Skip to content

fix: Add secrets access to Lambda functions #641

fix: Add secrets access to Lambda functions

fix: Add secrets access to Lambda functions #641

Workflow file for this run

name: Integ Tests
on:
workflow_dispatch: {}
workflow_call:
secrets:
INTEG_TEST_ROLE_ARN:
required: true
description: ""
INTEG_TEST_REGION:
required: true
description: ""
INTEG_TEST_AWS_ACCOUNT_ID:
required: true
description: ""
push:
branches:
- main
concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true
jobs:
integ_tests:
name: Run Integration Tests
runs-on: ubuntu-latest
timeout-minutes: 60
permissions:
id-token: write
contents: read
steps:
- uses: actions/checkout@v4
- name: "Check secrets"
run: |
if [ -z "${{ secrets.INTEG_TEST_ROLE_ARN }}" ]; then echo "Secret missing: INTEG_TEST_ROLE_ARN" && exit 1; fi
if [ -z "${{ secrets.INTEG_TEST_REGION }}" ]; then echo "Secret missing: INTEG_TEST_REGION" && exit 1; fi
if [ -z "${{ secrets.INTEG_TEST_AWS_ACCOUNT_ID }}" ]; then echo "Secret missing: INTEG_TEST_AWS_ACCOUNT_ID" && exit 1; fi
- name: "Set up Typescript"
uses: actions/setup-node@v4
with:
node-version: 20
- name: Install uv
uses: astral-sh/setup-uv@v5
with:
enable-cache: true
- name: "Set up Python"
uses: actions/setup-python@v5
with:
python-version-file: "src/python/.python-version"
- name: Install CDK CLI
run: npm install -g aws-cdk
- name: Configure AWS Credentials
uses: aws-actions/configure-aws-credentials@v4
with:
role-to-assume: ${{ secrets.INTEG_TEST_ROLE_ARN }}
aws-region: ${{ secrets.INTEG_TEST_REGION }}
- name: Run tests
run: |
cd src/python
uv venv
if [ -f .venv/bin/activate ]; then source .venv/bin/activate; else echo "Virtual environment activation failed" && exit 1; fi
cd ../..
./e2e_tests/run_integ_test.sh
timeout-minutes: 40
working-directory: ${{ github.workspace }}
- name: Clean up
if: always()
run: |
source src/python/.venv/bin/activate
./e2e_tests/clean_up_integ_test.sh
working-directory: ${{ github.workspace }}