2022-02-09 09:48:24 +00:00
|
|
|
stages:
|
|
|
|
- build_and_test
|
|
|
|
- package
|
|
|
|
- security
|
|
|
|
- upload
|
|
|
|
- image
|
|
|
|
|
|
|
|
services:
|
|
|
|
- docker:19.03.12-dind
|
|
|
|
|
|
|
|
.cljs-job: &cljs
|
|
|
|
image: domaindrivenarchitecture/shadow-cljs
|
|
|
|
cache:
|
|
|
|
key: ${CI_COMMIT_REF_SLUG}
|
|
|
|
paths:
|
|
|
|
- node_modules/
|
|
|
|
- .shadow-cljs/
|
|
|
|
- .m2
|
|
|
|
before_script:
|
|
|
|
- echo "//registry.npmjs.org/:_authToken=$NPM_TOKEN" > ~/.npmrc
|
|
|
|
- npm install
|
|
|
|
|
|
|
|
.clj-uploadjob: &clj
|
|
|
|
image: domaindrivenarchitecture/lein
|
|
|
|
cache:
|
|
|
|
key: ${CI_COMMIT_REF_SLUG}
|
|
|
|
paths:
|
|
|
|
- .m2
|
|
|
|
before_script:
|
|
|
|
- mkdir -p /root/.lein
|
|
|
|
- echo "{:auth {:repository-auth {#\"clojars\" {:username \"${CLOJARS_USER}\" :password \"${CLOJARS_TOKEN_DOMAINDRIVENARCHITECTURE}\" }}}}" > ~/.lein/profiles.clj
|
|
|
|
|
|
|
|
test-cljs:
|
|
|
|
<<: *cljs
|
|
|
|
stage: build_and_test
|
|
|
|
script:
|
|
|
|
- shadow-cljs compile test
|
|
|
|
|
|
|
|
test-clj:
|
|
|
|
<<: *clj
|
|
|
|
stage: build_and_test
|
|
|
|
script:
|
|
|
|
- lein test
|
|
|
|
|
|
|
|
test-schema:
|
|
|
|
<<: *clj
|
|
|
|
stage: build_and_test
|
|
|
|
script:
|
|
|
|
- lein uberjar
|
2022-02-09 09:49:45 +00:00
|
|
|
- java -jar target/uberjar/c4k-jitsi-standalone.jar valid-config.edn valid-auth.edn | kubeconform --kubernetes-version 1.19.0 --strict --skip Certificate -
|
2022-02-09 09:48:24 +00:00
|
|
|
artifacts:
|
|
|
|
paths:
|
|
|
|
- target/uberjar
|
|
|
|
|
|
|
|
report-frontend:
|
|
|
|
<<: *cljs
|
|
|
|
stage: package
|
|
|
|
script:
|
|
|
|
- mkdir -p target/frontend-build
|
|
|
|
- shadow-cljs run shadow.cljs.build-report frontend target/frontend-build/build-report.html
|
|
|
|
artifacts:
|
|
|
|
paths:
|
|
|
|
- target/frontend-build/build-report.html
|
|
|
|
|
|
|
|
package-frontend:
|
|
|
|
<<: *cljs
|
|
|
|
stage: package
|
|
|
|
script:
|
|
|
|
- mkdir -p target/frontend-build
|
|
|
|
- shadow-cljs release frontend
|
2022-02-09 09:49:45 +00:00
|
|
|
- cp public/js/main.js target/frontend-build/c4k-jitsi.js
|
|
|
|
- sha256sum target/frontend-build/c4k-jitsi.js > target/frontend-build/c4k-jitsi.js.sha256
|
|
|
|
- sha512sum target/frontend-build/c4k-jitsi.js > target/frontend-build/c4k-jitsi.js.sha512
|
2022-02-09 09:48:24 +00:00
|
|
|
artifacts:
|
|
|
|
paths:
|
|
|
|
- target/frontend-build
|
|
|
|
|
|
|
|
package-uberjar:
|
|
|
|
<<: *clj
|
|
|
|
stage: package
|
|
|
|
script:
|
2022-02-09 09:49:45 +00:00
|
|
|
- sha256sum target/uberjar/c4k-jitsi-standalone.jar > target/uberjar/c4k-jitsi-standalone.jar.sha256
|
|
|
|
- sha512sum target/uberjar/c4k-jitsi-standalone.jar > target/uberjar/c4k-jitsi-standalone.jar.sha512
|
2022-02-09 09:48:24 +00:00
|
|
|
artifacts:
|
|
|
|
paths:
|
|
|
|
- target/uberjar
|
|
|
|
|
|
|
|
sast:
|
|
|
|
variables:
|
|
|
|
SAST_EXCLUDED_ANALYZERS:
|
|
|
|
bandit, brakeman, flawfinder, gosec, kubesec, phpcs-security-audit,
|
|
|
|
pmd-apex, security-code-scan, sobelow, spotbugs
|
|
|
|
stage: security
|
|
|
|
before_script:
|
|
|
|
- mkdir -p builds && cp -r target/ builds/
|
|
|
|
include:
|
|
|
|
- template: Security/SAST.gitlab-ci.yml
|
|
|
|
|
|
|
|
upload-clj-prerelease:
|
|
|
|
<<: *clj
|
|
|
|
stage: upload
|
|
|
|
rules:
|
|
|
|
- if: '$CI_COMMIT_BRANCH == "main" && $CI_COMMIT_TAG == null'
|
|
|
|
script:
|
|
|
|
- lein deploy clojars
|
|
|
|
|
|
|
|
release:
|
|
|
|
image: registry.gitlab.com/gitlab-org/release-cli:latest
|
|
|
|
stage: upload
|
|
|
|
rules:
|
|
|
|
- if: '$CI_COMMIT_TAG != null'
|
|
|
|
artifacts:
|
|
|
|
paths:
|
|
|
|
- target/uberjar
|
|
|
|
- target/frontend-build
|
|
|
|
script:
|
|
|
|
- apk --no-cache add curl
|
|
|
|
- |
|
|
|
|
release-cli create --name "Release $CI_COMMIT_TAG" --tag-name $CI_COMMIT_TAG \
|
2022-02-09 09:49:45 +00:00
|
|
|
--assets-link "{\"name\":\"c4k-jitsi-standalone.jar\",\"url\":\"https://gitlab.com/domaindrivenarchitecture/c4k-jitsi/-/jobs/${CI_JOB_ID}/artifacts/file/target/uberjar/c4k-jitsi-standalone.jar\"}" \
|
|
|
|
--assets-link "{\"name\":\"c4k-jitsi-standalone.jar.sha256\",\"url\":\"https://gitlab.com/domaindrivenarchitecture/c4k-jitsi/-/jobs/${CI_JOB_ID}/artifacts/file/target/uberjar/c4k-jitsi-standalone.jar.sha256\"}" \
|
|
|
|
--assets-link "{\"name\":\"c4k-jitsi-standalone.jar.sha512\",\"url\":\"https://gitlab.com/domaindrivenarchitecture/c4k-jitsi/-/jobs/${CI_JOB_ID}/artifacts/file/target/uberjar/c4k-jitsi-standalone.jar.sha512\"}" \
|
|
|
|
--assets-link "{\"name\":\"c4k-jitsi.js\",\"url\":\"https://gitlab.com/domaindrivenarchitecture/c4k-jitsi/-/jobs/${CI_JOB_ID}/artifacts/file/target/frontend-build/c4k-jitsi.js\"}" \
|
|
|
|
--assets-link "{\"name\":\"c4k-jitsi.js.sha256\",\"url\":\"https://gitlab.com/domaindrivenarchitecture/c4k-jitsi/-/jobs/${CI_JOB_ID}/artifacts/file/target/frontend-build/c4k-jitsi.js.sha256\"}" \
|
|
|
|
--assets-link "{\"name\":\"c4k-jitsi.js.sha512\",\"url\":\"https://gitlab.com/domaindrivenarchitecture/c4k-jitsi/-/jobs/${CI_JOB_ID}/artifacts/file/target/frontend-build/c4k-jitsi.js.sha512\"}" \
|