2424 CI_JOBS_ROLE : ${{ secrets.AWS_CI_JOBS_ROLE }}
2525 CI_FLEET_PROVISIONING_ROLE : ${{ secrets.AWS_CI_FLEET_PROVISIONING_ROLE }}
2626 CI_DEVICE_ADVISOR : ${{ secrets.AWS_CI_DEVICE_ADVISOR_ROLE }}
27+ CI_X509_ROLE : ${{ secrets.AWS_CI_X509_ROLE }}
2728 CI_MQTT5_ROLE : ${{ secrets.AWS_CI_MQTT5_ROLE }}
2829
2930jobs :
5253 ./linux-container-ci.sh ${{ env.BUILDER_VERSION }} aws-crt-${{ matrix.image }} build -p ${{ env.PACKAGE_NAME }}
5354# NOTE: we cannot run samples or DeviceAdvisor here due to container restrictions
5455
55-
5656 raspberry :
5757 runs-on : ubuntu-20.04 # latest
5858 strategy :
7676 aws s3 cp s3://aws-crt-test-stuff/ci/${{ env.BUILDER_VERSION }}/linux-container-ci.sh ./linux-container-ci.sh && chmod a+x ./linux-container-ci.sh
7777 ./linux-container-ci.sh ${{ env.BUILDER_VERSION }} aws-crt-${{ matrix.image }} build -p ${{ env.PACKAGE_NAME }}
7878
79-
8079windows :
8180 runs-on : windows-latest
8281 strategy :
@@ -123,18 +122,18 @@ jobs:
123122 aws-region : ${{ env.AWS_DEFAULT_REGION }}
124123 - name : run PubSub sample
125124 run : |
126- python ./utils/run_sample_ci.py --language Java --sample_file 'samples/BasicPubSub' --sample_region ${{ env.AWS_DEFAULT_REGION }} --sample_secret_endpoint 'ci/endpoint' --sample_secret_certificate 'ci/PubSub/cert' --sample_secret_private_key 'ci/PubSub/key' --sample_main_class 'pubsub.PubSub'
125+ python ./utils/run_sample_ci.py --file ./.github/workflows/ci_run_pubsub_cfg.json
127126name : run Windows Certificate Connect sample
128127 run : |
129- python ./utils/run_sample_ci.py --language Java --sample_file 'samples/WindowsCertConnect' --sample_region ${{ env.AWS_DEFAULT_REGION }} --sample_secret_endpoint 'ci/endpoint' --sample_secret_certificate 'ci/PubSub/cert' --sample_secret_private_key 'ci/PubSub/key' --sample_run_certutil true --sample_main_class 'windowscertconnect.WindowsCertConnect'
128+ python ./utils/run_sample_ci.py --file ./.github/workflows/ci_run_windows_cert_connect_cfg.json
130129name : configure AWS credentials (MQTT5)
131130 uses : aws-actions/configure-aws-credentials@v1
132131 with :
133132 role-to-assume : ${{ env.CI_MQTT5_ROLE }}
134133 aws-region : ${{ env.AWS_DEFAULT_REGION }}
135134 - name : run MQTT5 PubSub sample
136135 run : |
137- python ./utils/run_sample_ci.py --language Java --sample_file 'samples/Mqtt5/PubSub' --sample_region ${{ env.AWS_DEFAULT_REGION }} --sample_secret_endpoint 'ci/endpoint' --sample_secret_certificate 'ci/mqtt5/us/mqtt5_thing/cert' --sample_secret_private_key 'ci/mqtt5/us/mqtt5_thing/key' --sample_main_class 'mqtt5.pubsub.PubSub'
136+ python3 ./utils/run_sample_ci.py --file ./.github/workflows/ci_run_mqtt5_pubsub_cfg.json
138137name : configure AWS credentials (Device Advisor)
139138 uses : aws-actions/configure-aws-credentials@v1
140139 with :
@@ -190,15 +189,15 @@ jobs:
190189 aws-region : ${{ env.AWS_DEFAULT_REGION }}
191190 - name : run PubSub sample
192191 run : |
193- python3 ./utils/run_sample_ci.py --language Java --sample_file 'samples/BasicPubSub' --sample_region ${{ env.AWS_DEFAULT_REGION }} --sample_secret_endpoint 'ci/endpoint' --sample_secret_certificate 'ci/PubSub/cert' --sample_secret_private_key 'ci/PubSub/key' --sample_main_class 'pubsub.PubSub'
192+ python3 ./utils/run_sample_ci.py --file ./.github/workflows/ci_run_pubsub_cfg.json
194193name : configure AWS credentials (MQTT5)
195194 uses : aws-actions/configure-aws-credentials@v1
196195 with :
197196 role-to-assume : ${{ env.CI_MQTT5_ROLE }}
198197 aws-region : ${{ env.AWS_DEFAULT_REGION }}
199198 - name : run MQTT5 PubSub sample
200199 run : |
201- python3 ./utils/run_sample_ci.py --language Java --sample_file 'samples/Mqtt5/PubSub' --sample_region ${{ env.AWS_DEFAULT_REGION }} --sample_secret_endpoint 'ci/endpoint' --sample_secret_certificate 'ci/mqtt5/us/mqtt5_thing/cert' --sample_secret_private_key 'ci/mqtt5/us/mqtt5_thing/key' --sample_main_class 'mqtt5.pubsub.PubSub'
200+ python3 ./utils/run_sample_ci.py --file ./.github/workflows/ci_run_mqtt5_pubsub_cfg.json
202201name : configure AWS credentials (Device Advisor)
203202 uses : aws-actions/configure-aws-credentials@v1
204203 with :
@@ -253,15 +252,15 @@ jobs:
253252 aws-region : ${{ env.AWS_DEFAULT_REGION }}
254253 - name : run PubSub sample
255254 run : |
256- python3 ./utils/run_sample_ci.py --language Java --sample_file 'samples/BasicPubSub' --sample_region ${{ env.AWS_DEFAULT_REGION }} --sample_secret_endpoint 'ci/endpoint' --sample_secret_certificate 'ci/PubSub/cert' --sample_secret_private_key 'ci/PubSub/key' --sample_main_class 'pubsub.PubSub'
255+ python3 ./utils/run_sample_ci.py --file ./.github/workflows/ci_run_pubsub_cfg.json
257256name : configure AWS credentials (MQTT5)
258257 uses : aws-actions/configure-aws-credentials@v1
259258 with :
260259 role-to-assume : ${{ env.CI_MQTT5_ROLE }}
261260 aws-region : ${{ env.AWS_DEFAULT_REGION }}
262261 - name : run MQTT5 PubSub sample
263262 run : |
264- python3 ./utils/run_sample_ci.py --language Java --sample_file 'samples/Mqtt5/PubSub' --sample_region ${{ env.AWS_DEFAULT_REGION }} --sample_secret_endpoint 'ci/endpoint' --sample_secret_certificate 'ci/mqtt5/us/mqtt5_thing/cert' --sample_secret_private_key 'ci/mqtt5/us/mqtt5_thing/key' --sample_main_class 'mqtt5.pubsub.PubSub'
263+ python3 ./utils/run_sample_ci.py --file ./.github/workflows/ci_run_mqtt5_pubsub_cfg.json
265264name : configure AWS credentials (Device Advisor)
266265 uses : aws-actions/configure-aws-credentials@v1
267266 with :
@@ -336,55 +335,54 @@ jobs:
336335 aws-region : ${{ env.AWS_DEFAULT_REGION }}
337336 - name : run Basic Connect sample
338337 run : |
339- python3 ./utils/run_sample_ci.py --language Java --sample_file 'samples/BasicConnect' --sample_region ${{ env.AWS_DEFAULT_REGION }} --sample_secret_endpoint 'ci/endpoint' --sample_secret_certificate 'ci/PubSub/cert' --sample_secret_private_key 'ci/PubSub/key' --sample_main_class 'basicconnect.BasicConnect'
338+ python3 ./utils/run_sample_ci.py --file ./.github/workflows/ci_run_basic_connect_cfg.json
340339name : run Websocket Connect sample
341340 run : |
342- python3 ./utils/run_sample_ci.py --language Java --sample_file 'samples/WebsocketConnect' --sample_region ${{ env.AWS_DEFAULT_REGION }} --sample_secret_endpoint 'ci/endpoint' --sample_arguments '--signing_region us-east-1' --sample_main_class 'websocketconnect.WebsocketConnect'
341+ python3 ./utils/run_sample_ci.py --file ./.github/workflows/ci_run_websocket_connect_cfg.json
343342name : run PubSub sample
344343 run : |
345- python3 ./utils/run_sample_ci.py --language Java --sample_file 'samples/BasicPubSub' --sample_region ${{ env.AWS_DEFAULT_REGION }} --sample_secret_endpoint 'ci/endpoint' --sample_secret_certificate 'ci/PubSub/cert' --sample_secret_private_key 'ci/PubSub/key' --sample_main_class 'pubsub.PubSub'
344+ python3 ./utils/run_sample_ci.py --file ./.github/workflows/ci_run_pubsub_cfg.json
346345name : run CustomKeyOperations sample
347346 run : |
348- python3 ./utils/run_sample_ci.py --language Java --sample_file 'samples/CustomKeyOpsPubSub' --sample_region ${{ env.AWS_DEFAULT_REGION }} --sample_secret_endpoint 'ci/endpoint' --sample_secret_certificate 'ci/PubSub/cert' --sample_secret_private_key 'ci/PubSub/keyp8' --sample_main_class 'customkeyopspubsub.CustomKeyOpsPubSub'
347+ python3 ./utils/run_sample_ci.py --file ./.github/workflows/ci_run_custom_key_ops_cfg.json
349348name : run PKCS11 Connect sample
350349 run : |
351350 mkdir -p /tmp/tokens
352351 export SOFTHSM2_CONF=/tmp/softhsm2.conf
353352 echo "directories.tokendir = /tmp/tokens" > /tmp/softhsm2.conf
354- python3 ./utils/run_sample_ci.py --language Java --sample_file 'samples/Pkcs11Connect' --sample_region ${{ env.AWS_DEFAULT_REGION }} --sample_secret_endpoint 'ci/endpoint' --sample_secret_certificate 'ci/PubSub/cert' --sample_secret_private_key 'ci/PubSub/keyp8' --sample_run_softhsm 'true' --sample_arguments '--pkcs11_lib "/usr/lib/softhsm/libsofthsm2.so" --pin 0000 --token_label "my-token" --key_label "my-key"' --sample_main_class 'pkcs11connect.Pkcs11Connect'
353+ python3 ./utils/run_sample_ci.py --file ./.github/workflows/ci_run_pkcs11_connect_cfg.json
355354name : run Java keystore Connect sample
356355 run : |
357356 cert=$(aws secretsmanager get-secret-value --region us-east-1 --secret-id "ci/PubSub/cert" --query "SecretString" | cut -f2 -d":" | cut -f2 -d\") && echo -e "$cert" > /tmp/certificate.pem
358357 key=$(aws secretsmanager get-secret-value --region us-east-1 --secret-id "ci/PubSub/key" --query "SecretString" | cut -f2 -d":" | cut -f2 -d\") && echo -e "$key" > /tmp/privatekey.pem
359358 pkcs12_password=$(aws secretsmanager get-secret-value --region us-east-1 --secret-id "ci/PubSub/key_pkcs12_password" --query "SecretString" | cut -f2 -d":" | cut -f2 -d\")
360359 openssl pkcs12 -export -in /tmp/certificate.pem -inkey /tmp/privatekey.pem -out /tmp/pkcs12-key.p12 -name PubSub_Thing_Alias -password pass:$pkcs12_password
361-
362360 keytool -importkeystore -srckeystore /tmp/pkcs12-key.p12 -destkeystore ./java_keystore.keys -srcstoretype PKCS12 -alias PubSub_Thing_Alias -srcstorepass $pkcs12_password -deststorepass $pkcs12_password
363- python3 ./utils/run_sample_ci.py --language Java --sample_file 'samples/JavaKeystoreConnect' --sample_region ${{ env.AWS_DEFAULT_REGION }} --sample_secret_endpoint 'ci/endpoint' --sample_arguments "--keystore ./java_keystore.keys --keystore_password $pkcs12_password --certificate_alias PubSub_Thing_Alias --certificate_password $pkcs12_password" --sample_main_class 'javakeystoreconnect.JavaKeystoreConnect'
361+ python3 ./utils/run_sample_ci.py --file ./.github/workflows/ci_run_keystore_connect_cfg.json
364362name : configure AWS credentials (Custom Authorizer)
365363 uses : aws-actions/configure-aws-credentials@v1
366364 with :
367365 role-to-assume : ${{ env.CI_CUSTOM_AUTHORIZER_ROLE }}
368366 aws-region : ${{ env.AWS_DEFAULT_REGION }}
369367 - name : run CustomAuthorizerConnect sample
370368 run : |
371- python3 ./utils/run_sample_ci.py --language Java --sample_file 'samples/CustomAuthorizerConnect' --sample_region ${{ env.AWS_DEFAULT_REGION }} --sample_secret_endpoint 'ci/endpoint' --sample_secret_custom_authorizer_name 'ci/CustomAuthorizer/name' --sample_secret_custom_authorizer_password 'ci/CustomAuthorizer/password' --sample_main_class 'customauthorizerconnect.CustomAuthorizerConnect'
369+ python3 ./utils/run_sample_ci.py --file ./.github/workflows/ci_run_custom_authorizer_connect_cfg.json
372370name : configure AWS credentials (Shadow)
373371 uses : aws-actions/configure-aws-credentials@v1
374372 with :
375373 role-to-assume : ${{ env.CI_SHADOW_ROLE }}
376374 aws-region : ${{ env.AWS_DEFAULT_REGION }}
377375 - name : run Shadow sample
378376 run : |
379- python3 ./utils/run_sample_ci.py --language Java --sample_file 'samples/Shadow' --sample_region ${{ env.AWS_DEFAULT_REGION }} --sample_secret_endpoint 'ci/endpoint' --sample_secret_certificate 'ci/Shadow/cert' --sample_secret_private_key 'ci/Shadow/key' --sample_arguments '--thing_name CI_Shadow_Thing' --sample_main_class 'shadow.ShadowSample'
377+ python3 ./utils/run_sample_ci.py --file ./.github/workflows/ci_run_shadow_cfg.json
380378name : configure AWS credentials (Jobs)
381379 uses : aws-actions/configure-aws-credentials@v1
382380 with :
383381 role-to-assume : ${{ env.CI_JOBS_ROLE }}
384382 aws-region : ${{ env.AWS_DEFAULT_REGION }}
385383 - name : run Jobs sample
386384 run : |
387- python3 ./utils/run_sample_ci.py --language Java --sample_file 'samples/Jobs' --sample_region ${{ env.AWS_DEFAULT_REGION }} --sample_secret_endpoint 'ci/endpoint' --sample_secret_certificate 'ci/Jobs/cert' --sample_secret_private_key 'ci/Jobs/key' --sample_arguments '--thing_name CI_Jobs_Thing' --sample_main_class 'jobs.JobsSample'
385+ python3 ./utils/run_sample_ci.py --file ./.github/workflows/ci_run_jobs_cfg.json
388386name : configure AWS credentials (Fleet provisioning)
389387 uses : aws-actions/configure-aws-credentials@v1
390388 with :
@@ -394,13 +392,21 @@ jobs:
394392 run : |
395393 echo "Generating UUID for IoT thing"
396394 Sample_UUID=$(python3 -c "import uuid; print (uuid.uuid4())")
397- python3 ./utils/run_sample_ci.py --language Java --sample_file 'samples/Identity' --sample_region ${{ env.AWS_DEFAULT_REGION }} --sample_secret_endpoint 'ci/endpoint' --sample_secret_certificate 'ci/FleetProvisioning/cert' --sample_secret_private_key 'ci/FleetProvisioning/key' --sample_arguments "--template_name CI_FleetProvisioning_Template --template_parameters '{SerialNumber: ${Sample_UUID}}'" --sample_main_class 'identity.FleetProvisioningSample'
395+ python3 ./utils/run_sample_ci.py --file ./.github/workflows/ci_run_fleet_provisioning_cfg.json --input_uuid ${Sample_UUID}
398396 python3 utils/delete_iot_thing_ci.py --thing_name "Fleet_Thing_${Sample_UUID}" --region "us-east-1"
397+ name : configure AWS credentials (X509)
398+ uses : aws-actions/configure-aws-credentials@v1
399+ with :
400+ role-to-assume : ${{ env.CI_X509_ROLE }}
401+ aws-region : ${{ env.AWS_DEFAULT_REGION }}
402+ - name : run X509 sample
403+ run : |
404+ python3 ./utils/run_sample_ci.py --file ./.github/workflows/ci_run_x509_connect_cfg.json
399405name : configure AWS credentials (MQTT5)
400406 uses : aws-actions/configure-aws-credentials@v1
401407 with :
402408 role-to-assume : ${{ env.CI_MQTT5_ROLE }}
403409 aws-region : ${{ env.AWS_DEFAULT_REGION }}
404410 - name : run MQTT5 PubSub sample
405411 run : |
406- python3 ./utils/run_sample_ci.py --language Java --sample_file 'samples/Mqtt5/PubSub' --sample_region ${{ env.AWS_DEFAULT_REGION }} --sample_secret_endpoint 'ci/endpoint' --sample_secret_certificate 'ci/mqtt5/us/mqtt5_thing/cert' --sample_secret_private_key 'ci/mqtt5/us/mqtt5_thing/key' --sample_main_class 'mqtt5.pubsub.PubSub'
412+ python3 ./utils/run_sample_ci.py --file ./.github/workflows/ci_run_mqtt5_pubsub_cfg.json
0 commit comments