Merge pull request #10 from vmware-labs/update-workflow

updating workflow

Author: vg011895

.github/workflows/pypi-publish.yml

@@ -1,60 +1,71 @@
+# This workflow will upload a Python Package using Twine when a release is created
+# For more information see: https://docs.github.com/en/actions/automating-builds-and-tests/building-and-testing-python#publishing-to-package-registries
+
+# This workflow uses actions that are not certified by GitHub.
+# They are provided by a third-party and are governed by
+# separate terms of service, privacy policy, and support
+# documentation.
+
+name: Upload Python Package
+
 on:
   release:
-    types:
-      - published
+    types: [published]
+  push:
+    branches:
+      - main
 
-name: release
+permissions:
+  contents: write
 
 jobs:
-  pypi:
-    name: upload release to PyPI
+  deploy:
+    defaults:
+      run:
+        working-directory: ./src/python/
+
     runs-on: ubuntu-latest
-    permissions:
-      id-token: write
+
     steps:
-      - uses: actions/checkout@v3
-
-      - uses: actions/setup-python@v4
-        with:
-          python-version: "3.x"
-
-      - name: deps
-        run: python -m pip install -U build
-
-      - name: build
-        run: python -m build
-
-      - name: mint API token
-        id: mint-token
-        run: |
-          # retrieve the ambient OIDC token
-          resp=$(curl -H "Authorization: bearer $ACTIONS_ID_TOKEN_REQUEST_TOKEN" \
-            "$ACTIONS_ID_TOKEN_REQUEST_URL&audience=pypi")
-          oidc_token=$(jq -r '.value' <<< "${resp}")
-
-          # exchange the OIDC token for an API token
-          resp=$(curl -X POST https://pypi.org/_/oidc/mint-token -d "{\"token\": \"${oidc_token}\"}")
-          api_token=$(jq -r '.token' <<< "${resp}")
-
-          # mask the newly minted API token, so that we don't accidentally leak it
-          echo "::add-mask::${api_token}"
-
-          # see the next step in the workflow for an example of using this step output
-          echo "api-token=${api_token}" >> "${GITHUB_OUTPUT}"
-
-      - name: publish
-        # gh-action-pypi-publish uses TWINE_PASSWORD automatically
-        uses: pypa/gh-action-pypi-publish@release/v1
-        with:
-          password: ${{ steps.mint-token.outputs.api-token }}
-
-      - name: Commit version
-        run: |
-          # commit incremented version
-          git config --global user.email "vishrant.gupta@gmail.com"
-          git config --global user.name "Vishrant Gupta"
-  
-          git add version.txt
-  
-          git commit -m "[skip ci] Incrementing version"
-          git push
+    - uses: actions/checkout@v4
+      with:
+        fetch-depth: 0
+        ref: main
+
+    - name: Set up Python
+      uses: actions/setup-python@v3
+      with:
+        python-version: '3.x'
+
+    - name: Install dependencies
+      run: |
+        python -m pip install --upgrade pip
+        python -m pip install --upgrade Pillow numpy filetype setuptools wheel twine build semver
+
+        # install project dependencies
+        pip install -r requirements.txt
+
+    - name: Build package
+      run: |
+
+        python setup.py sdist bdist_wheel
+
+        pwd
+        ls -lart ./ dist/ build/
+
+    - name: Publish package
+      run: |
+        
+        token="$api_token"
+        twine upload --username __token__ --password $token dist/*
+
+    - name: Commit version
+      run: |
+        # commit incremented version
+        git config --global user.email "vishrant.gupta@gmail.com"
+        git config --global user.name "Vishrant Gupta"
+
+        git add version.txt
+
+        git commit -m "[skip ci] Incrementing version"
+        git push