Merge pull request #106 from DuendeSoftware/ev/build-release-from-tar… #297
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This was generated by tool. Edits will be overwritten. | |
| name: identity-model/ci | |
| on: | |
| workflow_dispatch: | |
| push: | |
| paths: | |
| - .github/workflows/identity-model-** | |
| - identity-model/** | |
| - Directory.Packages.props | |
| pull_request: | |
| paths: | |
| - .github/workflows/identity-model-** | |
| - identity-model/** | |
| - Directory.Packages.props | |
| env: | |
| DOTNET_NOLOGO: true | |
| DOTNET_CLI_TELEMETRY_OPTOUT: true | |
| jobs: | |
| build: | |
| name: Build | |
| runs-on: ubuntu-latest | |
| permissions: | |
| actions: read | |
| checks: write | |
| contents: read | |
| packages: write | |
| defaults: | |
| run: | |
| shell: bash | |
| working-directory: identity-model | |
| timeout-minutes: 15 | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| - name: Setup Dotnet | |
| uses: actions/setup-dotnet@3e891b0cb619bf60e2c25674b222b8940e2c1c25 | |
| with: | |
| dotnet-version: |- | |
| 6.0.x | |
| 8.0.x | |
| 9.0.x | |
| - name: Test - IdentityModel.Tests | |
| run: dotnet test -c Release test/IdentityModel.Tests --logger "console;verbosity=normal" --logger "trx;LogFileName=IdentityModel.Tests.trx" --collect:"XPlat Code Coverage" | |
| - name: Test report | |
| if: success() || failure() | |
| uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 | |
| with: | |
| name: test-results | |
| path: identity-model/test/IdentityModel.Tests/TestResults/IdentityModel.Tests.trx | |
| retention-days: 5 | |
| - name: Tool restore | |
| run: dotnet tool restore | |
| - name: Pack IdentityModel | |
| run: dotnet pack -c Release src/IdentityModel -o artifacts | |
| - name: Sign packages | |
| if: github.event_name == 'push' | |
| run: |- | |
| for file in artifacts/*.nupkg; do | |
| dotnet NuGetKeyVaultSignTool sign "$file" --file-digest sha256 --timestamp-rfc3161 http://timestamp.digicert.com --azure-key-vault-url https://duendecodesigninghsm.vault.azure.net/ --azure-key-vault-client-id 18e3de68-2556-4345-8076-a46fad79e474 --azure-key-vault-tenant-id ed3089f0-5401-4758-90eb-066124e2d907 --azure-key-vault-client-secret ${{ secrets.SignClientSecret }} --azure-key-vault-certificate NuGetPackageSigning | |
| done | |
| - name: Push packages to GitHub | |
| if: github.ref == 'refs/heads/main' | |
| run: dotnet nuget push artifacts/*.nupkg --source https://nuget.pkg.github.com/DuendeSoftware/index.json --api-key ${{ secrets.GITHUB_TOKEN }} --skip-duplicate | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| NUGET_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Upload Artifacts | |
| if: github.event_name == 'push' | |
| uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 | |
| with: | |
| name: artifacts | |
| path: identity-model/artifacts/*.nupkg | |
| overwrite: true | |
| retention-days: 15 |