Merge pull request #3875 from aws-amplify/5d/appsync-auth-header #265
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Build, Test and Release | Unstable version | |
| on: | |
| push: | |
| branches: | |
| main | |
| permissions: | |
| id-token: write | |
| contents: write | |
| actions: write | |
| jobs: | |
| build-amplify-swift: | |
| name: Build Amplify package | |
| uses: ./.github/workflows/build_amplify_swift_platforms.yml | |
| with: | |
| identifier: 'workflow-call-build-amplify-swift' | |
| unit-tests: | |
| name: Run Plugins Unit Tests | |
| uses: ./.github/workflows/unit_test.yml | |
| with: | |
| identifier: 'workflow-call-unit-test' | |
| secrets: inherit | |
| fortify: | |
| name: Run Fortify Scan | |
| uses: ./.github/workflows/fortify_scan.yml | |
| secrets: inherit | |
| with: | |
| identifier: 'workflow-call-fortify' | |
| release: | |
| environment: Release | |
| name: Release new unstable version | |
| needs: [unit-tests, fortify, build-amplify-swift] | |
| runs-on: macos-latest | |
| env: | |
| GITHUB_EMAIL: aws-amplify-ops@amazon.com | |
| GITHUB_USER: aws-amplify-ops | |
| steps: | |
| - name: Configure AWS credentials | |
| uses: aws-actions/configure-aws-credentials@v4 | |
| with: | |
| role-to-assume: ${{ secrets.AWS_ROLE_TO_ASSUME }} | |
| role-session-name: ${{ format('{0}.release', github.run_id) }} | |
| aws-region: ${{ secrets.AWS_REGION }} | |
| - id: retrieve-token | |
| name: Retrieve Token | |
| env: | |
| DEPLOY_SECRET_ARN: ${{ secrets.DEPLOY_SECRET_ARN }} | |
| run: | | |
| PAT=$(aws secretsmanager get-secret-value \ | |
| --secret-id "$DEPLOY_SECRET_ARN" \ | |
| | jq -r ".SecretString | fromjson | .Credential") | |
| echo "token=$PAT" >> $GITHUB_OUTPUT | |
| - name: Checkout repo | |
| uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 #v4.1.1 | |
| with: | |
| fetch-depth: 100 | |
| token: ${{steps.retrieve-token.outputs.token}} | |
| - name: Setup Ruby | |
| uses: ruby/setup-ruby@22fdc77bf4148f810455b226c90fb81b5cbc00a7 # v1.171.0 | |
| with: | |
| ruby-version: '3.2.1' | |
| bundler-cache: true | |
| - name: Release Package | |
| run: bundle exec fastlane unstable |