Harden version value condition when event is push
#283
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # When a tag is push on the repo, this workflow will run to create a release and add some artifact to it. | |
| name: Releaser | |
| on: | |
| pull_request: | |
| paths: | |
| - .github/workflows/package-server.yml | |
| - .github/workflows/releaser.yml | |
| push: | |
| tags: | |
| - v[0-9]+.[0-9]+.[0-9]+* | |
| - nightly | |
| schedule: | |
| - cron: 30 22 * * * # At 22:30 | |
| permissions: | |
| contents: write | |
| # We set `concurrency` to prevent having this workflow being more than once for the same tag. | |
| concurrency: | |
| group: releaser-${{ github.workflow }}-${{ github.ref_name }} | |
| cancel-in-progress: true | |
| jobs: | |
| scheduled-nightly-build: | |
| if: github.event_name == 'schedule' | |
| uses: ./.github/workflows/_releaser_nightly_build.yml | |
| version: | |
| needs: scheduled-nightly-build | |
| # Always run the job if `scheduled-nightly-build` job is skipped otherwise only if `scheduled-nightly-build` job was successful. | |
| if: github.event_name != 'schedule' && always() || success() | |
| uses: ./.github/workflows/_parse_version.yml | |
| with: | |
| version: >- | |
| ${{ | |
| (github.event_name == 'schedule' && needs.scheduled-nightly-build.outputs.version_full) || | |
| (github.event_name == 'push' && startsWith(github.ref, 'refs/tags/') && github.ref_name != 'nightly' && github.ref_name) || | |
| '' | |
| }} | |
| commit_sha: ${{ needs.scheduled-nightly-build.outputs.commit_sha || github.sha }} | |
| package-parsec-server: | |
| needs: version | |
| if: needs.version.result == 'success' && always() | |
| uses: ./.github/workflows/package-server.yml | |
| with: | |
| version: ${{ needs.version.outputs.full }} | |
| version_patch_run_id: ${{ github.run_id }} | |
| commit_sha: ${{ needs.version.outputs.commit_sha }} | |
| package-parsec-client: | |
| needs: version | |
| if: needs.version.result == 'success' && always() | |
| uses: ./.github/workflows/package-client.yml | |
| with: | |
| version: ${{ needs.version.outputs.full }} | |
| version_patch_run_id: ${{ github.run_id }} | |
| commit_sha: ${{ needs.version.outputs.commit_sha }} | |
| releaser: | |
| needs: | |
| - version | |
| - package-parsec-server | |
| - package-parsec-client | |
| name: 🚛 Releaser | |
| if: join(needs.*.result, '-') == 'success-success-success' && always() | |
| runs-on: ubuntu-22.04 | |
| steps: | |
| - name: Download every artifact generated (and uploaded) | |
| uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 # pin v4.1.4 | |
| with: | |
| path: artifacts | |
| timeout-minutes: 5 | |
| - name: List downloaded artifacts | |
| run: tree artifacts | |
| - name: Create the folder that will contain the release files | |
| run: mkdir release-files | |
| - name: Copy artifacts to the release folder | |
| run: | | |
| set -ex | |
| cp -v artifacts/Linux-X64-wheel/parsec_cloud-${{ needs.version.outputs.pep440 }}-*.whl release-files | |
| cp -v artifacts/macOS-X64-wheel/parsec_cloud-${{ needs.version.outputs.pep440 }}-*.whl release-files | |
| cp -v artifacts/Windows-X64-wheel/parsec_cloud-${{ needs.version.outputs.pep440 }}-*.whl release-files | |
| cp -v artifacts/Linux-X64-electron-app/client/electron/dist/parsec-v3_${{ needs.version.outputs.no_local }}_amd64.snap release-files | |
| cp -v artifacts/macOS-X64-electron-app/client/electron/dist/parsec-v3-${{ needs.version.outputs.no_local }}.dmg release-files | |
| cp -v artifacts/Windows-X64-electron-app/client/electron/dist/'parsec-v3 Setup ${{ needs.version.outputs.no_local }}.exe' release-files | |
| env: | |
| BASH_XTRACEFD: 1 | |
| - name: Copy SBOM files | |
| run: cp -v artifacts/**/Parsec-SBOM-*.spdx.json release-files | |
| - name: Generate version file | |
| run: | |
| ( | |
| echo "full=${{ needs.version.outputs.full }}"; | |
| echo "pep440=${{ needs.version.outputs.pep440 }}"; | |
| echo "major=${{ needs.version.outputs.major }}"; | |
| echo "minor=${{ needs.version.outputs.minor }}"; | |
| echo "patch=${{ needs.version.outputs.patch }}"; | |
| echo "pre=${{ needs.version.outputs.pre }}"; | |
| echo "dev=${{ needs.version.outputs.dev }}"; | |
| echo "local=${{ needs.version.outputs.local }}"; | |
| ) | tee release-files/version | |
| - name: Generate checksums file released files | |
| run: sha256sum release-files/* | sed 's;release-files/;;' | tee checksums.sha256 | |
| - name: Extract checksum for each file | |
| run: | | |
| set -x | |
| # Every files that don't end with '.sha256' | |
| for file in $(find release-files -type f -not -name '*.sha256'); do | |
| grep "$(basename "$file")" checksums.sha256 | cut -d ' ' -f 1 > "$file".sha256 | |
| done | |
| - name: List files in 'release-files'. | |
| run: tree release-files | |
| - name: Generate summary | |
| id: summary | |
| run: | | |
| EOF="EOF-$(dd if=/dev/urandom bs=15 count=1 status=none | base64)" | |
| ( | |
| set -e | |
| echo "output<<$EOF" | |
| echo '# Parsec ${{ needs.version.outputs.full }}' | |
| echo | |
| echo 'You can find all assets checksums below, or use `<asset name>.sha256`' | |
| echo | |
| echo '```txt' | |
| cat checksums.sha256 | |
| echo '```' | |
| echo | |
| echo 'Generated by <${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}>' | |
| echo "$EOF" | |
| ) | tee -a $GITHUB_OUTPUT | |
| - name: Create release | |
| if: github.event_name == 'push' && startsWith(github.ref, 'refs/tags/') | |
| # FIXME: rollback to `softprops/action-gh-release` once the issue <https://github.com/softprops/action-gh-release/issues/362> is fixed. | |
| uses: FirelightFlagboy/action-gh-release@d9a17b2b70a11ff00e4a7d0be3ca04e74d66de24 | |
| with: | |
| draft: true | |
| body: ${{ steps.summary.outputs.output }} | |
| prerelease: ${{ needs.version.outputs.pre != '' || needs.version.outputs.dev != '' || needs.version.outputs.local != '' }} | |
| name: ${{ github.ref_name == 'nightly' && 'Nightly release' || format('Release v{0}', needs.version.outputs.full) }} | |
| files: | | |
| release-files/parsec_cloud-${{ needs.version.outputs.pep440 }}-*.whl | |
| release-files/parsec_cloud-${{ needs.version.outputs.pep440 }}-*.whl.sha256 | |
| release-files/parsec-v3_${{ needs.version.outputs.full }}_*.snap | |
| release-files/parsec-v3_${{ needs.version.outputs.full }}_*.snap.sha256 | |
| release-files/parsec-v3 Setup ${{ needs.version.outputs.full }}.exe | |
| release-files/parsec-v3 Setup ${{ needs.version.outputs.full }}.exe.sha256 | |
| release-files/parsec-v3-${{ needs.version.outputs.full }}.dmg | |
| release-files/parsec-v3-${{ needs.version.outputs.full }}.dmg.sha256 | |
| release-files/Parsec-SBOM-Wheel-linux.spdx.json | |
| release-files/Parsec-SBOM-Wheel-linux.spdx.json.sha256 | |
| release-files/Parsec-SBOM-Wheel-windows.spdx.json | |
| release-files/Parsec-SBOM-Wheel-windows.spdx.json.sha256 | |
| release-files/Parsec-SBOM-Wheel-macos.spdx.json | |
| release-files/Parsec-SBOM-Wheel-macos.spdx.json.sha256 | |
| release-files/Parsec-SBOM-Electron-linux.spdx.json | |
| release-files/Parsec-SBOM-Electron-linux.spdx.json.sha256 | |
| release-files/Parsec-SBOM-Electron-windows.spdx.json | |
| release-files/Parsec-SBOM-Electron-windows.spdx.json.sha256 | |
| release-files/Parsec-SBOM-Electron-macos.spdx.json | |
| release-files/Parsec-SBOM-Electron-macos.spdx.json.sha256 | |
| release-files/Parsec-SBOM-Web.spdx.json | |
| release-files/Parsec-SBOM-Web.spdx.json.sha256 | |
| release-files/version | |
| release-files/version.sha256 | |
| fail_on_unmatched_files: true | |
| generate_release_notes: false | |
| timeout-minutes: 5 |