Added actions (#2)

* Added build actions

* OPS-3 updated backend source

Author: ToreMerkely

.github/workflows/build-backend.yml

@@ -0,0 +1,114 @@
+name: Build Backend
+
+on:
+  push:
+    paths: ["apps/backend/**", ".github/workflows/build-backend.yml"]
+  workflow_dispatch:
+
+env:
+  # kosli commands picks up org, flow, trail and api-token from these environment variables
+  KOSLI_ORG: kosli-public
+  KOSLI_FLOW: jira-example-backend
+  KOSLI_TRAIL: ${{ github.sha }}
+  KOSLI_API_TOKEN: "${{ secrets.KOSLI_PUBLIC_API_TOKEN }}"
+  KOSLI_CLI_VERSION: "2.11.8"
+  KOSLI_TEMPLATE_FILE: "apps/backend/kosli-template.yml"
+  # KOSLI_DRY_RUN: true
+  JIRA_BASE_URL: "https://kosli-team.atlassian.net"
+  JIRA_USERNAME: ${{ secrets.KOSLI_JIRA_USERNAME }}
+  JIRA_API_TOKEN: ${{ secrets.KOSLI_JIRA_API_TOKEN }}
+
+jobs:
+  begin-trail:
+    name: Begin trail
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Begin trail
+        if: ${{ github.ref == 'refs/heads/main' }}
+        uses: ./.github/workflows/composites/kosli-begin-trail
+        with:
+          kosli-trail: ${{ env.KOSLI_TRAIL }}
+          kosli-template-file: ${{ env.KOSLI_TEMPLATE_FILE }}
+
+  jira-ticket:
+    name: Jira ticket
+    needs: [begin-trail]
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Attest jira ticket
+        uses: ./.github/workflows/composites/kosli-attest-jira
+        with:
+          jira-base-url: ${{ env.JIRA_BASE_URL }}
+          jira-username: ${{ env.JIRA_USERNAME }}
+          jira-api-token: ${{ env.JIRA_API_TOKEN }}
+          jira-issue-fields: "summary,description"
+          report-to-kosli: ${{ github.ref == 'refs/heads/main' }}
+
+  pull-request:
+    name: Pull-request
+    if: ${{ github.ref == 'refs/heads/main' }}
+    needs: [begin-trail]
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Attest GitHub pull-request
+        uses: ./.github/workflows/composites/kosli-attest-pullrequest
+        with:
+          github-token: ${{ secrets.GITHUB_TOKEN }}
+          assert: true
+
+  build:
+    name: Build backend
+    needs: [begin-trail]
+    runs-on: ubuntu-latest
+    outputs:
+      fingerprint: ${{ steps.calculate_fingerprint.outputs.fingerprint }}
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Build backend
+        run: echo "Here we could do some proper build"
+
+      - name: Attest artifact
+        id: calculate_fingerprint
+        if: ${{ github.ref == 'refs/heads/main' }}
+        uses: ./.github/workflows/composites/kosli-attest-dir-artifact
+        with:
+          kosli-artifact-template-name: backend
+          artifact-env-name: backend0001
+          artifact-dir: apps/backend
+
+  assert-artifacts:
+    name: Assert artifacts
+    if: ${{ github.ref == 'refs/heads/main' && always() }}
+    needs: [build, jira-ticket, pull-request]
+    runs-on: ubuntu-latest
+    steps:
+      - name: Setup Kosli cli
+        uses: kosli-dev/setup-cli-action@v2
+        with:
+          version:
+            ${{ env.KOSLI_CLI_VERSION }}
+
+      - name: Assert Artifacts
+        run: |
+          set -x
+          EXIT_CODE=0
+          kosli assert artifact --fingerprint ${{ needs.build.outputs.fingerprint }} || EXIT_CODE=1
+          exit ${EXIT_CODE}
+          
+  deploy-dev:
+    name: Deploy backend development
+    if: ${{ github.ref == 'refs/heads/main' }}
+    needs: [build, assert-artifacts]
+    environment: Development
+    runs-on: ubuntu-latest
+    steps:
+      - name: Deploy to development
+        run: echo "Here we could do a proper deploy to Development environment"
+

.github/workflows/build-frontend.yml

@@ -0,0 +1,114 @@
+name: Build Frontend
+
+on:
+  push:
+    paths: ["apps/frontend/**", ".github/workflows/build-frontend.yml"]
+  workflow_dispatch:
+
+env:
+  # kosli commands picks up org, flow, trail and api-token from these environment variables
+  KOSLI_ORG: kosli-public
+  KOSLI_FLOW: jira-example-frontend
+  KOSLI_TRAIL: ${{ github.sha }}
+  KOSLI_API_TOKEN: "${{ secrets.KOSLI_PUBLIC_API_TOKEN }}"
+  KOSLI_CLI_VERSION: "2.11.8"
+  KOSLI_TEMPLATE_FILE: "apps/frontend/kosli-template.yml"
+  # KOSLI_DRY_RUN: true
+  JIRA_BASE_URL: "https://kosli-team.atlassian.net"
+  JIRA_USERNAME: ${{ secrets.KOSLI_JIRA_USERNAME }}
+  JIRA_API_TOKEN: ${{ secrets.KOSLI_JIRA_API_TOKEN }}
+
+jobs:
+  begin-trail:
+    name: Begin trail
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Begin trail
+        if: ${{ github.ref == 'refs/heads/main' }}
+        uses: ./.github/workflows/composites/kosli-begin-trail
+        with:
+          kosli-trail: ${{ env.KOSLI_TRAIL }}
+          kosli-template-file: ${{ env.KOSLI_TEMPLATE_FILE }}
+
+  jira-ticket:
+    name: Jira ticket
+    needs: [begin-trail]
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Attest jira ticket
+        uses: ./.github/workflows/composites/kosli-attest-jira
+        with:
+          jira-base-url: ${{ env.JIRA_BASE_URL }}
+          jira-username: ${{ env.JIRA_USERNAME }}
+          jira-api-token: ${{ env.JIRA_API_TOKEN }}
+          jira-issue-fields: "summary,description"
+          report-to-kosli: ${{ github.ref == 'refs/heads/main' }}
+
+  pull-request:
+    name: Pull-request
+    if: ${{ github.ref == 'refs/heads/main' }}
+    needs: [begin-trail]
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Attest GitHub pull-request
+        uses: ./.github/workflows/composites/kosli-attest-pullrequest
+        with:
+          github-token: ${{ secrets.GITHUB_TOKEN }}
+          assert: true
+
+  build:
+    name: Build frontend
+    needs: [begin-trail]
+    runs-on: ubuntu-latest
+    outputs:
+      fingerprint: ${{ steps.calculate_fingerprint.outputs.fingerprint }}
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Build frontend
+        run: echo "Here we could do some proper build"
+
+      - name: Attest artifact
+        id: calculate_fingerprint
+        if: ${{ github.ref == 'refs/heads/main' }}
+        uses: ./.github/workflows/composites/kosli-attest-dir-artifact
+        with:
+          kosli-artifact-template-name: frontend
+          artifact-env-name: frontend0002
+          artifact-dir: apps/frontend
+
+  assert-artifacts:
+    name: Assert artifacts
+    if: ${{ github.ref == 'refs/heads/main' && always() }}
+    needs: [build, jira-ticket, pull-request]
+    runs-on: ubuntu-latest
+    steps:
+      - name: Setup Kosli cli
+        uses: kosli-dev/setup-cli-action@v2
+        with:
+          version:
+            ${{ env.KOSLI_CLI_VERSION }}
+
+      - name: Assert Artifacts
+        run: |
+          set -x
+          EXIT_CODE=0
+          kosli assert artifact --fingerprint ${{ needs.build.outputs.fingerprint }} || EXIT_CODE=1
+          exit ${EXIT_CODE}
+          
+  deploy-dev:
+    name: Deploy frontend development
+    if: ${{ github.ref == 'refs/heads/main' }}
+    needs: [build, assert-artifacts]
+    environment: Development
+    runs-on: ubuntu-latest
+    steps:
+      - name: Deploy to development
+        run: echo "Here we could do a proper deploy to Development environment"
+

.github/workflows/composites/kosli-attest-dir-artifact/action.yml

@@ -0,0 +1,63 @@
+name: Kosli attest dir artifact
+
+# Input is an artifact-directory that contains SW that shall be deployed at some later stage.
+# - Calculates the fingerprint of the content in the directory.
+# - Attest to kosli that an artifact with given fingerprint has been created.
+#     https://docs.kosli.com/client_reference/kosli_attest_artifact/
+
+inputs:
+  # The Following environment variables must be set in your GitHub action
+  # before using this composite
+  # env:
+  #   KOSLI_ORG: kosli
+  #   KOSLI_FLOW: your-flow-name
+  #   KOSLI_TRAIL: your-trail-name (often git-commit-sha)
+  #   KOSLI_API_TOKEN: "${{ secrets.KOSLI_API_TOKEN }}"  
+  #   KOSLI_CLI_VERSION: 2.11.6
+  kosli-artifact-template-name:
+    description: "Name of the artifact in kosli template-file. Often something generic like 'frontend'"
+    required: true
+  artifact-env-name:
+    description: "Name of the artifact used when running in an environment. Often something like 'wezzajjgadwa0005'"
+    required: true    
+  artifact-dir:
+    description: "Directory where artifact is stored"
+    required: true
+  debug:
+    description: "Set to true to include more debugging information. Including fingerprint calculation of artifact"
+    required: false
+
+outputs:
+  fingerprint:
+    description: "Fingerprint of artifact"
+    value: ${{ steps.calculate_fingerprint.outputs.fingerprint }}
+
+runs:
+  using: "composite"
+  steps:
+    - name: Setup Kosli cli
+      uses: kosli-dev/setup-cli-action@v2
+      with:
+        version:
+          ${{ env.KOSLI_CLI_VERSION }}
+
+    - name: Calculate fingerprint
+      shell: bash
+      id: calculate_fingerprint
+      run: |
+        set -x
+        ARTIFACT_FINGERPRINT=$(kosli fingerprint --artifact-type dir ${{ inputs.artifact-dir }})
+        echo "KOSLI_FINGERPRINT=${ARTIFACT_FINGERPRINT}" >> $GITHUB_ENV
+        echo "fingerprint=${ARTIFACT_FINGERPRINT}" >> $GITHUB_OUTPUT
+        echo "Calculated fingerprint: ${ARTIFACT_FINGERPRINT}"
+        if [ "${{ inputs.debug }}" == "true" ]; then
+            kosli fingerprint --artifact-type dir ${{ inputs.artifact-dir }} --debug
+        fi
+
+    - name: Attest artifact
+      shell: bash
+      run: |
+        set -x
+        kosli attest artifact ${{ inputs.artifact-env-name }} \
+        --name ${{ inputs.kosli-artifact-template-name }} \
+        --fingerprint ${{ env.KOSLI_FINGERPRINT }}

.github/workflows/composites/kosli-attest-jira/action.yml

@@ -0,0 +1,73 @@
+name: Kosli Attest Jira
+
+# Attest jira ticket.
+#   https://docs.kosli.com/client_reference/kosli_attest_jira/
+# The possible fields in the jira-issue-fields comes from the Jira API
+#   https://developer.atlassian.com/cloud/jira/platform/rest/v2/api-group-issues/#api-rest-api-2-issue-issueidorkey-get-request
+
+
+inputs:
+  # The Following environment variables must be set in your GitHub action
+  # before using this composite
+  # env:
+  #   KOSLI_ORG: kosli
+  #   KOSLI_FLOW: your-flow-name
+  #   KOSLI_TRAIL: your-trail-name (often git-commit-sha)
+  #   KOSLI_API_TOKEN: "${{ secrets.KOSLI_API_TOKEN }}"
+  #   KOSLI_CLI_VERSION: 2.11.6
+  jira-base-url:
+    description: "Jira base url for your org (often https://kosli-team.atlassian.net)"
+    required: true
+  jira-username:
+    description: "Jira user-name"
+    required: true
+  jira-api-token:
+    description: "Jira API token"
+    required: true
+  jira-issue-fields:
+    description: "List of fields to include from Jira ticket. See comment at top of file."
+    required: false
+  report-to-kosli:
+    description: "Report to kosli if jira ticket exists. Normally set this to 'false' on branches"
+    required: false
+    default: "true"
+
+
+runs:
+  using: "composite"
+  steps:
+    - name: Setup Kosli cli
+      uses: kosli-dev/setup-cli-action@v2
+      with:
+        version:
+          ${{ env.KOSLI_CLI_VERSION }}
+
+    - name: Attest Jira ticket
+      shell: bash
+      run: |
+        set -x
+        JIRA_ISSUE_ARG=""
+        if [ -n "${{ inputs.jira-issue-fields }}" ]; then
+          JIRA_ISSUE_ARG="--jira-issue-fields ${{ inputs.jira-issue-fields }}"
+        fi
+
+        if [ "${{ inputs.report-to-kosli }}" == "false" ]; then
+          # Currently the kosli attest jira command is missing a feature to not report the jira ticket,
+          # so use a grep for now
+          kosli attest jira \
+            --name jira-ticket \
+            --jira-base-url ${{ inputs.jira-base-url }} \
+            --jira-username ${{ inputs.jira-username }} \
+            --jira-api-token ${{ inputs.jira-api-token }} \
+            --ignore-branch-match \
+            --assert --dry-run 2>&1 | grep "no Jira references are found" && exit 1 || exit 0
+        else
+          kosli attest jira \
+            --name jira-ticket \
+            --jira-base-url ${{ inputs.jira-base-url }} \
+            --jira-username ${{ inputs.jira-username }} \
+            --jira-api-token ${{ inputs.jira-api-token }} \
+            --ignore-branch-match \
+            --assert \
+            ${JIRA_ISSUE_ARG}
+        fi