fix(bl): fix createbucketpolicy with download permission (#731) #1473
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Egress API Container | |
| on: | |
| pull_request: | |
| # Ignore PRs on branches specifically intended for other assets | |
| branches-ignore: | |
| - '*/egress-ui-container*' | |
| - '*/main-api-container*' | |
| - '*/main-ui-container*' | |
| - '*/tre-api-container*' | |
| - '*/tre-ui-container*' | |
| - '*/tre-hasura-container*' | |
| - '*/tre-sql-pg-container*' | |
| - '*/tre-sql-trino-container*' | |
| # Only consider PRs that change files for this asset, including ci scripts | |
| paths: | |
| - '.github/workflows/egress-api-container.yaml' | |
| - 'src/Data-Egress-API/**' | |
| - 'src/BL/**' | |
| # Make sure all workflows that are "required checks" for a given | |
| # branch protection rule have the same paths: and branches-ignore: | |
| # filters. Otherwise, you can end up in a deadlock waiting on a | |
| # required check that will never be executed. | |
| push: | |
| # Only release off of release and maintenance branches for this asset | |
| branches: | |
| - 'maintenance/egress-api-container/[0-9]+.x.x' | |
| - 'maintenance/egress-api-container/[0-9]+.[0-9]+.x' | |
| - 'main' | |
| # Only consider pushes that change files for this asset, including ci scripts | |
| paths: | |
| - '.github/workflows/egress-api-container.yaml' | |
| - 'src/Data-Egress-API/**' | |
| - 'src/BL/**' | |
| permissions: | |
| contents: write | |
| pull-requests: write | |
| actions: read | |
| concurrency: | |
| group: ${{ github.workflow }}-${{ github.ref }} | |
| # Needed to generate releases safely | |
| cancel-in-progress: false | |
| jobs: | |
| # Job name must be unique across repo to target | |
| # branch protection rules "required checks" properly! | |
| egress-api-container: | |
| uses: SwanseaUniversityMedical/workflows/.github/workflows/pr-and-release-container.yaml@v1.9.1-containers | |
| with: | |
| job-name: egress-api-container | |
| registry: ${{ vars.HARBOR_REGISTRY }} | |
| registry-user: ${{ vars.HARBOR_USER }} | |
| registry-repo: ${{ vars.HARBOR_PROJECT }}/${{ vars.HARBOR_REPO }}-egress-api | |
| release-tag-format: 'DARE-Egress-API-Container-${version}' | |
| release-branches: | | |
| [ | |
| 'maintenance/egress-api-container/[0-9]+\.([0-9]+|x)\.x', | |
| 'main' | |
| ]cosign-public-key: ${{ vars.COSIGN_PUBLIC_KEY }} | |
| slack-channel: ${{ vars.SLACK_CHANNEL }} | |
| build-file: src/Data-Egress-API/Dockerfile | |
| build-context: src | |
| secrets: | |
| cosign-private-key: ${{ secrets.COSIGN_PRIVATE_KEY }} | |
| cosign-password: ${{ secrets.COSIGN_PASSWORD }} | |
| registry-token: ${{ secrets.HARBOR_TOKEN }} | |
| slack-token: ${{ secrets.SLACK_TOKEN }} |