Add release workflow

brandonchinn178 · brandonchinn178 · commit b618917d5374 · 2022-10-30T15:38:56.000-07:00
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -4,6 +4,7 @@ on:
   push:
     branches:
       - main
+  workflow_call:
 
 jobs:
   build_and_test:
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -0,0 +1,43 @@
+name: Release
+on: workflow_dispatch
+
+jobs:
+  ci:
+    uses: ./.github/workflows/ci.yml
+
+  release:
+    runs-on: ubuntu-latest
+    needs:
+      - ci
+
+    steps:
+      - uses: actions/checkout@v3
+        with:
+          ref: main
+
+      - uses: actions/download-artifact@v3
+        with:
+          name: persistent-mtl-sdist
+          path: ./sdist/
+
+      - name: Load package version
+        run: scripts/GetVersion.hs >> "${GITHUB_OUTPUT}"
+        id: version_info
+
+      - name: Load Hackage token secret name
+        run: |
+          python >> "${GITHUB_OUTPUT}" <<EOF
+          import re
+          username = "${{ github.actor }}"
+          secret_name = "HACKAGE_TOKEN_" + re.sub(r"\W+", "_", username).upper()
+          print(f"secret_name={secret_name}")
+          EOF
+        id: hackage_token_secret
+
+      - name: Make release
+        run: scripts/make-release.sh
+        env:
+          gh_token: ${{ secrets.GITHUB_TOKEN }}
+          hackage_token: ${{ secrets[steps.hackage_token_secret.outputs.secret_name] }}
+          version: ${{ steps.version_info.outputs.version }}
+          sdistdir: ./sdist/
diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml
@@ -29,3 +29,18 @@ repos:
         language: system
         entry: fourmolu -i
         files: '\.hs$'
+
+  - repo: https://github.com/psf/black
+    rev: '22.10.0'
+    hooks:
+      - id: black
+
+  - repo: local
+    hooks:
+      - id: pyright
+        name: pyright
+        entry: pyright
+        language: node
+        pass_filenames: false
+        types: [python]
+        additional_dependencies: ['pyright@1.1.277']
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -11,37 +11,37 @@
 * Add `catchSqlTransaction`
 * Add `retryCallback` to `SqlQueryEnv`
 
-# 0.4.0.0
+# v0.4.0.0
 
 * Add some mtl instances: `MonadThrow`, `MonadCatch`, `MonadMask`, `MonadLogger`, `MonadReader`
 * Removed support for GHC 8.2, 8.4
 * Add `MonadSqlQuery (TransactionM m)` superclass constraint to allow writing functions generic on some `MonadSqlQuery m` using `withTransaction`, as shown in examples in README
 
-# 0.3.0.0
+# v0.3.0.0
 
 * Add `unsafeLiftSql` ([#38](https://github.com/brandonchinn178/persistent-mtl/pull/38))
 
-# 0.2.2.0
+# v0.2.2.0
 
 * Fix for persistent 2.13
 
-# 0.2.1.0
+# v0.2.1.0
 
 * Add `rerunnableLift` for `SqlTransaction`
 * Use `unliftio-pool` instead of `resourcet-pool`, which has better async exeception safety
 
-# 0.2.0.0
+# v0.2.0.0
 
 * Use a separate monad within `withTransaction` to prevent unsafe/arbitrary IO actions ([#7](https://github.com/brandonchinn178/persistent-mtl/issues/7), [#28](https://github.com/brandonchinn178/persistent-mtl/issues/28))
 * Add `MonadRerunnableIO` to support IO actions within `withTransaction` only if the IO action is determined to be rerunnable
 * Add built-in support for retrying transactions if a serialization error occurs
 * Remove `SqlQueryRep` as an export from `Database.Persist.Monad`. You shouldn't ever need it for normal usage. It is now re-exported by `Database.Persist.Monad.TestUtils`, since most of the usage of `SqlQueryRep` is in mocking queries. If you need it otherwise, you can import it directly from `Database.Persist.Monad.SqlQueryRep`.
 
-# 0.1.0.1
+# v0.1.0.1
 
 Fix quickstart
 
-# 0.1.0.0
+# v0.1.0.0
 
 Initial release
 * `SqlQueryT` + `MonadSqlQuery`
diff --git a/scripts/GetVersion.hs b/scripts/GetVersion.hs
@@ -0,0 +1,15 @@
+#!/usr/bin/env stack
+{- stack runghc --package Cabal -}
+
+import Data.List (intercalate)
+import Distribution.Package (packageVersion)
+import Distribution.PackageDescription.Parsec (readGenericPackageDescription)
+import qualified Distribution.Verbosity as Verbosity
+import Distribution.Version (versionNumbers)
+
+main :: IO ()
+main = do
+  packageDesc <- readGenericPackageDescription Verbosity.silent "persistent-mtl.cabal"
+  let version = intercalate "." . map show . versionNumbers . packageVersion $ packageDesc
+  -- https://docs.github.com/en/actions/using-workflows/workflow-commands-for-github-actions#setting-an-output-parameter
+  putStrLn $ "version=" ++ version
diff --git a/scripts/make-release.sh b/scripts/make-release.sh
@@ -0,0 +1,11 @@
+#!/usr/bin/env bash
+
+set -euxo pipefail
+HERE="$(builtin cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+
+if [[ ! -d "${HERE}/.venv" ]]; then
+    python3 -m venv "${HERE}/.venv"
+    "${HERE}/.venv/bin/pip" install requests
+fi
+
+exec "${HERE}/.venv/bin/python3" "${HERE}/make_release.py" "$@"
diff --git a/scripts/make_release.py b/scripts/make_release.py
@@ -0,0 +1,134 @@
+# pyright: strict, reportUnknownMemberType=false
+
+from __future__ import annotations
+
+import itertools
+import json
+import logging
+import os
+import re
+import requests
+from pathlib import Path
+from typing import Any
+
+logger = logging.getLogger(__name__)
+logging.basicConfig(level=logging.DEBUG)
+
+
+def main():
+    gh_token = os.environ["gh_token"]
+    hackage_token = os.environ["hackage_token"]
+    version = os.environ["version"]
+    sdistdir = os.environ["sdistdir"]
+    repo = os.environ["GITHUB_REPOSITORY"]
+    sha = os.environ["GITHUB_SHA"]
+
+    version_name = f"v{version}"
+
+    # check inputs
+    if not hackage_token:
+        raise Exception(
+            "Hackage token is not provided (did you add a Secret of the form HACKAGE_TOKEN_<github username>?)"
+        )
+
+    # ensure sdist exists
+    sdist_archive = Path(sdistdir) / f"persistent-mtl-{version}.tar.gz"
+    if not sdist_archive.exists():
+        raise Exception(f"File does not exist: {sdist_archive}")
+
+    # check + parse CHANGELOG
+    changelog = Path("CHANGELOG.md").read_text()
+    changelog = re.sub(r"^# Unreleased\n+", "", changelog)
+    if not changelog.startswith(f"# {version_name}"):
+        raise Exception("CHANGELOG doesn't look updated")
+    version_changes = get_version_changes(changelog)
+
+    logger.info(f"Creating release {version_name}")
+    create_github_release(
+        repo=repo,
+        token=gh_token,
+        sha=sha,
+        version_name=version_name,
+        version_changes=version_changes,
+    )
+
+    # uploading as candidate because uploads are irreversible, unlike
+    # GitHub releases, so just to be extra sure, we'll upload this as
+    # a candidate and manually confirm uploading the package on Hackage
+    upload_hackage_candidate(
+        token=hackage_token,
+        archive=sdist_archive,
+    )
+
+    logger.info(f"Released persistent-mtl {version_name}!")
+
+
+def get_version_changes(changelog: str) -> str:
+    lines = changelog.split("\n")
+
+    # skip initial '# vX.Y.Z' line
+    lines = lines[1:]
+
+    # take lines until the next '# vX.Y.Z' line
+    lines = itertools.takewhile(lambda line: not line.startswith("# v"), lines)
+
+    return "\n".join(lines)
+
+
+def create_github_release(
+    *,
+    repo: str,
+    token: str,
+    sha: str,
+    version_name: str,
+    version_changes: str,
+):
+    session = init_session()
+    session.headers["Accept"] = "application/vnd.github.v3+json"
+    session.headers["Authorization"] = f"token {token}"
+    session.headers["User-Agent"] = repo
+
+    payload = {
+        "tag_name": version_name,
+        "target_commitish": sha,
+        "name": version_name,
+        "body": version_changes,
+    }
+    logger.debug(f"Creating release with: {json.dumps(payload)}")
+
+    session.post(
+        f"https://api.github.com/repos/{repo}/releases",
+        json=payload,
+    )
+
+
+def upload_hackage_candidate(
+    *,
+    token: str,
+    archive: Path,
+):
+    session = init_session()
+    with archive.open("rb") as f:
+        session.post(
+            "https://hackage.haskell.org/packages/candidates",
+            headers={"Authorization": f"X-ApiKey {token}"},
+            files={"package": f},
+        )
+
+
+def init_session() -> requests.Session:
+    session = requests.Session()
+
+    def _check_status(r: requests.Response, *args: Any, **kwargs: Any):
+        r.raise_for_status()
+
+    # https://github.com/python/typeshed/issues/7776
+    session.hooks["response"].append(  # pyright: ignore[reportFunctionMemberAccess]
+        _check_status,
+    )
+
+    return session
+
+
+if __name__ == "__main__":
+    main()
