Merge remote-tracking branch 'aiven-commons/main'

Author: Claudenw

.github/ISSUE_TEMPLATE/01_question.md

@@ -0,0 +1,13 @@
+---
+name: ❓ Ask a question
+about: Got stuck or missing something from the docs? Ask away!
+---
+
+# What can we help you with?
+
+<!-- Try to explain your question with as much detail as you can provide. -->
+
+# Where would you expect to find this information?
+
+<!-- Feel free to point us where with links or even proposing new sections or pages in the documentation. -->
+

.github/ISSUE_TEMPLATE/02_bug.md

@@ -0,0 +1,17 @@
+---
+name: 🐜 Report a bug
+about: Spotted a problem? Let us know
+---
+
+# What happened?
+
+<!-- Try to be as precise as possible. If you can a small reproducer example would be great! -->
+
+# What did you expect to happen?
+
+<!-- Please explain what would be the expected behavior for this particular case, ideally, with examples. -->
+
+# What else do we need to know?
+
+<!-- Include your platform, version, and any other information that seems relevant. -->
+

.github/ISSUE_TEMPLATE/03_feature.md

@@ -0,0 +1,16 @@
+---
+name: 💡 Feature suggestion
+about: What would make this even better?
+---
+
+# What is currently missing?
+
+<!-- Please, describe what is currently missing and why should it be present in the project. -->
+
+# How could this be improved?
+
+<!-- If you already know how this could be approached, please provide some brief explanation about it. -->
+
+# Is this a feature you would work on yourself?
+
+* [ ] I plan to open a pull request for this feature

.github/ISSUE_TEMPLATE/config.yml

@@ -0,0 +1,5 @@
+blank_issues_enabled: true
+contact_links:
+  - name: Aiven Security Bug Bounty
+    url: https://hackerone.com/aiven_ltd
+    about: Our bug bounty program.

.github/PULL_REQUEST_TEMPLATE.md

@@ -0,0 +1,12 @@
+<!-- All contributors please complete these sections, including maintainers -->
+# About this change - What it does
+
+<!-- Provide a small sentence that summarizes the change. -->
+
+<!-- Provide the issue number below if it exists. -->
+Resolves: #xxxxx
+
+# Why this way
+
+<!-- Provide a small explanation on why this is the approach you took for solving this problem. -->
+

.github/workflows/Merge_check.yml

@@ -0,0 +1,179 @@
+#
+#   Copyright 2025 Aiven Oy and project contributors
+#
+#    Licensed under the Apache License, Version 2.0 (the "License");
+#    you may not use this file except in compliance with the License.
+#    You may obtain a copy of the License at
+#
+#    http://www.apache.org/licenses/LICENSE-2.0
+#
+#    Unless required by applicable law or agreed to in writing,
+#    software distributed under the License is distributed on an
+#    "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+#    KIND, either express or implied.  See the License for the
+#    specific language governing permissions and limitations
+#    under the License.
+#
+#  SPDX-License-Identifier: Apache-2
+
+# Workflow to check pull requests and new commits to main branches
+# This checks the source in the state as if after the merge.
+name: Main push checks
+on:
+  push:
+    branches:
+      - 'main'
+
+# Disallow concurrent runs for the same PR by cancelling in-progress runs
+# when new commits are pushed
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
+jobs:
+  # builds aiven-commons and all modules. Does not deploy.
+  build:
+
+    strategy:
+      matrix:
+        java: [ 17, 20, 21, 25 ]
+      fail-fast: false
+
+    name: JDK-${{ matrix.java }} Build
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v6
+
+      - name: Configure artifact caching
+        uses: actions/cache@v5
+        with:
+          path: ~/.m2/repository
+          key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }}
+          restore-keys: |
+            ${{ runner.os }}-maven-
+
+      - name: Set up JDK ${{ matrix.java }}
+        uses: actions/setup-java@v4
+        with:
+          distribution: 'adopt'
+          java-version: ${{ matrix.java }}
+          cache: 'maven'
+
+      - name: Extract version info
+        run: | 
+          echo "version=$(mvn -q -Dexec.executable=echo -Dexec.args='${project.version}' --non-recursive exec:exec)" >> $GITHUB_OUTPUT;
+          echo "java_version=$(mvn -q -Dexec.executable=echo -Dexec.args='${project.version}' --non-recursive exec:exec)" >> $GITHUB_OUTPUT;
+        id: project
+
+      - name: Build ${{ steps.project.outputs.version }}
+        run: mvn -e -B -V -ntp clean verify
+
+      - name: "Upload build failure reports"
+        uses: actions/upload-artifact@v7
+        if: failure()
+        with:
+          name: unit-test-results-${{ matrix.java }}-JDK
+          path: |
+            **/target/*-reports/**
+          retention-days: 1
+
+      # javadoc has issues with java 17
+      - name: Generate javadoc
+        if: ${{ matrix.java != 17 }}
+        run: mvn -e -B -V -ntp javadoc:javadoc
+
+      - name: Build site
+        if: ${{ matrix.java != 17 }}
+        run: mvn -e -B -V -ntp site site:stage
+
+
+# only run Publish if all builds completed
+  publish:
+    name: Publish
+    needs: [build]
+    runs-on: ubuntu-latest
+    steps:
+
+      - name: Checkout code
+        uses: actions/checkout@v6
+
+      - name: Extract version info
+        run: |
+          echo "version=$(mvn -q -Dexec.executable=echo -Dexec.args='${project.version}' --non-recursive exec:exec)" >> $GITHUB_OUTPUT;
+          echo "java_version=$(mvn -q -Dexec.executable=echo -Dexec.args='${jdk.version}' --non-recursive exec:exec)" >> $GITHUB_OUTPUT;
+        id: project
+
+      - name: Set up JDK ${{ steps.project.outputs.java_version }}
+        if:  contains(steps.project.outputs.version , '-SNAPSHOT')
+        uses: actions/setup-java@v4
+        with:
+          distribution: 'adopt'
+          java-version: ${{ steps.project.outputs.java_version }}
+          cache: 'maven'
+
+      - name: Setup Maven settings.xml
+        if:  contains(steps.project.outputs.version , '-SNAPSHOT')
+        uses: s4u/maven-settings-action@v4.0.0
+        with:
+          sonatypeSnapshots: true
+          servers: |
+            [{
+              "id": "central-snapshot",
+              "username": "${{ secrets.SONATYPE_ID }}",
+              "password": "${{ secrets.SONATYPE_PASSWORD }}"
+            }]
+
+      - name: Publish ${{ steps.project.outputs.version }}
+        if:  contains(steps.project.outputs.version , '-SNAPSHOT')
+        run: mvn -P sign -P publish-snapshot -e -B -V -ntp -Dgpg.signer=bc deploy
+        env:
+          MAVEN_GPG_KEY: ${{ secrets.GPG_KEY }}
+          MAVEN_GPG_PASSPHRASE: ${{ secrets.GPG_PASSWORD }}
+
+      - name: ${{ steps.project.outputs.version }}  Not Snapshot
+        if: ${{ !contains(steps.project.outputs.version , '-SNAPSHOT') }}
+        run: echo ${{ steps.project.outputs.version }} is not a snapshot -- not publishing"
+
+  # only run site if all builds completed
+  site:
+    name: Build Site
+    needs: [ build ]
+    runs-on: ubuntu-latest
+    steps:
+
+      - name: Checkout code
+        uses: actions/checkout@v6
+
+      - name: Set up JDK 20
+        uses: actions/setup-java@v4
+        with:
+          distribution: 'adopt'
+          java-version: 20
+          cache: 'maven'
+
+      - name: Build site
+        run: mvn -e -B -V -ntp site site:stage
+
+      - name: Upload artifact
+        uses: actions/upload-pages-artifact@v3
+        with:
+          path: ./target/staging
+
+  # Deployment site
+  deploy:
+    name: Deploy site
+    # Sets permissions of the GITHUB_TOKEN to allow deployment to GitHub Pages
+    permissions:
+      contents: read
+      pages: write
+      id-token: write
+    environment:
+      name: github-pages
+      url: ${{ steps.deployment.outputs.page_url }}
+    runs-on: ubuntu-latest
+    needs: [site]
+    steps:
+      - name: Deploy to GitHub Pages
+        id: deployment
+        uses: actions/deploy-pages@v4

.github/workflows/PR_check.yml

@@ -0,0 +1,93 @@
+#
+#   Copyright 2025 Aiven Oy and project contributors
+#
+#    Licensed under the Apache License, Version 2.0 (the "License");
+#    you may not use this file except in compliance with the License.
+#    You may obtain a copy of the License at
+#
+#    http://www.apache.org/licenses/LICENSE-2.0
+#
+#    Unless required by applicable law or agreed to in writing,
+#    software distributed under the License is distributed on an
+#    "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+#    KIND, either express or implied.  See the License for the
+#    specific language governing permissions and limitations
+#    under the License.
+#
+#  SPDX-License-Identifier: Apache-2
+
+# Workflow to check pull requests main branches
+# This checks the source in the state as if after the merge.
+name: Pull request checks
+on:
+  workflow_dispatch:
+  pull_request:
+    branches: [ main ]
+
+# Disallow concurrent runs for the same PR by cancelling in-progress runs
+# when new commits are pushed
+concurrency:
+  group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }}
+  cancel-in-progress: true
+
+jobs:
+
+  # builds aiven-commons and all modules. Does not deploy.
+  build:
+
+    strategy:
+      matrix:
+        java: [ 17, 20, 21, 25 ]
+      fail-fast: false
+
+    name: Build
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v6
+
+      - name: Configure artifact caching
+        uses: actions/cache@v5
+        with:
+          path: ~/.m2/repository
+          key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }}
+          restore-keys: |
+            ${{ runner.os }}-maven-
+
+      
+      - name: Extract version info
+        run: |
+          echo "version=$(mvn -q -Dexec.executable=echo -Dexec.args='${project.version}' --non-recursive exec:exec)" >> $GITHUB_OUTPUT;
+          echo "java_version=$(mvn -q -Dexec.executable=echo -Dexec.args='${jdk.version}' --non-recursive exec:exec)" >> $GITHUB_OUTPUT;
+        id: project
+
+      - name: Set up JDK ${{ matrix.java }}
+        uses: actions/setup-java@v5
+        with:
+          distribution: 'adopt'
+          java-version: ${{ matrix.java }}
+          cache: 'maven'
+
+      - name: Build with Maven
+        run: mvn -e -B -V -ntp clean verify
+
+      # javadoc has issues with java 17
+      - name: Generate javadoc
+        if: ${{ matrix.java != 17 }}
+        run: mvn -e -B -V -ntp javadoc:javadoc
+
+      - name: Build site
+        if: ${{ matrix.java != 17 }}
+        run: mvn -e -B -V -ntp site site:stage
+
+      - name: "Upload build failure reports"
+        uses: actions/upload-artifact@v4
+        if: failure()
+        with:
+          name: unit-test-results-${{ matrix.java }}-JDK
+          path: |
+            **/target/*-reports/**
+          retention-days: 1
+
+