build and test #1
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: build and test | |
# on: [push] | |
on: | |
# Allows you to run this workflow manually from the Actions tab | |
workflow_dispatch: | |
inputs: | |
docs: | |
description: "Release docs" | |
type: boolean | |
required: true | |
default: true | |
jobs: | |
build-test-npm: | |
runs-on: ubuntu-latest | |
steps: | |
- name: Checkout code | |
uses: actions/checkout@v3 | |
- name: Set up Node.js | |
uses: actions/setup-node@v3 | |
with: | |
node-version: "18" | |
- name: Execute npm install, test, build | |
working-directory: frontend | |
run: | | |
npm ci | |
npm run build --if-present | |
npm run test:unit | |
- name: Check with eslint | |
run: | | |
npm install | |
npm run check | |
- name: Archive npm artifacts | |
uses: actions/upload-artifact@v3 | |
with: | |
name: npm-artifacts | |
path: | | |
frontend/dist | |
retention-days: 10 | |
build-test-java: | |
runs-on: ubuntu-latest | |
needs: build-test-npm | |
steps: | |
- name: Checkout code | |
uses: actions/checkout@v3 | |
- name: Download npm articats | |
uses: actions/download-artifact@v3 | |
with: | |
name: npm-artifacts | |
- name: Set up JDK | |
uses: actions/setup-java@v3 | |
with: | |
java-version: "17" | |
distribution: "temurin" | |
cache: maven | |
- name: Build with Maven | |
# TODO: Tests vom API Gateway funktionieren nur mit dem SSO. Muss noch konfiguriert werden. | |
run: mvn -B -Pgitlab-cicd verify -DskipTests -Dspring.security.logging.requests=all --file pom.xml | |
# run: mvn -B -s ./.m2/settings.xml -Pgitlab-cicd verify -Dspring.security.logging.requests=all --file pom.xml | |
compliance: | |
runs-on: ubuntu-latest | |
steps: | |
- name: Checkout code | |
uses: actions/checkout@v3 | |
- name: Advance Security Policy as Code | |
uses: advanced-security/[email protected] | |
with: | |
policy: it-at-m/policy-as-code | |
policy-path: default.yaml | |
token: ${{ secrets.GITHUB_TOKEN }} | |
argvs: "--disable-dependabot --disable-secret-scanning --disable-code-scanning --display" |