Skip to content
Build, Test, and Publish

DetachedSignatureFactory accepts pre-hashed content as payload #337

Sign in to view logs

DetachedSignatureFactory accepts pre-hashed content as payload

DetachedSignatureFactory accepts pre-hashed content as payload #337

Workflow file for this run

.github/workflows/dotnet.yml at 2b87002
#### Build, Test, and Publish ####
# This is the main workflow for the CoseSignTool project. It handles the following events:
# - Pull requests: When a user submits a pull request, or pushes a commit to an existing pull request, this workflow
# - generates a changelog and commits it to the working branch, and then
# - builds and tests the code.
# - Pushes to the main branch: When a user pushes a commit to the main branch, this workflow
# - creates a semantically versioned tag,
# - creates a release with the new tag, and then
# - triggers the release portion of the workflow.
# - Releases: When a user creates a release, or a release is created in response to a push event, this workflow
# - builds, publishes, and zips the outputs, and then
# - uploads the zipped assets to the release.
name: Build, Test, and Publish
on:
pull_request:
branches: [ "*" ] # Trigger on all branches for pull requests.
push:
branches: [ "main" ] # Trigger on pushes to the main branch.
release:
types: [ created ] # Trigger on new releases.
jobs:
#### PULL REQUEST EVENTS ####
# Create a changelog that includes all the PRs merged since the last release.
# If it's not a pull request, skip to the build job.
#
# TODO: Look into why the pull request page often loses track of the workflows once this completes.
create_changelog:
runs-on: ubuntu-latest
steps:
# Checkout the working branch.
- name: Checkout code
if: ${{ github.event_name == 'pull_request' }}
uses: actions/checkout@v2
# Sync the changelog version.
- name: Fetch and checkout
if: ${{ github.event_name == 'pull_request' }}
run: |
git config --local user.email "[email protected]"
git config --local user.name "GitHub Action"
echo "Fetch from repository."
git fetch
echo "Undo any user changes to CHANGELOG.md. This is needed because the user's copy becomes obsolete after every checkin."
git reset -- CHANGELOG.md
echo "Checkout the working branch."
git checkout $GITHUB_HEAD_REF
# Generate the new changelog.
- name: Generate changelog
if: ${{ github.event_name == 'pull_request' }}
uses: tj-actions/[email protected]
with:
output: CHANGELOG.md
token: ${{ secrets.GITHUB_TOKEN }}
# Commit the changelog.
- name: Commit changelog
if: ${{ github.event_name == 'pull_request' }}
run: |
git add CHANGELOG.md
if git diff-index --quiet HEAD; then
echo "No changes were logged."
else
git commit --allow-empty -m "Update changelog for release"
git push
fi
# Print default message if changelog is not updated.
- name: Print exit message when changelog is not updated
if: ${{ github.event_name != 'pull_request' }}
run: echo "Changelog is already up to date."
# Build and test the code.
build:
name: build-${{matrix.os}}
if: ${{ github.event_name == 'pull_request' }}
needs: [ create_changelog ]
runs-on: ${{ matrix.os }}
strategy:
matrix:
include:
- os: windows-latest
dir_command: gci -Recurse
- os: ubuntu-latest
dir_command: ls -a -R
- os: macos-latest
dir_command: ls -a -R
steps:
- name: Checkout code
uses: actions/checkout@v3
- name: Setup .NET
uses: actions/setup-dotnet@v3
with:
dotnet-version: 7.0.x
# Use the Dotnet Test command to load dependencies, build, and test the code.
- name: Build and Test debug
run: dotnet test --verbosity normal CoseSignTool.sln
# List the contents of the working directory to make sure all the artifacts are there.
- name: List working directory
run: ${{ matrix.dir_command }}
#### PUSH EVENTS ####
# Create a semantically versioned release.
# A prerelease is created for every push to the main branch.
# Official releases are created manually on GitHub.
create_release:
name: Create Release
if: ${{ github.event_name == 'push' || github.event_name == 'release'}}
runs-on: ubuntu-latest
outputs:
upload_url: ${{ steps.create_release.outputs.upload_url }}
tag_name: ${{ steps.output_tag_name.outputs.tag_name }}
steps:
# Checkout the main branch and fetch tags.
- name: Checkout code
if: ${{ github.event_name == 'push' }}
uses: actions/checkout@v3
# Checkout the main branch so we can see the correct tag set.
- name: Fetch and checkout main
if: ${{ github.event_name == 'push' }}
run: |
git config --local user.email "[email protected]"
git config --local user.name "GitHub Action"
git fetch
git checkout main
# Create a semantically versioned tag that increments the last release.
- name: Create SemVer tag
if: ${{ github.event_name == 'push' }}
id: semver-tag # Output: ${{ steps.semver-tag.outputs.semver_tag }}
uses: wakatime/[email protected]
with:
main_branch_name: "main"
debug: true
# Create the release. This should generate a release event, which will trigger the release_assets job.
- name: Create Release
if: ${{ github.event_name == 'push' }}
id: create_release
uses: actions/create-release@v1
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
with:
# Get the tag name and release name from the previous step.
tag_name: ${{ steps.semver-tag.outputs.semver_tag }}
release_name: Release ${{ steps.semver-tag.outputs.semver_tag }}
# Generate release text from changelog.
body_path: ./CHANGELOG.md
# Always use prerelease for automated releases. Official releases are created manually.
prerelease: true
# Output the semver tag if it's a push event, or the most recent tag if it's a release event.
- name: Output tag name
id: output_tag_name
run: |
if [ "${{ github.event_name }}" == "push" ]; then
echo "::set-output name=tag_name::${{ steps.semver-tag.outputs.semver_tag }}"
echo "Generated semver tag is ${{ steps.semver-tag.outputs.semver_tag }}."
else
echo "::set-output name=tag_name::${{ github.event.release.tag_name }}"
echo "Current release tag is ${{ github.event.release.tag_name }}."
fi
#### RELEASE EVENTS ####
# Build, publish, and zip the outputs, and then upload them to the release.
# We include the push event and the dependency on create_release to support automatic releases, because
# automatic release creation does not trigger the release event.
release_assets:
name: release-assets
if: ${{ github.event_name == 'release' || github.event_name == 'push'}}
needs: [ create_release ]
runs-on: ${{ matrix.os }}
strategy:
matrix:
include:
- os: windows-latest
dir_command: gci -Recurse
zip_command_debug: Compress-Archive -Path ./debug/ -DestinationPath CoseSignTool-Windows-debug.zip
zip_command_release: Compress-Archive -Path ./release/ -DestinationPath CoseSignTool-Windows-release.zip
- os: ubuntu-latest
dir_command: ls -a -R
zip_command_debug: zip -r CoseSignTool-Linux-debug.zip ./debug/
zip_command_release: zip -r CoseSignTool-Linux-release.zip ./release/
- os: macos-latest
dir_command: ls -a -R
zip_command_debug: zip -r CoseSignTool-MacOS-debug.zip ./debug/
zip_command_release: zip -r CoseSignTool-MacOS-release.zip ./release/
steps:
# Checkout the branch.
- name: Checkout code again
uses: actions/checkout@v3
# Build and publish the binaries to ./published.
# Note: We have to use the solution files to get the right output paths, due to the mix of .NET 7 and .NET Standard projects.
- name: Publish outputs
run: |
dotnet publish --configuration Debug --output published/debug CoseSignTool.sln
dotnet publish --configuration Release --output published/release CoseSignTool.sln
# Create zip files for release.
- name: Create zip files for the release
run: |
${{ matrix.zip_command_debug }}
${{ matrix.zip_command_release }}
working-directory: ./published
# List the contents of the published directory to make sure all the artifacts are there.
- name: List published directory
run: ${{ matrix.dir_command }}
working-directory: ./published
# Upload the zipped assets to the release.
- name: Upload artifacts
uses: svenstaro/upload-release-action@v2
with:
repo_token: ${{ secrets.GITHUB_TOKEN }}
file: ./published/CoseSignTool-*.zip
file_glob: true
overwrite: true
tag: ${{ needs.create_release.outputs.tag_name }}