-
Notifications
You must be signed in to change notification settings - Fork 1
156 lines (143 loc) · 4.41 KB
/
rust.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
name: Build-Rust
on:
push:
branches: [ "main"]
paths:
- "backend/**"
pull_request:
branches: [ "main"]
workflow_dispatch:
env:
CARGO_TERM_COLOR: always
DATABASE_URL: "postgres://postgres:password@postgres/mensa_app"
FLICKR_API_KEY: ${{ secrets.FLICKR_PUBLIC_KEY }}
SMTP_SERVER: ${{ vars.SMTP_SERVER }}
SMTP_PORT: ${{ vars.SMTP_PORT }}
SMTP_USERNAME: ${{ vars.SMTP_USERNAME }}
SMTP_PASSWORD: ${{ secrets.SMTP_PASSWORD }}
ADMIN_EMAIL: ${{ vars.ADMIN_EMAIL }}
GOOGLE_CLIENT_JSON_BASE64: ${{ secrets.GOOGLE_CLIENT_JSON_BASE64 }}
GOOGLE_PROJECT_ID: ${{ vars.GOOGLE_PROJECT_ID }}
jobs:
build_rust:
runs-on: ubuntu-latest
needs: [build, test, coverage]
steps:
- name: Print success
run: |
echo "Building, testing and coverage succeeded!"
build:
runs-on: ubuntu-latest
container: rust:latest
defaults:
run:
working-directory: ./backend
services:
postgres:
image: postgres
env:
POSTGRES_PASSWORD: password
options: >-
--health-cmd pg_isready
--health-interval 10s
--health-timeout 5s
--health-retries 5
steps:
- uses: actions/checkout@v4
- run: rustup toolchain install stable --profile minimal
- uses: Swatinem/rust-cache@v2
with:
key: "build"
- name: Check formatting
run: |
rustup component add rustfmt
cargo fmt --check
- name: Setup database
run: |
cargo install sqlx-cli --no-default-features --features native-tls,postgres
cargo sqlx database setup
- name: Check prepared sql query information
run: cargo sqlx prepare --check
- name: Check docs
run: RUSTDOCFLAGS="-D warnings" cargo doc --no-deps
- name: Build
run: cargo build --verbose
- name: Check linter warnings
run: |
rustup component add clippy
cargo clippy --version
cargo clippy --all-targets -- -D warnings
test:
runs-on: ubuntu-latest
container: rust:latest
defaults:
run:
working-directory: ./backend
services:
postgres:
image: postgres
env:
POSTGRES_PASSWORD: password
options: >-
--health-cmd pg_isready
--health-interval 10s
--health-timeout 5s
--health-retries 5
steps:
- uses: actions/checkout@v4
- run: rustup toolchain install stable --profile minimal
- uses: Swatinem/rust-cache@v2
with:
key: "test"
- name: Setup database
run: |
cargo install sqlx-cli --no-default-features --features native-tls,postgres
cargo sqlx database setup
- name: Prepare secret file
run: |
echo "$GOOGLE_CLIENT_JSON_BASE64" >> secret.base64
base64 --decode secret.base64 > secret.json
echo "SERVICE_ACCOUNT_JSON=$(realpath secret.json)" >> $GITHUB_ENV
- name: Run tests
run: cargo test --verbose
coverage:
runs-on: ubuntu-latest
defaults:
run:
working-directory: ./backend
container:
image: xd009642/tarpaulin:develop-nightly
options: --security-opt seccomp=unconfined
services:
postgres:
image: postgres
env:
POSTGRES_PASSWORD: password
options: >-
--health-cmd pg_isready
--health-interval 10s
--health-timeout 5s
--health-retries 5
steps:
- uses: actions/checkout@v4
- run: rustup toolchain install stable --profile minimal
- uses: Swatinem/rust-cache@v2
with:
key: "coverage"
- name: Setup database
run: |
cargo install sqlx-cli --no-default-features --features native-tls,postgres
cargo sqlx database setup
- name: Prepare secret file
run: |
echo "$GOOGLE_CLIENT_JSON_BASE64" >> secret.base64
base64 --decode secret.base64 > secret.json
echo "SERVICE_ACCOUNT_JSON=$(realpath secret.json)" >> $GITHUB_ENV
- name: Generate code coverage
run: |
cargo tarpaulin --all-targets --skip-clean --workspace --timeout 120 --out xml
- name: Upload to codecov.io
uses: codecov/codecov-action@v4
with:
token: ${{secrets.CODECOV_TOKEN}}
fail_ci_if_error: true