Edits to the 1Password CLI #14
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: CI/CD | |
on: | |
push: | |
branches: | |
- test-ci-cd-workflow | |
pull_request: | |
branches: | |
- main | |
jobs: | |
build: | |
runs-on: ubuntu-latest | |
steps: | |
- name: Checkout code | |
uses: actions/checkout@v2 | |
- name: Set up JDK 17 | |
uses: actions/setup-java@v2 | |
with: | |
java-version: '17' | |
distribution: 'adopt' | |
- name: Install Maven | |
run: sudo apt-get install -y maven | |
- name: Install Chromedriver | |
run: sudo apt-get install -y chromium-chromedriver | |
- name: Install 1Password CLI | |
run: | | |
curl -sS https://downloads.1password.com/linux/keys/1password.asc | gpg --import | |
echo 'deb [arch=amd64 signed-by=/usr/share/keyrings/1password-archive-keyring.gpg] https://downloads.1password.com/linux/debian stable main' | sudo tee /etc/apt/sources.list.d/1password.list | |
sudo mkdir -p /usr/share/keyrings | |
curl -sS https://downloads.1password.com/linux/keys/1password.asc | sudo gpg --dearmor --output /usr/share/keyrings/1password-archive-keyring.gpg | |
sudo apt-get update && sudo apt-get install -y 1password-cli | |
- name: Sign in to 1Password | |
env: | |
OP_CONNECT_HOST: ${{ secrets.OP_CONNECT_HOST }} | |
OP_CONNECT_TOKEN: ${{ secrets.OP_CONNECT_TOKEN }} | |
run: | | |
op --version | |
echo "1Password CLI installed successfully." | |
- name: Export secrets from 1Password | |
env: | |
OP_CONNECT_HOST: ${{ secrets.OP_CONNECT_HOST }} | |
OP_CONNECT_TOKEN: ${{ secrets.OP_CONNECT_TOKEN }} | |
run: | | |
echo "AWS_ACCESS_KEY_ID=$(op read op://Shared/AWS_ACCESS_KEY_ID)" >> $GITHUB_ENV | |
echo "AWS_SECRET_ACCESS_KEY=$(op read op://Shared/AWS_SECRET_ACCESS_KEY)" >> $GITHUB_ENV | |
echo "AWS_REGION=$(op read op://Shared/AWS_REGION)" >> $GITHUB_ENV | |
echo "AWS_S3_BUCKET_NAME=$(op read op://Shared/AWS_S3_BUCKET_NAME)" >> $GITHUB_ENV | |
echo "DB_HOST=$(op read op://Shared/DB_HOST)" >> $GITHUB_ENV | |
echo "DB_PORT=$(op read op://Shared/DB_PORT)" >> $GITHUB_ENV | |
echo "DB_NAME=$(op read op://Shared/DB_NAME)" >> $GITHUB_ENV | |
echo "DATABASE_URL=$(op read op://Shared/DATABASE_URL)" >> $GITHUB_ENV | |
echo "DATABASE_USERNAME=$(op read op://Shared/DATABASE_USERNAME)" >> $GITHUB_ENV | |
echo "DATABASE_PASSWORD=$(op read op://Shared/DATABASE_PASSWORD)" >> $GITHUB_ENV | |
echo "OP_EMAIL=$(op read op://Shared/OP_EMAIL)" >> $GITHUB_ENV | |
echo "OP_SECRET_KEY=$(op read op://Shared/OP_SECRET_KEY)" >> $GITHUB_ENV | |
echo "DOCKERHUB_USERNAME=$(op read op://Shared/DOCKERHUB_USERNAME)" >> $GITHUB_ENV | |
echo "DOCKERHUB_PASSWORD=$(op read op://Shared/DOCKERHUB_PASSWORD)" >> $GITHUB_ENV | |
- name: Wait for PostgreSQL to be ready | |
run: | | |
until pg_isready -h $DB_HOST -p $DB_PORT -U $DATABASE_USERNAME; do echo waiting for postgres; sleep 2; done | |
- name: Build with Maven | |
env: | |
DB_HOST: ${{ env.DB_HOST }} | |
DB_PORT: ${{ env.DB_PORT }} | |
DB_NAME: ${{ env.DB_NAME }} | |
DB_USER: ${{ env.DATABASE_USERNAME }} | |
DB_PASSWORD: ${{ env.DATABASE_PASSWORD }} | |
DATABASE_URL: ${{ env.DATABASE_URL }} | |
AWS_ACCESS_KEY_ID: ${{ env.AWS_ACCESS_KEY_ID }} | |
AWS_SECRET_ACCESS_KEY: ${{ env.AWS_SECRET_ACCESS_KEY }} | |
AWS_REGION: ${{ env.AWS_REGION }} | |
AWS_S3_BUCKET_NAME: ${{ env.AWS_S3_BUCKET_NAME }} | |
run: mvn clean package -DskipTests | |
- name: Run tests | |
env: | |
DB_HOST: ${{ env.DB_HOST }} | |
DB_PORT: ${{ env.DB_PORT }} | |
DB_NAME: ${{ env.DB_NAME }} | |
DB_USER: ${{ env.DATABASE_USERNAME }} | |
DB_PASSWORD: ${{ env.DATABASE_PASSWORD }} | |
DATABASE_URL: ${{ env.DATABASE_URL }} | |
AWS_ACCESS_KEY_ID: ${{ env.AWS_ACCESS_KEY_ID }} | |
AWS_SECRET_ACCESS_KEY: ${{ env.AWS_SECRET_ACCESS_KEY }} | |
AWS_REGION: ${{ env.AWS_REGION }} | |
AWS_S3_BUCKET_NAME: ${{ env.AWS_S3_BUCKET_NAME }} | |
run: mvn test | |
- name: Build Docker image | |
run: docker build -t mhk1/acebook_penguins:latest . | |
- name: Login to Docker Hub | |
env: | |
DOCKERHUB_PASSWORD: ${{ secrets.DOCKERHUB_PASSWORD }} | |
DOCKERHUB_USERNAME: ${{ secrets.DOCKERHUB_USERNAME }} | |
run: echo "$DOCKERHUB_PASSWORD" | docker login -u "$DOCKERHUB_USERNAME" --password-stdin | |
- name: Push Docker image | |
run: docker push mhk1/acebook_penguins:latest |