go/secret
1
0
Fork 0
Code Issues Pull Requests Actions Releases Activity
Files
cb1393144ca68bb752bbf2e10f55124dab8b2d27
secret/.gitea/workflows/test.yaml
maze cb1393144c
All checks were successful
test / test-default (push) Successful in 24s
Details
Configure Vault test cases
2025-09-09 11:05:02 +02:00

72 lines
2.2 KiB
YAML
Raw Blame History

name: test
on:
push:
branches:
- main
jobs:
test-default:
runs-on: ubuntu-latest
container:
image: gitea/runner-images:ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Setup go
uses: actions/setup-go@v5
with:
go-version-file: 'go.mod'
- name: Setup Hashicorp Vault
run: |
wget -O - https://apt.releases.hashicorp.com/gpg | sudo gpg --dearmor -o /usr/share/keyrings/hashicorp-archive-keyring.gpg
echo "deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/hashicorp-archive-keyring.gpg] https://apt.releases.hashicorp.com $(grep -oP '(?<=UBUNTU_CODENAME=).*' /etc/os-release || lsb_release -cs) main" | sudo tee /etc/apt/sources.list.d/hashicorp.list
apt-get update && apt-get -y install vault
- name: Start Vault in background
run: |
# Start Vault server in background
vault server -dev -dev-root-token-id=root -dev-listen-address=0.0.0.0:8200 -dev-tls > vault.log 2>&1 &
VAULT_PID=$!
echo $VAULT_PID > vault.pid
# Self-signed certificate for dev server
export VAULT_SKIP_VERIFY=true
sleep 3
if ! vault status; then
echo "Vault failed to start. Logs ($(wc -l vault.log) lines):"
cat vault.log
exit 1
fi
echo "Vault started successfully with PID: $VAULT_PID"
# Populate our test secrets
vault kv put ${{vars.TEST_VAULT_KEY}} data="${{vars.TEST_VAULT_VALUE}}"
# Populate our test transit backend with key
vault secrets enable transit
vault write -f transit/keys/test
- name: Vet
run: go vet -v ./...
- name: Test
run: |
VAULT_SKIP_VERIFY=${{vars.VAULT_SKIP_VERIFY}} \
TEST_VAULT_VALUE="${{vars.TEST_VAULT_VALUE}}" \
TEST_VAULT_KEY="${{vars.TEST_VAULT_KEY}}" \
VAULT_TOKEN="root" \
go test -v ./...
- name: Stop Vault (always run)
if: always()
run: |
if [ -f vault.pid ]; then
kill $(cat vault.pid) 2>/dev/null || true
rm -f vault.pid
fi
Reference in New Issue View Git Blame Copy Permalink