Nightly release PoC #13
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change | ||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| @@ -0,0 +1,32 @@ | ||||||||||||||||
| name: Keycloak Client Nightly Release | ||||||||||||||||
|
|
||||||||||||||||
| on: | ||||||||||||||||
| schedule: | ||||||||||||||||
| - cron: '0 2 * * *' | ||||||||||||||||
| workflow_dispatch: | ||||||||||||||||
|
|
||||||||||||||||
| jobs: | ||||||||||||||||
| build: | ||||||||||||||||
| runs-on: ubuntu-latest | ||||||||||||||||
| steps: | ||||||||||||||||
| - name: Check out repository | ||||||||||||||||
| uses: actions/checkout@v4 | ||||||||||||||||
|
|
||||||||||||||||
| - name: Setup Java | ||||||||||||||||
| uses: actions/setup-java@v4 | ||||||||||||||||
| with: | ||||||||||||||||
| distribution: temurin | ||||||||||||||||
| java-version: 17 | ||||||||||||||||
|
There was a problem hiding this comment. The other workflow also checks for the latest Java version at all times, rather than using the cache always. To be consistent we can also add it here.
Suggested change
Additionally, we might also want to cache the Maven artifacts to speed up this task, but I can understand that might potentially be undesirable for a release pipeline.
Suggested change
There was a problem hiding this comment. This would probably work okay for nightly releases, but the cache configured this way uses a checksum of all pom files, which change for every release. There was a problem hiding this comment.
Not sure what the need of that even is, I think we're absolutely fine just using whatever is cached/available on runners, and this is just a way to slow things down without any added benefits There was a problem hiding this comment. Then let's remove it in the main workflow as well |
||||||||||||||||
| server-id: ossrh | ||||||||||||||||
| server-username: MAVEN_USERNAME | ||||||||||||||||
| server-password: MAVEN_PASSWORD | ||||||||||||||||
| gpg-private-key: ${{ secrets.GPG_PRIVATE_KEY }} | ||||||||||||||||
| gpg-passphrase: MAVEN_GPG_PASSPHRASE | ||||||||||||||||
|
|
||||||||||||||||
| - name: Deploy to Maven | ||||||||||||||||
| env: | ||||||||||||||||
| MAVEN_USERNAME: ${{ secrets.MVN_USERNAME }} | ||||||||||||||||
| MAVEN_PASSWORD: ${{ secrets.MVN_TOKEN }} | ||||||||||||||||
| MAVEN_GPG_PASSPHRASE: ${{ secrets.GPG_PASSPHRASE }} | ||||||||||||||||
| run: | | ||||||||||||||||
| mvn -nsu -B -Pgpg,jboss-release -DskipTests -DretryFailedDeploymentCount=10 -DautoReleaseAfterClose=false deploy | ||||||||||||||||
|
There was a problem hiding this comment. Can we write out the CLI arguments rather than using the shorthand? It makes it clear what it does at a glance without needing to read the manual.
Suggested change
There was a problem hiding this comment. We use this option all over the place, so changing this would make it inconsistent with every other workflow we have. There was a problem hiding this comment. Nothing wrong with that, it's not like folks will look at these command line arguments side by side. |
||||||||||||||||
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
We're using 21 for the other workflow, let's keep that aligned here, or downgrade the version 17 in both.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
We're using Java 17 to release Keycloak, and the release of client libraries should be consistent with that
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Then let's downgrade the CI workflow as well.