This repository has been archived by the owner on Oct 4, 2022. It is now read-only.
forked from auth0/passport-wsfed-saml2
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
1 changed file
with
62 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,62 @@ | ||
| name: Release | ||
| on: | ||
| push: | ||
| branches: | ||
| - master | ||
| jobs: | ||
| release: | ||
| name: Release | ||
| runs-on: ubuntu-18.04 | ||
| steps: | ||
| - name: Checkout | ||
| uses: actions/checkout@v2 | ||
| with: | ||
| fetch-depth: 0 | ||
| # Semantic Release uses a separate Github Token for publishing | ||
| # See: https://github.com/semantic-release/semantic-release/blob/master/docs/recipes/github-actions.md#pushing-packagejson-changes-to-a-master-branch | ||
| persist-credentials: false | ||
|
|
||
| - uses: mstachniuk/ci-skip@v1 | ||
| # Cancels the pipeline early if [ci skip] is detected in the commit header. | ||
| # For example, changelog commits from the Semantic Release toolchain will generate a commit with the [ci skip] in the header. | ||
| with: | ||
| fail-fast: true | ||
|
|
||
| - name: Configure CI Github User | ||
| run: | | ||
| git config --global user.name 'LabShare' | ||
| git config --global user.email '[email protected]' | ||
| env: | ||
| GH_TOKEN: ${{ secrets.GH_TOKEN }} | ||
|
|
||
| - name: Setup Node.js | ||
| # This step generates a local .npmrc file and adds the registry URL + :_authToken=${NODE_AUTH_TOKEN} | ||
| # if the "registry-url" option is set. See: https://github.com/actions/setup-node/blob/c46424eee26de4078d34105d3de3cc4992202b1e/src/main.ts#L44 | ||
| uses: actions/setup-node@v1 | ||
| with: | ||
| node-version: 14 | ||
| registry-url: https://registry.npmjs.org | ||
| always-auth: true | ||
| cache: 'npm' | ||
|
|
||
| - name: Install dependencies | ||
| # Skip post-install scripts here, as a malicious | ||
| # script could steal NODE_AUTH_TOKEN. | ||
| run: npm i --ignore-scripts | ||
| env: | ||
| # Use the read-only access NPM token here | ||
| NODE_AUTH_TOKEN: ${{secrets.NPM_INSTALL_TOKEN}} | ||
|
|
||
| - name: Build | ||
| # `npm rebuild` will run all those post-install scripts for us. | ||
| run: npm rebuild | ||
|
|
||
| - name: Release | ||
| # Semantic release's NPM plugin first checks if there's a .npmrc file that contains an NPM Token, otherwise it generates | ||
| # a local file based on the "NPM_TOKEN" environment variable. Since the GH action setup node step is already creating the .npmrc file, | ||
| # we can simply provide the publish token to the existing .npmrc file which expects an environment variable named "NODE_AUTH_TOKEN". | ||
| # See: https://github.com/semantic-release/npm/blob/87e82694652ce0dee71773d39d450645f0350074/lib/set-npmrc-auth.js#L27 | ||
| env: | ||
| GH_TOKEN: ${{ secrets.GH_TOKEN }} | ||
| NODE_AUTH_TOKEN: ${{ secrets.NPM_PUBLISH_TOKEN }} | ||
| run: npx semantic-release |