting vars" | |
allBranchTags=`git tag --sort=-v:refname | grep "^$prbasetag" || echo ""` | |
allRepoTags=`git tag --sort=-v:refname` | |
branchTagBase=`git tag --sort=-v:refname | grep "^$prbasetag" | grep -o '^[0-9.]*' | head -n 1 || echo ""` | |
latestTagBase=`git tag --sort=-v:refname | grep -o '^[0-9.]*' | head -n 1` | |
latestBranchTag=`git tag --sort=-v:refname | grep "^$prbasetag" | grep "^$branchTagBase" | head -n 1 || echo ""` | |
latestReleasedTag=`git tag --sort=-v:refname | grep "^$prbasetag" | grep "^$branchTagBase$" | head -n 1 || echo ""` | |
# If the *TagBase values are not found in the list of tags, it means no final release was produced, and the latest*Tag vars will be empty | |
if [[ -z "$latestReleasedTag" ]]; then | |
latestTag="$latestBranchTag" | |
else | |
latestTag="$latestReleasedTag" | |
fi | |
echo "LATEST_TAG=${latestTag}" | tee -a "$GITHUB_ENV" | |
if [[ "$latestTagBase" == *"$branchTagBase" ]]; then | |
hf="False" | |
else | |
hf="True" | |
fi | |
# The intention is to use this to set the make_latest:false property when | |
# dispatching the create-release action, but it is not *yet* a configurable option | |
echo "IS_HOTFIX=$hf" | tee -a "$GITHUB_ENV" | |
else | |
echo "No tags exist in this repo" | |
echo "LATEST_TAG=" | tee -a "$GITHUB_ENV" | |
fi | |
- name: Set Outputs | |
if: github.event_name == 'pull_request' | |
id: set-outputs | |
run: | | |
echo "PR_BASE_REF=${{ env.PR_BASE_REF }}" | tee -a "$GITHUB_OUTPUT" | |
echo "PR_STATE=${{ env.PR_STATE }}" | |
echo "PR_MERGED=${{ env.PR_MERGED }}" | |
if [[ "${{ env.PR_STATE }}" == "closed" && "${{ env.PR_MERGED }}" == "true" && "${{ env.PR_COMMIT_SHA }}" == "${{ env.GITHUB_SHA }}" ]]; then | |
echo "IS_FULL_RELEASE=True" | tee -a "$GITHUB_OUTPUT" | |
echo "INC_LEVEL=patch" | tee -a "$GITHUB_OUTPUT" | |
fi | |
if [[ "${{ env.PR_STATE }}" == "open" ]]; then | |
echo "IS_PRE_RELEASE=True" | tee -a "$GITHUB_OUTPUT" | tee -a "$GITHUB_ENV" | |
echo "INC_LEVEL=prerelease" | tee -a "$GITHUB_OUTPUT" | |
fi | |
if [[ "${{ env.PR_BASE_REF }}" == "release-"* ]]; then | |
echo "IS_RELEASE_BRANCH=True" | tee -a "$GITHUB_OUTPUT" | tee -a "$GITHUB_ENV" | |
fi | |
echo "PR_COMMIT_SHA=${{ env.PR_COMMIT_SHA }}" | tee -a "$GITHUB_OUTPUT" | |
echo "GITHUB_SHA=${{ env.GITHUB_SHA }}" | tee -a "$GITHUB_OUTPUT" | |
echo "PR_BASE_TAG=${{ env.PR_BASE_TAG }}" | tee -a "$GITHUB_OUTPUT" | |
echo "IS_HOTFIX=${{ env.IS_HOTFIX }}" | tee -a "$GITHUB_OUTPUT" | |
echo "LATEST_TAG=${{ env.LATEST_TAG }}" | tee -a "$GITHUB_OUTPUT" | |
- name: Get current version | |
id: get-version | |
run: echo "::set-output name=version::$(cat pkg/version/version.go | grep 'const VERSION' | awk '{print $NF}' | tr -d '"')" | |
- name: Compare package version | |
id: check-version | |
run: | | |
if [ "${{ github.event_name }}" == "push" ]; then | |
if [ "${{ steps.get-version.outputs.version }}" != "${{ env.VERSION }}" ]; then | |
echo "Updating version in version.go" | |
sed -i "s/const VERSION = .*/const VERSION = \"${{ env.VERSION }}\"/" pkg/version/version.go | |
git add pkg/version/version.go | |
git commit -m "Bump package version to ${{ env.VERSION }}" | |
git push | |
echo "Version mismatch! Please create a new pull request with the updated version." | |
exit 1 | |
else | |
echo "Version matches. Continue with the workflow." | |
fi | |
else | |
echo "Skipping version check for events other than push." | |
fi | |
- name: Set new version | |
if: steps.check-version.outcome == 'success' | |
run: | | |
echo "Setting new version in version.go" | |
sed -i "s/const VERSION = .*/const VERSION = \"${{ env.VERSION }}\"/" version/version.go | |
git add version/version.go | |
git commit -m "Set version to ${{ env.VERSION }}" | |
git push | |
# call-starter-workflow: | |
# uses: keyfactor/actions/.github/workflows/starter.yml@v2 | |
# secrets: | |
# token: ${{ secrets.V2BUILDTOKEN}} | |
# APPROVE_README_PUSH: ${{ secrets.APPROVE_README_PUSH}} | |
# gpg_key: ${{ secrets.KF_GPG_PRIVATE_KEY }} | |
# gpg_pass: ${{ secrets.KF_GPG_PASSPHRASE }} | |