# This workflow tests packaging of Fleet-osquery with the
# `fleetctl package` command. It fetches the targets: orbit,
# osquery and fleet-desktop from the default (Fleet's) TUF server,
# https://tuf.fleetctl.com.
name: Test packaging

on:
  push:
    branches:
      - main
      - patch-*
  pull_request:
    paths:
      - 'cmd/fleetctl/**.go'
      - 'pkg/**.go'
      - 'server/service/**.go'
      - 'server/context/**.go'
      - 'orbit/**.go'
      - 'ee/fleetctl/**.go'
      - 'tools/fleetctl-docker/**'
      - 'tools/wix-docker/**'
      - 'tools/bomutils-docker/**'
      - '.github/workflows/test-packaging.yml'
  workflow_dispatch: # Manual

# This allows a subsequently queued workflow run to interrupt previous runs
concurrency:
  group: ${{ github.workflow }}-${{ github.head_ref || github.run_id}}
  cancel-in-progress: true

defaults:
  run:
    # fail-fast using bash -eo pipefail. See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#exit-codes-and-error-action-preference
    shell: bash

permissions:
  contents: read

jobs:
  test-packaging:
    strategy:
      fail-fast: false
      matrix:
        os: [ubuntu-latest, macos-latest]
        go-version: ['^1.19.8']
    runs-on: ${{ matrix.os }}

    steps:

    # Docker needs to be installed manually on macOS.
    # From https://github.com/docker/for-mac/issues/2359#issuecomment-943131345
    # FIXME: lock Docker version to 4.10.0 as newer versions fail to initialize
    - name: Install Docker
      timeout-minutes: 20
      if: matrix.os == 'macos-latest'
      run: |
        curl -L https://raw.githubusercontent.com/Homebrew/homebrew-cask/c65030146a5cf2070c2499b6c68e2c3495c99731/Casks/docker.rb > docker.rb
        brew install --cask docker.rb
        sudo /Applications/Docker.app/Contents/MacOS/Docker --unattended --install-privileged-components
        open -a /Applications/Docker.app --args --unattended --accept-license
        echo "Waiting for Docker to start up..."
        while ! /Applications/Docker.app/Contents/Resources/bin/docker info &>/dev/null; do
          sleep 1;
        done
        echo "Docker is ready."

    - name: Pull fleetdm/wix
      # Run in background while other steps complete to speed up the workflow
      run: docker pull fleetdm/wix:latest &

    - name: Install Go
      uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f # v2
      with:
        go-version: ${{ matrix.go-version }}

    - name: Checkout Code
      uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v2

    # It seems faster not to cache Go dependencies
    - name: Install Go Dependencies
      run: make deps-go

    - name: Build fleetctl
      run: make fleetctl

    - name: Build DEB
      run: ./build/fleetctl package --type deb --enroll-secret=foo --fleet-url=https://localhost:8080

    - name: Build DEB with Fleet Desktop
      run: ./build/fleetctl package --type deb --enroll-secret=foo --fleet-url=https://localhost:8080 --fleet-desktop

    - name: Build RPM
      run: ./build/fleetctl package --type rpm --enroll-secret=foo --fleet-url=https://localhost:8080

    - name: Build RPM with Fleet Desktop
      run: ./build/fleetctl package --type rpm --enroll-secret=foo --fleet-url=https://localhost:8080 --fleet-desktop

    - name: Build MSI
      run: ./build/fleetctl package --type msi --enroll-secret=foo --fleet-url=https://localhost:8080

    - name: Build MSI with Fleet Desktop
      run: ./build/fleetctl package --type msi --enroll-secret=foo --fleet-url=https://localhost:8080 --fleet-desktop

    - name: Build PKG
      run: ./build/fleetctl package --type pkg --enroll-secret=foo --fleet-url=https://localhost:8080

    - name: Build PKG with Fleet Desktop
      run: ./build/fleetctl package --type pkg --enroll-secret=foo --fleet-url=https://localhost:8080 --fleet-desktop