diff --git a/.github/workflows/cd.yml b/.github/workflows/cd.yml
new file mode 100644
index 0000000000..3e15ffc6de
--- /dev/null
+++ b/.github/workflows/cd.yml
@@ -0,0 +1,47 @@
+name: cd
+
+on:
+ push:
+ branches: [main]
+
+jobs:
+ deploy:
+ name: Deploy
+ runs-on: ubuntu-latest
+
+ env:
+ DATABASE_URL: ${{ secrets.DATABASE_URL }}
+
+ steps:
+ - name: Check out code
+ uses: actions/checkout@v4
+
+ - name: Set up Go
+ uses: actions/setup-go@v5
+
+ - name: Set up Goose
+ run: go install github.com/pressly/goose/v3/cmd/goose@latest
+
+ - name: Build the app
+ run: ./scripts/buildprod.sh
+
+ - id: 'auth'
+ uses: 'google-github-actions/auth@v2'
+ with:
+ credentials_json: ${{ secrets.GCP_CREDENTIALS }}
+ - name: 'Set up Cloud SDK'
+ uses: 'google-github-actions/setup-gcloud@v3'
+ with:
+ version: '>= 363.0.0'
+
+ - name: 'Use gcloud CLI'
+ run: 'gcloud info'
+
+ - name: Build Docker image
+ run: gcloud builds submit --tag us-central1-docker.pkg.dev/notely-474312/notely-ar-repo/notely:v1 .
+
+ - name: Run migrations
+ run: ./scripts/migrateup.sh
+
+ - name: Deploy to run Cloud Run
+ run: gcloud run deploy notely --image us-central1-docker.pkg.dev/notely-474312/notely-ar-repo/notely:v1 --region us-central1 --allow-unauthenticated --project notely-474312 --max-instances=4
\ No newline at end of file
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
new file mode 100644
index 0000000000..e6d4d741dd
--- /dev/null
+++ b/.github/workflows/ci.yml
@@ -0,0 +1,51 @@
+name: ci
+
+on:
+ pull_request:
+ branches: [main]
+
+jobs:
+ tests:
+ name: Tests
+ runs-on: ubuntu-latest
+
+ steps:
+ - name: Check out code
+ uses: actions/checkout@v4
+
+ - name: Set up Go
+ uses: actions/setup-go@v5
+ with:
+ go-version: "1.25.1"
+
+ - name: Run tests with coverage
+ run: go test -cover ./...
+
+ - name: Install gosec
+ run: go install github.com/securego/gosec/v2/cmd/gosec@latest
+
+ - name: Run security check
+ run: gosec ./...
+
+
+ style:
+ name: Style
+ runs-on: ubuntu-latest
+
+ steps:
+ - name: Check out code
+ uses: actions/checkout@v4
+
+ - name: Set up Go
+ uses: actions/setup-go@v5
+ with:
+ go-version: "1.25.1"
+
+ - name: Format code
+ run: test -z "$(go fmt ./...)"
+
+ - name: Install staticcheck
+ run: go install honnef.co/go/tools/cmd/staticcheck@latest
+
+ - name: Run staticcheck
+ run: staticcheck ./...
\ No newline at end of file
diff --git a/README.md b/README.md
index c2bec0368b..fb8e948735 100644
--- a/README.md
+++ b/README.md
@@ -1,3 +1,5 @@
+
+
# learn-cicd-starter (Notely)
This repo contains the starter code for the "Notely" application for the "Learn CICD" course on [Boot.dev](https://boot.dev).
@@ -21,3 +23,4 @@ go build -o notely && ./notely
*This starts the server in non-database mode.* It will serve a simple webpage at `http://localhost:8080`.
You do *not* need to set up a database or any interactivity on the webpage yet. Instructions for that will come later in the course!
+Sander's version of Boot.dev's Notely app.
diff --git a/internal/auth/auth_test.go b/internal/auth/auth_test.go
new file mode 100644
index 0000000000..f8b33c020e
--- /dev/null
+++ b/internal/auth/auth_test.go
@@ -0,0 +1,67 @@
+package auth
+
+import (
+ "errors"
+ "net/http"
+ "reflect"
+ "testing"
+)
+
+func TestGetAPIKey(t *testing.T) {
+ tests := []struct {
+ name string
+ headers http.Header
+ wantKey string
+ wantErr error
+ }{
+ {
+ name: "no Authorization header",
+ headers: http.Header{},
+ wantErr: ErrNoAuthHeaderIncluded,
+ },
+ {
+ name: "malformed Authorization header - missing ApiKey prefix",
+ headers: http.Header{
+ "Authorization": []string{"Bearer sometoken"},
+ },
+ wantErr: errors.New("malformed authorization header"),
+ },
+ {
+ name: "malformed Authorization header - only ApiKey with no token",
+ headers: http.Header{
+ "Authorization": []string{"ApiKey"},
+ },
+ wantErr: errors.New("malformed authorization header"),
+ },
+ {
+ name: "valid Authorization header",
+ headers: http.Header{
+ "Authorization": []string{"ApiKey my-secret-key"},
+ },
+ wantKey: "my-secret-key",
+ wantErr: nil,
+ },
+ }
+
+ for _, tt := range tests {
+ t.Run(tt.name, func(t *testing.T) {
+ key, err := GetAPIKey(tt.headers)
+
+ if tt.wantErr != nil {
+ if err == nil || err.Error() != tt.wantErr.Error() {
+ t.Errorf("expected error %v, got %v", tt.wantErr, err)
+ }
+ return
+ }
+
+ if err != nil {
+ t.Errorf("unexpected error: %v", err)
+ return
+ }
+
+ if !reflect.DeepEqual(key, tt.wantKey) {
+ t.Errorf("expected key %q, got %q", tt.wantKey, key)
+ }
+ })
+ }
+}
diff --git a/json.go b/json.go
index 1e6e7985e1..cee305e316 100644
--- a/json.go
+++ b/json.go
@@ -30,5 +30,9 @@ func respondWithJSON(w http.ResponseWriter, code int, payload interface{}) {
return
}
w.WriteHeader(code)
- w.Write(dat)
+
+ _, err = w.Write(dat)
+ if err != nil {
+ log.Printf("Error writting data: %s", err)
+ }
}
diff --git a/main.go b/main.go
index 19d7366c5f..72873fee93 100644
--- a/main.go
+++ b/main.go
@@ -7,6 +7,7 @@ import (
"log"
"net/http"
"os"
+ "time"
"github.com/go-chi/chi"
"github.com/go-chi/cors"
@@ -89,8 +90,9 @@ func main() {
router.Mount("/v1", v1Router)
srv := &http.Server{
- Addr: ":" + port,
- Handler: router,
+ Addr: ":" + port,
+ Handler: router,
+ ReadHeaderTimeout: 10 * time.Second,
}
log.Printf("Serving on port: %s\n", port)
diff --git a/static/index.html b/static/index.html
index 72be101028..5d4ad73c09 100644
--- a/static/index.html
+++ b/static/index.html
@@ -7,7 +7,7 @@
- Notely
+ Welcome to Notely