Initial commit

.github/workflows/backend/audit.yaml

@@ -0,0 +1,51 @@
+name: audit
+on:
+  workflow_call:
+  push:
+    branches-ignore:
+      - main
+    paths:
+      - "projects/backend/**"
+      - ".github/workflows/backend/**"
+  pull_request:
+    branches-ignore:
+      - main
+    paths:
+      - "projects/backend/**"
+      - ".github/workflows/backend/**"
+defaults:
+  run:
+    working-directory: projects/backend
+jobs:
+  audit:
+    name: Security Audit
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Setup PHP
+        uses: shivammathur/setup-php@v2
+        with:
+          php-version: 8.4
+          tools: composer:v2
+
+      - name: Setup cache
+        run: echo "COMPOSER_CACHE_DIR=$(composer config cache-dir)" >> $GITHUB_ENV
+
+      - name: Cache dependencies installed with composer
+        uses: actions/cache@v4
+        with:
+          path: ${{ env.COMPOSER_CACHE_DIR }}
+          key: php8.3-composer-${{ hashFiles('projects/backend/composer.lock') }}
+          restore-keys: |
+            php8.3-composer-latest-
+      - name: Update composer
+        run: composer self-update
+
+      - name: Install dependencies with composer
+        run: composer install --prefer-dist --no-interaction --no-progress --optimize-autoloader --ansi
+
+      - name: Security Audit with composer
+        run: composer audit
+        continue-on-error: true

.github/workflows/backend/deploy.yaml

@@ -0,0 +1,40 @@
+name: deploy
+on:
+  push:
+    branches:
+      - main
+    paths:
+      - "projects/backend/**"
+      - ".github/workflows/backend/**"
+jobs:
+  audit:
+    uses: ./.github/workflows/backend/audit.yaml
+  quality:
+    uses: ./.github/workflows/backend/quality.yaml
+  tests:
+    uses: ./.github/workflows/backend/tests.yaml
+    needs: [audit, quality]
+
+  deploy:
+    name: Deploy
+    needs: [tests]
+    runs-on: ubuntu-latest
+    steps:
+      -   name: execute ssh command
+          uses: appleboy/ssh-action@v1.2.0
+          with:
+            host: ${{ secrets.SSH_HOST }}
+            username: ${{ secrets.SSH_USER }}
+            key: ${{ secrets.SSH_KEY }}
+            port: ${{ secrets.SSH_PORT }}
+            script: |
+              cd /var/www/html/news.devscast.tech
+              git pull origin main --rebase
+              make deploy
+              curl -X POST "https://api.telegram.org/bot${{ secrets.DEVY_TOKEN }}/sendMessage" \
+                  -H "Content-Type: application/json" \
+                  -d '{
+                    "chat_id": "${{ secrets.DEVY_CHAT_ID }}",
+                    "text": "news.devscast.tech : `'"$(git rev-parse --short HEAD)"'` has been deployed! 🎉",
+                    "parse_mode": "Markdown"
+                  }'

.github/workflows/backend/quality.yaml

@@ -0,0 +1,51 @@
+name: quality
+on:
+  workflow_call:
+  push:
+    branches-ignore:
+      - main
+    paths:
+      - "projects/backend/**"
+      - ".github/workflows/backend/**"
+  pull_request:
+    branches-ignore:
+      - main
+    paths:
+      - "projects/backend/**"
+      - ".github/workflows/backend/**"
+
+defaults:
+  run:
+    working-directory: projects/backend
+jobs:
+  quality:
+    name: Quality
+    runs-on: ubuntu-latest
+    steps:
+      -   name: Checkout
+          uses: actions/checkout@v4
+
+      -   name: Setup PHP
+          uses: shivammathur/setup-php@v2
+          with:
+            php-version: 8.4
+            tools: composer:v2
+
+      -   name: Setup cache
+          run: echo "COMPOSER_CACHE_DIR=$(composer config cache-dir)" >> $GITHUB_ENV
+
+      -   name: Cache dependencies installed with composer
+          uses: actions/cache@v4
+          with:
+            path: ${{ env.COMPOSER_CACHE_DIR }}
+            key: php8.3-composer-${{ hashFiles('projects/backend/composer.lock') }}
+            restore-keys: |
+              php8.3-composer-latest-
+      -   name: Update composer
+          run: composer self-update
+
+      -   name: Install dependencies with composer
+          run: composer install --prefer-dist --no-interaction --no-progress --optimize-autoloader --ansi
+
+      -   name: Run code quality analysis
+          run: composer app:cs

.github/workflows/backend/tests.yaml

@@ -0,0 +1,67 @@
+name: tests
+on:
+  workflow_call:
+  push:
+    branches-ignore:
+      - main
+    paths:
+      - "projects/backend/**"
+      - ".github/workflows/backend/**"
+  pull_request:
+    branches-ignore:
+      - main
+    paths:
+      - "projects/backend/**"
+      - ".github/workflows/backend/**"
+jobs:
+  functional:
+    name: Functional Tests
+    runs-on: ubuntu-latest
+#    services:
+#      mysql:
+#        image: mariadb:10.11.11
+#        env:
+#          MYSQL_ALLOW_EMPTY_PASSWORD: false
+#          MYSQL_ROOT_PASSWORD: root
+#          MYSQL_DATABASE: root
+#        ports:
+#          - 3306/tcp
+#        options: --health-cmd="mysqladmin ping" --health-interval=10s --health-timeout=5s --health-retries=3
+    strategy:
+      matrix:
+        php: [8.4]
+      fail-fast: false
+    steps:
+      -   name: Checkout
+          uses: actions/checkout@v4
+
+      -   name: Setup PHP
+          uses: shivammathur/setup-php@v2
+          with:
+            php-version: ${{ matrix.php }}
+            tools: composer:v2
+
+      -   name: Setup cache
+          run: echo "COMPOSER_CACHE_DIR=$(composer config cache-dir)" >> $GITHUB_ENV
+
+      -   name: Cache dependencies installed with composer
+          uses: actions/cache@v4
+          with:
+            path: ${{ env.COMPOSER_CACHE_DIR }}
+            key: php${{ matrix.php }}-composer-${{ hashFiles('**/composer.json') }}
+            restore-keys: |
+              php${{ matrix.php }}-composer-latest-
+      -   name: Update composer
+          run: composer self-update
+
+      -   name: Install dependencies with composer
+          run: composer install --prefer-dist --no-interaction --no-progress --optimize-autoloader --ansi
+
+#      -   name: Setup mysql
+#          run: sudo systemctl start mysql
+
+      -   name: Run functional tests
+          run: composer app:test
+          env:
+            APP_ENV: test
+#            DATABASE_URL: mysql://root:root@127.0.0.1:${{ job.services.mysql.ports['3306'] }}/app_test