mirror of
https://github.com/Alvin-Zilverstand/narrow_casting_system.git
synced 2026-03-06 21:29:47 +01:00
4a3a205673
- Fix Docker tag lowercase requirement in GitHub Actions workflow - Add comprehensive testing workflow without Docker push dependency - Add repository name lowercase transformation for Docker images - Add detailed security analysis and status reporting - Add fallback workflow for cases where Docker push might fail - Add comprehensive test reporting and status documentation - Ensure compatibility with GitHub Container Registry naming requirements This addresses the Docker repository name case sensitivity issue while providing a robust testing workflow that works regardless of Docker push status.
163 lines
4.0 KiB
YAML
163 lines
4.0 KiB
YAML
name: CI/CD Pipeline - SnowWorld Narrowcasting
|
|
|
|
on:
|
|
push:
|
|
branches: [ main, develop ]
|
|
pull_request:
|
|
branches: [ main ]
|
|
|
|
jobs:
|
|
test-backend:
|
|
runs-on: ubuntu-latest
|
|
|
|
strategy:
|
|
matrix:
|
|
node-version: [18.x, 20.x]
|
|
|
|
steps:
|
|
- name: Checkout code
|
|
uses: actions/checkout@v4
|
|
|
|
- name: Setup Node.js ${{ matrix.node-version }} for Backend
|
|
uses: actions/setup-node@v4
|
|
with:
|
|
node-version: ${{ matrix.node-version }}
|
|
cache: 'npm'
|
|
cache-dependency-path: backend/package-lock.json
|
|
|
|
- name: Install backend dependencies
|
|
run: |
|
|
cd backend
|
|
npm ci
|
|
echo "Backend dependencies installed with security audit warnings noted"
|
|
|
|
- name: Run backend tests
|
|
run: |
|
|
cd backend
|
|
npm start &
|
|
sleep 5
|
|
cd ..
|
|
node test_system.js
|
|
pkill -f "node server.js" || true
|
|
|
|
- name: Security audit backend
|
|
run: |
|
|
cd backend
|
|
echo "Running security audit..."
|
|
npm audit --audit-level=moderate || echo "Security audit completed with warnings - see SECURITY_CONSIDERATIONS.md"
|
|
|
|
test-admin:
|
|
runs-on: ubuntu-latest
|
|
|
|
strategy:
|
|
matrix:
|
|
node-version: [18.x, 20.x]
|
|
|
|
steps:
|
|
- name: Checkout code
|
|
uses: actions/checkout@v4
|
|
|
|
- name: Setup Node.js ${{ matrix.node-version }} for Admin
|
|
uses: actions/setup-node@v4
|
|
with:
|
|
node-version: ${{ matrix.node-version }}
|
|
cache: 'npm'
|
|
cache-dependency-path: admin/package-lock.json
|
|
|
|
- name: Install admin dependencies
|
|
run: |
|
|
cd admin
|
|
npm ci
|
|
echo "Admin dependencies installed successfully"
|
|
|
|
- name: Security audit admin
|
|
run: |
|
|
cd admin
|
|
echo "Running security audit..."
|
|
npm audit --audit-level=moderate || echo "Security audit completed"
|
|
|
|
build:
|
|
needs: [test-backend, test-admin]
|
|
runs-on: ubuntu-latest
|
|
|
|
steps:
|
|
- name: Checkout code
|
|
uses: actions/checkout@v4
|
|
|
|
- name: Setup Node.js
|
|
uses: actions/setup-node@v4
|
|
with:
|
|
node-version: '18'
|
|
|
|
- name: Install all dependencies
|
|
run: npm run setup
|
|
|
|
- name: Build project
|
|
run: npm run build
|
|
|
|
- name: Upload build artifacts
|
|
uses: actions/upload-artifact@v4
|
|
with:
|
|
name: project-files
|
|
path: |
|
|
backend/
|
|
admin/
|
|
client/
|
|
docs/
|
|
deployment/
|
|
package.json
|
|
README.md
|
|
!backend/node_modules/
|
|
!admin/node_modules/
|
|
|
|
docker:
|
|
needs: build
|
|
runs-on: ubuntu-latest
|
|
if: github.ref == 'refs/heads/main'
|
|
permissions:
|
|
contents: read
|
|
packages: write
|
|
|
|
steps:
|
|
- name: Checkout code
|
|
uses: actions/checkout@v4
|
|
|
|
- name: Set up Docker Buildx
|
|
uses: docker/setup-buildx-action@v3
|
|
|
|
- name: Login to GitHub Container Registry
|
|
uses: docker/login-action@v3
|
|
with:
|
|
registry: ghcr.io
|
|
username: ${{ github.actor }}
|
|
password: ${{ secrets.GITHUB_TOKEN }}
|
|
|
|
- name: Create lowercase repository name
|
|
id: repo_name
|
|
run: |
|
|
REPO_NAME=$(echo "${{ github.repository }}" | tr '[:upper:]' '[:lower:]')
|
|
echo "repository_name=$REPO_NAME" >> $GITHUB_OUTPUT
|
|
echo "Using repository name: $REPO_NAME"
|
|
|
|
- name: Extract metadata
|
|
id: meta
|
|
uses: docker/metadata-action@v5
|
|
with:
|
|
images: ghcr.io/${{ steps.repo_name.outputs.repository_name }}
|
|
tags: |
|
|
type=ref,event=branch
|
|
type=ref,event=pr
|
|
type=sha,prefix={{branch}}-
|
|
type=raw,value=latest,enable={{is_default_branch}}
|
|
|
|
- name: Build and push Docker image
|
|
uses: docker/build-push-action@v5
|
|
with:
|
|
context: .
|
|
file: ./deployment/docker/Dockerfile
|
|
push: true
|
|
tags: ${{ steps.meta.outputs.tags }}
|
|
cache-from: type=gha
|
|
cache-to: type=gha,mode=max
|
|
env:
|
|
DOCKER_BUILDKIT: 1 |