From b597353c40044937de6a27c6ddcc5d816d488d0d Mon Sep 17 00:00:00 2001 From: Michele Santoro Date: Tue, 12 Dec 2023 12:11:52 +0100 Subject: [PATCH 01/21] Create sign_executable.yml --- .github/workflows/sign_executable.yml | 15 +++++++++++++++ 1 file changed, 15 insertions(+) create mode 100644 .github/workflows/sign_executable.yml diff --git a/.github/workflows/sign_executable.yml b/.github/workflows/sign_executable.yml new file mode 100644 index 00000000..7768f703 --- /dev/null +++ b/.github/workflows/sign_executable.yml @@ -0,0 +1,15 @@ +name: "Create Tagged Release" + +on: [ push ] + +jobs: + trigger-build: + runs-on: ubuntu-latest + steps: + - name: Trigger Jenkins Job, for singing executable + run: | + curl -X POST "https://ci.eclipse.org/esmf/project/Sign-Native-Image/generic-webhook-trigger/invoke?token=GITHUB_BOT_TOKEN" \ + -H "Content-Type: application/json" \ + -d '{"ref": "${{ github.ref }}", "sha": "${{ github.sha }}"}' + env: + GITHUB_BOT_TOKEN: ${{ secrets.eclipse-esmf-bot }} From d2ca233cc81ac522c5ab46e8c273d6bf26267bee Mon Sep 17 00:00:00 2001 From: Michele Santoro Date: Tue, 12 Dec 2023 12:14:46 +0100 Subject: [PATCH 02/21] Update sign_executable.yml --- .github/workflows/sign_executable.yml | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-) diff --git a/.github/workflows/sign_executable.yml b/.github/workflows/sign_executable.yml index 7768f703..cf9ad244 100644 --- a/.github/workflows/sign_executable.yml +++ b/.github/workflows/sign_executable.yml @@ -1,10 +1,15 @@ name: "Create Tagged Release" -on: [ push ] +on: + pull_request: + # Trigger the workflow on pull request events + types: [ opened, synchronize, reopened ] jobs: trigger-build: + if: github.event.number == 56 runs-on: ubuntu-latest + steps: - name: Trigger Jenkins Job, for singing executable run: | From f309711d8d3548334b5065acbca30ef0e00925a8 Mon Sep 17 00:00:00 2001 From: Michele Santoro Date: Tue, 12 Dec 2023 12:15:43 +0100 Subject: [PATCH 03/21] Uncomment for testing --- .github/workflows/pull_request_check.yml | 168 +++++++++++------------ 1 file changed, 84 insertions(+), 84 deletions(-) diff --git a/.github/workflows/pull_request_check.yml b/.github/workflows/pull_request_check.yml index 13ab53df..a61aadff 100644 --- a/.github/workflows/pull_request_check.yml +++ b/.github/workflows/pull_request_check.yml @@ -1,84 +1,84 @@ -name: Check New Pull Request - -on: - push: - branches: [ main ] - pull_request: - branches: [ '**' ] - -jobs: - build: - name: Check if passes all requirements - runs-on: ${{ matrix.os }} - strategy: - fail-fast: false - matrix: - os: [ macos-latest, windows-latest, ubuntu-latest ] - - steps: - - name: Checkout project - uses: actions/checkout@v3 - - - name: Configure Pagefile - if: matrix.os == 'windows-latest' - # Fix for "LINK : fatal error LNK1171: unable to load mspdbcore.dll (error code: 1455)": - # This seems to be caused by running out of memory; increasing page file - # size suggested here: - # https://github.com/actions/virtual-environments/issues/3420#issuecomment-861342418 - uses: al-cheb/configure-pagefile-action@v1.2 - with: - minimum-size: 16GB - maximum-size: 16GB - disk-root: "C:" - - - name: Setup graalvm ce - uses: graalvm/setup-graalvm@v1 - with: - version: '22.3.1' - java-version: '17' - components: 'native-image,js' - github-token: ${{ secrets.GITHUB_TOKEN }} - - - name: Cache maven packages - uses: actions/cache@v3 - with: - path: ~/.m2/repository - key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} - restore-keys: | - ${{ runner.os }}-maven- - - - name: Creating native image (Mac) - if: matrix.os == 'macos-latest' - run: mvn install -P native-image -Dos.platform=mac -Dmaven.wagon.httpconnectionManager.ttlSeconds=60 - env: - TOKEN: ${{ secrets.GITHUB_TOKEN }} - - - name: Creating native image (Linux) - if: matrix.os == 'ubuntu-latest' - run: mvn install -P native-image -Dos.platform=linux -Dmaven.wagon.httpconnectionManager.ttlSeconds=60 - env: - TOKEN: ${{ secrets.GITHUB_TOKEN }} - - - name: Creating native image (Win) - if: matrix.os == 'windows-latest' - run: mvn install -P native-image -D os.platform=win -D maven.wagon.httpconnectionManager.ttlSeconds=60 - env: - TOKEN: ${{ secrets.GITHUB_TOKEN }} - - - name: Performing integration test for Mac - if: matrix.os == 'macos-latest' - run: mvn install -DskipTests -P dependencies-for-integration-tests,start-unix-native-image-for-integration-tests,run-postman-integration-tests -Dos.platform=mac - env: - TOKEN: ${{ secrets.GITHUB_TOKEN }} - - - name: Performing integration test for Linux - if: matrix.os == 'ubuntu-latest' - run: mvn install -DskipTests -P dependencies-for-integration-tests,start-unix-native-image-for-integration-tests,run-postman-integration-tests -Dos.platform=linux - env: - TOKEN: ${{ secrets.GITHUB_TOKEN }} - - - name: Performing integration test for Windows - if: matrix.os == 'windows-latest' - run: mvn install -DskipTests -P dependencies-for-integration-tests,start-windows-native-image-for-integration-tests,run-postman-integration-tests -D os.platform=win - env: - TOKEN: ${{ secrets.GITHUB_TOKEN }} +#name: Check New Pull Request +# +#on: +# push: +# branches: [ main ] +# pull_request: +# branches: [ '**' ] +# +#jobs: +# build: +# name: Check if passes all requirements +# runs-on: ${{ matrix.os }} +# strategy: +# fail-fast: false +# matrix: +# os: [ macos-latest, windows-latest, ubuntu-latest ] +# +# steps: +# - name: Checkout project +# uses: actions/checkout@v3 +# +# - name: Configure Pagefile +# if: matrix.os == 'windows-latest' +# # Fix for "LINK : fatal error LNK1171: unable to load mspdbcore.dll (error code: 1455)": +# # This seems to be caused by running out of memory; increasing page file +# # size suggested here: +# # https://github.com/actions/virtual-environments/issues/3420#issuecomment-861342418 +# uses: al-cheb/configure-pagefile-action@v1.2 +# with: +# minimum-size: 16GB +# maximum-size: 16GB +# disk-root: "C:" +# +# - name: Setup graalvm ce +# uses: graalvm/setup-graalvm@v1 +# with: +# version: '22.3.1' +# java-version: '17' +# components: 'native-image,js' +# github-token: ${{ secrets.GITHUB_TOKEN }} +# +# - name: Cache maven packages +# uses: actions/cache@v3 +# with: +# path: ~/.m2/repository +# key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} +# restore-keys: | +# ${{ runner.os }}-maven- +# +# - name: Creating native image (Mac) +# if: matrix.os == 'macos-latest' +# run: mvn install -P native-image -Dos.platform=mac -Dmaven.wagon.httpconnectionManager.ttlSeconds=60 +# env: +# TOKEN: ${{ secrets.GITHUB_TOKEN }} +# +# - name: Creating native image (Linux) +# if: matrix.os == 'ubuntu-latest' +# run: mvn install -P native-image -Dos.platform=linux -Dmaven.wagon.httpconnectionManager.ttlSeconds=60 +# env: +# TOKEN: ${{ secrets.GITHUB_TOKEN }} +# +# - name: Creating native image (Win) +# if: matrix.os == 'windows-latest' +# run: mvn install -P native-image -D os.platform=win -D maven.wagon.httpconnectionManager.ttlSeconds=60 +# env: +# TOKEN: ${{ secrets.GITHUB_TOKEN }} +# +# - name: Performing integration test for Mac +# if: matrix.os == 'macos-latest' +# run: mvn install -DskipTests -P dependencies-for-integration-tests,start-unix-native-image-for-integration-tests,run-postman-integration-tests -Dos.platform=mac +# env: +# TOKEN: ${{ secrets.GITHUB_TOKEN }} +# +# - name: Performing integration test for Linux +# if: matrix.os == 'ubuntu-latest' +# run: mvn install -DskipTests -P dependencies-for-integration-tests,start-unix-native-image-for-integration-tests,run-postman-integration-tests -Dos.platform=linux +# env: +# TOKEN: ${{ secrets.GITHUB_TOKEN }} +# +# - name: Performing integration test for Windows +# if: matrix.os == 'windows-latest' +# run: mvn install -DskipTests -P dependencies-for-integration-tests,start-windows-native-image-for-integration-tests,run-postman-integration-tests -D os.platform=win +# env: +# TOKEN: ${{ secrets.GITHUB_TOKEN }} From c08acdc3bf296652f8ff233a16b46857c9a9fecf Mon Sep 17 00:00:00 2001 From: Michele Santoro Date: Tue, 12 Dec 2023 12:17:06 +0100 Subject: [PATCH 04/21] Update codeql-scanning.yml --- .github/workflows/codeql-scanning.yml | 96 +++++++++++++-------------- 1 file changed, 48 insertions(+), 48 deletions(-) diff --git a/.github/workflows/codeql-scanning.yml b/.github/workflows/codeql-scanning.yml index 259e9883..5e6e1e08 100644 --- a/.github/workflows/codeql-scanning.yml +++ b/.github/workflows/codeql-scanning.yml @@ -1,48 +1,48 @@ -name: "CodeQL-Scanning" - -on: - push: - branches: [ "main" ] - pull_request: - # The branches below must be a subset of the branches above - branches: [ "main" ] - schedule: - - cron: '30 0 * * *' - -jobs: - analyze: - name: Analyze - runs-on: ubuntu-latest - permissions: - actions: read - contents: read - security-events: write - - strategy: - fail-fast: false - matrix: - language: [ 'java' ] - java: [ '17' ] - - steps: - - name: Checkout repository - uses: actions/checkout@v3 - - - name: Set up JDK ${{ matrix.java }} - uses: actions/setup-java@v2 - with: - java-version: ${{ matrix.java }} - distribution: 'adopt' - - - name: Initialize CodeQL - uses: github/codeql-action/init@v2 - with: - languages: ${{ matrix.language }} - - - name: Autobuild - uses: github/codeql-action/autobuild@v2 - - - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v2 - with: - category: "/language:${{matrix.language}}" +#name: "CodeQL-Scanning" +# +#on: +# push: +# branches: [ "main" ] +# pull_request: +# # The branches below must be a subset of the branches above +# branches: [ "main" ] +# schedule: +# - cron: '30 0 * * *' +# +#jobs: +# analyze: +# name: Analyze +# runs-on: ubuntu-latest +# permissions: +# actions: read +# contents: read +# security-events: write +# +# strategy: +# fail-fast: false +# matrix: +# language: [ 'java' ] +# java: [ '17' ] +# +# steps: +# - name: Checkout repository +# uses: actions/checkout@v3 +# +# - name: Set up JDK ${{ matrix.java }} +# uses: actions/setup-java@v2 +# with: +# java-version: ${{ matrix.java }} +# distribution: 'adopt' +# +# - name: Initialize CodeQL +# uses: github/codeql-action/init@v2 +# with: +# languages: ${{ matrix.language }} +# +# - name: Autobuild +# uses: github/codeql-action/autobuild@v2 +# +# - name: Perform CodeQL Analysis +# uses: github/codeql-action/analyze@v2 +# with: +# category: "/language:${{matrix.language}}" From 9cf88b94715c8eb7eb0c80a8f75ce6c60213303d Mon Sep 17 00:00:00 2001 From: Michele Santoro Date: Tue, 12 Dec 2023 12:19:14 +0100 Subject: [PATCH 05/21] Update sign_executable.yml --- .github/workflows/sign_executable.yml | 7 +------ 1 file changed, 1 insertion(+), 6 deletions(-) diff --git a/.github/workflows/sign_executable.yml b/.github/workflows/sign_executable.yml index cf9ad244..7768f703 100644 --- a/.github/workflows/sign_executable.yml +++ b/.github/workflows/sign_executable.yml @@ -1,15 +1,10 @@ name: "Create Tagged Release" -on: - pull_request: - # Trigger the workflow on pull request events - types: [ opened, synchronize, reopened ] +on: [ push ] jobs: trigger-build: - if: github.event.number == 56 runs-on: ubuntu-latest - steps: - name: Trigger Jenkins Job, for singing executable run: | From 17c20456ca745960008229346f0a49e33edb7d9e Mon Sep 17 00:00:00 2001 From: Michele Santoro Date: Tue, 12 Dec 2023 12:21:01 +0100 Subject: [PATCH 06/21] Update sign_executable.yml --- .github/workflows/sign_executable.yml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/.github/workflows/sign_executable.yml b/.github/workflows/sign_executable.yml index 7768f703..766ea6f0 100644 --- a/.github/workflows/sign_executable.yml +++ b/.github/workflows/sign_executable.yml @@ -1,6 +1,7 @@ name: "Create Tagged Release" -on: [ push ] +on: + push: jobs: trigger-build: From 83d48a2d817680300c78bf5d3c58c9a1d0eabf9e Mon Sep 17 00:00:00 2001 From: Michele Santoro Date: Tue, 12 Dec 2023 12:22:08 +0100 Subject: [PATCH 07/21] Update sign_executable.yml --- .github/workflows/sign_executable.yml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/.github/workflows/sign_executable.yml b/.github/workflows/sign_executable.yml index 766ea6f0..115f4ae2 100644 --- a/.github/workflows/sign_executable.yml +++ b/.github/workflows/sign_executable.yml @@ -2,7 +2,8 @@ name: "Create Tagged Release" on: push: - + pull_request: + branches: [ '**' ] jobs: trigger-build: runs-on: ubuntu-latest From 9821cf94d26360b7ff79bd507f37629d0d73a757 Mon Sep 17 00:00:00 2001 From: Michele Santoro Date: Tue, 12 Dec 2023 12:23:57 +0100 Subject: [PATCH 08/21] Update sign_executable.yml --- .github/workflows/sign_executable.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/sign_executable.yml b/.github/workflows/sign_executable.yml index 115f4ae2..04dfb3f6 100644 --- a/.github/workflows/sign_executable.yml +++ b/.github/workflows/sign_executable.yml @@ -1,4 +1,4 @@ -name: "Create Tagged Release" +name: "Sign Executable" on: push: From cd64602709e030aa2aeb7026f9c4ff5e6553c990 Mon Sep 17 00:00:00 2001 From: Michele Santoro Date: Tue, 12 Dec 2023 12:46:18 +0100 Subject: [PATCH 09/21] Update sign_executable.yml --- .github/workflows/sign_executable.yml | 7 +++---- 1 file changed, 3 insertions(+), 4 deletions(-) diff --git a/.github/workflows/sign_executable.yml b/.github/workflows/sign_executable.yml index 04dfb3f6..31f0c6bb 100644 --- a/.github/workflows/sign_executable.yml +++ b/.github/workflows/sign_executable.yml @@ -10,8 +10,7 @@ jobs: steps: - name: Trigger Jenkins Job, for singing executable run: | - curl -X POST "https://ci.eclipse.org/esmf/project/Sign-Native-Image/generic-webhook-trigger/invoke?token=GITHUB_BOT_TOKEN" \ + curl -X POST https://ci.eclipse.org/esmf/project/Sign-Native-Image/github-webhook/ \ + -H "Authorization: token ${{ secrets.eclipse-esmf-bot }}" \ -H "Content-Type: application/json" \ - -d '{"ref": "${{ github.ref }}", "sha": "${{ github.sha }}"}' - env: - GITHUB_BOT_TOKEN: ${{ secrets.eclipse-esmf-bot }} + -d '{"event_type": "trigger_jenkins"}' From 0eddc0a5efb21464268dfda90c40cf077d8a493c Mon Sep 17 00:00:00 2001 From: Michele Santoro Date: Tue, 12 Dec 2023 12:48:23 +0100 Subject: [PATCH 10/21] Update sign_executable.yml --- .github/workflows/sign_executable.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/sign_executable.yml b/.github/workflows/sign_executable.yml index 31f0c6bb..668c234c 100644 --- a/.github/workflows/sign_executable.yml +++ b/.github/workflows/sign_executable.yml @@ -11,6 +11,6 @@ jobs: - name: Trigger Jenkins Job, for singing executable run: | curl -X POST https://ci.eclipse.org/esmf/project/Sign-Native-Image/github-webhook/ \ - -H "Authorization: token ${{ secrets.eclipse-esmf-bot }}" \ + -H "Authorization: token ${{ secrets.GITHUB_TOKEN }}" \ -H "Content-Type: application/json" \ -d '{"event_type": "trigger_jenkins"}' From b4071d3973ae518875b8b95c0487cec987292884 Mon Sep 17 00:00:00 2001 From: Michele Santoro Date: Tue, 12 Dec 2023 12:50:57 +0100 Subject: [PATCH 11/21] Update sign_executable.yml --- .github/workflows/sign_executable.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/sign_executable.yml b/.github/workflows/sign_executable.yml index 668c234c..7f966681 100644 --- a/.github/workflows/sign_executable.yml +++ b/.github/workflows/sign_executable.yml @@ -10,7 +10,7 @@ jobs: steps: - name: Trigger Jenkins Job, for singing executable run: | - curl -X POST https://ci.eclipse.org/esmf/project/Sign-Native-Image/github-webhook/ \ + curl -X POST https://ci.eclipse.org/esmf/job/Sign-Native-Image/github-webhook/ \ -H "Authorization: token ${{ secrets.GITHUB_TOKEN }}" \ -H "Content-Type: application/json" \ -d '{"event_type": "trigger_jenkins"}' From 23254b54d6a89ec5f60c82f47dac78f88f7df4ad Mon Sep 17 00:00:00 2001 From: Michele Santoro Date: Thu, 1 Feb 2024 10:16:33 +0100 Subject: [PATCH 12/21] Update sign_executable.yml --- .github/workflows/sign_executable.yml | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-) diff --git a/.github/workflows/sign_executable.yml b/.github/workflows/sign_executable.yml index 7f966681..b3480cf0 100644 --- a/.github/workflows/sign_executable.yml +++ b/.github/workflows/sign_executable.yml @@ -10,7 +10,10 @@ jobs: steps: - name: Trigger Jenkins Job, for singing executable run: | + DATA='{"repository": {"url": "https://github.com/eclipse-cbi/org.eclipse.cbi", "html_url": "https://github.com/eclipse-cbi/org.eclipse.cbi", "owner": { "name": "eclipse-cbi"}}, "pusher": { "name": "foobar", "email": "foo@bar.com"}}' + SHA1="$(echo -n "${DATA}" | openssl dgst -sha1 -hmac ${{ secrets.GITHUB_TOKEN }}" | sed 's/SHA1(stdin)= //')" + curl -X POST https://ci.eclipse.org/esmf/job/Sign-Native-Image/github-webhook/ \ - -H "Authorization: token ${{ secrets.GITHUB_TOKEN }}" \ -H "Content-Type: application/json" \ - -d '{"event_type": "trigger_jenkins"}' + -H "X-GitHub-Event: push" \ + -H "X-Hub-Signature: sha1=${SHA1}" -d "${DATA}" From 9c6e19de0d96a058bd103a4433ceea1e402b5e8b Mon Sep 17 00:00:00 2001 From: Michele Santoro Date: Fri, 2 Feb 2024 16:00:45 +0100 Subject: [PATCH 13/21] Update sign_executable.yml --- .github/workflows/sign_executable.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/sign_executable.yml b/.github/workflows/sign_executable.yml index b3480cf0..a2a61198 100644 --- a/.github/workflows/sign_executable.yml +++ b/.github/workflows/sign_executable.yml @@ -11,7 +11,7 @@ jobs: - name: Trigger Jenkins Job, for singing executable run: | DATA='{"repository": {"url": "https://github.com/eclipse-cbi/org.eclipse.cbi", "html_url": "https://github.com/eclipse-cbi/org.eclipse.cbi", "owner": { "name": "eclipse-cbi"}}, "pusher": { "name": "foobar", "email": "foo@bar.com"}}' - SHA1="$(echo -n "${DATA}" | openssl dgst -sha1 -hmac ${{ secrets.GITHUB_TOKEN }}" | sed 's/SHA1(stdin)= //')" + SHA1="$(echo -n "${DATA}" | openssl dgst -sha1 -hmac ${{ secrets.WEBHOOK_SECRET }}" | sed 's/SHA1(stdin)= //')" curl -X POST https://ci.eclipse.org/esmf/job/Sign-Native-Image/github-webhook/ \ -H "Content-Type: application/json" \ From ea0c8333e2466796aa162e21d3bd49777952c6b4 Mon Sep 17 00:00:00 2001 From: Michele Santoro Date: Fri, 2 Feb 2024 16:03:40 +0100 Subject: [PATCH 14/21] Update sign_executable.yml --- .github/workflows/sign_executable.yml | 11 +++++------ 1 file changed, 5 insertions(+), 6 deletions(-) diff --git a/.github/workflows/sign_executable.yml b/.github/workflows/sign_executable.yml index a2a61198..22314800 100644 --- a/.github/workflows/sign_executable.yml +++ b/.github/workflows/sign_executable.yml @@ -9,11 +9,10 @@ jobs: runs-on: ubuntu-latest steps: - name: Trigger Jenkins Job, for singing executable - run: | + run: | DATA='{"repository": {"url": "https://github.com/eclipse-cbi/org.eclipse.cbi", "html_url": "https://github.com/eclipse-cbi/org.eclipse.cbi", "owner": { "name": "eclipse-cbi"}}, "pusher": { "name": "foobar", "email": "foo@bar.com"}}' - SHA1="$(echo -n "${DATA}" | openssl dgst -sha1 -hmac ${{ secrets.WEBHOOK_SECRET }}" | sed 's/SHA1(stdin)= //')" + SHA1="$(echo -n "${DATA}" | openssl dgst -sha1 -hmac "${WEBHOOK_SECRET}" | sed 's/SHA1(stdin)= //')" - curl -X POST https://ci.eclipse.org/esmf/job/Sign-Native-Image/github-webhook/ \ - -H "Content-Type: application/json" \ - -H "X-GitHub-Event: push" \ - -H "X-Hub-Signature: sha1=${SHA1}" -d "${DATA}" + curl -X POST https://ci.eclipse.org/esmf/github-webhook/ -H "Content-Type: application/json" \ + -H "X-GitHub-Event: push" -H "X-Hub-Signature: sha1=${SHA1}" -d "${DATA}" + From 187929592fee0e421478352277e62fb52805d936 Mon Sep 17 00:00:00 2001 From: Michele Santoro Date: Fri, 2 Feb 2024 16:07:19 +0100 Subject: [PATCH 15/21] Update sign_executable.yml --- .github/workflows/sign_executable.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/sign_executable.yml b/.github/workflows/sign_executable.yml index 22314800..72292309 100644 --- a/.github/workflows/sign_executable.yml +++ b/.github/workflows/sign_executable.yml @@ -9,10 +9,10 @@ jobs: runs-on: ubuntu-latest steps: - name: Trigger Jenkins Job, for singing executable - run: | + run: | DATA='{"repository": {"url": "https://github.com/eclipse-cbi/org.eclipse.cbi", "html_url": "https://github.com/eclipse-cbi/org.eclipse.cbi", "owner": { "name": "eclipse-cbi"}}, "pusher": { "name": "foobar", "email": "foo@bar.com"}}' SHA1="$(echo -n "${DATA}" | openssl dgst -sha1 -hmac "${WEBHOOK_SECRET}" | sed 's/SHA1(stdin)= //')" - curl -X POST https://ci.eclipse.org/esmf/github-webhook/ -H "Content-Type: application/json" \ + curl -X POST https://ci.eclipse.org/esmf/job/Sign-Native-Image/github-webhook/ -H "Content-Type: application/json" \ -H "X-GitHub-Event: push" -H "X-Hub-Signature: sha1=${SHA1}" -d "${DATA}" From 7889c3b299e8aa24b09165120f596bddc729f829 Mon Sep 17 00:00:00 2001 From: Michele Santoro Date: Fri, 2 Feb 2024 17:56:00 +0100 Subject: [PATCH 16/21] Update sign_executable.yml --- .github/workflows/sign_executable.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/sign_executable.yml b/.github/workflows/sign_executable.yml index 72292309..33ea699f 100644 --- a/.github/workflows/sign_executable.yml +++ b/.github/workflows/sign_executable.yml @@ -9,10 +9,10 @@ jobs: runs-on: ubuntu-latest steps: - name: Trigger Jenkins Job, for singing executable - run: | + run: | DATA='{"repository": {"url": "https://github.com/eclipse-cbi/org.eclipse.cbi", "html_url": "https://github.com/eclipse-cbi/org.eclipse.cbi", "owner": { "name": "eclipse-cbi"}}, "pusher": { "name": "foobar", "email": "foo@bar.com"}}' SHA1="$(echo -n "${DATA}" | openssl dgst -sha1 -hmac "${WEBHOOK_SECRET}" | sed 's/SHA1(stdin)= //')" curl -X POST https://ci.eclipse.org/esmf/job/Sign-Native-Image/github-webhook/ -H "Content-Type: application/json" \ - -H "X-GitHub-Event: push" -H "X-Hub-Signature: sha1=${SHA1}" -d "${DATA}" + -H "X-GitHub-Event: push" -H "X-Hub-Signature: sha1=${SHA1}" -d "${DATA}" -H 'Jenkins-Crumb: cf0a7a10c4de6bcf1704c8db04fad94d87331830e6d7e05909b7778570573c0c' From ac7ca54329d02d62974844c7407634d410e23c03 Mon Sep 17 00:00:00 2001 From: Michele Santoro Date: Fri, 2 Feb 2024 17:58:47 +0100 Subject: [PATCH 17/21] Update sign_executable.yml --- .github/workflows/sign_executable.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/sign_executable.yml b/.github/workflows/sign_executable.yml index 33ea699f..acfaee96 100644 --- a/.github/workflows/sign_executable.yml +++ b/.github/workflows/sign_executable.yml @@ -14,5 +14,5 @@ jobs: SHA1="$(echo -n "${DATA}" | openssl dgst -sha1 -hmac "${WEBHOOK_SECRET}" | sed 's/SHA1(stdin)= //')" curl -X POST https://ci.eclipse.org/esmf/job/Sign-Native-Image/github-webhook/ -H "Content-Type: application/json" \ - -H "X-GitHub-Event: push" -H "X-Hub-Signature: sha1=${SHA1}" -d "${DATA}" -H 'Jenkins-Crumb: cf0a7a10c4de6bcf1704c8db04fad94d87331830e6d7e05909b7778570573c0c' + -H "X-GitHub-Event: push" -H "X-Hub-Signature: sha1=${SHA1}" -d "${DATA}" -H "cf0a7a10c4de6bcf1704c8db04fad94d87331830e6d7e05909b7778570573c0c" From 6d29046aad2ea3d4ce9ec6594ceca34a2d21e582 Mon Sep 17 00:00:00 2001 From: Michele Santoro Date: Fri, 2 Feb 2024 17:59:37 +0100 Subject: [PATCH 18/21] Update sign_executable.yml --- .github/workflows/sign_executable.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/sign_executable.yml b/.github/workflows/sign_executable.yml index acfaee96..db5c2445 100644 --- a/.github/workflows/sign_executable.yml +++ b/.github/workflows/sign_executable.yml @@ -14,5 +14,5 @@ jobs: SHA1="$(echo -n "${DATA}" | openssl dgst -sha1 -hmac "${WEBHOOK_SECRET}" | sed 's/SHA1(stdin)= //')" curl -X POST https://ci.eclipse.org/esmf/job/Sign-Native-Image/github-webhook/ -H "Content-Type: application/json" \ - -H "X-GitHub-Event: push" -H "X-Hub-Signature: sha1=${SHA1}" -d "${DATA}" -H "cf0a7a10c4de6bcf1704c8db04fad94d87331830e6d7e05909b7778570573c0c" + -H "X-GitHub-Event: push" -H "X-Hub-Signature: sha1=${SHA1}" -d "${DATA}" -H "Jenkins-Crumb:cf0a7a10c4de6bcf1704c8db04fad94d87331830e6d7e05909b7778570573c0c" From a45eeadc2b4d7de82b2cbcc3a6ef9f0f12a2f97a Mon Sep 17 00:00:00 2001 From: Michele Santoro Date: Sun, 4 Feb 2024 19:39:05 +0100 Subject: [PATCH 19/21] Update sign_executable.yml --- .github/workflows/sign_executable.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/sign_executable.yml b/.github/workflows/sign_executable.yml index db5c2445..cc001f81 100644 --- a/.github/workflows/sign_executable.yml +++ b/.github/workflows/sign_executable.yml @@ -14,5 +14,5 @@ jobs: SHA1="$(echo -n "${DATA}" | openssl dgst -sha1 -hmac "${WEBHOOK_SECRET}" | sed 's/SHA1(stdin)= //')" curl -X POST https://ci.eclipse.org/esmf/job/Sign-Native-Image/github-webhook/ -H "Content-Type: application/json" \ - -H "X-GitHub-Event: push" -H "X-Hub-Signature: sha1=${SHA1}" -d "${DATA}" -H "Jenkins-Crumb:cf0a7a10c4de6bcf1704c8db04fad94d87331830e6d7e05909b7778570573c0c" + -H "X-GitHub-Event: push" -H "X-Hub-Signature: sha1=${SHA1}" From e1b0f79a7b9aef47da38704f183338789f9c2b3e Mon Sep 17 00:00:00 2001 From: Michele Santoro Date: Sun, 4 Feb 2024 19:40:21 +0100 Subject: [PATCH 20/21] Update sign_executable.yml --- .github/workflows/sign_executable.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/sign_executable.yml b/.github/workflows/sign_executable.yml index cc001f81..2a1196ee 100644 --- a/.github/workflows/sign_executable.yml +++ b/.github/workflows/sign_executable.yml @@ -13,6 +13,6 @@ jobs: DATA='{"repository": {"url": "https://github.com/eclipse-cbi/org.eclipse.cbi", "html_url": "https://github.com/eclipse-cbi/org.eclipse.cbi", "owner": { "name": "eclipse-cbi"}}, "pusher": { "name": "foobar", "email": "foo@bar.com"}}' SHA1="$(echo -n "${DATA}" | openssl dgst -sha1 -hmac "${WEBHOOK_SECRET}" | sed 's/SHA1(stdin)= //')" - curl -X POST https://ci.eclipse.org/esmf/job/Sign-Native-Image/github-webhook/ -H "Content-Type: application/json" \ - -H "X-GitHub-Event: push" -H "X-Hub-Signature: sha1=${SHA1}" + curl -X POST https://ci.eclipse.org/esmf/github-webhook/ -H "Content-Type: application/json" \ + -H "X-GitHub-Event: push" -H "X-Hub-Signature: sha1=${SHA1}" -d "${DATA}" From 3a07af585c4d2c4bf6cd4a058371cabbae3bd6ac Mon Sep 17 00:00:00 2001 From: Michele Santoro Date: Sun, 4 Feb 2024 20:01:24 +0100 Subject: [PATCH 21/21] Update sign_executable.yml --- .github/workflows/sign_executable.yml | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/.github/workflows/sign_executable.yml b/.github/workflows/sign_executable.yml index 2a1196ee..d2f639cd 100644 --- a/.github/workflows/sign_executable.yml +++ b/.github/workflows/sign_executable.yml @@ -10,9 +10,8 @@ jobs: steps: - name: Trigger Jenkins Job, for singing executable run: | - DATA='{"repository": {"url": "https://github.com/eclipse-cbi/org.eclipse.cbi", "html_url": "https://github.com/eclipse-cbi/org.eclipse.cbi", "owner": { "name": "eclipse-cbi"}}, "pusher": { "name": "foobar", "email": "foo@bar.com"}}' + DATA='{"repository": {"url": "https://github.com/eclipse-esmf/esmf-aspect-model-editor-backend", "html_url": "https://github.com/eclipse-esmf/esmf-aspect-model-editor-backend", "owner": { "name": "eclipse-cbi"}}, "pusher": { "name": "foobar", "email": "foo@bar.com"}}' SHA1="$(echo -n "${DATA}" | openssl dgst -sha1 -hmac "${WEBHOOK_SECRET}" | sed 's/SHA1(stdin)= //')" - curl -X POST https://ci.eclipse.org/esmf/github-webhook/ -H "Content-Type: application/json" \ - -H "X-GitHub-Event: push" -H "X-Hub-Signature: sha1=${SHA1}" -d "${DATA}" + curl -X POST https://ci.eclipse.org/esmf/github-webhook/ -H "Content-Type: application/json" -H "X-GitHub-Event: push" -H "X-Hub-Signature: sha1=${SHA1}" -d "${DATA}"