2022-07-11 13:36:59 +00:00
|
|
|
name: Docker Static
|
|
|
|
|
|
|
|
|
|
on:
|
|
|
|
|
push:
|
|
|
|
|
branches:
|
|
|
|
|
- 'main'
|
2023-03-28 11:59:23 +00:00
|
|
|
paths-ignore:
|
|
|
|
|
- 'docs/**'
|
|
|
|
|
- 'example_configs/**'
|
2022-07-11 13:36:59 +00:00
|
|
|
release:
|
|
|
|
|
types:
|
|
|
|
|
- 'published'
|
|
|
|
|
pull_request:
|
|
|
|
|
branches:
|
|
|
|
|
- 'main'
|
2023-03-28 11:59:23 +00:00
|
|
|
paths-ignore:
|
|
|
|
|
- 'docs/**'
|
|
|
|
|
- 'example_configs/**'
|
2022-07-11 13:36:59 +00:00
|
|
|
workflow_dispatch:
|
|
|
|
|
inputs:
|
|
|
|
|
msg:
|
|
|
|
|
description: "Set message"
|
|
|
|
|
default: "Manual trigger"
|
2022-07-15 13:02:35 +00:00
|
|
|
|
2022-07-11 13:36:59 +00:00
|
|
|
env:
|
|
|
|
|
CARGO_TERM_COLOR: always
|
|
|
|
|
|
|
|
|
|
|
2023-01-22 10:10:26 +00:00
|
|
|
### CI Docs
|
2023-01-06 15:34:22 +00:00
|
|
|
|
2022-07-11 13:36:59 +00:00
|
|
|
# build-ui , create/compile the web
|
|
|
|
|
### install wasm
|
|
|
|
|
### install rollup
|
2022-07-15 13:02:35 +00:00
|
|
|
### run app/build.sh
|
2022-07-11 13:36:59 +00:00
|
|
|
### upload artifacts
|
|
|
|
|
|
2023-01-22 10:10:26 +00:00
|
|
|
# build-bin
|
|
|
|
|
## build-armhf, build-aarch64, build-amd64 , create binary for respective arch
|
|
|
|
|
#######################################################################################
|
|
|
|
|
# GitHub actions randomly timeout when downloading musl-gcc, using custom dev image #
|
|
|
|
|
# Look into .github/workflows/Dockerfile.dev for development image details #
|
|
|
|
|
# Using lldap dev image based on https://hub.docker.com/_/rust and musl-gcc bundled #
|
|
|
|
|
#######################################################################################
|
2022-07-11 13:36:59 +00:00
|
|
|
### Cargo build
|
2023-01-22 10:10:26 +00:00
|
|
|
### aarch64 and amd64 is musl based
|
|
|
|
|
### armv7 is glibc based, musl had issue with time_t when cross compile https://github.com/rust-lang/libc/issues/1848
|
2022-07-11 13:36:59 +00:00
|
|
|
|
|
|
|
|
# build-ui,builds-armhf, build-aarch64, build-amd64 will upload artifacts will be used next job
|
2023-01-22 10:10:26 +00:00
|
|
|
|
|
|
|
|
# lldap-test
|
|
|
|
|
### will run lldap with postgres, mariadb and sqlite backend, do selfcheck command.
|
|
|
|
|
|
|
|
|
|
# Build docker image
|
|
|
|
|
### Triplet docker image arch with debian base
|
|
|
|
|
### amd64 & aarch64 with alpine base
|
2022-07-11 13:36:59 +00:00
|
|
|
# build-docker-image job will fetch artifacts and run Dockerfile.ci then push the image.
|
2023-01-22 10:10:26 +00:00
|
|
|
### Look into .github/workflows/Dockerfile.ci.debian or .github/workflowds/Dockerfile.ci.alpine
|
2022-07-11 13:36:59 +00:00
|
|
|
|
2023-01-22 10:10:26 +00:00
|
|
|
# create release artifacts
|
|
|
|
|
### Fetch artifacts
|
|
|
|
|
### Clean up web artifact
|
|
|
|
|
### Setup folder structure
|
|
|
|
|
### Compress
|
|
|
|
|
### Upload
|
|
|
|
|
|
|
|
|
|
# cache based on Cargo.lock per cargo target
|
2022-07-11 13:36:59 +00:00
|
|
|
|
|
|
|
|
jobs:
|
2023-03-27 12:19:11 +00:00
|
|
|
pre_job:
|
|
|
|
|
continue-on-error: true
|
|
|
|
|
runs-on: ubuntu-latest
|
|
|
|
|
outputs:
|
|
|
|
|
should_skip: ${{ steps.skip_check.outputs.should_skip }}
|
|
|
|
|
steps:
|
|
|
|
|
- id: skip_check
|
|
|
|
|
uses: fkirc/skip-duplicate-actions@master
|
|
|
|
|
with:
|
|
|
|
|
concurrent_skipping: 'outdated_runs'
|
2023-03-28 17:40:43 +00:00
|
|
|
skip_after_successful_duplicate: ${{ github.ref != 'refs/heads/main' }}
|
2023-03-27 12:19:11 +00:00
|
|
|
paths_ignore: '["**/*.md", "**/docs/**", "example_configs/**", "*.sh", ".gitignore", "lldap_config.docker_template.toml"]'
|
|
|
|
|
do_not_skip: '["workflow_dispatch", "schedule"]'
|
|
|
|
|
cancel_others: true
|
|
|
|
|
|
2022-07-11 13:36:59 +00:00
|
|
|
build-ui:
|
|
|
|
|
runs-on: ubuntu-latest
|
2023-03-27 12:19:11 +00:00
|
|
|
needs: pre_job
|
2023-04-11 12:48:26 +00:00
|
|
|
if: ${{ needs.pre_job.outputs.should_skip != 'true' || github.event_name == 'release' }}
|
2022-07-15 13:02:35 +00:00
|
|
|
container:
|
2023-01-06 15:34:22 +00:00
|
|
|
image: nitnelave/rust-dev:latest
|
2022-07-11 13:36:59 +00:00
|
|
|
steps:
|
2023-01-06 15:34:22 +00:00
|
|
|
- name: Checkout repository
|
2023-03-27 07:14:26 +00:00
|
|
|
uses: actions/checkout@v3.5.0
|
2022-07-11 13:36:59 +00:00
|
|
|
- uses: actions/cache@v3
|
|
|
|
|
with:
|
|
|
|
|
path: |
|
|
|
|
|
/usr/local/cargo/bin
|
|
|
|
|
/usr/local/cargo/registry/index
|
|
|
|
|
/usr/local/cargo/registry/cache
|
|
|
|
|
/usr/local/cargo/git/db
|
|
|
|
|
target
|
|
|
|
|
key: lldap-ui-${{ hashFiles('**/Cargo.lock') }}
|
|
|
|
|
restore-keys: |
|
|
|
|
|
lldap-ui-
|
2023-01-22 10:10:26 +00:00
|
|
|
- name: Install rollup (nodejs)
|
2022-08-01 13:43:29 +00:00
|
|
|
run: npm install -g rollup
|
2023-01-22 10:10:26 +00:00
|
|
|
- name: Add wasm target (rust)
|
2023-01-06 15:34:22 +00:00
|
|
|
run: rustup target add wasm32-unknown-unknown
|
2023-01-22 10:10:26 +00:00
|
|
|
- name: Install wasm-pack with cargo
|
2022-08-01 13:43:29 +00:00
|
|
|
run: cargo install wasm-pack || true
|
2022-09-10 11:01:42 +00:00
|
|
|
env:
|
|
|
|
|
RUSTFLAGS: ""
|
2023-01-22 10:10:26 +00:00
|
|
|
- name: Build frontend
|
2022-07-11 13:36:59 +00:00
|
|
|
run: ./app/build.sh
|
2023-01-22 10:10:26 +00:00
|
|
|
- name: Check build path
|
2022-07-11 13:36:59 +00:00
|
|
|
run: ls -al app/
|
2023-01-22 10:10:26 +00:00
|
|
|
- name: Upload ui artifacts
|
2022-07-11 13:36:59 +00:00
|
|
|
uses: actions/upload-artifact@v3
|
|
|
|
|
with:
|
|
|
|
|
name: ui
|
|
|
|
|
path: app/
|
2022-07-15 13:02:35 +00:00
|
|
|
|
2022-07-11 13:36:59 +00:00
|
|
|
|
2023-01-22 10:10:26 +00:00
|
|
|
build-bin:
|
2022-07-11 13:36:59 +00:00
|
|
|
runs-on: ubuntu-latest
|
2023-03-27 12:19:11 +00:00
|
|
|
needs: pre_job
|
2023-04-11 12:48:26 +00:00
|
|
|
if: ${{ needs.pre_job.outputs.should_skip != 'true' || github.event_name == 'release' }}
|
2023-01-22 10:10:26 +00:00
|
|
|
strategy:
|
|
|
|
|
matrix:
|
|
|
|
|
target: [armv7-unknown-linux-gnueabihf, aarch64-unknown-linux-musl, x86_64-unknown-linux-musl]
|
2022-07-15 13:02:35 +00:00
|
|
|
container:
|
2022-08-01 13:09:17 +00:00
|
|
|
image: nitnelave/rust-dev:latest
|
2022-07-11 13:36:59 +00:00
|
|
|
env:
|
2023-01-22 10:10:26 +00:00
|
|
|
CARGO_TARGET_ARMV7_UNKNOWN_LINUX_GNUEABIHF_LINKER: arm-linux-gnueabihf-gcc
|
2022-07-31 03:20:26 +00:00
|
|
|
CARGO_TARGET_AARCH64_UNKNOWN_LINUX_MUSL_LINKER: aarch64-linux-musl-gcc
|
2023-01-22 10:10:26 +00:00
|
|
|
CARGO_TARGET_X86_64_UNKNOWN_LINUX_MUSL_LINKER: x86_64-linux-musl-gcc
|
2022-07-11 13:36:59 +00:00
|
|
|
CARGO_TERM_COLOR: always
|
|
|
|
|
RUSTFLAGS: -Ctarget-feature=+crt-static
|
|
|
|
|
CARGO_HOME: ${GITHUB_WORKSPACE}/.cargo
|
|
|
|
|
steps:
|
|
|
|
|
- name: Checkout repository
|
2023-03-27 07:14:26 +00:00
|
|
|
uses: actions/checkout@v3.5.0
|
2022-07-11 13:36:59 +00:00
|
|
|
- uses: actions/cache@v3
|
|
|
|
|
with:
|
|
|
|
|
path: |
|
|
|
|
|
.cargo/bin
|
|
|
|
|
.cargo/registry/index
|
|
|
|
|
.cargo/registry/cache
|
|
|
|
|
.cargo/git/db
|
|
|
|
|
target
|
2023-01-22 10:10:26 +00:00
|
|
|
key: lldap-bin-${{ matrix.target }}-${{ hashFiles('**/Cargo.lock') }}
|
2022-07-11 13:36:59 +00:00
|
|
|
restore-keys: |
|
2023-01-22 10:10:26 +00:00
|
|
|
lldap-bin-${{ matrix.target }}-
|
2023-03-20 22:50:23 +00:00
|
|
|
- name: Compile ${{ matrix.target }} lldap and tools
|
|
|
|
|
run: cargo build --target=${{ matrix.target }} --release -p lldap -p migration-tool -p lldap_set_password
|
2023-01-22 10:10:26 +00:00
|
|
|
- name: Check path
|
|
|
|
|
run: ls -al target/release
|
|
|
|
|
- name: Upload ${{ matrix.target}} lldap artifacts
|
2022-07-11 13:36:59 +00:00
|
|
|
uses: actions/upload-artifact@v3
|
|
|
|
|
with:
|
2023-01-22 10:10:26 +00:00
|
|
|
name: ${{ matrix.target}}-lldap-bin
|
|
|
|
|
path: target/${{ matrix.target }}/release/lldap
|
|
|
|
|
- name: Upload ${{ matrix.target }} migration tool artifacts
|
2022-07-11 13:36:59 +00:00
|
|
|
uses: actions/upload-artifact@v3
|
|
|
|
|
with:
|
2023-01-22 10:10:26 +00:00
|
|
|
name: ${{ matrix.target }}-migration-tool-bin
|
|
|
|
|
path: target/${{ matrix.target }}/release/migration-tool
|
2023-03-20 22:50:23 +00:00
|
|
|
- name: Upload ${{ matrix.target }} password tool artifacts
|
|
|
|
|
uses: actions/upload-artifact@v3
|
|
|
|
|
with:
|
|
|
|
|
name: ${{ matrix.target }}-lldap_set_password-bin
|
|
|
|
|
path: target/${{ matrix.target }}/release/lldap_set_password
|
2022-07-11 13:36:59 +00:00
|
|
|
|
2023-03-28 11:59:23 +00:00
|
|
|
lldap-database-init-test:
|
2023-01-22 10:10:26 +00:00
|
|
|
needs: [build-ui,build-bin]
|
2023-03-28 11:59:23 +00:00
|
|
|
name: LLDAP database init test
|
2022-07-11 13:36:59 +00:00
|
|
|
runs-on: ubuntu-latest
|
2023-01-22 10:10:26 +00:00
|
|
|
services:
|
|
|
|
|
mariadb:
|
|
|
|
|
image: mariadb:latest
|
|
|
|
|
ports:
|
|
|
|
|
- 3306:3306
|
|
|
|
|
env:
|
2023-04-10 15:09:54 +00:00
|
|
|
MARIADB_USER: lldapuser
|
|
|
|
|
MARIADB_PASSWORD: lldappass
|
|
|
|
|
MARIADB_DATABASE: lldap
|
|
|
|
|
MARIADB_ALLOW_EMPTY_ROOT_PASSWORD: 1
|
|
|
|
|
options: >-
|
|
|
|
|
--name mariadb
|
|
|
|
|
--health-cmd="mysqladmin ping" --health-interval=5s --health-timeout=2s --health-retries=3
|
2023-01-22 10:10:26 +00:00
|
|
|
|
|
|
|
|
postgresql:
|
|
|
|
|
image: postgres:latest
|
|
|
|
|
ports:
|
|
|
|
|
- 5432:5432
|
|
|
|
|
env:
|
|
|
|
|
POSTGRES_USER: lldapuser
|
|
|
|
|
POSTGRES_PASSWORD: lldappass
|
|
|
|
|
POSTGRES_DB: lldap
|
2023-04-10 15:09:54 +00:00
|
|
|
options: >-
|
|
|
|
|
--health-cmd pg_isready
|
|
|
|
|
--health-interval 10s
|
|
|
|
|
--health-timeout 5s
|
|
|
|
|
--health-retries 5
|
|
|
|
|
--name postgresql
|
2023-01-22 10:10:26 +00:00
|
|
|
|
2022-07-11 13:36:59 +00:00
|
|
|
steps:
|
2023-01-22 10:10:26 +00:00
|
|
|
- name: Download artifacts
|
|
|
|
|
uses: actions/download-artifact@v3
|
|
|
|
|
with:
|
|
|
|
|
name: x86_64-unknown-linux-musl-lldap-bin
|
|
|
|
|
path: bin/
|
2023-03-28 11:59:23 +00:00
|
|
|
|
2023-01-22 10:10:26 +00:00
|
|
|
- name: Set executables to LLDAP
|
|
|
|
|
run: chmod +x bin/lldap
|
|
|
|
|
|
|
|
|
|
- name: Run lldap with postgres DB and healthcheck
|
|
|
|
|
run: |
|
|
|
|
|
bin/lldap run &
|
|
|
|
|
sleep 10s
|
|
|
|
|
bin/lldap healthcheck
|
|
|
|
|
env:
|
|
|
|
|
LLDAP_database_url: postgres://lldapuser:lldappass@localhost/lldap
|
|
|
|
|
LLDAP_ldap_port: 3890
|
|
|
|
|
LLDAP_http_port: 17170
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
- name: Run lldap with mariadb DB (MySQL Compatible) and healthcheck
|
|
|
|
|
run: |
|
|
|
|
|
bin/lldap run &
|
|
|
|
|
sleep 10s
|
|
|
|
|
bin/lldap healthcheck
|
|
|
|
|
env:
|
|
|
|
|
LLDAP_database_url: mysql://lldapuser:lldappass@localhost/lldap
|
|
|
|
|
LLDAP_ldap_port: 3891
|
|
|
|
|
LLDAP_http_port: 17171
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
- name: Run lldap with sqlite DB and healthcheck
|
|
|
|
|
run: |
|
|
|
|
|
bin/lldap run &
|
|
|
|
|
sleep 10s
|
|
|
|
|
bin/lldap healthcheck
|
|
|
|
|
env:
|
|
|
|
|
LLDAP_database_url: sqlite://users.db?mode=rwc
|
|
|
|
|
LLDAP_ldap_port: 3892
|
|
|
|
|
LLDAP_http_port: 17172
|
2023-03-28 16:49:17 +00:00
|
|
|
|
2023-03-28 11:59:23 +00:00
|
|
|
- name: Check DB container logs
|
|
|
|
|
run: |
|
|
|
|
|
docker logs -n 20 mariadb
|
|
|
|
|
docker logs -n 20 postgresql
|
|
|
|
|
|
|
|
|
|
lldap-database-migration-test:
|
|
|
|
|
needs: [build-ui,build-bin]
|
|
|
|
|
name: LLDAP database migration test
|
|
|
|
|
runs-on: ubuntu-latest
|
|
|
|
|
services:
|
|
|
|
|
postgresql:
|
|
|
|
|
image: postgres:latest
|
|
|
|
|
ports:
|
|
|
|
|
- 5432:5432
|
|
|
|
|
env:
|
|
|
|
|
POSTGRES_USER: lldapuser
|
|
|
|
|
POSTGRES_PASSWORD: lldappass
|
|
|
|
|
POSTGRES_DB: lldap
|
2023-04-10 15:09:54 +00:00
|
|
|
options: >-
|
|
|
|
|
--health-cmd pg_isready
|
|
|
|
|
--health-interval 10s
|
|
|
|
|
--health-timeout 5s
|
|
|
|
|
--health-retries 5
|
|
|
|
|
--name postgresql
|
2023-04-11 12:48:26 +00:00
|
|
|
|
2023-03-28 11:59:23 +00:00
|
|
|
mariadb:
|
|
|
|
|
image: mariadb:latest
|
|
|
|
|
ports:
|
|
|
|
|
- 3306:3306
|
|
|
|
|
env:
|
2023-04-10 15:09:54 +00:00
|
|
|
MARIADB_USER: lldapuser
|
|
|
|
|
MARIADB_PASSWORD: lldappass
|
|
|
|
|
MARIADB_DATABASE: lldap
|
|
|
|
|
MARIADB_ALLOW_EMPTY_ROOT_PASSWORD: 1
|
|
|
|
|
options: >-
|
|
|
|
|
--name mariadb
|
|
|
|
|
--health-cmd="mysqladmin ping" --health-interval=5s --health-timeout=2s --health-retries=3
|
|
|
|
|
|
2023-04-11 04:03:56 +00:00
|
|
|
|
2023-03-28 11:59:23 +00:00
|
|
|
mysql:
|
|
|
|
|
image: mysql:latest
|
|
|
|
|
ports:
|
|
|
|
|
- 3307:3306
|
|
|
|
|
env:
|
|
|
|
|
MYSQL_USER: lldapuser
|
|
|
|
|
MYSQL_PASSWORD: lldappass
|
|
|
|
|
MYSQL_DATABASE: lldap
|
2023-04-10 15:09:54 +00:00
|
|
|
MYSQL_ALLOW_EMPTY_PASSWORD: 1
|
|
|
|
|
options: >-
|
|
|
|
|
--name mysql
|
|
|
|
|
--health-cmd="mysqladmin ping" --health-interval=5s --health-timeout=2s --health-retries=3
|
2023-03-28 16:49:17 +00:00
|
|
|
|
2022-07-11 13:36:59 +00:00
|
|
|
|
2023-03-28 11:59:23 +00:00
|
|
|
steps:
|
|
|
|
|
- name: Download LLDAP artifacts
|
|
|
|
|
uses: actions/download-artifact@v3
|
|
|
|
|
with:
|
|
|
|
|
name: x86_64-unknown-linux-musl-lldap-bin
|
|
|
|
|
path: bin/
|
2023-03-28 16:49:17 +00:00
|
|
|
|
2023-03-28 11:59:23 +00:00
|
|
|
- name: Download LLDAP set password
|
|
|
|
|
uses: actions/download-artifact@v3
|
|
|
|
|
with:
|
2023-03-28 16:49:17 +00:00
|
|
|
name: x86_64-unknown-linux-musl-lldap_set_password-bin
|
2023-03-28 11:59:23 +00:00
|
|
|
path: bin/
|
|
|
|
|
|
|
|
|
|
- name: Set executables to LLDAP and LLDAP set password
|
|
|
|
|
run: |
|
|
|
|
|
chmod +x bin/lldap
|
|
|
|
|
chmod +x bin/lldap_set_password
|
|
|
|
|
|
|
|
|
|
- name: Install sqlite3 and ldap-utils for exporting and searching dummy user
|
|
|
|
|
run: sudo apt update && sudo apt install -y sqlite3 ldap-utils
|
2022-07-11 13:36:59 +00:00
|
|
|
|
2023-03-28 11:59:23 +00:00
|
|
|
- name: Run lldap with sqlite DB and healthcheck
|
|
|
|
|
run: |
|
|
|
|
|
bin/lldap run &
|
|
|
|
|
sleep 10s
|
|
|
|
|
bin/lldap healthcheck
|
|
|
|
|
env:
|
|
|
|
|
LLDAP_database_url: sqlite://users.db?mode=rwc
|
|
|
|
|
LLDAP_ldap_port: 3890
|
|
|
|
|
LLDAP_http_port: 17170
|
|
|
|
|
LLDAP_LDAP_USER_PASS: ldappass
|
|
|
|
|
LLDAP_JWT_SECRET: somejwtsecret
|
|
|
|
|
|
|
|
|
|
- name: Create dummy user
|
|
|
|
|
run: |
|
2023-04-05 15:20:15 +00:00
|
|
|
TOKEN=$(curl -X POST -H "Content-Type: application/json" -d '{"username": "admin", "password": "ldappass"}' http://localhost:17170/auth/simple/login | jq -r .token)
|
2023-03-28 11:59:23 +00:00
|
|
|
echo "$TOKEN"
|
|
|
|
|
curl 'http://localhost:17170/api/graphql' -H 'Content-Type: application/json' -H "Authorization: Bearer ${TOKEN//[$'\t\r\n ']}" --data-binary '{"query":"mutation{\n createUser(user:\n {\n id: \"dummyuser\",\n email: \"dummyuser@example.com\"\n }\n )\n {\n id\n email\n }\n}\n\n\n"}' --compressed
|
|
|
|
|
bin/lldap_set_password --base-url http://localhost:17170 --admin-username admin --admin-password ldappass --token $TOKEN --username dummyuser --password dummypassword
|
|
|
|
|
|
|
|
|
|
- name: Test Dummy User, This will be checked again after importing
|
|
|
|
|
run: |
|
|
|
|
|
ldapsearch -H ldap://localhost:3890 -LLL -D "uid=dummyuser,ou=people,dc=example,dc=com" -w 'dummypassword' -s "One" -b "ou=people,dc=example,dc=com"
|
|
|
|
|
|
|
|
|
|
- name: Stop LLDAP sqlite
|
|
|
|
|
run: pkill lldap
|
|
|
|
|
|
|
|
|
|
- name: Export and Converting to Postgress
|
|
|
|
|
run: |
|
2023-04-11 04:03:56 +00:00
|
|
|
curl -L https://raw.githubusercontent.com/lldap/lldap/main/scripts/sqlite_dump_commands.sh -o helper.sh
|
2023-03-28 11:59:23 +00:00
|
|
|
chmod +x ./helper.sh
|
|
|
|
|
./helper.sh | sqlite3 ./users.db > ./dump.sql
|
|
|
|
|
sed -i -r -e "s/X'([[:xdigit:]]+'[^'])/'\\\x\\1/g" -e '1s/^/BEGIN;\n/' -e '$aCOMMIT;' ./dump.sql
|
|
|
|
|
|
|
|
|
|
- name: Create schema on postgres
|
|
|
|
|
run: |
|
|
|
|
|
bin/lldap create_schema -d postgres://lldapuser:lldappass@localhost:5432/lldap
|
|
|
|
|
|
|
|
|
|
- name: Copy converted db to postgress and import
|
|
|
|
|
run: |
|
|
|
|
|
docker ps -a
|
|
|
|
|
docker cp ./dump.sql postgresql:/tmp/dump.sql
|
|
|
|
|
docker exec postgresql bash -c "psql -U lldapuser -d lldap < /tmp/dump.sql"
|
|
|
|
|
rm ./dump.sql
|
2023-03-28 16:49:17 +00:00
|
|
|
|
2023-03-28 11:59:23 +00:00
|
|
|
- name: Export and Converting to mariadb
|
|
|
|
|
run: |
|
2023-04-11 04:03:56 +00:00
|
|
|
curl -L https://raw.githubusercontent.com/lldap/lldap/main/scripts/sqlite_dump_commands.sh -o helper.sh
|
2023-03-28 11:59:23 +00:00
|
|
|
chmod +x ./helper.sh
|
|
|
|
|
./helper.sh | sqlite3 ./users.db > ./dump.sql
|
|
|
|
|
cp ./dump.sql ./dump-no-sed.sql
|
|
|
|
|
sed -i -r -e "s/([^']'[0-9]{4}-[0-9]{2}-[0-9]{2}T[0-9]{2}:[0-9]{2}:[0-9]{2}\.[0-9]{9})\+00:00'([^'])/\1'\2/g" \-e 's/^INSERT INTO "?([a-zA-Z0-9_]+)"?/INSERT INTO `\1`/' -e '1s/^/START TRANSACTION;\n/' -e '$aCOMMIT;' ./dump.sql
|
|
|
|
|
sed -i '1 i\SET FOREIGN_KEY_CHECKS = 0;' ./dump.sql
|
2023-03-28 16:49:17 +00:00
|
|
|
|
2023-03-28 11:59:23 +00:00
|
|
|
- name: Create schema on mariadb
|
|
|
|
|
run: bin/lldap create_schema -d mysql://lldapuser:lldappass@localhost:3306/lldap
|
|
|
|
|
|
|
|
|
|
- name: Copy converted db to mariadb and import
|
|
|
|
|
run: |
|
|
|
|
|
docker ps -a
|
|
|
|
|
docker cp ./dump.sql mariadb:/tmp/dump.sql
|
|
|
|
|
docker exec mariadb bash -c "mariadb -ulldapuser -plldappass -f lldap < /tmp/dump.sql"
|
|
|
|
|
rm ./dump.sql
|
2023-03-28 16:49:17 +00:00
|
|
|
|
2023-03-28 11:59:23 +00:00
|
|
|
- name: Export and Converting to mysql
|
|
|
|
|
run: |
|
2023-04-11 04:03:56 +00:00
|
|
|
curl -L https://raw.githubusercontent.com/lldap/lldap/main/scripts/sqlite_dump_commands.sh -o helper.sh
|
2023-03-28 11:59:23 +00:00
|
|
|
chmod +x ./helper.sh
|
|
|
|
|
./helper.sh | sqlite3 ./users.db > ./dump.sql
|
|
|
|
|
sed -i -r -e 's/^INSERT INTO "?([a-zA-Z0-9_]+)"?/INSERT INTO `\1`/' -e '1s/^/START TRANSACTION;\n/' -e '$aCOMMIT;' ./dump.sql
|
|
|
|
|
sed -i '1 i\SET FOREIGN_KEY_CHECKS = 0;' ./dump.sql
|
2023-03-28 16:49:17 +00:00
|
|
|
|
2023-03-28 11:59:23 +00:00
|
|
|
- name: Create schema on mysql
|
|
|
|
|
run: bin/lldap create_schema -d mysql://lldapuser:lldappass@localhost:3307/lldap
|
|
|
|
|
|
|
|
|
|
- name: Copy converted db to mysql and import
|
|
|
|
|
run: |
|
|
|
|
|
docker ps -a
|
|
|
|
|
docker cp ./dump.sql mysql:/tmp/dump.sql
|
|
|
|
|
docker exec mysql bash -c "mysql -ulldapuser -plldappass -f lldap < /tmp/dump.sql"
|
|
|
|
|
rm ./dump.sql
|
2023-03-28 16:49:17 +00:00
|
|
|
|
2023-03-28 11:59:23 +00:00
|
|
|
- name: Run lldap with postgres DB and healthcheck again
|
|
|
|
|
run: |
|
|
|
|
|
bin/lldap run &
|
|
|
|
|
sleep 10s
|
|
|
|
|
bin/lldap healthcheck
|
|
|
|
|
env:
|
|
|
|
|
LLDAP_database_url: postgres://lldapuser:lldappass@localhost:5432/lldap
|
|
|
|
|
LLDAP_ldap_port: 3891
|
|
|
|
|
LLDAP_http_port: 17171
|
|
|
|
|
LLDAP_LDAP_USER_PASS: ldappass
|
|
|
|
|
LLDAP_JWT_SECRET: somejwtsecret
|
2023-03-28 16:49:17 +00:00
|
|
|
|
2023-03-28 11:59:23 +00:00
|
|
|
- name: Run lldap with mariaDB and healthcheck again
|
|
|
|
|
run: |
|
|
|
|
|
bin/lldap run &
|
|
|
|
|
sleep 10s
|
|
|
|
|
bin/lldap healthcheck
|
|
|
|
|
env:
|
|
|
|
|
LLDAP_database_url: mysql://lldapuser:lldappass@localhost:3306/lldap
|
|
|
|
|
LLDAP_ldap_port: 3892
|
|
|
|
|
LLDAP_http_port: 17172
|
|
|
|
|
LLDAP_JWT_SECRET: somejwtsecret
|
2023-03-28 16:49:17 +00:00
|
|
|
|
2023-03-28 11:59:23 +00:00
|
|
|
- name: Run lldap with mysql and healthcheck again
|
|
|
|
|
run: |
|
|
|
|
|
bin/lldap run &
|
|
|
|
|
sleep 10s
|
|
|
|
|
bin/lldap healthcheck
|
|
|
|
|
env:
|
|
|
|
|
LLDAP_database_url: mysql://lldapuser:lldappass@localhost:3307/lldap
|
|
|
|
|
LLDAP_ldap_port: 3893
|
|
|
|
|
LLDAP_http_port: 17173
|
|
|
|
|
LLDAP_JWT_SECRET: somejwtsecret
|
2023-03-28 16:49:17 +00:00
|
|
|
|
2023-03-28 11:59:23 +00:00
|
|
|
- name: Test Dummy User
|
|
|
|
|
run: |
|
|
|
|
|
ldapsearch -H ldap://localhost:3891 -LLL -D "uid=dummyuser,ou=people,dc=example,dc=com" -w 'dummypassword' -s "One" -b "ou=people,dc=example,dc=com"
|
|
|
|
|
ldapsearch -H ldap://localhost:3892 -LLL -D "uid=dummyuser,ou=people,dc=example,dc=com" -w 'dummypassword' -s "One" -b "ou=people,dc=example,dc=com"
|
|
|
|
|
ldapsearch -H ldap://localhost:3893 -LLL -D "uid=dummyuser,ou=people,dc=example,dc=com" -w 'dummypassword' -s "One" -b "ou=people,dc=example,dc=com"
|
2023-03-28 16:49:17 +00:00
|
|
|
|
2022-07-11 13:36:59 +00:00
|
|
|
build-docker-image:
|
2023-01-22 10:10:26 +00:00
|
|
|
needs: [build-ui, build-bin]
|
2022-07-11 13:36:59 +00:00
|
|
|
name: Build Docker image
|
|
|
|
|
runs-on: ubuntu-latest
|
2023-04-11 04:03:56 +00:00
|
|
|
strategy:
|
|
|
|
|
matrix:
|
|
|
|
|
container: ["debian","alpine"]
|
|
|
|
|
include:
|
|
|
|
|
- container: alpine
|
|
|
|
|
platforms: linux/amd64,linux/arm64
|
|
|
|
|
tags: |
|
|
|
|
|
type=ref,event=pr
|
|
|
|
|
type=semver,pattern=v{{version}}
|
|
|
|
|
type=semver,pattern=v{{major}}
|
|
|
|
|
type=semver,pattern=v{{major}}.{{minor}}
|
|
|
|
|
type=semver,pattern=v{{version}},suffix=
|
|
|
|
|
type=semver,pattern=v{{major}},suffix=
|
|
|
|
|
type=semver,pattern=v{{major}}.{{minor}},suffix=
|
|
|
|
|
type=raw,value=latest,enable={{ is_default_branch }}
|
|
|
|
|
type=raw,value=stable,enable=${{ startsWith(github.ref, 'refs/tags/v') }}
|
|
|
|
|
type=raw,value=stable,enable=${{ startsWith(github.ref, 'refs/tags/v') }},suffix=
|
|
|
|
|
type=raw,value=latest,enable={{ is_default_branch }},suffix=
|
|
|
|
|
- container: debian
|
|
|
|
|
platforms: linux/amd64,linux/arm64,linux/arm/v7
|
|
|
|
|
tags: |
|
|
|
|
|
type=ref,event=pr
|
|
|
|
|
type=semver,pattern=v{{version}}
|
|
|
|
|
type=semver,pattern=v{{major}}
|
|
|
|
|
type=semver,pattern=v{{major}}.{{minor}}
|
|
|
|
|
type=raw,value=latest,enable={{ is_default_branch }}
|
|
|
|
|
type=raw,value=stable,enable=${{ startsWith(github.ref, 'refs/tags/v') }}
|
|
|
|
|
|
2022-07-11 13:36:59 +00:00
|
|
|
permissions:
|
|
|
|
|
contents: read
|
|
|
|
|
packages: write
|
|
|
|
|
steps:
|
2023-01-22 10:10:26 +00:00
|
|
|
- name: Checkout repository
|
2023-03-27 07:14:26 +00:00
|
|
|
uses: actions/checkout@v3.5.0
|
2023-01-22 10:10:26 +00:00
|
|
|
- name: Download all artifacts
|
2022-07-11 13:36:59 +00:00
|
|
|
uses: actions/download-artifact@v3
|
|
|
|
|
with:
|
2023-01-06 15:34:22 +00:00
|
|
|
path: bin
|
2022-07-15 13:02:35 +00:00
|
|
|
|
2022-07-11 13:36:59 +00:00
|
|
|
- name: Download llap ui artifacts
|
|
|
|
|
uses: actions/download-artifact@v3
|
|
|
|
|
with:
|
|
|
|
|
name: ui
|
|
|
|
|
path: web
|
2022-07-15 13:02:35 +00:00
|
|
|
|
2023-01-22 10:10:26 +00:00
|
|
|
- name: Setup QEMU
|
2022-07-11 13:36:59 +00:00
|
|
|
uses: docker/setup-qemu-action@v2
|
|
|
|
|
- uses: docker/setup-buildx-action@v2
|
2022-07-15 13:02:35 +00:00
|
|
|
|
2023-04-11 04:03:56 +00:00
|
|
|
- name: Docker ${{ matrix.container }} meta
|
2022-07-11 13:36:59 +00:00
|
|
|
id: meta
|
|
|
|
|
uses: docker/metadata-action@v4
|
|
|
|
|
with:
|
|
|
|
|
# list of Docker images to use as base name for tags
|
|
|
|
|
images: |
|
|
|
|
|
nitnelave/lldap
|
2023-04-11 04:03:56 +00:00
|
|
|
lldap/lldap
|
|
|
|
|
ghcr.io/lldap/lldap
|
|
|
|
|
# Wanted Docker tags
|
|
|
|
|
# vX-alpine
|
|
|
|
|
# vX.Y-alpine
|
|
|
|
|
# vX.Y.Z-alpine
|
|
|
|
|
# latest
|
|
|
|
|
# latest-alpine
|
|
|
|
|
# stable
|
|
|
|
|
# stable-alpine
|
|
|
|
|
#################
|
|
|
|
|
# vX-debian
|
|
|
|
|
# vX.Y-debian
|
|
|
|
|
# vX.Y.Z-debian
|
|
|
|
|
# latest-debian
|
|
|
|
|
# stable-debian
|
|
|
|
|
#################
|
|
|
|
|
# Check matrix for tag list definition
|
|
|
|
|
flavor: |
|
|
|
|
|
latest=false
|
|
|
|
|
suffix=-${{ matrix.container }}
|
|
|
|
|
tags: ${{ matrix.tags }}
|
|
|
|
|
|
|
|
|
|
# Docker login to nitnelave/lldap and lldap/lldap
|
|
|
|
|
- name: Login to Nitnelave/LLDAP Docker Hub
|
2022-07-11 13:36:59 +00:00
|
|
|
if: github.event_name != 'pull_request'
|
|
|
|
|
uses: docker/login-action@v2
|
|
|
|
|
with:
|
|
|
|
|
username: ${{ secrets.DOCKERHUB_USERNAME }}
|
|
|
|
|
password: ${{ secrets.DOCKERHUB_TOKEN }}
|
2022-08-01 16:21:25 +00:00
|
|
|
|
2023-04-05 15:32:44 +00:00
|
|
|
- name: Login to GitHub Container Registry
|
|
|
|
|
if: github.event_name != 'pull_request'
|
|
|
|
|
uses: docker/login-action@v2
|
|
|
|
|
with:
|
|
|
|
|
registry: ghcr.io
|
|
|
|
|
username: nitnelave
|
|
|
|
|
password: ${{ secrets.GITHUB_TOKEN }}
|
|
|
|
|
|
2022-08-01 16:21:25 +00:00
|
|
|
|
2023-01-06 15:34:22 +00:00
|
|
|
########################################
|
2023-04-11 04:03:56 +00:00
|
|
|
#### docker image build ####
|
2023-01-06 15:34:22 +00:00
|
|
|
########################################
|
2023-04-11 04:03:56 +00:00
|
|
|
- name: Build ${{ matrix.container }} Docker Image
|
2023-01-30 20:07:23 +00:00
|
|
|
uses: docker/build-push-action@v4
|
2022-07-11 13:36:59 +00:00
|
|
|
with:
|
|
|
|
|
context: .
|
2023-04-11 04:03:56 +00:00
|
|
|
push: ${{ github.event_name != 'pull_request' }}
|
|
|
|
|
platforms: ${{ matrix.platforms }}
|
|
|
|
|
file: ./.github/workflows/Dockerfile.ci.${{ matrix.container }}
|
2023-04-05 15:32:44 +00:00
|
|
|
tags: |
|
2023-04-11 04:03:56 +00:00
|
|
|
${{ steps.meta.outputs.tags }}
|
|
|
|
|
labels: ${{ steps.meta.outputs.labels }}
|
2023-01-22 10:10:26 +00:00
|
|
|
cache-from: type=gha,mode=max
|
|
|
|
|
cache-to: type=gha,mode=max
|
2022-07-15 13:02:35 +00:00
|
|
|
|
2022-07-11 13:36:59 +00:00
|
|
|
- name: Update repo description
|
|
|
|
|
if: github.event_name != 'pull_request'
|
|
|
|
|
uses: peter-evans/dockerhub-description@v3
|
|
|
|
|
with:
|
|
|
|
|
username: ${{ secrets.DOCKERHUB_USERNAME }}
|
|
|
|
|
password: ${{ secrets.DOCKERHUB_PASSWORD }}
|
|
|
|
|
repository: nitnelave/lldap
|
|
|
|
|
|
2023-04-05 15:32:44 +00:00
|
|
|
- name: Update lldap repo description
|
|
|
|
|
if: github.event_name != 'pull_request'
|
|
|
|
|
uses: peter-evans/dockerhub-description@v3
|
|
|
|
|
with:
|
|
|
|
|
username: ${{ secrets.DOCKERHUB_USERNAME }}
|
|
|
|
|
password: ${{ secrets.DOCKERHUB_PASSWORD }}
|
|
|
|
|
repository: lldap/lldap
|
2023-04-11 04:03:56 +00:00
|
|
|
|
2023-01-06 15:34:22 +00:00
|
|
|
###############################################################
|
|
|
|
|
### Download artifacts, clean up ui, upload to release page ###
|
|
|
|
|
###############################################################
|
2022-10-12 15:49:41 +00:00
|
|
|
create-release-artifacts:
|
2023-01-22 10:10:26 +00:00
|
|
|
needs: [build-ui, build-bin]
|
2022-10-12 15:49:41 +00:00
|
|
|
name: Create release artifacts
|
|
|
|
|
if: github.event_name == 'release'
|
|
|
|
|
runs-on: ubuntu-latest
|
2023-03-28 11:59:23 +00:00
|
|
|
permissions:
|
|
|
|
|
contents: write
|
2022-10-12 15:49:41 +00:00
|
|
|
steps:
|
2023-01-22 10:10:26 +00:00
|
|
|
- name: Download all artifacts
|
2022-10-12 15:49:41 +00:00
|
|
|
uses: actions/download-artifact@v3
|
|
|
|
|
with:
|
2023-01-06 15:34:22 +00:00
|
|
|
path: bin/
|
|
|
|
|
- name: Check file
|
|
|
|
|
run: ls -alR bin/
|
|
|
|
|
- name: Fixing Filename
|
|
|
|
|
run: |
|
2023-01-22 10:10:26 +00:00
|
|
|
mv bin/aarch64-unknown-linux-musl-lldap-bin/lldap bin/aarch64-lldap
|
|
|
|
|
mv bin/x86_64-unknown-linux-musl-lldap-bin/lldap bin/amd64-lldap
|
|
|
|
|
mv bin/armv7-unknown-linux-gnueabihf-lldap-bin/lldap bin/armhf-lldap
|
|
|
|
|
mv bin/aarch64-unknown-linux-musl-migration-tool-bin/migration-tool bin/aarch64-migration-tool
|
|
|
|
|
mv bin/x86_64-unknown-linux-musl-migration-tool-bin/migration-tool bin/amd64-migration-tool
|
|
|
|
|
mv bin/armv7-unknown-linux-gnueabihf-migration-tool-bin/migration-tool bin/armhf-migration-tool
|
2023-03-20 22:50:23 +00:00
|
|
|
mv bin/aarch64-unknown-linux-musl-lldap_set_password-bin/lldap_set_password bin/aarch64-lldap_set_password
|
|
|
|
|
mv bin/x86_64-unknown-linux-musl-lldap_set_password-bin/lldap_set_password bin/amd64-lldap_set_password
|
|
|
|
|
mv bin/armv7-unknown-linux-gnueabihf-lldap_set_password-bin/lldap_set_password bin/armhf-lldap_set_password
|
2023-01-06 15:34:22 +00:00
|
|
|
chmod +x bin/*-lldap
|
|
|
|
|
chmod +x bin/*-migration-tool
|
2023-03-20 22:50:23 +00:00
|
|
|
chmod +x bin/*-lldap_set_password
|
2022-10-12 15:49:41 +00:00
|
|
|
|
|
|
|
|
- name: Download llap ui artifacts
|
|
|
|
|
uses: actions/download-artifact@v3
|
|
|
|
|
with:
|
|
|
|
|
name: ui
|
|
|
|
|
path: web
|
2023-01-22 10:10:26 +00:00
|
|
|
- name: UI (web) artifacts cleanup
|
2022-10-12 15:49:41 +00:00
|
|
|
run: mkdir app && mv web/index.html app/index.html && mv web/static app/static && mv web/pkg app/pkg
|
2023-01-05 14:36:01 +00:00
|
|
|
- name: Fetch web components
|
|
|
|
|
run: |
|
|
|
|
|
sudo apt update
|
|
|
|
|
sudo apt install wget
|
|
|
|
|
for file in $(cat app/static/libraries.txt); do wget -P app/static "$file"; done
|
|
|
|
|
for file in $(cat app/static/fonts/fonts.txt); do wget -P app/static/fonts "$file"; done
|
|
|
|
|
chmod a+r -R .
|
2023-01-06 15:34:22 +00:00
|
|
|
|
|
|
|
|
- name: Setup LLDAP dir for packing
|
|
|
|
|
run: |
|
|
|
|
|
mkdir aarch64-lldap
|
|
|
|
|
mkdir amd64-lldap
|
|
|
|
|
mkdir armhf-lldap
|
|
|
|
|
mv bin/aarch64-lldap aarch64-lldap/lldap
|
|
|
|
|
mv bin/amd64-lldap amd64-lldap/lldap
|
|
|
|
|
mv bin/armhf-lldap armhf-lldap/lldap
|
|
|
|
|
mv bin/aarch64-migration-tool aarch64-lldap/migration-tool
|
|
|
|
|
mv bin/amd64-migration-tool amd64-lldap/migration-tool
|
|
|
|
|
mv bin/armhf-migration-tool armhf-lldap/migration-tool
|
2023-03-20 22:50:23 +00:00
|
|
|
mv bin/aarch64-lldap_set_password aarch64-lldap/lldap_set_password
|
|
|
|
|
mv bin/amd64-lldap_set_password amd64-lldap/lldap_set_password
|
|
|
|
|
mv bin/armhf-lldap_set_password armhf-lldap/lldap_set_password
|
2023-01-06 15:34:22 +00:00
|
|
|
cp -r app aarch64-lldap/
|
|
|
|
|
cp -r app amd64-lldap/
|
|
|
|
|
cp -r app armhf-lldap/
|
|
|
|
|
ls -alR aarch64-lldap/
|
|
|
|
|
ls -alR amd64-lldap/
|
|
|
|
|
ls -alR armhf-lldap/
|
|
|
|
|
|
2023-01-22 10:10:26 +00:00
|
|
|
- name: Packing LLDAP and Web UI
|
2023-01-06 15:34:22 +00:00
|
|
|
run: |
|
|
|
|
|
tar -czvf aarch64-lldap.tar.gz aarch64-lldap/
|
|
|
|
|
tar -czvf amd64-lldap.tar.gz amd64-lldap/
|
|
|
|
|
tar -czvf armhf-lldap.tar.gz armhf-lldap/
|
2022-10-12 15:49:41 +00:00
|
|
|
|
|
|
|
|
|
2023-01-22 10:10:26 +00:00
|
|
|
- name: Upload compressed release
|
2022-10-12 15:49:41 +00:00
|
|
|
uses: ncipollo/release-action@v1
|
|
|
|
|
id: create_release
|
|
|
|
|
with:
|
|
|
|
|
allowUpdates: true
|
2023-01-06 15:34:22 +00:00
|
|
|
artifacts: aarch64-lldap.tar.gz,
|
|
|
|
|
amd64-lldap.tar.gz,
|
|
|
|
|
armhf-lldap.tar.gz
|
2022-10-12 15:49:41 +00:00
|
|
|
env:
|
2022-11-25 09:07:50 +00:00
|
|
|
GITHUB_TOKEN: ${{ github.token }}
|
