Move management web security concerns to spring-security module #4473
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Build and Deploy Snapshot | |
| on: | |
| workflow_dispatch: | |
| push: | |
| branches: | |
| - 4.0.x-restructure | |
| concurrency: | |
| group: ${{ github.workflow }}-${{ github.ref }} | |
| jobs: | |
| build-and-deploy-snapshot: | |
| name: Build and Deploy Snapshot | |
| if: ${{ github.repository == 'spring-projects/spring-boot' || github.repository == 'spring-projects/spring-boot-commercial' }} | |
| runs-on: ${{ vars.UBUNTU_MEDIUM || 'ubuntu-latest' }} | |
| steps: | |
| - name: Check Out Code | |
| uses: actions/checkout@v4 | |
| - name: Build and Publish | |
| id: build-and-publish | |
| uses: ./.github/actions/build | |
| with: | |
| commercial-release-repository-url: ${{ vars.COMMERCIAL_RELEASE_REPO_URL }} | |
| commercial-repository-password: ${{ secrets.COMMERCIAL_ARTIFACTORY_RO_PASSWORD }} | |
| commercial-repository-username: ${{ secrets.COMMERCIAL_ARTIFACTORY_RO_USERNAME }} | |
| commercial-snapshot-repository-url: ${{ vars.COMMERCIAL_SNAPSHOT_REPO_URL }} | |
| develocity-access-key: ${{ secrets.DEVELOCITY_ACCESS_KEY }} | |
| gradle-cache-read-only: false | |
| publish: true | |
| - name: Deploy | |
| uses: spring-io/artifactory-deploy-action@dc1913008c0599f0c4b1fdafb6ff3c502b3565ea # v0.0.2 | |
| with: | |
| build-name: ${{ vars.COMMERCIAL && format('spring-boot-commercial-{0}', '4.0.x-restructure') || format('spring-boot-{0}', '4.0.x-restructure') }} | |
| folder: 'deployment-repository' | |
| password: ${{ vars.COMMERCIAL && secrets.COMMERCIAL_ARTIFACTORY_PASSWORD || secrets.ARTIFACTORY_PASSWORD }} | |
| project: ${{ vars.COMMERCIAL && 'spring' }} | |
| repository: ${{ vars.COMMERCIAL && 'spring-enterprise-maven-dev-local' || 'libs-snapshot-local' }} | |
| signing-key: ${{ secrets.GPG_PRIVATE_KEY }} | |
| signing-passphrase: ${{ secrets.GPG_PASSPHRASE }} | |
| uri: ${{ vars.COMMERCIAL_DEPLOY_REPO_URL || 'https://repo.spring.io' }} | |
| username: ${{ vars.COMMERCIAL && secrets.COMMERCIAL_ARTIFACTORY_USERNAME || secrets.ARTIFACTORY_USERNAME }} | |
| - name: Send Notification | |
| if: always() | |
| uses: ./.github/actions/send-notification | |
| with: | |
| build-scan-url: ${{ steps.build-and-publish.outputs.build-scan-url }} | |
| run-name: ${{ format('{0} | Linux | Java 17', github.ref_name) }} | |
| status: ${{ job.status }} | |
| webhook-url: ${{ secrets.GOOGLE_CHAT_WEBHOOK_URL }} | |
| outputs: | |
| version: ${{ steps.build-and-publish.outputs.version }} | |
| verify: | |
| name: Verify | |
| needs: build-and-deploy-snapshot | |
| uses: ./.github/workflows/verify.yml | |
| secrets: | |
| commercial-repository-password: ${{ secrets.COMMERCIAL_ARTIFACTORY_RO_PASSWORD }} | |
| commercial-repository-username: ${{ secrets.COMMERCIAL_ARTIFACTORY_RO_USERNAME }} | |
| google-chat-webhook-url: ${{ secrets.GOOGLE_CHAT_WEBHOOK_URL }} | |
| opensource-repository-password: ${{ secrets.ARTIFACTORY_PASSWORD }} | |
| opensource-repository-username: ${{ secrets.ARTIFACTORY_USERNAME }} | |
| token: ${{ secrets.GH_ACTIONS_REPO_TOKEN }} | |
| with: | |
| version: ${{ needs.build-and-deploy-snapshot.outputs.version }} |