-
Notifications
You must be signed in to change notification settings - Fork 92
163 lines (139 loc) · 5.65 KB
/
smoke-tests.yml
File metadata and controls
163 lines (139 loc) · 5.65 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
# Copyright (c) Microsoft Corporation.
# Licensed under the MIT License.
# This workflow runs live/smoke sanity tests
name: smoke-tests
on:
workflow_dispatch:
push:
branches: ["main"]
pull_request_target:
branches: ["main"]
concurrency:
group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }}
cancel-in-progress: true
permissions:
pull-requests: read
contents: read
id-token: write
env:
NODE_OPTIONS: --max_old_space_size=8192
# DEBUG: pw:browser* # PlayWright debug messages
# ELECTRON_ENABLE_LOGGING: true # Electron debug messages
# DEBUG: typeagent:* # TypeAgent debug messages
jobs:
shell_and_cli:
#environment: ${{ github.event_name == 'pull_request_target' && 'development-fork' || 'development' }} # required for federated credentials
environment: development-fork
strategy:
fail-fast: false
matrix:
os: ["ubuntu-latest", "windows-latest"]
version: [22]
runs-on: ${{ matrix.os }}
steps:
# The following two steps (permissions checks) ensure that only users with write access can run this workflow on a PR (except trusted bots)
# PRs from forks we check the permissions of the user that triggered the workflow (github.triggering_actor)
# This means that if a user without write access opens a PR from a fork, they cannot run this workflow
# Users with write access can still run this workflow on a PR from a fork
# For PRs from the same repo, we allow the workflow to run as normal
- name: Get User Permission
if: ${{ github.event_name == 'pull_request_target' && !contains('github-merge-queue[bot],typeagent-bot[bot]', github.triggering_actor) }}
id: checkAccess
uses: actions-cool/check-user-permission@v2
with:
require: write
username: ${{ github.triggering_actor }}
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
- name: Check User Permission
if: ${{ github.event_name == 'pull_request_target' && !contains('github-merge-queue[bot],typeagent-bot[bot]', github.triggering_actor) && steps.checkAccess.outputs.require-result == 'false' }}
run: |
echo "${{ github.triggering_actor }} does not have permissions on this repo."
echo "Current permission level is ${{ steps.checkAccess.outputs.user-permission }}"
echo "Job originally triggered by ${{ github.actor }}"
exit 1
- if: runner.os == 'Linux'
run: |
sudo apt install libsecret-1-0
- name: Setup Git LF
run: |
git config --global core.autocrlf false
- name: Checkout code
uses: actions/checkout@v4
with:
ref: ${{ github.event.pull_request.head.sha }}
- uses: dorny/paths-filter@v3
id: filter
continue-on-error: true
with:
filters: |
ts:
- "ts/**"
- ".github/workflows/smoke-tests.yml"
- uses: pnpm/action-setup@v4
if: ${{ steps.filter.outputs.ts != 'false' }}
name: Install pnpm
with:
package_json_file: ts/package.json
- uses: actions/setup-node@v4
if: ${{ steps.filter.outputs.ts != 'false' }}
with:
node-version: ${{ matrix.version }}
cache: "pnpm"
cache-dependency-path: ts/pnpm-lock.yaml
- name: Install dependencies
if: ${{ steps.filter.outputs.ts != 'false' }}
working-directory: ts
run: |
pnpm install --frozen-lockfile --strict-peer-dependencies
- name: Install Playwright Browsers
if: ${{ steps.filter.outputs.ts != 'false' }}
run: pnpm exec playwright install --with-deps
working-directory: ts/packages/shell
- name: Build
if: ${{ steps.filter.outputs.ts != 'false' }}
working-directory: ts
run: |
npm run build
- name: Login to Azure
if: ${{ steps.filter.outputs.ts != 'false' }}
uses: azure/login@v2.2.0
with:
client-id: ${{ secrets.AZUREAPPSERVICE_CLIENTID_5B0D2D6BA40F4710B45721D2112356DD }}
tenant-id: ${{ secrets.AZUREAPPSERVICE_TENANTID_39BB903136F14B6EAD8F53A8AB78E3AA }}
subscription-id: ${{ secrets.AZUREAPPSERVICE_SUBSCRIPTIONID_F36C1F2C4B2C49CA8DD5C52FAB98FA30 }}
- name: Get Keys
if: ${{ steps.filter.outputs.ts != 'false' }}
run: |
node tools/scripts/getKeys.mjs --vault build-pipeline-kv
working-directory: ts
- name: Test CLI - smoke
if: ${{ steps.filter.outputs.ts != 'false' }}
run: |
npm run start:dev 'prompt' 'why is the sky blue'
working-directory: ts/packages/cli
- name: Shell Tests - full (windows)
if: ${{ steps.filter.outputs.ts != 'false' && runner.os == 'windows'}}
timeout-minutes: 60
run: |
npm run shell:test
working-directory: ts/packages/shell
- name: Shell Tests - smoke (linux)
if: ${{ steps.filter.outputs.ts != 'false' && runner.os == 'Linux' }}
timeout-minutes: 60
run: |
Xvfb :99 -screen 0 1600x1200x24 & export DISPLAY=:99
npm run shell:smoke
working-directory: ts/packages/shell
- name: Live Tests (Linux)
if: ${{ steps.filter.outputs.ts != 'false' && runner.os == 'Linux' }}
timeout-minutes: 60
run: |
npm run test:live
working-directory: ts
continue-on-error: true
- name: Clean up Keys
run: |
node -e "try{require('fs').unlinkSync('./.env');}catch(e){}"
working-directory: ts
if: always()