mirror of
https://github.com/dani-garcia/bw_web_builds.git
synced 2024-12-28 13:28:15 +03:00
79 lines
2.9 KiB
Bash
79 lines
2.9 KiB
Bash
|
#!/usr/bin/env bash
|
||
|
set -o pipefail -o errexit
|
||
|
|
||
|
# Error handling
|
||
|
handle_error() {
|
||
|
read -n1 -r -p "FAILED: line $1, exit code $2. Press any key to exit..." _
|
||
|
exit 1
|
||
|
}
|
||
|
trap 'handle_error $LINENO $?' ERR
|
||
|
|
||
|
if ! command -v gh >/dev/null 2>&1; then
|
||
|
echo "gh command not found, unable te prepare a release."
|
||
|
exit 1
|
||
|
fi
|
||
|
|
||
|
current_branch=$(git branch --show-current 2>/dev/null || git symbolic-ref --short HEAD 2>/dev/null)
|
||
|
if [[ -n "$current_branch" && "${current_branch}" != "master" ]]; then
|
||
|
echo "Current branch '$current_branch' is not the 'master' branch."
|
||
|
echo "Please checkout and pull the master branch before you continue."
|
||
|
exit 1
|
||
|
fi
|
||
|
|
||
|
if [[ -z "$GPG_SIGNING_USER" ]]; then
|
||
|
read -rp "Provide the GPG user or key which will sign the tar.gz file: " input
|
||
|
GPG_SIGNING_USER="${input}"
|
||
|
fi
|
||
|
|
||
|
if [[ -n "$GPG_SIGNING_USER" ]]; then
|
||
|
if ! gpg --list-keys "$GPG_SIGNING_USER" >/dev/null 2>&1; then
|
||
|
echo "GPG Key for '${GPG_SIGNING_USER}' not found."
|
||
|
exit 1
|
||
|
fi
|
||
|
fi
|
||
|
|
||
|
# Get the latest release tag, this should match the tag created with `gh-prepare`
|
||
|
LATEST_REMOTE_TAG="v$(git -c 'versionsort.suffix=-' ls-remote --tags --refs --sort='v:refname' https://github.com/dani-garcia/bw_web_builds.git 'v*' | tail -n1 | grep -Eo '[^\/v]*$')"
|
||
|
|
||
|
# Ask for release tag if not provided, or validate the `$LATEST_REMOTE_TAG`
|
||
|
if [[ -z "$RELEASE_TAG" ]]; then
|
||
|
read -rp "Provide git release tag (default: '${LATEST_REMOTE_TAG}'): " input
|
||
|
RELEASE_TAG="${input:-${LATEST_REMOTE_TAG}}"
|
||
|
fi
|
||
|
|
||
|
# Check if the RELEASE_TAG starts with vYYYY.M.B and patch letters are allowed like vYYYY.M.Ba
|
||
|
if [[ ! "${RELEASE_TAG}" =~ ^v20[0-9]{2}\.[0-9]{1,2}.[0-9]{1}[a-z]?$ ]]; then
|
||
|
echo "The provided release tag does not meet our standards!"
|
||
|
echo "'${RELEASE_TAG}' does not match the vYYYY.M.B format."
|
||
|
exit 1
|
||
|
fi
|
||
|
|
||
|
while true; do
|
||
|
read -rp "Using: '${RELEASE_TAG}' as tag, continue? (y/n): " yn
|
||
|
case $yn in
|
||
|
[Yy] )
|
||
|
# Continue with the release
|
||
|
break
|
||
|
;;
|
||
|
[Nn] )
|
||
|
echo "Aborting prepare"
|
||
|
exit 1
|
||
|
;;
|
||
|
* ) echo "Please answer y or n"
|
||
|
;;
|
||
|
esac
|
||
|
done
|
||
|
|
||
|
echo "Extracting tar.gz file from GitHub Container Registry"
|
||
|
${CONTAINER_CMD} create --name "bw_web_${RELEASE_TAG}" "ghcr.io/dani-garcia/bw_web_builds:${RELEASE_TAG}"
|
||
|
${CONTAINER_CMD} cp "bw_web_${RELEASE_TAG}:/bw_web_vault.tar.gz" "bw_web_${RELEASE_TAG}.tar.gz"
|
||
|
${CONTAINER_CMD} rm "bw_web_${RELEASE_TAG}"
|
||
|
|
||
|
if [[ -f "bw_web_${RELEASE_TAG}.tar.gz" ]]; then
|
||
|
gpg --yes --detach-sign --armor --local-user "$GPG_SIGNING_USER" --output "bw_web_${RELEASE_TAG}.tar.gz.asc" "bw_web_${RELEASE_TAG}.tar.gz"
|
||
|
sha256sum "bw_web_${RELEASE_TAG}.tar.gz"* | tee sha256sums.txt
|
||
|
|
||
|
gh release upload "${RELEASE_TAG}" "bw_web_${RELEASE_TAG}.tar.gz" "bw_web_${RELEASE_TAG}.tar.gz.asc" sha256sums.txt
|
||
|
gh release edit "${RELEASE_TAG}" --draft=false
|
||
|
fi
|