vars.rs

  1use std::cell::RefCell;
  2
  3use gh_workflow::{Concurrency, Env, Expression};
  4
  5use crate::tasks::workflows::{runners::Platform, steps::NamedJob};
  6
  7macro_rules! secret {
  8    ($secret_name:ident) => {
  9        pub const $secret_name: &str = concat!("${{ secrets.", stringify!($secret_name), " }}");
 10    };
 11}
 12
 13macro_rules! var {
 14    ($secret_name:ident) => {
 15        pub const $secret_name: &str = concat!("${{ vars.", stringify!($secret_name), " }}");
 16    };
 17}
 18
 19secret!(ANTHROPIC_API_KEY);
 20secret!(APPLE_NOTARIZATION_ISSUER_ID);
 21secret!(APPLE_NOTARIZATION_KEY);
 22secret!(APPLE_NOTARIZATION_KEY_ID);
 23secret!(AZURE_SIGNING_CLIENT_ID);
 24secret!(AZURE_SIGNING_CLIENT_SECRET);
 25secret!(AZURE_SIGNING_TENANT_ID);
 26secret!(CACHIX_AUTH_TOKEN);
 27secret!(DIGITALOCEAN_SPACES_ACCESS_KEY);
 28secret!(DIGITALOCEAN_SPACES_SECRET_KEY);
 29secret!(GITHUB_TOKEN);
 30secret!(MACOS_CERTIFICATE);
 31secret!(MACOS_CERTIFICATE_PASSWORD);
 32secret!(SENTRY_AUTH_TOKEN);
 33secret!(ZED_CLIENT_CHECKSUM_SEED);
 34secret!(ZED_CLOUD_PROVIDER_ADDITIONAL_MODELS_JSON);
 35secret!(ZED_SENTRY_MINIDUMP_ENDPOINT);
 36secret!(SLACK_APP_ZED_UNIT_EVALS_BOT_TOKEN);
 37
 38// todo(ci) make these secrets too...
 39var!(AZURE_SIGNING_ACCOUNT_NAME);
 40var!(AZURE_SIGNING_CERT_PROFILE_NAME);
 41var!(AZURE_SIGNING_ENDPOINT);
 42
 43pub fn bundle_envs(platform: Platform) -> Env {
 44    let env = Env::default()
 45        .add("CARGO_INCREMENTAL", 0)
 46        .add("ZED_CLIENT_CHECKSUM_SEED", ZED_CLIENT_CHECKSUM_SEED)
 47        .add("ZED_MINIDUMP_ENDPOINT", ZED_SENTRY_MINIDUMP_ENDPOINT);
 48
 49    match platform {
 50        Platform::Linux => env,
 51        Platform::Mac => env
 52            .add("MACOS_CERTIFICATE", MACOS_CERTIFICATE)
 53            .add("MACOS_CERTIFICATE_PASSWORD", MACOS_CERTIFICATE_PASSWORD)
 54            .add("APPLE_NOTARIZATION_KEY", APPLE_NOTARIZATION_KEY)
 55            .add("APPLE_NOTARIZATION_KEY_ID", APPLE_NOTARIZATION_KEY_ID)
 56            .add("APPLE_NOTARIZATION_ISSUER_ID", APPLE_NOTARIZATION_ISSUER_ID),
 57        Platform::Windows => env
 58            .add("AZURE_TENANT_ID", AZURE_SIGNING_TENANT_ID)
 59            .add("AZURE_CLIENT_ID", AZURE_SIGNING_CLIENT_ID)
 60            .add("AZURE_CLIENT_SECRET", AZURE_SIGNING_CLIENT_SECRET)
 61            .add("ACCOUNT_NAME", AZURE_SIGNING_ACCOUNT_NAME)
 62            .add("CERT_PROFILE_NAME", AZURE_SIGNING_CERT_PROFILE_NAME)
 63            .add("ENDPOINT", AZURE_SIGNING_ENDPOINT)
 64            .add("FILE_DIGEST", "SHA256")
 65            .add("TIMESTAMP_DIGEST", "SHA256")
 66            .add("TIMESTAMP_SERVER", "http://timestamp.acs.microsoft.com"),
 67    }
 68}
 69
 70pub(crate) fn one_workflow_per_non_main_branch() -> Concurrency {
 71    Concurrency::default()
 72        .group("${{ github.workflow }}-${{ github.ref_name }}-${{ github.ref_name == 'main' && github.sha || 'anysha' }}")
 73        .cancel_in_progress(true)
 74}
 75
 76// Represents a pattern to check for changed files and corresponding output variable
 77pub(crate) struct PathCondition {
 78    pub name: &'static str,
 79    pub pattern: &'static str,
 80    pub invert: bool,
 81    pub set_by_step: RefCell<Option<String>>,
 82}
 83impl PathCondition {
 84    pub fn new(name: &'static str, pattern: &'static str) -> Self {
 85        Self {
 86            name,
 87            pattern,
 88            invert: false,
 89            set_by_step: Default::default(),
 90        }
 91    }
 92    pub fn inverted(name: &'static str, pattern: &'static str) -> Self {
 93        Self {
 94            name,
 95            pattern,
 96            invert: true,
 97            set_by_step: Default::default(),
 98        }
 99    }
100    pub fn guard(&self, job: NamedJob) -> NamedJob {
101        let set_by_step = self
102            .set_by_step
103            .borrow()
104            .clone()
105            .unwrap_or_else(|| panic!("condition {},is never set", self.name));
106        NamedJob {
107            name: job.name,
108            job: job
109                .job
110                .add_needs(set_by_step.clone())
111                .cond(Expression::new(format!(
112                    "needs.{}.outputs.{} == 'true'",
113                    &set_by_step, self.name
114                ))),
115        }
116    }
117}
118
119pub mod assets {
120    // NOTE: these asset names also exist in the zed.dev codebase.
121    pub const MAC_AARCH64: &str = "Zed-aarch64.dmg";
122    pub const MAC_X86_64: &str = "Zed-x86_64.dmg";
123    pub const LINUX_AARCH64: &str = "zed-linux-aarch64.tar.gz";
124    pub const LINUX_X86_64: &str = "zed-linux-x86_64.tar.gz";
125    pub const WINDOWS_X86_64: &str = "Zed-x86_64.exe";
126    pub const WINDOWS_AARCH64: &str = "Zed-aarch64.exe";
127
128    pub const REMOTE_SERVER_MAC_AARCH64: &str = "zed-remote-server-macos-aarch64.gz";
129    pub const REMOTE_SERVER_MAC_X86_64: &str = "zed-remote-server-macos-x86_64.gz";
130    pub const REMOTE_SERVER_LINUX_AARCH64: &str = "zed-remote-server-linux-aarch64.gz";
131    pub const REMOTE_SERVER_LINUX_X86_64: &str = "zed-remote-server-linux-x86_64.gz";
132
133    pub fn all() -> Vec<&'static str> {
134        vec![
135            MAC_AARCH64,
136            MAC_X86_64,
137            LINUX_AARCH64,
138            LINUX_X86_64,
139            WINDOWS_X86_64,
140            WINDOWS_AARCH64,
141            REMOTE_SERVER_MAC_AARCH64,
142            REMOTE_SERVER_MAC_X86_64,
143            REMOTE_SERVER_LINUX_AARCH64,
144            REMOTE_SERVER_LINUX_X86_64,
145        ]
146    }
147}