-
Notifications
You must be signed in to change notification settings - Fork 49
127 lines (108 loc) · 3.85 KB
/
actions.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
on:
push:
paths-ignore:
- "**/*.md"
env:
JCP_VERSION: 2.0.40450-A
JCP_FILENAME_PREFIX: jcp-
DIADOC_SIGNING_SECRET: ${{ secrets.DIADOC_SIGNING_SECRET }}
jobs:
build:
runs-on: ubuntu-22.04
steps:
- uses: actions/checkout@v3
with:
fetch-depth: 0
- name: Setup Maven Action
uses: s4u/setup-maven-action@v1.14.0
with:
java-version: 17
maven-version: 3.9.8
- name: Decrypt and Extract JCP Archive
run: |
openssl enc -d -aes-256-cbc \
-in ./${{ env.JCP_FILENAME_PREFIX }}${{ env.JCP_VERSION }}.zip.enc \
-out ./${{ env.JCP_FILENAME_PREFIX }}${{ env.JCP_VERSION }}.zip \
-pass env:DIADOC_SIGNING_SECRET
unzip -o ./${{ env.JCP_FILENAME_PREFIX }}${{ env.JCP_VERSION }}.zip
- name: Install JCP Dependencies
run: |
jars=(
"JCP.jar ru.cryptopro jcp"
"asn1rt.jar com.objsys.asn1j asn1rt"
"ASN1P.jar ru.cryptopro asn1p"
"JCryptoP.jar ru.cryptopro jcryptop"
)
for jar in "${jars[@]}"; do
set -- $jar
mvn install:install-file \
-Dfile=./${{ env.JCP_FILENAME_PREFIX }}${{ env.JCP_VERSION }}/$1 \
-DgroupId=$2 \
-DartifactId=$3 \
-Dversion=${{ env.JCP_VERSION }} \
-Dpackaging=jar
done
- name: Run the build script
run: mvn package
env:
github_ref_type: ${{ github.ref_type }}
- name: Validate artifacts
run: |
chmod +x .github/workflows/validate_version.sh
ARTIFACT_DIR=target
LATEST_JAR=$(find "$ARTIFACT_DIR" -type f -name "*.jar" -printf "%T@ %p\n" | sort -n | tail -1 | awk '{print $2}')
if [ -z "$LATEST_JAR" ]; then
echo "Error: No JAR files found in $ARTIFACT_DIR."
exit 1
fi
echo "Found latest JAR: $LATEST_JAR"
FILE_NAME=$(basename "$LATEST_JAR")
VERSION=$(echo "$FILE_NAME" | sed -n 's/^diadocsdk-\([0-9.]\+\(-[a-zA-Z0-9.]\+\)*\)\.jar$/\1/p')
echo "Validating version: $VERSION"
.github/workflows/validate_version.sh "$VERSION"
- name: Upload artifacts
uses: actions/upload-artifact@v4
with:
name: packages
path: |
target/*.jar
if-no-files-found: error
publish-manual:
runs-on: ubuntu-22.04
needs: build
if: |
startsWith(github.event.ref, 'refs/tags/version')
steps:
- uses: actions/checkout@v3
with:
fetch-depth: 0
- name: Download artifacts
uses: actions/download-artifact@v4
with:
name: packages
- name: Check versions
run: |
ARTIFACT_DIR="/home/runner/work/diadocsdk-java/diadocsdk-java"
LATEST_JAR=$(find "$ARTIFACT_DIR" -type f -name "*.jar" | sort -n | tail -1)
if [ -z "$LATEST_JAR" ]; then
echo "Error: No JAR files found in $ARTIFACT_DIR."
exit 1
fi
echo "Found latest JAR: $LATEST_JAR"
FILE_NAME=$(basename "$LATEST_JAR")
MANIFEST_VERSION=$(echo "$FILE_NAME" | sed -n 's/^diadocsdk-\([0-9.]\+\(-[a-zA-Z0-9.]\+\)*\)\.jar$/\1/p')
TAG="${{ github.ref }}"
VERSION=$(echo "$TAG" | sed -n 's|.*/versions/\([0-9a-zA-Z.-]*\)|\1|p')
echo "Extracted version: ${VERSION}"
if [ "$MANIFEST_VERSION" != "$VERSION" ]; then
echo "Version mismatch! Jar version ($MANIFEST_VERSION) does not match tag version ($VERSION)"
exit 1
fi
- name: Create github release
uses: softprops/action-gh-release@v1
with:
fail_on_unmatched_files: true
draft: false
prerelease: false
files: |
**/*.jar