e2e: add genpolicy regression tests #4
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: regression tests | |
on: | |
schedule: | |
- cron: "16 6 * * 6" # 6:16 on Saturdays | |
workflow_dispatch: | |
inputs: | |
skip-undeploy: | |
description: "Skip undeploy" | |
required: false | |
type: boolean | |
default: false | |
# TODO(burgerdev): REMOVE BEFORE MERGING! | |
pull_request: | |
env: | |
container_registry: ghcr.io/edgelesssys | |
azure_resource_group: contrast-ci | |
DO_NOT_TRACK: 1 | |
jobs: | |
regression-test: | |
runs-on: ubuntu-22.04 | |
permissions: | |
contents: read | |
packages: write | |
strategy: | |
matrix: | |
case: | |
- getdents | |
- genpolicy | |
steps: | |
- uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 | |
- uses: ./.github/actions/setup_nix | |
with: | |
githubToken: ${{ secrets.GITHUB_TOKEN }} | |
cachixToken: ${{ secrets.CACHIX_AUTH_TOKEN }} | |
- name: Log in to ghcr.io Container registry | |
uses: docker/login-action@0d4c9c5ea7693da7b068278f7b52bda2a190a446 # v3.2.0 | |
with: | |
registry: ghcr.io | |
username: ${{ github.actor }} | |
password: ${{ secrets.GITHUB_TOKEN }} | |
- name: Login to Azure | |
uses: azure/login@6c251865b4e6290e7b78be643ea2d005bc51f69a # v2.1.1 | |
with: | |
creds: ${{ secrets.CONTRAST_CI_INFRA_AZURE }} | |
- uses: nicknovitski/nix-develop@a2060d116a50b36dfab02280af558e73ab52427d # v1.1.0 | |
- name: Create justfile.env | |
run: | | |
cat <<EOF > justfile.env | |
container_registry=${{ env.container_registry }} | |
azure_resource_group=${{ env.azure_resource_group }} | |
EOF | |
- name: Get credentials for CI cluster | |
run: | | |
just get-credentials | |
- name: Build and prepare deployments | |
run: | | |
just node-installer | |
- name: Run regression test | |
run: | | |
nix shell .#contrast.e2e --command ${{ matrix.case }}.test -test.v \ | |
--image-replacements workspace/just.containerlookup \ | |
--namespace-file workspace/e2e.namespace \ | |
--skip-undeploy="${{ inputs.skip-undeploy && 'true' || 'false' }}" | |
- name: Cleanup | |
if: cancelled() && !inputs.skip-undeploy | |
run: | | |
kubectl delete ns $(cat workspace/e2e.namespace) --timeout 5m |