[audit fix] sequencer alias cleanup #682
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: eth-rollup-develop branch workflow | |
| on: | |
| push: | |
| branches: [eth-rollup-develop] | |
| pull_request: | |
| types: [ labeled, opened, synchronize, unlabeled, closed ] | |
| branches: [eth-rollup-develop,eth-rollup-develop-solo] | |
| workflow_dispatch: | |
| # For manually trigger | |
| inputs: | |
| e2eBranch: | |
| description: "Name of the e2e target branch" | |
| required: false | |
| default: "main" | |
| nodeDockerImage: | |
| description: "Name of the node docker image reference" | |
| required: false | |
| default: "mangatasolutions/rollup-node:latest" | |
| permissions: | |
| contents: write | |
| id-token: write | |
| deployments: write | |
| checks: write | |
| # The following concurrency group cancels in-progress jobs or runs on pull_request events only | |
| # https://docs.github.com/en/actions/using-jobs/using-concurrency#example-using-a-fallback-value | |
| concurrency: | |
| group: ${{ github.workflow }}-${{ github.head_ref || github.run_id }} | |
| cancel-in-progress: true | |
| jobs: | |
| init: | |
| name: Global init | |
| runs-on: ubuntu-latest | |
| if: github.event.action != 'unlabeled' && github.event.action != 'closed' | |
| outputs: | |
| GLOBAL_VERSION: ${{ steps.set_vars.outputs.GLOBAL_VERSION }} | |
| GIT_BRANCH: ${{ steps.set_vars.outputs.GIT_BRANCH }} | |
| GIT_BRANCH_UNFORMATTED: ${{ steps.branch-name.outputs.current_branch }} | |
| steps: | |
| - name: Get branch name | |
| id: branch-name | |
| uses: tj-actions/branch-names@v6 | |
| - name: Set global version | |
| id: set_vars | |
| run: | | |
| echo "GLOBAL_VERSION=${{ github.sha }}" >> $GITHUB_OUTPUT | |
| echo "GIT_BRANCH=${{ steps.branch-name.outputs.current_branch }}" | sed "s@/@-@g" >> $GITHUB_OUTPUT | |
| build-and-test: | |
| needs: [init] | |
| name: Build | |
| uses: ./.github/workflows/reusable-build-and-test.yml | |
| secrets: inherit | |
| with: | |
| version: ${{ needs.init.outputs.GLOBAL_VERSION }} | |
| branch: ${{ needs.init.outputs.GIT_BRANCH }} | |
| deploy-fungible: | |
| name: Deploy fungible environment | |
| needs: [init, build-and-test] | |
| if: | | |
| (github.event_name == 'pull_request' && github.event.action == 'labeled' && github.event.label.name == ':rocket: deploy') || | |
| (github.event_name == 'pull_request' && github.event.action != 'labeled' && contains(github.event.pull_request.labels.*.name, ':rocket: deploy')) | |
| uses: ./.github/workflows/reusable-deploy.yml | |
| secrets: inherit | |
| with: | |
| env: fungible | |
| version: ${{ needs.init.outputs.GLOBAL_VERSION }} | |
| cluster_name: mangata-dev-alpha | |
| clean-up-fungible: | |
| name: Delete fungible environment | |
| if: | | |
| (github.event_name == 'pull_request' && github.event.action == 'unlabeled' && github.event.label.name == ':rocket: deploy') || | |
| (github.event_name == 'pull_request' && github.event.action == 'closed' && contains(github.event.pull_request.labels.*.name, ':rocket: deploy')) | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - uses: google-github-actions/auth@v1 | |
| with: | |
| workload_identity_provider: ${{ secrets.GCP_WORKLOAD_IDENTITY_PROVIDER }} | |
| service_account: ${{ secrets.GCP_SERVICE_ACCOUNT }} | |
| - name: Set up GKE credentials | |
| uses: google-github-actions/[email protected] | |
| with: | |
| cluster_name: mangata-dev-alpha | |
| location: europe-west1 | |
| - name: Delete Kubernetes namespace with resources for fungible environment | |
| run: kubectl delete namespace pr-${{ github.event.number }} | |
| - name: Delete GitHub Deployment environment | |
| if: always() | |
| uses: bobheadxi/[email protected] | |
| with: | |
| step: delete-env | |
| token: ${{ secrets.GITHUB_TOKEN }} | |
| env: pr-${{ github.event.number }} | |
| generate-types: | |
| name: Generate types | |
| needs: [ init, build-and-test ] | |
| uses: ./.github/workflows/reusable-generate-types.yml | |
| secrets: inherit | |
| with: | |
| branch: ${{ needs.init.outputs.GIT_BRANCH_UNFORMATTED }} | |
| parachainDocker: ${{ github.event.inputs.nodeDockerImage }} | |
| globalVersion: ${{ needs.init.outputs.GLOBAL_VERSION }} | |
| run-e2e-test: | |
| name: Run e2e tests | |
| needs: [init, build-and-test, generate-types] | |
| uses: ./.github/workflows/reusable-e2e-tests.yml | |
| secrets: inherit | |
| permissions: | |
| contents: write | |
| id-token: write | |
| deployments: write | |
| checks: write | |
| with: | |
| e2eBranch: ${{ github.event.inputs.e2eBranch }} | |
| nodeDockerImage: ${{ github.event.inputs.nodeDockerImage }} | |
| skipBuild: 'false' | |
| globalVersion: ${{ needs.init.outputs.GLOBAL_VERSION }} | |
| deploy-rollup-dev: | |
| name: Deploy to rollup-dev on every commit to `eth-rollup-develop` branch | |
| needs: [init, build-and-test] | |
| if: github.event_name == 'push' && github.ref_name == 'eth-rollup-develop' | |
| uses: ./.github/workflows/reusable-deploy-rollup-dev.yml | |
| secrets: inherit | |
| with: | |
| version: ${{ needs.init.outputs.GLOBAL_VERSION }} |