Merge pull request #1 from ais-dotnet/feature/build-nuget-publishing #19
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: build | |
on: | |
push: | |
branches: | |
- main | |
tags: | |
- '*' | |
pull_request: | |
branches: | |
- main | |
workflow_dispatch: | |
inputs: | |
forcePublish: | |
description: When true the Publish stage will always be run, otherwise it only runs for tagged versions. | |
required: false | |
default: false | |
type: boolean | |
concurrency: | |
group: ${{ github.workflow }}-${{ github.ref }} | |
cancel-in-progress: true | |
permissions: | |
checks: write # enable test result annotations | |
contents: write # enable creating releases | |
issues: read | |
packages: write # enable publishing packages | |
pull-requests: write # enable test result annotations | |
jobs: | |
prepareConfig: | |
name: Prepare Configuration | |
runs-on: ubuntu-latest | |
outputs: | |
RESOLVED_ENV_VARS: ${{ steps.prepareEnvVarsAndSecrets.outputs.environmentVariablesYamlBase64 }} | |
RESOLVED_SECRETS: ${{ steps.prepareEnvVarsAndSecrets.outputs.secretsYamlBase64 }} | |
steps: | |
# Declare any environment variables and/or secrets that need to be available inside the build process | |
- uses: endjin/Endjin.RecommendedPractices.GitHubActions/actions/prepare-env-vars-and-secrets@main | |
id: prepareEnvVarsAndSecrets | |
with: | |
environmentVariablesYaml: | | |
BUILDVAR_NuGetPublishSource: "${{ startsWith(github.ref, 'refs/tags/') && 'https://api.nuget.org/v3/index.json' || 'https://nuget.pkg.github.com/ais-dotnet/index.json' }}" | |
BUILDVAR_Configuration: "Release" | |
secretsYaml: | | |
NUGET_API_KEY: "${{ startsWith(github.ref, 'refs/tags/') && secrets.NUGET_APIKEY || secrets.BUILD_PUBLISHER_PAT }}" | |
build: | |
needs: prepareConfig | |
uses: endjin/Endjin.RecommendedPractices.GitHubActions/.github/workflows/scripted-build-single-job-pipeline.yml@main | |
with: | |
netSdkVersion: '8.0.x' | |
# workflow_dispatch inputs are always strings, the type property is just for the UI | |
forcePublish: ${{ github.event.inputs.forcePublish == 'true' }} | |
buildEnv: ${{ needs.prepareConfig.outputs.RESOLVED_ENV_VARS }} | |
secrets: | |
buildAzureCredentials: ${{ secrets.AZURE_READER_CREDENTIALS }} | |
buildSecrets: ${{ needs.prepareConfig.outputs.RESOLVED_SECRETS }} |