-
Notifications
You must be signed in to change notification settings - Fork 0
143 lines (123 loc) · 4.25 KB
/
maven-build.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
name: CI
on:
push:
branches: [ master ]
pull_request:
branches: [ master ]
workflow_dispatch:
jobs:
unit:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- name: Set up 64-bit Corretto 17
uses: actions/setup-java@v3
with:
java-version: '17'
distribution: 'corretto'
architecture: x64
cache: maven
- name: Run unit tests
run: SPRING_PROFILES_ACTIVE=test mvn -B -ntp -Dgroups=unit test
env:
ACCESS_TOKEN: ${{ secrets.ACCESS_TOKEN }}
component:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- name: Set up 64-bit Corretto 17
uses: actions/setup-java@v3
with:
java-version: '17'
distribution: 'corretto'
architecture: x64
cache: maven
- name: Run component tests
run: SPRING_PROFILES_ACTIVE=test mvn -B -ntp -Dgroups=component test
env:
ACCESS_TOKEN: ${{ secrets.ACCESS_TOKEN }}
BLINKPAY_CLIENT_ID: ${{ secrets.CLIENT_ID }}
BLINKPAY_CLIENT_SECRET: ${{ secrets.CLIENT_SECRET }}
integration:
if: ${{ vars.JOB_ENABLED == 'true' }}
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- name: Set up 64-bit Corretto 17
uses: actions/setup-java@v3
with:
java-version: '17'
distribution: 'corretto'
architecture: x64
cache: maven
- name: Run integration tests
run: mvn -B -ntp -Dgroups=integration test
env:
BLINKPAY_CLIENT_ID: ${{ vars.CLIENT_ID }}
BLINKPAY_CLIENT_SECRET: ${{ secrets.CLIENT_SECRET }}
BLINKPAY_ACCESS_TOKEN: ${{ secrets.ACCESS_TOKEN }}
snyk:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- name: Set up 64-bit Corretto 17
uses: actions/setup-java@v3
with:
java-version: '17'
distribution: 'corretto'
architecture: x64
cache: maven
- name: Run Snyk to check for vulnerabilities
run: |
curl -o- https://raw.githubusercontent.com/nvm-sh/nvm/v0.39.3/install.sh | bash
export NVM_DIR="$HOME/.nvm" && \. $NVM_DIR/nvm.sh
nvm install 16
npm install -g snyk
snyk auth ${{ secrets.SNYK_TOKEN }}
snyk monitor --org=blinkpay-zw9 --maven-aggregate-project
continue-on-error: true
sonar:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- name: Set up 64-bit Corretto 17
uses: actions/setup-java@v3
with:
java-version: '17'
distribution: 'corretto'
architecture: x64
cache: maven
- name: Run Sonar on blink-debit-api-client-java to inspect code
run: >
SPRING_PROFILES_ACTIVE=test
mvn -B -ntp -pl .,core,java verify sonar:sonar
-DskipTests
-Dgpg.skip
-Dsonar.projectKey=blink-debit-api-client-java
-Dsonar.organization=blinkpay
-Dsonar.host.url=https://sonarcloud.io
-Dsonar.junit.reportPaths=target/surefire-reports
-Dsonar.coverage.plugin=jacoco
-Dsonar.coverage.jacoco.xmlReportPaths=target/coverage-reports/jacoco-ut/jacoco.xml
-Dsonar.projectName=blink-debit-api-client-java
continue-on-error: true
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
- name: Run Sonar on blink-debit-api-client-java-spring6 to inspect code
run: >
SPRING_PROFILES_ACTIVE=test
mvn -B -ntp -pl .,core,java-spring6 verify sonar:sonar
-DskipTests
-Dgpg.skip
-Dsonar.projectKey=blink-debit-api-client-java-spring6
-Dsonar.organization=blinkpay
-Dsonar.host.url=https://sonarcloud.io
-Dsonar.junit.reportPaths=target/surefire-reports
-Dsonar.coverage.plugin=jacoco
-Dsonar.coverage.jacoco.xmlReportPaths=target/coverage-reports/jacoco-ut/jacoco.xml
-Dsonar.projectName=blink-debit-api-client-java-spring6
continue-on-error: true
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SPRING6_SONAR_TOKEN }}