.github/workflows/release.yml

name: "Release"

on:
  workflow_dispatch:
    inputs:
      release:
        type: choice
        description: "Version as:"
        required: true
        options:
          - template
          - application

env:
  GITHUB_TOKEN: ${{ secrets.GH_TOKEN }}
  GITHUB_EMAIL: ${{ secrets.GH_EMAIL }}
  DOCKER_USER: ${{ secrets.DOCKER_USER }}
  DOCKER_PASSWORD: ${{ secrets.DOCKER_PASSWORD }}

jobs:
  setup:
    runs-on: ubuntu-latest
    strategy:
      matrix:
        node: [ '18.17.0' ]
    name: "Setup"
    steps:
      - name: "⚙ Set up Node.js v${{ matrix.node }}"
        uses: actions/setup-node@v3
        with:
          node-version: ${{ matrix.node }}

      - name: "✅ Checkout repository"
        uses: actions/checkout@v3

  release:
    runs-on: ubuntu-latest
    strategy:
      matrix:
        node: [ '18.17.0' ]
    name: "Release"
    needs: setup
    steps:
      - name: "⚙ Set up Node.js v${{ matrix.node }}"
        uses: actions/setup-node@v3
        with:
          node-version: ${{ matrix.node }}

      - name: "✅ Checkout repository"
        uses: actions/checkout@v3
        with:
          fetch-depth: 0

      - name: "💾 Restore Dependencies from cache"
        uses: actions/cache@v3
        with:
          path: |
            node_modules
            */*/node_modules
          key: ${{ runner.os }}-yarn-${{ hashFiles('**/yarn.lock') }}
          restore-keys: |
            ${{ runner.os }}-yarn-

      - name: "🦉 GitGuardian scan"
        uses: GitGuardian/ggshield-action@master
        env:
          GITHUB_PUSH_BEFORE_SHA: ${{ github.event.before }}
          GITHUB_PUSH_BASE_SHA: ${{ github.event.base }}
          GITHUB_PULL_BASE_SHA: ${{ github.event.pull_request.base.sha }}
          GITHUB_DEFAULT_BRANCH: ${{ github.event.repository.default_branch }}
          GITGUARDIAN_API_KEY: ${{ secrets.GITGUARDIAN_API_KEY }}

      - name: "📦 Install packages"
        run: yarn install

      - name: "💅 Lint"
        run: yarn lint

      - name: "🔨 Build"
        run: yarn build

      - name: "👨‍💻 Run Test"
        run: yarn test
        env:
          NODE_ENV: 'test'

      - name: "📊 Publish Test Report"
        uses: mikepenz/action-junit-report@v3
        if: always()
        with:
          report_paths: '**/junit.xml'

      - name: "📊 Upload coverage report to Codecov"
        uses: codecov/codecov-action@v1
        with:
          token: ${{ secrets.CODECOV_TOKEN }}

      - name: "📊 SonarCloud Scan"
        uses: SonarSource/sonarcloud-github-action@master
        with:
          args: >
            -Dsonar.organization=${{ github.repository_owner }}
            -Dsonar.projectKey=${{ github.repository_owner }}_${{ github.event.repository.name }}
            -Dsonar.projectName=${{ github.repository_owner }}_${{ github.event.repository.name }}
            -Dsonar.projectVersion=1.0
            -Dsonar.sourceEncoding=UTF-8
            -Dsonar.sources=./src
            -Dsonar.exclusions=**/*.bin,node_modules/**,test/**,**/__test__/**,**/__mocks__/**,src/main.ts
            -Dsonar.coverage.exclusions=node_modules/**,test/**,**/__test__/**,**/__mocks__/**,src/main.ts
            -Dsonar.testExecutionReportPaths=test-report.xml
            -Dsonar.javascript.lcov.reportPaths=./coverage/lcov.info
        env:
          GITHUB_TOKEN: ${{ secrets.GH_TOKEN }}
          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

      - name: "🏷️ Create Release"
        id: Release
        run: |
          git config --global user.name "GitHub CI/CD bot"
          git config --global user.email "${GITHUB_EMAIL}"
          if ${{github.event.inputs.release == 'template'}}; then
            yarn release --packageFiles 'version.txt' --bumpFiles 'version.txt'
          else
            yarn release
          fi
          git push --follow-tags origin master
          tag=$(git describe --tags $(git rev-list --tags --max-count=1))
          echo "tag=$tag" >> $GITHUB_OUTPUT

      - name: "📄 Create Changelog"
        uses: Bullrich/generate-release-changelog@master
        id: Changelog
        env:
          REPO: ${{ github.repository }}

      - name: "🚀 Publish Release"
        uses: actions/create-release@v1
        with:
          tag_name: "${{steps.Release.outputs.tag}}"
          release_name: "${{steps.Release.outputs.tag}}"
          body: |
            ${{ steps.Changelog.outputs.changelog }}
            
            ---
            
            > 💬 All notable changes to this project will be documented in [Changelog](${{ github.event.repository.html_url }}/blob/master/CHANGELOG.md) file.
          draft: false
          prerelease: false

      - name: "🔁 Rebase"
        run: |
          git remote set-url origin "https://github.com/${{ github.repository }}.git"
          git config --global user.name "GitHub CI/CD bot"
          git config --global user.email "${GITHUB_EMAIL}"
          git config pull.rebase true
          git fetch
          git checkout develop
          git pull
          git merge --no-ff -m "ci(rebase): merge master" origin/master
          git push -f

      - name: "🐳 Docker"
        run: |
          docker login -u ${DOCKER_USER} -p ${DOCKER_PASSWORD}
          docker build -t ${{ github.event.repository.name }} .
          docker tag ${{ github.event.repository.name }} ${DOCKER_USER}/${{ github.event.repository.name }}:${{ github.sha }}
          docker tag ${{ github.event.repository.name }} ${DOCKER_USER}/${{ github.event.repository.name }}:${{steps.Release.outputs.tag}}
          docker tag ${{ github.event.repository.name }} ${DOCKER_USER}/${{ github.event.repository.name }}:latest
          docker push ${DOCKER_USER}/${{ github.event.repository.name }}:${{ github.sha }}
          docker push ${DOCKER_USER}/${{ github.event.repository.name }}:${{steps.Release.outputs.tag}}  
          docker push ${DOCKER_USER}/${{ github.event.repository.name }}:latest