Skip to content

Commit 00d2e9f

Browse files
jamesfwoodjamesfwood
committed
Merge branch 'develop'
2 parents d7df22e + 562f013 commit 00d2e9f

139 files changed

Lines changed: 5186 additions & 1750 deletions

File tree

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

.github/workflows/camunda.yml

Lines changed: 175 additions & 9 deletions
Original file line numberDiff line numberDiff line change
@@ -8,7 +8,7 @@ on:
88
- cron: '0 12 * * 1'
99

1010
env:
11-
TEAM: ("jamesfwood" "voxparcxls" "galenhollins" "galenatjpl" "jeffreypon")
11+
TEAM: ("jamesfwood" "jdrodjpl" "jl-0")
1212

1313
jobs:
1414

@@ -39,6 +39,27 @@ jobs:
3939
java-version: '17'
4040
distribution: 'temurin'
4141

42+
# Configure Maven security (master password)
43+
- name: Configure Maven security
44+
run: |
45+
mkdir -p ~/.m2
46+
echo "<settingsSecurity>
47+
<master>${{ secrets.MAVEN_MASTER_PASSWORD }}</master>
48+
</settingsSecurity>" > ~/.m2/settings-security.xml
49+
50+
# Configure Maven settings (encrypted repo password)
51+
- name: Configure Maven settings
52+
run: |
53+
echo "<settings>
54+
<servers>
55+
<server>
56+
<id>${{ secrets.MAVEN_REPO_ID }}</id>
57+
<username>${{ secrets.MAVEN_USERNAME }}</username>
58+
<password>${{ secrets.MAVEN_ENCRYPTED_PASSWORD }}</password>
59+
</server>
60+
</servers>
61+
</settings>" > ~/.m2/settings.xml
62+
4263
- name: Cache Maven packages
4364
uses: actions/cache@v4
4465
with:
@@ -47,6 +68,13 @@ jobs:
4768
restore-keys: |
4869
${{ runner.os }}-m2-
4970
71+
- name: Configure Camunda Download Credentials
72+
run: |
73+
echo "machine downloads.camunda.cloud
74+
login ${{ secrets.CAMUNDA_DOWNLOAD_LOGIN }}
75+
password ${{ secrets.CAMUNDA_DOWNLOAD_PASSWORD }}" > ~/.netrc
76+
chmod 400 ~/.netrc
77+
5078
- name: Create open-source certs
5179
run: |
5280
cd cws-certs
@@ -58,7 +86,16 @@ jobs:
5886
mkdir ~/.cws/
5987
chmod 700 ~/.cws/
6088
echo ${{ secrets.KEYSTORE_PASSWORD }} > ~/.cws/creds
61-
chmod 600 ~/.cws/creds
89+
chmod 400 ~/.cws/creds
90+
91+
- name: Write license to file
92+
run: |
93+
mkdir -p ~/.camunda
94+
chmod 700 ~/.camunda
95+
cat <<'EOF' > ~/.camunda/license.txt
96+
${{ secrets.CAMUNDA_LICENSE }}
97+
EOF
98+
chmod 400 ~/.camunda/license.txt
6299
63100
- name: Download Logstash
64101
run: |
@@ -79,17 +116,37 @@ jobs:
79116
sleep 5s
80117
docker ps -a
81118
82-
- name: Build CWS
119+
- name: Cache Dependency-Check data
120+
uses: actions/cache@v4
121+
with:
122+
path: ~/.dependency-check-data
123+
key: ${{ runner.os }}-dependency-check
124+
restore-keys: |
125+
${{ runner.os }}-dependency-check
126+
127+
- name: Run Dependency Check
128+
run: mvn clean dependency-check:aggregate
129+
shell: bash
130+
env:
131+
NVD_API_KEY: ${{ secrets.NVD_API_KEY }}
132+
133+
- name: Upload Dependency Check Report
134+
uses: actions/upload-artifact@v4
135+
with:
136+
name: dependency-check-report
137+
path: target/dependency-check-reports/dependency-check-report.html
138+
139+
- name: Build and Start CWS
83140
id: build
84141
run: |
85142
cd ci
86143
chmod +x run_ci.sh
87144
./run_ci.sh $SECURITY $WORKERS
88145
shell: bash
89146

90-
- name: Show CWS Log
147+
- name: List CWS Logs
91148
run: |
92-
cd dist/console-only/cws/server/apache-tomcat-9.0.75/logs
149+
cd "dist/console-only/cws/server/apache-tomcat-10.1.36/logs"
93150
ls -al
94151
95152
- name: Set up Google Chrome
@@ -123,6 +180,36 @@ jobs:
123180
name: test-screenshots
124181
path: test-screenshots/
125182

183+
- name: Show CWS Log for Console
184+
if: always()
185+
working-directory: dist/console-only/cws/server/apache-tomcat-10.1.36/logs
186+
run: |
187+
cat cws.log
188+
189+
- name: Show Catalina Log for Console
190+
if: always()
191+
working-directory: dist/console-only/cws/server/apache-tomcat-10.1.36/logs
192+
run: |
193+
cat catalina.out
194+
195+
- name: Show CWS Log for Worker1
196+
if: always()
197+
working-directory: dist/worker1/cws/server/apache-tomcat-10.1.36/logs
198+
run: |
199+
cat cws.log
200+
201+
- name: Show Catalina Log for Worker1
202+
if: always()
203+
working-directory: dist/worker1/cws/server/apache-tomcat-10.1.36/logs
204+
run: |
205+
cat catalina.out
206+
207+
- name: Cleanup Private files
208+
if: always()
209+
run: |
210+
rm -rf ~/.camunda
211+
rm -f ~/.netrc
212+
126213
- name: Send custom JSON data to Slack workflow
127214
if: ${{ always() && contains(env.TEAM, github.actor) }}
128215
id: slack
@@ -173,6 +260,27 @@ jobs:
173260
java-version: '17'
174261
distribution: 'temurin'
175262

263+
# Configure Maven security (master password)
264+
- name: Configure Maven security
265+
run: |
266+
mkdir -p ~/.m2
267+
echo "<settingsSecurity>
268+
<master>${{ secrets.MAVEN_MASTER_PASSWORD }}</master>
269+
</settingsSecurity>" > ~/.m2/settings-security.xml
270+
271+
# Configure Maven settings (encrypted repo password)
272+
- name: Configure Maven settings
273+
run: |
274+
echo "<settings>
275+
<servers>
276+
<server>
277+
<id>${{ secrets.MAVEN_REPO_ID }}</id>
278+
<username>${{ secrets.MAVEN_USERNAME }}</username>
279+
<password>${{ secrets.MAVEN_ENCRYPTED_PASSWORD }}</password>
280+
</server>
281+
</servers>
282+
</settings>" > ~/.m2/settings.xml
283+
176284
- name: Cache Maven packages
177285
uses: actions/cache@v4
178286
with:
@@ -181,6 +289,13 @@ jobs:
181289
restore-keys: |
182290
${{ runner.os }}-m2-
183291
292+
- name: Configure Camunda Download Credentials
293+
run: |
294+
echo "machine downloads.camunda.cloud
295+
login ${{ secrets.CAMUNDA_DOWNLOAD_LOGIN }}
296+
password ${{ secrets.CAMUNDA_DOWNLOAD_PASSWORD }}" > ~/.netrc
297+
chmod 400 ~/.netrc
298+
184299
- name: Create open-source certs
185300
run: |
186301
cd cws-certs
@@ -192,7 +307,16 @@ jobs:
192307
mkdir ~/.cws/
193308
chmod 700 ~/.cws/
194309
echo ${{ secrets.KEYSTORE_PASSWORD }} > ~/.cws/creds
195-
chmod 600 ~/.cws/creds
310+
chmod 400 ~/.cws/creds
311+
312+
- name: Write license to file
313+
run: |
314+
mkdir -p ~/.camunda
315+
chmod 700 ~/.camunda
316+
cat <<'EOF' > ~/.camunda/license.txt
317+
${{ secrets.CAMUNDA_LICENSE }}
318+
EOF
319+
chmod 400 ~/.camunda/license.txt
196320
197321
- name: Download Logstash
198322
run: |
@@ -213,17 +337,17 @@ jobs:
213337
sleep 5s
214338
docker ps -a
215339
216-
- name: Build CWS
340+
- name: Build and Start CWS
217341
id: build
218342
run: |
219343
cd ci
220344
chmod +x run_ci.sh
221345
./run_ci.sh $SECURITY $WORKERS
222346
shell: bash
223347

224-
- name: Show CWS Log
348+
- name: List CWS Logs
225349
run: |
226-
cd dist/console-only/cws/server/apache-tomcat-9.0.75/logs
350+
cd dist/console-only/cws/server/apache-tomcat-10.1.36/logs
227351
ls -al
228352
229353
- name: Set up Google Chrome
@@ -246,6 +370,48 @@ jobs:
246370
name: test-screenshots-advanced
247371
path: test-screenshots/
248372

373+
- name: Show CWS Log for Console
374+
if: always()
375+
working-directory: dist/console-only/cws/server/apache-tomcat-10.1.36/logs
376+
run: |
377+
cat cws.log
378+
379+
- name: Show Catalina Log for Console
380+
if: always()
381+
working-directory: dist/console-only/cws/server/apache-tomcat-10.1.36/logs
382+
run: |
383+
cat catalina.out
384+
385+
- name: Show CWS Log for Worker1
386+
if: always()
387+
working-directory: dist/worker1/cws/server/apache-tomcat-10.1.36/logs
388+
run: |
389+
cat cws.log
390+
391+
- name: Show Catalina Log for Worker1
392+
if: always()
393+
working-directory: dist/worker1/cws/server/apache-tomcat-10.1.36/logs
394+
run: |
395+
cat catalina.out
396+
397+
- name: Show CWS Log for Worker2
398+
if: always()
399+
working-directory: dist/worker2/cws/server/apache-tomcat-10.1.36/logs
400+
run: |
401+
cat cws.log
402+
403+
- name: Show Catalina Log for Worker2
404+
if: always()
405+
working-directory: dist/worker2/cws/server/apache-tomcat-10.1.36/logs
406+
run: |
407+
cat catalina.out
408+
409+
- name: Cleanup Private files
410+
if: always()
411+
run: |
412+
rm -rf ~/.camunda
413+
rm -f ~/.netrc
414+
249415
- name: Send custom JSON data to Slack workflow
250416
if: ${{ always() && contains(env.TEAM, github.actor) }}
251417
id: slack

0 commit comments

Comments
 (0)