fix(auth, workspace-invitation): enforce required subdomains #17865
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: CI Server | |
on: | |
push: | |
branches: | |
- main | |
pull_request: | |
concurrency: | |
group: ${{ github.workflow }}-${{ github.ref }} | |
cancel-in-progress: true | |
jobs: | |
server-setup: | |
timeout-minutes: 30 | |
runs-on: ubuntu-latest | |
env: | |
NX_REJECT_UNKNOWN_LOCAL_CACHE: 0 | |
services: | |
postgres: | |
image: twentycrm/twenty-postgres-spilo | |
env: | |
PGUSER_SUPERUSER: postgres | |
PGPASSWORD_SUPERUSER: postgres | |
ALLOW_NOSSL: "true" | |
SPILO_PROVIDER: "local" | |
ports: | |
- 5432:5432 | |
options: >- | |
--health-cmd pg_isready | |
--health-interval 10s | |
--health-timeout 5s | |
--health-retries 5 | |
redis: | |
image: redis | |
ports: | |
- 6379:6379 | |
steps: | |
- name: Fetch custom Github Actions and base branch history | |
uses: actions/checkout@v4 | |
with: | |
fetch-depth: 0 | |
- name: Check for changed files | |
id: changed-files | |
uses: tj-actions/changed-files@v11 | |
with: | |
files: | | |
package.json | |
packages/twenty-server/** | |
packages/twenty-emails/** | |
packages/twenty-shared/** | |
- name: Install dependencies | |
if: steps.changed-files.outputs.any_changed == 'true' | |
uses: ./.github/workflows/actions/yarn-install | |
- name: Build twenty-shared | |
if: steps.changed-files.outputs.any_changed == 'true' | |
run: npx nx build twenty-shared | |
- name: Server / Restore Task Cache | |
if: steps.changed-files.outputs.any_changed == 'true' | |
uses: ./.github/workflows/actions/task-cache | |
with: | |
tag: scope:backend | |
- name: Server / Run lint & typecheck | |
if: steps.changed-files.outputs.any_changed == 'true' | |
uses: ./.github/workflows/actions/nx-affected | |
with: | |
tag: scope:backend | |
tasks: lint,typecheck | |
- name: Server / Build | |
if: steps.changed-files.outputs.any_changed == 'true' | |
run: npx nx build twenty-server | |
- name: Server / Write .env | |
if: steps.changed-files.outputs.any_changed == 'true' | |
run: npx nx reset:env twenty-server | |
- name: Server / Create DB | |
if: steps.changed-files.outputs.any_changed == 'true' | |
run: | | |
PGPASSWORD=postgres psql -h localhost -p 5432 -U postgres -d postgres -c 'CREATE DATABASE "default";' | |
PGPASSWORD=postgres psql -h localhost -p 5432 -U postgres -d postgres -c 'CREATE DATABASE "test";' | |
npx nx run twenty-server:database:init:prod | |
npx nx run twenty-server:database:migrate:prod | |
- name: Worker / Run | |
if: steps.changed-files.outputs.any_changed == 'true' | |
run: npx nx run twenty-server:worker:ci | |
- name: Server / Check for Pending Migrations | |
if: steps.changed-files.outputs.any_changed == 'true' | |
run: | | |
METADATA_MIGRATION_OUTPUT=$(npx nx run twenty-server:typeorm migration:generate metadata-migration-check -d src/database/typeorm/metadata/metadata.datasource.ts || true) | |
CORE_MIGRATION_OUTPUT=$(npx nx run twenty-server:typeorm migration:generate core-migration-check -d src/database/typeorm/core/core.datasource.ts || true) | |
METADATA_MIGRATION_FILE=$(ls packages/twenty-server/*metadata-migration-check.ts 2>/dev/null || echo "") | |
CORE_MIGRATION_FILE=$(ls packages/twenty-server/*core-migration-check.ts 2>/dev/null || echo "") | |
if [ -n "$METADATA_MIGRATION_FILE" ] || [ -n "$CORE_MIGRATION_FILE" ]; then | |
echo "::error::Unexpected migration files were generated. Please create a proper migration manually." | |
echo "$METADATA_MIGRATION_OUTPUT" | |
echo "$CORE_MIGRATION_OUTPUT" | |
rm -f packages/twenty-server/*metadata-migration-check.ts packages/twenty-server/*core-migration-check.ts | |
exit 1 | |
fi | |
server-test: | |
timeout-minutes: 30 | |
runs-on: ubuntu-latest | |
needs: server-setup | |
env: | |
NX_REJECT_UNKNOWN_LOCAL_CACHE: 0 | |
steps: | |
- name: Fetch custom Github Actions and base branch history | |
uses: actions/checkout@v4 | |
with: | |
fetch-depth: 0 | |
- name: Check for changed files | |
id: changed-files | |
uses: tj-actions/changed-files@v11 | |
with: | |
files: | | |
package.json | |
packages/twenty-server/** | |
packages/twenty-emails/** | |
packages/twenty-shared/** | |
- name: Install dependencies | |
if: steps.changed-files.outputs.any_changed == 'true' | |
uses: ./.github/workflows/actions/yarn-install | |
- name: Server / Restore Task Cache | |
if: steps.changed-files.outputs.any_changed == 'true' | |
uses: ./.github/workflows/actions/task-cache | |
with: | |
tag: scope:backend | |
- name: Server / Run Tests | |
if: steps.changed-files.outputs.any_changed == 'true' | |
uses: ./.github/workflows/actions/nx-affected | |
with: | |
tag: scope:backend | |
tasks: test | |
server-integration-test: | |
timeout-minutes: 30 | |
runs-on: ubuntu-latest | |
needs: server-setup | |
services: | |
postgres: | |
image: twentycrm/twenty-postgres-spilo | |
env: | |
PGUSER_SUPERUSER: postgres | |
PGPASSWORD_SUPERUSER: postgres | |
ALLOW_NOSSL: "true" | |
SPILO_PROVIDER: "local" | |
ports: | |
- 5432:5432 | |
options: >- | |
--health-cmd pg_isready | |
--health-interval 10s | |
--health-timeout 5s | |
--health-retries 5 | |
redis: | |
image: redis | |
ports: | |
- 6379:6379 | |
env: | |
NX_REJECT_UNKNOWN_LOCAL_CACHE: 0 | |
steps: | |
- name: Fetch custom Github Actions and base branch history | |
uses: actions/checkout@v4 | |
with: | |
fetch-depth: 0 | |
- name: Check for changed files | |
id: changed-files | |
uses: tj-actions/changed-files@v11 | |
with: | |
files: | | |
package.json | |
packages/twenty-server/** | |
packages/twenty-emails/** | |
- name: Install dependencies | |
if: steps.changed-files.outputs.any_changed == 'true' | |
uses: ./.github/workflows/actions/yarn-install | |
- name: Server / Restore Task Cache | |
if: steps.changed-files.outputs.any_changed == 'true' | |
uses: ./.github/workflows/actions/task-cache | |
with: | |
tag: scope:backend | |
- name: Server / Run Integration Tests | |
if: steps.changed-files.outputs.any_changed == 'true' | |
uses: ./.github/workflows/actions/nx-affected | |
with: | |
tag: scope:backend | |
tasks: "test:integration:with-db-reset" | |
- name: Server / Upload reset-logs file | |
if: always() | |
uses: actions/upload-artifact@v4 | |
with: | |
name: reset-logs | |
path: reset-logs.log |