From 28a4e1a9e30489a4247b1d224429412c0f168f11 Mon Sep 17 00:00:00 2001 From: Matteo Fiandesio Date: Tue, 23 Jan 2024 14:14:55 +0100 Subject: [PATCH 1/4] Update build.yml Adds a step to publish jar to seqera's s3 --- .github/workflows/build.yml | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index cf8b7b7..12a4854 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -92,3 +92,10 @@ jobs: env: JRELEASER_GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} JRELEASER_PROJECT_VERSION: ${{ steps.version.outputs.VERSION }} + + - name: Publish STABLE jars + run: ./gradle.sh publish + env: + AWS_ACCESS_KEY_ID: ${{secrets.TOWER_CI_AWS_ACCESS}} + AWS_SECRET_ACCESS_KEY: ${{secrets.TOWER_CI_AWS_SECRET}} + From f87f911b166fd8983095a5757ebb06f6c649afb2 Mon Sep 17 00:00:00 2001 From: Matteo Fiandesio Date: Tue, 23 Jan 2024 14:50:35 +0100 Subject: [PATCH 2/4] Update build.yml Adapting to assume role --- .github/workflows/build.yml | 10 +++++++--- 1 file changed, 7 insertions(+), 3 deletions(-) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 12a4854..0678aa4 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -93,9 +93,13 @@ jobs: JRELEASER_GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} JRELEASER_PROJECT_VERSION: ${{ steps.version.outputs.VERSION }} + - name: Configure AWS + uses: aws-actions/configure-aws-credentials@v4 + with: + aws-region: eu-west-2 + role-to-assume: arn:aws:iam::128997144437:role/Development + - name: Publish STABLE jars run: ./gradle.sh publish - env: - AWS_ACCESS_KEY_ID: ${{secrets.TOWER_CI_AWS_ACCESS}} - AWS_SECRET_ACCESS_KEY: ${{secrets.TOWER_CI_AWS_SECRET}} + From 3e42af8cfc018494fb1727a49d7e3dc394e574ee Mon Sep 17 00:00:00 2001 From: Matteo Fiandesio Date: Tue, 23 Jan 2024 14:52:21 +0100 Subject: [PATCH 3/4] Update build.gradle Adds session token for assume role credentials --- build.gradle | 2 ++ 1 file changed, 2 insertions(+) diff --git a/build.gradle b/build.gradle index 931832e..58c608e 100644 --- a/build.gradle +++ b/build.gradle @@ -82,6 +82,7 @@ application { ext.aws_access_key_id = project.findProperty('aws_access_key_id') ?: System.getenv('AWS_ACCESS_KEY_ID') ext.aws_secret_access_key = project.findProperty('aws_secret_access_key') ?: System.getenv('AWS_SECRET_ACCESS_KEY') +ext.aws_session_token = project.findProperty('aws_session_token') ?: System.getenv('AWS_SESSION_TOKEN') ext.publishRepoUrl = project.findProperty('publish_repo_url') ?: System.getenv('PUBLISH_REPO_URL') ?: ( version.endsWith('-SNAPSHOT') ? "s3://maven.seqera.io/snapshots" : "s3://maven.seqera.io/releases" ) // Add sources to JARs. @@ -102,6 +103,7 @@ publishing { // keys are defined in the `gradle.properties` file accessKey aws_access_key_id secretKey aws_secret_access_key + sessionToken aws_session_token } } } From bb3d5d2f8bd3ceab0d9a0ddaef15b6b665a4d57b Mon Sep 17 00:00:00 2001 From: Matteo Fiandesio Date: Wed, 24 Jan 2024 06:54:12 +0100 Subject: [PATCH 4/4] [release] testing release