diff --git a/.github/workflows/docker-pr.yaml b/.github/workflows/docker-pr.yaml deleted file mode 100644 index 46318fac..00000000 --- a/.github/workflows/docker-pr.yaml +++ /dev/null @@ -1,74 +0,0 @@ -name: Docker PR Preview -# Note pushing docker images is not possible from a public forked repo (see: Can't push to ghcr on a pull request, https://github.com/docker/build-push-action/issues/870) -# Hence, this workflow is limited to PRs from element-hq/element-call - -on: - pull_request: - types: - - synchronize - - opened - - labeled - -env: - REGISTRY: ghcr.io - IMAGE_NAME: ${{ github.repository }} - # due to https://github.com/actions/runner/issues/2372 - # and not wanting to workaround like https://stackoverflow.com/questions/73797254/environment-variables-in-github-actions/74217028#74217028 - # we disable for now a gloabl env variable since env is not available in job.if - # DO_DOCKER_BUILD: ${{ contains(github.event.pull_request.labels.*.name, 'docker build') }} - # NOT_FROM_FORK: ${{ github.event.pull_request.head.repo.full_name == github.repository }} - -jobs: - build_element_call: - if: ${{ contains(github.event.pull_request.labels.*.name, 'docker build') && github.event.pull_request.head.repo.full_name == github.repository }} - uses: ./.github/workflows/element-call.yaml - secrets: - SENTRY_ORG: ${{ secrets.SENTRY_ORG }} - SENTRY_PROJECT: ${{ secrets.SENTRY_PROJECT }} - SENTRY_URL: ${{ secrets.SENTRY_URL }} - SENTRY_AUTH_TOKEN: ${{ secrets.SENTRY_AUTH_TOKEN }} - - build_docker: - if: ${{ contains(github.event.pull_request.labels.*.name, 'docker build') && github.event.pull_request.head.repo.full_name == github.repository }} - needs: build_element_call - runs-on: ubuntu-latest - permissions: - contents: write # required to upload release asset - packages: write - steps: - - name: Check it out - uses: actions/checkout@v4 - - - name: 📥 Download artifact - uses: actions/download-artifact@v4 - with: - name: build-output - path: dist - - - name: Log in to container registry - uses: docker/login-action@5f4866a30a54f16a52d2ecb4a3898e9e424939cf - with: - registry: ${{ env.REGISTRY }} - username: ${{ github.actor }} - password: ${{ secrets.GITHUB_TOKEN }} - - - name: Extract metadata (tags, labels) for Docker - id: meta - uses: docker/metadata-action@c314eea2b27e3cb3c7d7be0618510234d8f6178e - with: - images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }} - tags: | - type=sha,format=short,event=branch - type=raw,value=pr_${{ github.event.pull_request.number }} - - - name: Set up Docker Buildx - uses: docker/setup-buildx-action@d70bba72b1f3fd22344832f00baa16ece964efeb - - - name: Build and push Docker image - uses: docker/build-push-action@f8bc7f46003ef0cf98b715743d86c2f1ccd01436 - with: - context: . - platforms: linux/amd64,linux/arm64 - push: true - tags: ${{ steps.meta.outputs.tags }} - labels: ${{ steps.meta.outputs.labels }} diff --git a/.github/workflows/netlify-pr.yaml b/.github/workflows/netlify-pr.yaml deleted file mode 100644 index 4d73a9f9..00000000 --- a/.github/workflows/netlify-pr.yaml +++ /dev/null @@ -1,85 +0,0 @@ -name: Netlify PR Preview -on: - workflow_run: - workflows: ["Build"] - types: - - completed - -jobs: - deploy: - if: ${{ github.event.workflow_run.conclusion == 'success' && github.event.workflow_run.event == 'pull_request' }} - env: - PR_HEAD_FULL_NAME: ${{ github.event.workflow_run.head_repository.full_name }} - runs-on: ubuntu-latest - permissions: - deployments: write - environment: Netlify - steps: - - id: prdetails - uses: matrix-org/pr-details-action@v1.3 - continue-on-error: true - with: - owner: ${{ github.event.workflow_run.head_repository.owner.login }} - branch: ${{ github.event.workflow_run.head_branch }} - - - run: ${{ tojson(github.event) }} - shell: cat {0} - - - run: ${{ steps.prdetails.outputs.data }} - shell: cat {0} - - - name: 📝 Create Deployment - uses: bobheadxi/deployments@v1 - id: deployment - with: - step: start - token: ${{ secrets.GITHUB_TOKEN }} - env: Netlify - ref: ${{ fromJSON(steps.prdetails.outputs.data).head.sha || github.ref || github.head_ref }} - desc: | - Do you trust the author of this PR? Maybe this build will steal your keys or give you malware. - Exercise caution. Use test accounts. - - - name: 📥 Download artifact - uses: actions/download-artifact@v4 - with: - github-token: ${{ secrets.ELEMENT_BOT_TOKEN }} - run-id: ${{ github.event.workflow_run.id }} - name: build-output - path: webapp - - - name: Add redirects file - # We fetch from github directly as we don't bother checking out the repo - run: curl -s https://raw.githubusercontent.com/element-hq/element-call/main/config/netlify_redirects > webapp/_redirects - - - name: Add config file - run: curl -s "https://raw.githubusercontent.com/${{ env.PR_HEAD_FULL_NAME }}/${{ env.PR_HEAD_REF }}/config/element_io_preview.json" > webapp/config.json - env: - PR_HEAD_REF: ${{ fromJSON(steps.prdetails.outputs.data).head.ref }} - - - name: ☁️ Deploy to Netlify - id: netlify - uses: nwtgck/actions-netlify@v3.0 - with: - publish-dir: webapp - deploy-message: "Deploy from GitHub Actions" - alias: pr${{ steps.prdetails.outputs.pr_id }} - env: - NETLIFY_AUTH_TOKEN: ${{ secrets.NETLIFY_AUTH_TOKEN }} - NETLIFY_SITE_ID: ${{ secrets.NETLIFY_SITE_ID }} - timeout-minutes: 1 - - - name: 🚦 Update deployment status - uses: bobheadxi/deployments@v1 - if: always() - with: - step: finish - override: false - token: ${{ secrets.GITHUB_TOKEN }} - status: ${{ job.status }} - env: ${{ steps.deployment.outputs.env }} - deployment_id: ${{ steps.deployment.outputs.deployment_id }} - env_url: ${{ steps.netlify.outputs.deploy-url }} - desc: | - Do you trust the author of this PR? Maybe this build will steal your keys or give you malware. - Exercise caution. Use test accounts.