|
|
|
|
@ -403,100 +403,11 @@ jobs:
@@ -403,100 +403,11 @@ jobs:
|
|
|
|
|
uses: bitwarden/gh-actions/azure-logout@main |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
update-lite-changelog: |
|
|
|
|
name: Update Bitwarden lite CHANGELOG |
|
|
|
|
runs-on: ubuntu-24.04 |
|
|
|
|
needs: update-versions |
|
|
|
|
env: |
|
|
|
|
_CORE_VERSION: ${{ needs.update-versions.outputs.core_release_tag }} |
|
|
|
|
permissions: |
|
|
|
|
contents: write |
|
|
|
|
id-token: write |
|
|
|
|
steps: |
|
|
|
|
- name: Log in to Azure |
|
|
|
|
uses: bitwarden/gh-actions/azure-login@main |
|
|
|
|
with: |
|
|
|
|
subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }} |
|
|
|
|
tenant_id: ${{ secrets.AZURE_TENANT_ID }} |
|
|
|
|
client_id: ${{ secrets.AZURE_CLIENT_ID }} |
|
|
|
|
|
|
|
|
|
- name: Get Azure Key Vault secrets |
|
|
|
|
id: get-kv-secrets |
|
|
|
|
uses: bitwarden/gh-actions/get-keyvault-secrets@main |
|
|
|
|
with: |
|
|
|
|
keyvault: gh-org-bitwarden |
|
|
|
|
secrets: "BW-GHAPP-ID,BW-GHAPP-KEY" |
|
|
|
|
|
|
|
|
|
- name: Log out from Azure |
|
|
|
|
uses: bitwarden/gh-actions/azure-logout@main |
|
|
|
|
|
|
|
|
|
- name: Generate GH App token |
|
|
|
|
uses: actions/create-github-app-token@0f859bf9e69e887678d5bbfbee594437cb440ffe # v2.1.0 |
|
|
|
|
id: app-token |
|
|
|
|
with: |
|
|
|
|
app-id: ${{ steps.get-kv-secrets.outputs.BW-GHAPP-ID }} |
|
|
|
|
private-key: ${{ steps.get-kv-secrets.outputs.BW-GHAPP-KEY }} |
|
|
|
|
permission-contents: write # for pushing commits |
|
|
|
|
|
|
|
|
|
- name: Checkout Branch |
|
|
|
|
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 |
|
|
|
|
with: |
|
|
|
|
ref: main |
|
|
|
|
token: ${{ steps.app-token.outputs.token }} |
|
|
|
|
persist-credentials: true |
|
|
|
|
|
|
|
|
|
- name: Update CHANGELOG.md |
|
|
|
|
run: | |
|
|
|
|
RELEASE_DATE=$(date +%Y-%m-%d) |
|
|
|
|
|
|
|
|
|
# Create temporary file with new content |
|
|
|
|
cat > /tmp/new_entry.txt << EOF |
|
|
|
|
|
|
|
|
|
## [$_CORE_VERSION] - $RELEASE_DATE |
|
|
|
|
|
|
|
|
|
### Release |
|
|
|
|
|
|
|
|
|
- Bitwarden lite $_CORE_VERSION release, aligned with Bitwarden Server core version $_CORE_VERSION |
|
|
|
|
EOF |
|
|
|
|
|
|
|
|
|
# Insert new release entry after the ## [Unreleased] line |
|
|
|
|
sed -i "/## \[Unreleased\]/r /tmp/new_entry.txt" bitwarden-lite/CHANGELOG.md |
|
|
|
|
rm /tmp/new_entry.txt |
|
|
|
|
|
|
|
|
|
- name: Check if changelog changed |
|
|
|
|
id: changelog-changed |
|
|
|
|
run: | |
|
|
|
|
if [ -n "$(git status --porcelain bitwarden-lite/CHANGELOG.md)" ]; then |
|
|
|
|
echo "changes_to_commit=true" >> "$GITHUB_OUTPUT" |
|
|
|
|
else |
|
|
|
|
echo "changes_to_commit=false" >> "$GITHUB_OUTPUT" |
|
|
|
|
echo "No changes to commit!"; |
|
|
|
|
fi |
|
|
|
|
|
|
|
|
|
- name: Configure Git |
|
|
|
|
if: ${{ steps.changelog-changed.outputs.changes_to_commit == 'true' }} |
|
|
|
|
run: | |
|
|
|
|
git config --local user.email "178206702+bw-ghapp[bot]@users.noreply.github.com" |
|
|
|
|
git config --local user.name "bw-ghapp[bot]" |
|
|
|
|
|
|
|
|
|
- name: Commit CHANGELOG.md |
|
|
|
|
if: ${{ steps.changelog-changed.outputs.changes_to_commit == 'true' }} |
|
|
|
|
run: git commit -m "Update Bitwarden lite CHANGELOG for $_CORE_VERSION" bitwarden-lite/CHANGELOG.md |
|
|
|
|
|
|
|
|
|
- name: Push changes |
|
|
|
|
if: ${{ steps.changelog-changed.outputs.changes_to_commit == 'true' }} |
|
|
|
|
run: | |
|
|
|
|
git push |
|
|
|
|
echo ":white_check_mark: Updated Bitwarden lite CHANGELOG for $_CORE_VERSION" >> "$GITHUB_STEP_SUMMARY" |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
release-bitwarden-lite: |
|
|
|
|
name: Release Bitwarden lite |
|
|
|
|
runs-on: ubuntu-24.04 |
|
|
|
|
timeout-minutes: 30 |
|
|
|
|
needs: |
|
|
|
|
- update-versions |
|
|
|
|
- update-lite-changelog |
|
|
|
|
needs: update-versions |
|
|
|
|
env: |
|
|
|
|
_CORE_VERSION: ${{ needs.update-versions.outputs.core_release_tag }} |
|
|
|
|
permissions: |
|
|
|
|
|
Vince Grassia
2 weeks ago