Skip to content

ansible: Fix podman socket SELinux context on AWS #690

ansible: Fix podman socket SELinux context on AWS

ansible: Fix podman socket SELinux context on AWS #690

Workflow file for this run

name: tests
on: [pull_request]
jobs:
unit-tests:
runs-on: ubuntu-22.04
steps:
- name: Clone repository
uses: actions/checkout@v4
- name: Install dependencies
run: |
sudo apt-get update
sudo apt-get install -y make python3-pyflakes python3-pycodestyle python3-pip python3-pytest
# `pip install .[test]` does not work properly on Ubuntu 22.04
sudo pip install ruff mypy types-PyYAML
- name: Run lint tests
run: make check
tasks:
runs-on: ubuntu-22.04
permissions:
# enough permissions for tests-scan to work
pull-requests: read
statuses: write
timeout-minutes: 30
steps:
- name: Clone repository
uses: actions/checkout@v4
with:
# need this to get origin/main for git diff
fetch-depth: 0
- name: Rebase to current main
run: |
git config user.name github-actions
git config user.email [email protected]
git rebase origin/main
- name: Install test dependencies
run: |
sudo apt-get update
sudo apt-get install -y make python3-pytest
# HACK: Ubuntu 22.04 has podman 3.4, which isn't compatible with podman-remote 4 in our tasks container
# This PPA is a backport of podman 4.3 from Debian 12; drop this when moving `runs-on:` to ubuntu-24.04
- name: Update to newer podman
run: |
sudo add-apt-repository -y ppa:quarckster/containers
sudo apt install -y podman
systemctl --user daemon-reload
- name: Check which containers changed
id: containers_changed
run: |
tasks=$(git diff --name-only origin/main..HEAD -- tasks/container)
# print for debugging
echo "tasks: $tasks"
[ -z "$tasks" ] || echo "tasks=true" >> "$GITHUB_OUTPUT"
- name: Build tasks container if it changed
if: steps.containers_changed.outputs.tasks
run: make tasks-container
- name: Test local deployment
run: |
echo '${{ secrets.GITHUB_TOKEN }}' > github-token
PRN=$(echo "$GITHUB_REF" | cut -f3 -d '/')
python3 -m pytest -vv --pr $PRN --pr-repository '${{ github.repository }}' --github-token=github-token