server/.github/workflows/kubernetes-validation.yml at 23418d6fe106abc34e4f675464e7f222bd4200d4 · durable-workflow/server · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
name: Kubernetes Manifest Validation

on:
  push:
    branches: [main]
    paths:
      - ".github/workflows/kubernetes-validation.yml"
      - "app/**"
      - "config/**"
      - "Dockerfile"
      - "docker/**"
      - "k8s/**"
      - "routes/**"
      - "scripts/k8s-kind-smoke.sh"
      - "composer.json"
      - "composer.lock"
  pull_request:
    branches: [main]
    paths:
      - ".github/workflows/kubernetes-validation.yml"
      - "app/**"
      - "config/**"
      - "Dockerfile"
      - "docker/**"
      - "k8s/**"
      - "routes/**"
      - "scripts/k8s-kind-smoke.sh"
      - "composer.json"
      - "composer.lock"

permissions:
  contents: read

jobs:
  static-manifest-validation:
    name: Validate raw Kubernetes manifests
    runs-on: ubuntu-latest
    timeout-minutes: 10

    steps:
      - name: Checkout server
        uses: actions/checkout@v6

      - name: Run kubeconform
        run: |
          docker run --rm \
            -v "${PWD}:/work:ro" \
            ghcr.io/yannh/kubeconform:v0.6.7 \
            -strict \
            -summary \
            -kubernetes-version 1.29.0 \
            /work/k8s

  kind-smoke:
    name: Smoke raw manifests in kind
    runs-on: ubuntu-latest
    timeout-minutes: 30

    steps:
      - name: Checkout server
        uses: actions/checkout@v6

      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v4

      - name: Install kind and kubectl
        run: |
          install_dir="${RUNNER_TEMP}/bin"
          mkdir -p "${install_dir}"

          curl -fsSL -o "${install_dir}/kind" https://kind.sigs.k8s.io/dl/v0.23.0/kind-linux-amd64
          chmod +x "${install_dir}/kind"

          curl -fsSL -o "${install_dir}/kubectl" https://dl.k8s.io/release/v1.29.9/bin/linux/amd64/kubectl
          chmod +x "${install_dir}/kubectl"

          echo "${install_dir}" >> "${GITHUB_PATH}"

          "${install_dir}/kind" version
          "${install_dir}/kubectl" version --client=true

      - name: Run kind smoke
        env:
          K8S_SMOKE_CLUSTER: durable-workflow-server-${{ github.run_id }}-${{ github.run_attempt }}
          K8S_SMOKE_IMAGE: durableworkflow/server:k8s-smoke-${{ github.run_id }}-${{ github.run_attempt }}
          K8S_SMOKE_KIND_NODE_IMAGE: kindest/node:v1.29.4
          K8S_SMOKE_ARTIFACT_DIR: ${{ runner.temp }}/k8s-kind-smoke-artifacts
        run: scripts/k8s-kind-smoke.sh

      - name: Upload Kubernetes smoke artifacts
        if: failure()
        uses: actions/upload-artifact@v4
        with:
          name: kubernetes-kind-smoke-artifacts
          path: ${{ runner.temp }}/k8s-kind-smoke-artifacts
          if-no-files-found: ignore