Commit Graph

147 Commits

Author SHA1 Message Date
Marcus Da Coregio 5955e89dff Merge branch '5.8.x' into 6.0.x
Closes gh-12299
2022-11-25 09:24:03 -03:00
Kirk Lin 9c6d90490d ci: fix GitHub Actions Deprecating save-state and set-output commands
Closes gh-12032
2022-11-25 09:05:28 -03:00
Dan Allen 3f2bade4f1
sync and refactor docs build
- upgrade Antora to 3.2.0-alpha.2
- remove Antora patch to support linked worktrees
- upgrade Antora Collector to latest alpha
- remove dispatch.sh script (handled by gh run workflow)
- consistently use gh run workflow to trigger workflows
- remove step to publish generated docs (no longer in use)
2022-11-23 17:47:26 -06:00
Dan Allen fe252f5057 sync docs build; upgrade Antora and Antora Collector to latest alpha 2022-11-21 17:26:51 -07:00
Rob Winch 968c0c2590 Merge commit '2063279d8973e0ab65e3a580080dfaf47d2ded3c' 2022-11-14 09:52:52 -06:00
Dan Allen 2063279d89 fix deploy docs workflow
- don't use environment variable reference in checkout action
2022-11-10 21:56:46 -06:00
Dan Allen b5bd52cb14 trigger partial docs build on push 2022-11-10 21:43:47 -06:00
Josh Cummings f2ddeaface
Merge remote-tracking branch 'origin/5.8.x' 2022-10-17 15:01:30 -06:00
Josh Cummings ff055cf07a
Remote antoraUpdateVersion task from CI 2022-10-17 14:24:13 -06:00
Marcus Da Coregio 3d92e22891 Merge branch '5.8.x' 2022-10-17 15:52:00 -03:00
Marcus Da Coregio 465d80c162 Remove antoreUpdateVersion task from release automation 2022-10-17 15:50:44 -03:00
Rob Winch 06c879b61a
Add Reference to Security Reporting 2022-10-06 21:33:21 -05:00
Marcus Da Coregio 5e4f1ba211 Merge branch '5.8.x'
Closes gh-11826
2022-09-16 10:19:32 -03:00
Marcus Da Coregio 7756247c3a Simplify checkSamples task
Closes gh-11814
2022-09-16 09:36:12 -03:00
Dan Allen b65b59d46c consolidate docs CI workflows in main branch
- repurpose Deploy Docs as scheduler
- repurpose Rebuild Search Index as scheduler
2022-09-12 17:36:30 -05:00
Dan Allen 3387149a0f repurpose 5.6.x branch to provide local docs build
* remove unused workflows, scripts, and configuration (now handled by docs-build branch)
* upgrade Antora to 3.1 (and Node.js to 16)
* tune playbook settings
* reconfigure docs build for local build only
* add patch to support using linked worktree as Antora content source
* remove Antora extensions not needed for local builds
2022-09-12 15:41:12 -05:00
Dan Allen d22ee32c7d reconfigure branch for local builds and as scheduler for docs workflows
- set up placeholder and trigger for Deploy Docs workflow in docs-build branch
- set up placeholder and trigger for Rebuild Search Index workflow in docs-build branch
- remove obsolete Deploy Reference workflow
- upgrade Antora to 3.1
- reconfigure docs build for local build only
- add patch to support using linked worktree as Antora content source
- remove Antora extensions only needed for the production docs build
2022-09-09 12:57:00 -05:00
Rob Winch 924c80a224 Merge branch '5.8.x' 2022-08-23 13:50:29 -05:00
Rob Winch 8c69699458 Remove backportbot.yml
Issue gh-11736
2022-08-23 13:46:32 -05:00
Steve Riesenberg 02459919cc
Skip workflows on forks of spring-security 2022-07-28 15:13:56 -05:00
Steve Riesenberg 57d212ddca
Use cache and user.name system property on Windows 2022-07-28 15:13:55 -05:00
Steve Riesenberg 539b17f6da
Only run prerequisites job if on upstream repo 2022-07-28 15:13:54 -05:00
Steve Riesenberg 37e1ad27fe
Simplify dependency graph 2022-07-28 15:13:53 -05:00
Steve Riesenberg 043fdd6f03
Use Spring Gradle Build Action
Closes gh-11630
2022-07-28 15:13:52 -05:00
Steve Riesenberg 3234e05085
Polish gh-11367 2022-07-28 15:13:51 -05:00
naveen f957e3c051
Set permissions for GitHub actions
Restrict the GitHub token permissions only to the required ones; this
way, even if the attackers will succeed in compromising your workflow,
they won’t be able to do much.

- Included permissions for the action.

https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests
https://securitylab.github.com/research/github-actions-preventing-pwn-requests/

Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>

Closes gh-11367
2022-07-28 15:13:51 -05:00
Steve Riesenberg 9d248c7185
Skip workflows on forks of spring-security 2022-07-28 14:17:42 -05:00
Steve Riesenberg 865bf23ecc
Use cache and user.name system property on Windows 2022-07-28 13:00:15 -05:00
Steve Riesenberg f86d30f4a1
Only run prerequisites job if on upstream repo 2022-07-27 16:01:16 -05:00
Steve Riesenberg dc59d12405
Simplify dependency graph 2022-07-27 16:01:15 -05:00
Steve Riesenberg bdeb32854e
Use Spring Gradle Build Action
Closes gh-11630
2022-07-27 16:01:15 -05:00
Steve Riesenberg 3f4efedd23
Polish gh-11367 2022-07-26 15:33:34 -05:00
naveen 8f93a7fc94
Set permissions for GitHub actions
Restrict the GitHub token permissions only to the required ones; this
way, even if the attackers will succeed in compromising your workflow,
they won’t be able to do much.

- Included permissions for the action.

https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests
https://securitylab.github.com/research/github-actions-preventing-pwn-requests/

Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>
2022-07-26 15:33:33 -05:00
Steve Riesenberg aaf20e7b61
Build only on branches
Issue gh-11480
2022-07-18 11:47:25 -05:00
Steve Riesenberg 148756076c
Backport release automation and github actions
Closes gh-11501
2022-07-13 15:51:25 -05:00
Steve Riesenberg 92d4f1237d
Use JDK 17 for Antora
Issue gh-11430
Issue gh-11324
2022-07-13 14:11:31 -05:00
Steve Riesenberg 095f23d81f
Fix slack notifications in #spring-security-ci
Issue gh-11346
2022-07-05 17:50:27 -05:00
Marcus Da Coregio c4a55b90e3 Antora generate workflow use JDK 17
Closes gh-11430
2022-06-22 15:21:29 -03:00
Steve Riesenberg ac98e358a5 Add slack announcement when release is successful
Closes gh-11307
2022-06-14 14:10:09 -05:00
Steve Riesenberg d1cb236df5
Fix slack notifications in #spring-security-ci
This change can be reverted if upgrading to a new version of
Gamesight/slack-workflow-status with the fix available (> 1.1.0).

Closes gh-11346
2022-06-07 16:07:10 -05:00
Rob Winch 592db9180d Enable BackportBot on 5.6.x 2022-06-06 14:16:28 -05:00
Steve Riesenberg 07f28de79b
Polish gh-11184
Propagate rename in notify_result section.
2022-06-03 15:23:48 -05:00
Steve Riesenberg 46723a601c Add workflow step for scheduling the next milestone
This step introduces the concept of a release train to determine the appropriate release dates and schedules milestones as needed. It uses the following rules:

- If the current SNAPSHOT version is a minor release (patchVersion == 0), checks to see if a GA release exists. If not, a release train is scheduled as follows:
  - Finds the next available release train starting month (including this month), either January or July.
  - Schedules a release train with M1, M2, M3, RC1 and GA versions on either January/February/March/April/May or July/August/September/October/November
- If the current SNAPSHOT version is a patch release (patchVersion != 0), checks to see if a GA release exists. If not, an individual milestone is scheduled on the next even month whose release day is in the future (can include this month).
- In either case, the release day used to schedule the release is based on the configured weekOfMonth (1-4) and dayOfWeek (1-5), e.g. 3rd Monday of the month (3, 1).

If a milestone already exists, nothing is created. Once created, milestone due dates can be updated manually as desired.

Closes gh-10458
2022-06-03 15:07:42 -05:00
Steve Riesenberg ad19fc1330 Add workflow for scheduling releases on maintenance branches
Closes gh-11180
2022-06-03 10:19:02 -05:00
Rob Winch 96caecc639
Disable pull request for backport-bot.yml 2022-06-02 11:00:46 -05:00
Rob Winch a10f707b6e
Fix spacing in backport-bot.yml 2022-06-01 16:46:54 -05:00
Rob Winch 1d4bf88a0f Cleanup backport-bot.yml
Issue gh-11313
2022-06-01 16:45:50 -05:00
Rob Winch b78a28be5f Add backport-bot.yml
Closes gh-11313
2022-05-31 21:42:56 -05:00
Steve Riesenberg 8e34b4c15e
Fix step id in conditional checks 2022-05-16 14:22:36 -05:00
Steve Riesenberg 8f4d003602
Revert "Add expression syntax to conditionals"
This reverts commit ea0b271a73.
2022-05-16 14:21:49 -05:00