logo

pleroma

My custom branche(s) on git.pleroma.social/pleroma/pleroma git clone https://anongit.hacktivis.me/git/pleroma.git/

.gitlab-ci.yml (15907B)

    

  1. image: git.pleroma.social:5050/pleroma/pleroma/ci-base:elixir-1.14.5-otp-25
  3. variables: &global_variables
  4.   # Only used for the release
  5.   ELIXIR_VER: 1.17.3
  6.   POSTGRES_DB: pleroma_test
  7.   POSTGRES_USER: postgres
  8.   POSTGRES_PASSWORD: postgres
  9.   DB_HOST: postgres
  10.   DB_PORT: "5432"
  11.   MIX_ENV: test
  12.   GIT_STRATEGY: fetch
  14. workflow:
  15.   rules:
  16.     - if: $CI_PIPELINE_SOURCE == "merge_request_event"
  17.     - if: $CI_COMMIT_BRANCH && $CI_OPEN_MERGE_REQUESTS
  18.       when: never
  19.     - if: $CI_COMMIT_BRANCH
  21. cache: &global_cache_policy
  22.   key: $CI_JOB_IMAGE-$CI_COMMIT_SHORT_SHA
  23.   paths:
  24.     - deps
  25.     - _build
  27. stages:
  28.   - build
  29.   - lint
  30.   - test
  31.   - check-changelog
  32.   - benchmark
  33.   - deploy
  34.   - release
  35.   - docker
  36.   - docker-combine
  38. before_script:
  39.   - echo $MIX_ENV
  40.   - rm -rf _build/*/lib/pleroma
  41.   - mix deps.get
  43. after_script:
  44.   - rm -rf _build/*/lib/pleroma
  46. check-changelog:
  47.   stage: check-changelog
  48.   image: alpine
  49.   rules:
  50.     - if: $CI_MERGE_REQUEST_SOURCE_PROJECT_PATH == 'pleroma/pleroma' && $CI_MERGE_REQUEST_SOURCE_BRANCH_NAME == 'weblate-extract'
  51.       when: never
  52.     - if: $CI_MERGE_REQUEST_SOURCE_PROJECT_PATH == 'pleroma/pleroma' && $CI_MERGE_REQUEST_SOURCE_BRANCH_NAME == 'weblate'
  53.       when: never
  54.     - if: $CI_MERGE_REQUEST_TARGET_BRANCH_NAME == "develop"
  55.   before_script: ''
  56.   after_script: ''
  57.   cache: {}
  58.   script:
  59.     - apk add git
  60.     - sh ./tools/check-changelog
  62. .build_changes_policy:
  63.   rules:
  64.     - changes:
  65.         - ".gitlab-ci.yml"
  66.         - "**/*.ex"
  67.         - "**/*.exs"
  68.         - "mix.lock"
  70. .using-ci-base:
  71.   tags:
  72.     - amd64
  74. build-1.14.5-otp-25:
  75.   extends:
  76.   - .build_changes_policy
  77.   - .using-ci-base
  78.   stage: build
  79.   script:
  80.   - mix compile --force
  82. build-1.17.1-otp-26:
  83.   extends:
  84.   - .build_changes_policy
  85.   - .using-ci-base
  86.   stage: build
  87.   image: git.pleroma.social:5050/pleroma/pleroma/ci-base:elixir-1.17.1-otp-26
  88.   script:
  89.   - mix compile --force
  91. spec-build:
  92.   extends:
  93.   - .using-ci-base
  94.   stage: build
  95.   rules:
  96.     - changes:
  97.         - ".gitlab-ci.yml"
  98.         - "lib/pleroma/web/api_spec/**/*.ex"
  99.         - "lib/pleroma/web/api_spec.ex"
  100.   artifacts:
  101.     paths:
  102.     - spec.json
  103.   script:
  104.   - mix pleroma.openapi_spec spec.json
  106. benchmark:
  107.   extends:
  108.   - .using-ci-base
  109.   stage: benchmark
  110.   when: manual
  111.   variables:
  112.     MIX_ENV: benchmark
  113.   services:
  114.   - name: postgres:11.22-alpine
  115.     alias: postgres
  116.     command: ["postgres", "-c", "fsync=off", "-c", "synchronous_commit=off", "-c", "full_page_writes=off"]
  117.   script:
  118.     - mix ecto.create
  119.     - mix ecto.migrate
  120.     - mix pleroma.load_testing
  122. unit-testing-1.14.5-otp-25:
  123.   extends:
  124.   - .build_changes_policy
  125.   - .using-ci-base
  126.   stage: test
  127.   cache: &testing_cache_policy
  128.     <<: *global_cache_policy
  129.     policy: pull
  130.   services: &testing_services
  131.   - name: postgres:13-alpine
  132.     alias: postgres
  133.     command: ["postgres", "-c", "fsync=off", "-c", "synchronous_commit=off", "-c", "full_page_writes=off"]
  134.   script: &testing_script
  135.     - mix ecto.create
  136.     - mix ecto.migrate
  137.     - mix pleroma.test_runner --cover --preload-modules
  138.   coverage: '/^Line total: ([^ ]*%)$/'
  139.   artifacts:
  140.     reports:
  141.       coverage_report:
  142.         coverage_format: cobertura
  143.         path: coverage.xml
  145. unit-testing-1.17.1-otp-26:
  146.   extends:
  147.   - .build_changes_policy
  148.   - .using-ci-base
  149.   stage: test
  150.   image: git.pleroma.social:5050/pleroma/pleroma/ci-base:elixir-1.17.1-otp-26
  151.   cache: *testing_cache_policy
  152.   services: *testing_services
  153.   script: *testing_script
  155. formatting-1.15:
  156.   extends: .build_changes_policy
  157.   image: &formatting_elixir elixir:1.15-alpine
  158.   stage: lint
  159.   cache: *testing_cache_policy
  160.   before_script: &current_bfr_script
  161.     - apk update
  162.     - apk add build-base cmake file-dev git openssl
  163.     - mix local.hex --force
  164.     - mix local.rebar --force
  165.     - mix deps.get
  166.   script:
  167.     - mix format --check-formatted
  169. cycles-1.15:
  170.   extends: .build_changes_policy
  171.   image: *formatting_elixir
  172.   stage: lint
  173.   cache: {}
  174.   before_script: *current_bfr_script
  175.   script:
  176.     - mix compile
  177.     - mix xref graph --format cycles --label compile | awk '{print $0} END{exit ($0 != "No cycles found")}'
  179. analysis:
  180.   extends:
  181.   - .build_changes_policy
  182.   - .using-ci-base
  183.   stage: lint
  184.   cache: *testing_cache_policy
  185.   script:
  186.     - mix credo --strict --only=warnings,todo,fixme,consistency,readability
  188. dialyzer:
  189.   extends:
  190.   - .build_changes_policy
  191.   - .using-ci-base
  192.   stage: lint
  193.   allow_failure: true
  194.   when: manual 
  195.   cache: *testing_cache_policy
  196.   tags:
  197.     - feld
  198.   script:
  199.     - mix dialyzer
  201. docs-deploy:
  202.   stage: deploy
  203.   cache: *testing_cache_policy
  204.   image: alpine:latest
  205.   only:
  206.   - stable@pleroma/pleroma
  207.   - develop@pleroma/pleroma
  208.   before_script:
  209.   - apk add curl
  210.   script:
  211.   - curl --fail-with-body -X POST -F"token=$CI_JOB_TOKEN" -F'ref=master' -F"variables[BRANCH]=$CI_COMMIT_REF_NAME" https://git.pleroma.social/api/v4/projects/673/trigger/pipeline
  212. review_app:
  213.   image: alpine:3.9
  214.   stage: deploy
  215.   before_script:
  216.     - apk update && apk add openssh-client git
  217.   when: manual
  218.   environment:
  219.     name: review/$CI_COMMIT_REF_NAME
  220.     url: https://$CI_ENVIRONMENT_SLUG.pleroma.online/
  221.     on_stop: stop_review_app
  222.   only:
  223.     - branches
  224.   except:
  225.     - master
  226.     - develop
  227.   script:
  228.     - echo "$CI_ENVIRONMENT_SLUG"
  229.     - mkdir -p ~/.ssh
  230.     - eval $(ssh-agent -s)
  231.     - echo "$SSH_PRIVATE_KEY" | tr -d '\r' | ssh-add -
  232.     - ssh-keyscan -H "pleroma.online" >> ~/.ssh/known_hosts
  233.     - (ssh -t dokku@pleroma.online -- apps:create "$CI_ENVIRONMENT_SLUG") || true
  234.     - (ssh -t dokku@pleroma.online -- git:set "$CI_ENVIRONMENT_SLUG" keep-git-dir true) || true
  235.     - ssh -t dokku@pleroma.online -- config:set "$CI_ENVIRONMENT_SLUG" APP_NAME="$CI_ENVIRONMENT_SLUG" APP_HOST="$CI_ENVIRONMENT_SLUG.pleroma.online" MIX_ENV=dokku
  236.     - (ssh -t dokku@pleroma.online -- postgres:create $(echo $CI_ENVIRONMENT_SLUG | sed -e 's/-/_/g')_db) || true
  237.     - (ssh -t dokku@pleroma.online -- postgres:link $(echo $CI_ENVIRONMENT_SLUG | sed -e 's/-/_/g')_db "$CI_ENVIRONMENT_SLUG") || true
  238.     - (ssh -t dokku@pleroma.online -- certs:add "$CI_ENVIRONMENT_SLUG" /home/dokku/server.crt /home/dokku/server.key) || true
  239.     - git push -f dokku@pleroma.online:$CI_ENVIRONMENT_SLUG $CI_COMMIT_SHA:refs/heads/master
  241. spec-deploy:
  242.   stage: deploy
  243.   artifacts:
  244.     paths:
  245.     - spec.json
  246.   only:
  247.     - develop@pleroma/pleroma
  248.   image: alpine:latest
  249.   before_script:
  250.     - apk add curl
  251.   script:
  252.     - curl --fail-with-body -X POST -F"token=$CI_JOB_TOKEN" -F'ref=master' -F"variables[BRANCH]=$CI_COMMIT_REF_NAME" -F"variables[JOB_REF]=$CI_JOB_ID" https://git.pleroma.social/api/v4/projects/1130/trigger/pipeline
  255. stop_review_app:
  256.   image: alpine:3.9
  257.   stage: deploy
  258.   before_script:
  259.     - apk update && apk add openssh-client git
  260.   when: manual
  261.   environment:
  262.     name: review/$CI_COMMIT_REF_NAME
  263.     action: stop
  264.   script:
  265.     - echo "$CI_ENVIRONMENT_SLUG"
  266.     - mkdir -p ~/.ssh
  267.     - eval $(ssh-agent -s)
  268.     - echo "$SSH_PRIVATE_KEY" | tr -d '\r' | ssh-add -
  269.     - ssh-keyscan -H "pleroma.online" >> ~/.ssh/known_hosts
  270.     - ssh -t dokku@pleroma.online -- --force apps:destroy "$CI_ENVIRONMENT_SLUG"
  271.     - ssh -t dokku@pleroma.online -- --force postgres:destroy $(echo $CI_ENVIRONMENT_SLUG | sed -e 's/-/_/g')_db
  273. amd64:
  274.   stage: release
  275.   image: 
  276.     name: hexpm/elixir-amd64:1.17.3-erlang-26.2.5.6-ubuntu-focal-20241011
  277.   only: &release-only
  278.   - stable@pleroma/pleroma
  279.   - develop@pleroma/pleroma
  280.   - /^maint/.*$/@pleroma/pleroma
  281.   - /^release/.*$/@pleroma/pleroma
  282.   tags:
  283.     - amd64
  284.   artifacts: &release-artifacts
  285.     name: "pleroma-$CI_COMMIT_REF_NAME-$CI_COMMIT_SHORT_SHA-$CI_JOB_NAME"
  286.     paths:
  287.       - release/*
  288.     # Ideally it would be never for master branch and with the next commit for develop,
  289.     # but Gitlab does not support neither `only` for artifacts
  290.     # nor setting it to never from .gitlab-ci.yml
  291.     # nor expiring with the next commit
  292.     expire_in: 42 yrs
  294.   cache: &release-cache
  295.     key: $CI_COMMIT_REF_NAME-$CI_JOB_NAME
  296.     paths:
  297.           - deps
  298.   variables: &release-variables
  299.     MIX_ENV: prod
  300.     VIX_COMPILATION_MODE: PLATFORM_PROVIDED_LIBVIPS
  301.     DEBIAN_FRONTEND: noninteractive
  302.   before_script: &before-release
  303.   - apt-get update && apt-get install -y cmake libmagic-dev libvips-dev erlang-dev git
  304.   - echo "import Config" > config/prod.secret.exs
  305.   - mix local.hex --force
  306.   - mix local.rebar --force
  307.   script: &release
  308.     - mix deps.get --only prod
  309.     - mkdir release
  310.     - export PLEROMA_BUILD_BRANCH=$CI_COMMIT_REF_NAME
  311.     - mix release --path release
  314. amd64-musl:
  315.   stage: release
  316.   artifacts: *release-artifacts
  317.   only: *release-only
  318.   image: 
  319.     name: hexpm/elixir-amd64:1.17.3-erlang-26.2.5.6-alpine-3.17.9
  320.   tags:
  321.     - amd64
  322.   cache: *release-cache
  323.   variables: *release-variables
  324.   before_script: &before-release-musl
  325.   - apk add git build-base cmake file-dev openssl vips-dev
  326.   - echo "import Config" > config/prod.secret.exs
  327.   - mix local.hex --force
  328.   - mix local.rebar --force
  329.   script: *release
  331. arm:
  332.   stage: release
  333.   allow_failure: true
  334.   artifacts: *release-artifacts
  335.   only: *release-only
  336.   tags:
  337.     - arm32-specified
  338.   image: arm32v7/elixir:$ELIXIR_VER
  339.   cache: *release-cache
  340.   variables: *release-variables
  341.   before_script: *before-release
  342.   script: *release
  344. arm-musl:
  345.   stage: release
  346.   artifacts: *release-artifacts
  347.   only: *release-only
  348.   tags:
  349.     - arm32-specified
  350.   image: arm32v7/elixir:$ELIXIR_VER-alpine
  351.   cache: *release-cache
  352.   variables: *release-variables
  353.   before_script: *before-release-musl
  354.   script: *release
  356. arm64:
  357.   stage: release
  358.   artifacts: *release-artifacts
  359.   only: *release-only
  360.   tags:
  361.     - arm
  362.   image: 
  363.     name: hexpm/elixir-arm64:1.17.3-erlang-26.2.5.6-ubuntu-focal-20241011
  364.   cache: *release-cache
  365.   variables: *release-variables
  366.   before_script: *before-release
  367.   script: *release
  369. arm64-musl:
  370.   stage: release
  371.   artifacts: *release-artifacts
  372.   only: *release-only
  373.   tags:
  374.     - arm
  375.   image: 
  376.     name: hexpm/elixir-arm64:1.17.3-erlang-26.2.5.6-alpine-3.17.9
  377.   cache: *release-cache
  378.   variables: *release-variables
  379.   before_script: *before-release-musl
  380.   script: *release
  382. .kaniko:
  383.   stage: docker
  384.   image:
  385.     name: gcr.io/kaniko-project/executor:debug
  386.     entrypoint: [""]
  387.   cache: {}
  388.   dependencies: []
  389.   before_script: &before-kaniko
  390.     - export CI_JOB_TIMESTAMP=$(date --utc -Iseconds)
  391.     - export CI_VCS_REF=$CI_COMMIT_SHORT_SHA
  392.     - export IMAGE_TAG=$CI_REGISTRY_IMAGE/$BUILD_ARCH_IMG_SUFFIX:$CI_COMMIT_SHORT_SHA
  393.     - export IMAGE_TAG_SLUG=$CI_REGISTRY_IMAGE/$BUILD_ARCH_IMG_SUFFIX:$CI_COMMIT_REF_SLUG
  394.     - export IMAGE_TAG_LATEST=$CI_REGISTRY_IMAGE/$BUILD_ARCH_IMG_SUFFIX:latest
  395.     - export IMAGE_TAG_LATEST_STABLE=$CI_REGISTRY_IMAGE/$BUILD_ARCH_IMG_SUFFIX:latest-stable
  396.     - mkdir -p /kaniko/.docker
  397.     - echo "{\"auths\":{\"$CI_REGISTRY\":{\"username\":\"$CI_REGISTRY_USER\",\"password\":\"$CI_REGISTRY_PASSWORD\"}}}" > /kaniko/.docker/config.json
  399. .kaniko-latest:
  400.   extends: .kaniko
  401.   only:
  402.     - develop@pleroma/pleroma
  403.   script:
  404.     - /kaniko/executor --context $CI_PROJECT_DIR --dockerfile $CI_PROJECT_DIR/Dockerfile --custom-platform=$BUILD_ARCH --build-arg VCS_REF=$CI_VCS_REF --build-arg BUILD_DATE=$CI_JOB_TIMESTAMP --build-arg ELIXIR_IMG=$ELIXIR_IMG --destination $IMAGE_TAG --destination $IMAGE_TAG_SLUG --destination $IMAGE_TAG_LATEST
  406. .kaniko-stable:
  407.   extends: .kaniko
  408.   only:
  409.     - stable@pleroma/pleroma
  410.   script:
  411.     - /kaniko/executor --context $CI_PROJECT_DIR --dockerfile $CI_PROJECT_DIR/Dockerfile --custom-platform=$BUILD_ARCH --build-arg VCS_REF=$CI_VCS_REF --build-arg BUILD_DATE=$CI_JOB_TIMESTAMP --build-arg ELIXIR_IMG=$ELIXIR_IMG --destination $IMAGE_TAG --destination $IMAGE_TAG_SLUG --destination $IMAGE_TAG_LATEST_STABLE
  413. .kaniko-release:
  414.   extends: .kaniko
  415.   only:
  416.     - /^release/.*$/@pleroma/pleroma
  417.   script:
  418.     - /kaniko/executor --context $CI_PROJECT_DIR --dockerfile $CI_PROJECT_DIR/Dockerfile --custom-platform=$BUILD_ARCH --build-arg VCS_REF=$CI_VCS_REF --build-arg BUILD_DATE=$CI_JOB_TIMESTAMP --build-arg ELIXIR_IMG=$ELIXIR_IMG --destination $IMAGE_TAG --destination $IMAGE_TAG_SLUG
  420. .kaniko-adhoc:
  421.   extends: .kaniko
  422.   only:
  423.     - /^build-docker/.*$/@pleroma/pleroma
  424.   script:
  425.     - /kaniko/executor --context $CI_PROJECT_DIR --dockerfile $CI_PROJECT_DIR/Dockerfile --custom-platform=$BUILD_ARCH --build-arg VCS_REF=$CI_VCS_REF --build-arg BUILD_DATE=$CI_JOB_TIMESTAMP --build-arg ELIXIR_IMG=$ELIXIR_IMG --destination $IMAGE_TAG --destination $IMAGE_TAG_SLUG
  427. .kaniko:linux/amd64:
  428.   variables:
  429.     BUILD_ARCH: linux/amd64
  430.     BUILD_ARCH_IMG_SUFFIX: linux-amd64
  431.     ELIXIR_IMG: hexpm/elixir
  432.   tags:
  433.     - amd64
  435. .kaniko:linux/arm64:
  436.   variables:
  437.     BUILD_ARCH: linux/arm64/v8
  438.     BUILD_ARCH_IMG_SUFFIX: linux-arm64-v8
  439.     ELIXIR_IMG: hexpm/elixir
  440.   tags:
  441.     - arm
  443. .kaniko:linux/arm:
  444.   variables:
  445.     BUILD_ARCH: linux/arm/v7
  446.     BUILD_ARCH_IMG_SUFFIX: linux-arm-v7
  447.     ELIXIR_IMG: git.pleroma.social:5050/pleroma/ci-image/elixir-linux-arm-v7
  448.   tags:
  449.     - arm32-specified
  451. kaniko-latest:linux/amd64:
  452.   extends:
  453.     - .kaniko-latest
  454.     - .kaniko:linux/amd64
  456. kaniko-latest:linux/arm64:
  457.   extends:
  458.     - .kaniko-latest
  459.     - .kaniko:linux/arm64
  461. kaniko-latest:linux/arm:
  462.   extends:
  463.     - .kaniko-latest
  464.     - .kaniko:linux/arm
  466. kaniko-stable:linux/amd64:
  467.   extends:
  468.     - .kaniko-stable
  469.     - .kaniko:linux/amd64
  471. kaniko-stable:linux/arm64:
  472.   extends:
  473.     - .kaniko-stable
  474.     - .kaniko:linux/arm64
  476. kaniko-stable:linux/arm:
  477.   extends:
  478.     - .kaniko-stable
  479.     - .kaniko:linux/arm
  481. kaniko-release:linux/amd64:
  482.   extends:
  483.     - .kaniko-release
  484.     - .kaniko:linux/amd64
  486. kaniko-release:linux/arm64:
  487.   extends:
  488.     - .kaniko-release
  489.     - .kaniko:linux/arm64
  491. kaniko-release:linux/arm:
  492.   extends:
  493.     - .kaniko-release
  494.     - .kaniko:linux/arm
  496. .docker-combine:
  497.   stage: docker-combine
  498.   image: docker:cli
  499.   cache: {}
  500.   before_script:
  501.     - 'BUILD_ARCHES="linux-amd64 linux-arm64-v8 linux-arm-v7"'
  502.     - export IMAGE_TAG=$CI_REGISTRY_IMAGE:$CI_COMMIT_SHORT_SHA
  503.     - export IMAGE_TAG_SLUG=$CI_REGISTRY_IMAGE:$CI_COMMIT_REF_SLUG
  504.     - export IMAGE_TAG_LATEST=$CI_REGISTRY_IMAGE:latest
  505.     - export IMAGE_TAG_LATEST_STABLE=$CI_REGISTRY_IMAGE:latest-stable
  506.     - 'IMAGES=; for arch in $BUILD_ARCHES; do IMAGES="$IMAGES $CI_REGISTRY_IMAGE/$arch:$CI_COMMIT_SHORT_SHA"; done'
  507.     - 'IMAGES_SLUG=; for arch in $BUILD_ARCHES; do IMAGES_SLUG="$IMAGES_SLUG $CI_REGISTRY_IMAGE/$arch:$CI_COMMIT_REF_SLUG"; done'
  508.     - 'IMAGES_LATEST=; for arch in $BUILD_ARCHES; do IMAGES_LATEST="$IMAGES_LATEST $CI_REGISTRY_IMAGE/$arch:latest"; done'
  509.     - 'IMAGES_LATEST_STABLE=; for arch in $BUILD_ARCHES; do IMAGES_LATEST_STABLE="$IMAGES_LATEST_STABLE $CI_REGISTRY_IMAGE/$arch:latest"; done'
  510.     - mkdir -p ~/.docker
  511.     - echo "{\"auths\":{\"$CI_REGISTRY\":{\"username\":\"$CI_REGISTRY_USER\",\"password\":\"$CI_REGISTRY_PASSWORD\"}}}" > ~/.docker/config.json
  513. docker-combine:latest:
  514.   extends: .docker-combine
  515.   only:
  516.     - develop@pleroma/pleroma
  517.   script:
  518.     - 'docker manifest create $IMAGE_TAG $IMAGES'
  519.     - 'docker manifest push $IMAGE_TAG'
  520.     - 'docker manifest create $IMAGE_TAG_SLUG $IMAGES_SLUG'
  521.     - 'docker manifest push $IMAGE_TAG_SLUG'
  522.     - 'docker manifest create $IMAGE_TAG_LATEST $IMAGES_LATEST'
  523.     - 'docker manifest push $IMAGE_TAG_LATEST'
  525. docker-combine:stable:
  526.   extends: .docker-combine
  527.   only:
  528.     - stable@pleroma/pleroma
  529.   script:
  530.     - 'docker manifest create $IMAGE_TAG $IMAGES'
  531.     - 'docker manifest push $IMAGE_TAG'
  532.     - 'docker manifest create $IMAGE_TAG_SLUG $IMAGES_SLUG'
  533.     - 'docker manifest push $IMAGE_TAG_SLUG'
  534.     - 'docker manifest create $IMAGE_TAG_LATEST_STABLE $IMAGES_LATEST_STABLE'
  535.     - 'docker manifest push $IMAGE_TAG_LATEST_STABLE'
  537. docker-combine:release:
  538.   extends: .docker-combine
  539.   only:
  540.     - /^release/.*$/@pleroma/pleroma
  541.   script:
  542.     - 'docker manifest create $IMAGE_TAG $IMAGES'
  543.     - 'docker manifest push $IMAGE_TAG'
  544.     - 'docker manifest create $IMAGE_TAG_SLUG $IMAGES_SLUG'
  545.     - 'docker manifest push $IMAGE_TAG_SLUG'