lail/ebs
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Compare commits

base: lail:52d7f2b3b9b12d7cfdd320fb978cac5a48cde4a8
Branches Tags
lail:main
..
compare: lail:786c9c1671667a47df8c59bcce9b8e64496a5e01
Branches Tags
lail:main

10 commits
52d7f2b3b9 ... 786c9c1671

Author SHA1 Message Date
grubshka
786c9c1671 fix: dockerfile yarn
Some checks failed
CD / Remove deploy label (push) Has been cancelled
Details
CD / Build (push) Has been cancelled
Details
CD / Deploy (push) Has been cancelled
Details
CI / Docker build (push) Has been cancelled
Details
2026-05-16 08:04:39 +02:00
Thomas SAMSON
c2b3d30640
Staging (#63) 
* Add/preprod (#61)

* Enable preprod and cd on pr

* Replace bitnami psql with CNPG

* Update env name

* Fix build

* fix CVE-2026-27135

* Fix main condition

* add cleanup

* purge old vars

* Set vars for build

* Add PG_PWD for CNPG

* Fix CVE for caddy

* Fix caddy build

* Fix environment name

* Fix namespace

* fix domain

* Add nonprod domain

* Fix sharded buffer

* Fix secret

* Revert secret

* grant creat db for fixture

---------

Co-authored-by: ThomasSamson <thomas@samson-pro.fr>

* Update storage bucket variables for production and nonprod

* fix nonprod trusted host

---------

Co-authored-by: ThomasSamson <thomas@samson-pro.fr>
 2026-05-05 13:32:03 +02:00
Paul Andrieux
a16da5a39a
Merge pull request #62 from Apes-HDF/chore/dependabot 
chore: ignore major version and add docker to dependabot analysis
 2026-05-05 09:57:53 +02:00
Léa BAR
1eb6f8e3f6
chore: ignore major version and add docker to dependabot analysis 2026-05-05 09:37:35 +02:00
Paul Andrieux
92ae3443ec
Merge pull request #57 from Apes-HDF/chore/54 
chore: fix C.I and C.D
 2026-05-04 15:22:58 +02:00
Thomas SAMSON
a4cd46a7a9
Merge pull request #58 from Apes-HDF/fix-cd-pr 
Disable CD on pr
 2026-05-04 15:15:34 +02:00
ThomasSamson
587b0f7ca1 Disable CD on pr 2026-05-04 11:06:00 +02:00
Léa BAR
75f70cc953
chore: the cd was broken because bitnami move postgresql 14 to bitnamilegacy repo 2026-04-30 15:24:49 +02:00
Léa BAR
068a41aaba
fix: fix php cs errors 2 2026-04-30 14:59:16 +02:00
Léa BAR
a5d9bbf45f
fix: fix php cs errors 2026-04-30 14:50:12 +02:00
23 changed files with 258 additions and 98 deletions
Show stats Expand all files Collapse all files

25
.github/dependabot.yml vendored
View file

@ -16,6 +16,10 @@ updates:
symfony: symfony:
patterns: patterns:
- "symfony/*" - "symfony/*"
ignore:
- dependency-name: "*"
update-types:
- "version-update:semver-major"
- package-ecosystem: "npm" - package-ecosystem: "npm"
@ -25,6 +29,10 @@ updates:
schedule: schedule:
interval: "weekly" interval: "weekly"
open-pull-requests-limit: 10 open-pull-requests-limit: 10
ignore:
- dependency-name: "*"
update-types:
- "version-update:semver-major"
- package-ecosystem: "github-actions" - package-ecosystem: "github-actions"
@ -34,3 +42,20 @@ updates:
schedule: schedule:
interval: "weekly" interval: "weekly"
open-pull-requests-limit: 5 open-pull-requests-limit: 5
ignore:
- dependency-name: "*"
update-types:
- "version-update:semver-major"
- package-ecosystem: "docker"
directory: "/"
commit-message:
prefix: "chore"
schedule:
interval: "weekly"
open-pull-requests-limit: 10
ignore:
- dependency-name: "*"
update-types:
- "version-update:semver-major"

2
.github/workflows/build.yml vendored
View file

@ -5,7 +5,6 @@ on:
jobs: jobs:
build-push-php: build-push-php:
environment: PROD
runs-on: ubuntu-latest runs-on: ubuntu-latest
timeout-minutes: 15 timeout-minutes: 15
steps: steps:
@ -19,7 +18,6 @@ jobs:
IMAGE_REPOSITORY: ${{ vars.IMAGE_REPO }} IMAGE_REPOSITORY: ${{ vars.IMAGE_REPO }}
build-push-caddy: build-push-caddy:
environment: PROD
# Same Dockerfile as php, with a build target which is after # Same Dockerfile as php, with a build target which is after
needs: [build-push-php] needs: [build-push-php]
runs-on: ubuntu-latest runs-on: ubuntu-latest

31
.github/workflows/cd.yml vendored
View file

@ -5,8 +5,7 @@ on:
push: push:
branches: branches:
- main - main
tags: - staging
- '*'
pull_request: pull_request:
types: [ opened, reopened, synchronize, labeled ] types: [ opened, reopened, synchronize, labeled ]
workflow_dispatch: ~ workflow_dispatch: ~
@ -18,25 +17,23 @@ permissions:
packages: write packages: write
jobs: jobs:
# remove-deploy-label: remove-deploy-label:
# name: Remove deploy label name: Remove deploy label
# if: github.event_name == 'pull_request' && contains(github.event.pull_request.labels.*.name, 'deploy') if: github.event_name == 'pull_request' && contains(github.event.pull_request.labels.*.name, 'deploy')
# runs-on: ubuntu-latest runs-on: ubuntu-latest
# steps: steps:
# - uses: mondeja/remove-labels-gh-action@v1 - uses: mondeja/remove-labels-gh-action@v1
# with: with:
# token: ${{ secrets.GITHUB_TOKEN }} token: ${{ secrets.GITHUB_TOKEN }}
# labels: | labels: |
# deploy deploy
build: build:
# we run the CD only on pull requests from the same repo if: github.event_name != 'pull_request' || (github.event_name == 'pull_request' && contains(github.event.pull_request.labels.*.name, 'deploy'))
if: github.event_name != 'pull_request' || github.event.pull_request.head.repo.full_name == github.repository
name: Build name: Build
uses: ./.github/workflows/build.yml uses: ./.github/workflows/build.yml
deploy: deploy:
if: github.event_name != 'pull_request' || github.event.pull_request.head.repo.full_name == github.repository if: github.event_name != 'pull_request' || (github.event_name == 'pull_request' && contains(github.event.pull_request.labels.*.name, 'deploy'))
name: Deploy name: Deploy
needs: [ build ] needs: [ build ]
uses: ./.github/workflows/deploy.yml uses: ./.github/workflows/deploy.yml
@ -48,6 +45,6 @@ jobs:
storage-secret-key: ${{ secrets.STORAGE_SECRET_KEY}} storage-secret-key: ${{ secrets.STORAGE_SECRET_KEY}}
project-id: ${{ secrets.PROJECT_ID }} project-id: ${{ secrets.PROJECT_ID }}
workload-identity-provider: ${{ secrets.WORKLOAD_IDENTITY_PROVIDER }} workload-identity-provider: ${{ secrets.WORKLOAD_IDENTITY_PROVIDER }}
database-url: ${{ secrets.DATABASE_URL }} pg-password: ${{ secrets.PG_PASSWORD }}
mailer-dsn: ${{ secrets.MAILER_DSN }} mailer-dsn: ${{ secrets.MAILER_DSN }}
sms-dsn: ${{ secrets.SMS_DSN }} sms-dsn: ${{ secrets.SMS_DSN }}

75
.github/workflows/cleanup.yml vendored Normal file
View file

@ -0,0 +1,75 @@
name: Cleanup
on:
pull_request:
types: [ closed ]
permissions:
id-token: write
contents: read
pull-requests: write
jobs:
meta:
name: Meta
runs-on: ubuntu-latest
outputs:
context: ${{ steps.meta.outputs.context }}
environment: ${{ steps.meta.outputs.environment }}
namespace: ${{ steps.meta.outputs.namespace }}
steps:
- name: Generate metadata
id: meta
run: |
set -xo pipefail
PROJECT=plateforme-ebs
CONTEXT=nonprod
ENVIRONMENT=nonprod
echo "context=${CONTEXT}" >> $GITHUB_OUTPUT
echo "environment=${ENVIRONMENT}" >> $GITHUB_OUTPUT
echo "namespace=${CONTEXT}-${PROJECT}" >> $GITHUB_OUTPUT
cleanup:
name: Cleanup
runs-on: ubuntu-latest
environment:
name: ${{ needs.meta.outputs.environment }}
needs: ["meta"]
steps:
- name: Checkout
uses: actions/checkout@v3
- name: GKE Auth
uses: 'google-github-actions/auth@v2'
with:
project_id: '${{ secrets.PROJECT_ID }}'
workload_identity_provider: '${{ secrets.WORKLOAD_IDENTITY_PROVIDER }}'
- name: Setup gcloud
uses: google-github-actions/setup-gcloud@v1
with:
project_id: ${{ secrets.PROJECT_ID }}
- name: Connect cluster
run: |
gcloud components install gke-gcloud-auth-plugin
gcloud auth login --cred-file=$CLOUDSDK_AUTH_CREDENTIAL_FILE_OVERRIDE
gcloud container clusters get-credentials ${{ vars.CLUSTER_NAME }} --region europe-west1 --project ${{ secrets.PROJECT_ID }}
kubectl config view
- name: Uninstall helm release
id: uninstall_helm_release
run: |
export RELEASE_NAME=pr-$(jq --raw-output .pull_request.number $GITHUB_EVENT_PATH)
echo "Uninstalling release $RELEASE_NAME in namespace ${{ needs.meta.outputs.namespace }}..."
if ! helm uninstall $RELEASE_NAME --namespace ${{ needs.meta.outputs.namespace }} --wait ; then
echo "HELM Uninstall has failed !"
echo "Please ask the SRE team to manually clean remaining objects"
exit 1
fi
echo "HELM uninstall successfull"
echo "Cleaning remaining PVC..."
kubectl delete pvc -l app.kubernetes.io/instance=$RELEASE_NAME --namespace ${{ needs.meta.outputs.namespace }}

38
.github/workflows/deploy.yml vendored
View file

@ -23,6 +23,9 @@ on:
required: true required: true
database-url: database-url:
description: Database URL description: Database URL
required: false
pg-password:
description: PostgreSQL password for CNPG cluster
required: true required: true
mailer-dsn: mailer-dsn:
description: Mailer DSN description: Mailer DSN
@ -55,15 +58,32 @@ jobs:
run: | run: |
set -xo pipefail set -xo pipefail
PROJECT=${{ vars.PROJECT_NAME }} PROJECT=${{ vars.PROJECT_NAME }}
if [[ "${{ github.ref_name }}" == "main" ]]; then
# Tags are deployed in prod # Tags are deployed in prod
CONTEXT=prod CONTEXT=prod
ENVIRONMENT=prod ENVIRONMENT=prod
PHP_IMAGE_REPO=${{ vars.IMAGE_REPO }}/${{ vars.IMAGE_NAME_PHP }} IMAGE_TAG=${{ github.ref_name }}
CADDY_IMAGE_REPO=${{ vars.IMAGE_REPO }}/${{ vars.IMAGE_NAME_CADDY }}
IMAGE_TAG=sha-${GITHUB_SHA::7}
RELEASE_NAME=prod RELEASE_NAME=prod
TRUSTED_HOST=$(echo ${{ vars.DOMAIN }} | sed 's/\./\\\\\\\\./g') TRUSTED_HOST=$(echo ${{ vars.DOMAIN }} | sed 's/\./\\\\\\\\./g')
URL=${{ vars.DOMAIN }}
STORAGE_NAME=${{ vars.PROD_STORAGE_BUCKET }}
else
CONTEXT=nonprod
ENVIRONMENT=nonprod
IMAGE_TAG=sha-${GITHUB_SHA::7}
if [ "$GITHUB_EVENT_NAME" == "pull_request" ]; then
RELEASE_NAME=pr-$(jq --raw-output .pull_request.number "$GITHUB_EVENT_PATH")
STORAGE_NAME=${{ vars.STORAGE_BUCKET }}-pr
else
RELEASE_NAME=${{ github.ref_name }}
STORAGE_NAME=${{ vars.NONPROD_STORAGE_BUCKET }}-main
fi
URL=${RELEASE_NAME}.${{ vars.NONPROD_DOMAIN }}
TRUSTED_HOST=$(echo ${URL} | sed 's/\./\\\\\\\\./g')
fi
PHP_IMAGE_REPO=${{ vars.IMAGE_REPO }}/${{ vars.IMAGE_NAME_PHP }}
CADDY_IMAGE_REPO=${{ vars.IMAGE_REPO }}/${{ vars.IMAGE_NAME_CADDY }}
echo "url=${URL}" >> $GITHUB_OUTPUT
echo "trusted_host=${TRUSTED_HOST}" >> $GITHUB_OUTPUT echo "trusted_host=${TRUSTED_HOST}" >> $GITHUB_OUTPUT
echo "context=${CONTEXT}" >> $GITHUB_OUTPUT echo "context=${CONTEXT}" >> $GITHUB_OUTPUT
echo "environment=${ENVIRONMENT}" >> $GITHUB_OUTPUT echo "environment=${ENVIRONMENT}" >> $GITHUB_OUTPUT
@ -72,6 +92,7 @@ jobs:
echo "caddy_image_repo=${CADDY_IMAGE_REPO}" >> $GITHUB_OUTPUT echo "caddy_image_repo=${CADDY_IMAGE_REPO}" >> $GITHUB_OUTPUT
echo "release_name=${RELEASE_NAME}" >> $GITHUB_OUTPUT echo "release_name=${RELEASE_NAME}" >> $GITHUB_OUTPUT
echo "namespace=${CONTEXT}-${PROJECT}" >> $GITHUB_OUTPUT echo "namespace=${CONTEXT}-${PROJECT}" >> $GITHUB_OUTPUT
echo "storage_name=${STORAGE_NAME}" >> $GITHUB_OUTPUT
deploy: deploy:
name: Deploy name: Deploy
@ -129,15 +150,14 @@ jobs:
--set=php.image.tag=${{ needs.meta.outputs.image_tag }} \ --set=php.image.tag=${{ needs.meta.outputs.image_tag }} \
--set=caddy.image.repository=${{ needs.meta.outputs.caddy_image_repo }} \ --set=caddy.image.repository=${{ needs.meta.outputs.caddy_image_repo }} \
--set=caddy.image.tag=${{ needs.meta.outputs.image_tag }} \ --set=caddy.image.tag=${{ needs.meta.outputs.image_tag }} \
--set=ingress.hosts[0].host=${{ vars.DOMAIN }} \ --set=ingress.hosts[0].host=${{ needs.meta.outputs.url }} \
--set=ingress.tls[0].secretName=${{ needs.meta.outputs.release_name }}-tls \ --set=ingress.tls[0].secretName=${{ needs.meta.outputs.release_name }}-tls \
--set=ingress.tls[0].hosts[0]=${{ vars.DOMAIN }} \ --set=ingress.tls[0].hosts[0]=${{ needs.meta.outputs.url }} \
--set=postgresql.url="${{ secrets.database-url }}" \
--set=postgresql.enabled='${{ github.event_name == 'pull_request' }}' \
--set=payum.apikey="${{ secrets.payum-apikey }}" \ --set=payum.apikey="${{ secrets.payum-apikey }}" \
--set=cnpg.credentials.password="${{ secrets.pg-password }}" \
--set=mailer.dsn="${{ secrets.mailer-dsn }}" \ --set=mailer.dsn="${{ secrets.mailer-dsn }}" \
--set=sms.dsn="${{ secrets.sms-dsn }}" \ --set=sms.dsn="${{ secrets.sms-dsn }}" \
--set=php.storage.bucket="${{ vars.STORAGE_BUCKET }}" \ --set=php.storage.bucket="${{ needs.meta.outputs.storage_name }}" \
--set=php.storage.endpoint="https://storage.googleapis.com" \ --set=php.storage.endpoint="https://storage.googleapis.com" \
--set=php.storage.region="eu-west-1" \ --set=php.storage.region="eu-west-1" \
--set=php.storage.usePathStyleEndpoint=true \ --set=php.storage.usePathStyleEndpoint=true \

5
Dockerfile
View file

@ -11,6 +11,7 @@ ARG CADDY_VERSION=2.11.2
FROM node AS yarn_build FROM node AS yarn_build
WORKDIR /usr/app WORKDIR /usr/app
RUN apt-get update && apt-get install tar RUN apt-get update && apt-get install tar
RUN npm install -g yarn
RUN mkdir -p /usr/app/vendor/symfony RUN mkdir -p /usr/app/vendor/symfony
RUN curl -L https://github.com/symfony/ux-autocomplete/archive/v2.7.1.tar.gz -o ux-autocomplete.tar.gz RUN curl -L https://github.com/symfony/ux-autocomplete/archive/v2.7.1.tar.gz -o ux-autocomplete.tar.gz
RUN tar -xzvf ux-autocomplete.tar.gz --directory /usr/app/vendor/symfony RUN tar -xzvf ux-autocomplete.tar.gz --directory /usr/app/vendor/symfony
@ -24,7 +25,7 @@ RUN yarn build
FROM php:${PHP_VERSION}-fpm-alpine AS app_php FROM php:${PHP_VERSION}-fpm-alpine AS app_php
# needed for security update until base image is updated # needed for security update until base image is updated
#RUN apk upgrade libcurl curl openssl openssl-dev libressl libcrypto3 libssl3 RUN apk upgrade --no-cache libcurl curl openssl openssl-dev libressl libcrypto3 libssl3 nghttp2-libs
# Allow to use development versions of Symfony # Allow to use development versions of Symfony
ARG STABILITY="stable" ARG STABILITY="stable"
@ -196,6 +197,6 @@ COPY --from=app_php /srv/app/public public/
COPY docker/caddy/Caddyfile /etc/caddy/Caddyfile COPY docker/caddy/Caddyfile /etc/caddy/Caddyfile
# needed for security update until base image is updated # needed for security update until base image is updated
#RUN apk upgrade libcurl curl openssl openssl-dev libressl libcrypto1.1 libssl1.1 libcrypto3 libssl3 RUN apk upgrade --no-cache libcurl curl openssl openssl-dev libcrypto3 libssl3 nghttp2-libs
WORKDIR /srv/app WORKDIR /srv/app

5
helm/chart/Chart.yaml
View file

@ -25,11 +25,6 @@ version: 0.0.1
appVersion: 0.0.1 appVersion: 0.0.1
dependencies: dependencies:
# bitnami chart are using the workaround from https://github.com/bitnami/charts/issues/10539
- name: postgresql
version: ~11.9.13
repository: https://charts.bitnami.com/bitnami/
condition: postgresql.enabled
- name: external-dns - name: external-dns
version: ~5.4.15 version: ~5.4.15
repository: https://raw.githubusercontent.com/bitnami/charts/archive-full-index/bitnami repository: https://raw.githubusercontent.com/bitnami/charts/archive-full-index/bitnami

5
helm/chart/templates/NOTES.txt
View file

@ -1,3 +1,8 @@
{{- if .Values.cnpg.enabled }}
IMPORTANT: This chart requires the CloudNativePG operator to be installed in your cluster.
helm upgrade --install cnpg --namespace cnpg-system --create-namespace cloudnative-pg/cloudnative-pg
See: https://cloudnative-pg.io/documentation/current/installation_upgrade/
{{ end }}
1. Get the application URL by running these commands: 1. Get the application URL by running these commands:
{{- if .Values.ingress.enabled }} {{- if .Values.ingress.enabled }}
{{- range $host := .Values.ingress.hosts }} {{- range $host := .Values.ingress.hosts }}

7
helm/chart/templates/_helpers.tpl
View file

@ -80,6 +80,13 @@ app.kubernetes.io/name: {{ include "plateforme-ebs.name" . }}-pwa
app.kubernetes.io/instance: {{ .Release.Name }} app.kubernetes.io/instance: {{ .Release.Name }}
{{- end }} {{- end }}
{{/*
CNPG cluster name
*/}}
{{- define "plateforme-ebs.cnpgClusterName" -}}
{{- printf "%s-postgresql" (include "plateforme-ebs" .) }}
{{- end }}
{{/* {{/*
Create the name of the service account to use Create the name of the service account to use
*/}} */}}

38
helm/chart/templates/cnpg-cluster.yaml Normal file
View file

@ -0,0 +1,38 @@
{{- if .Values.cnpg.enabled }}
apiVersion: v1
kind: Secret
metadata:
name: {{ include "plateforme-ebs.cnpgClusterName" . }}-credentials
labels:
{{- include "plateforme-ebs.labels" . | nindent 4 }}
type: kubernetes.io/basic-auth
stringData:
username: {{ .Values.cnpg.owner | quote }}
password: {{ .Values.cnpg.credentials.password | quote }}
---
apiVersion: postgresql.cnpg.io/v1
kind: Cluster
metadata:
name: {{ include "plateforme-ebs.cnpgClusterName" . }}
labels:
{{- include "plateforme-ebs.labels" . | nindent 4 }}
spec:
instances: {{ .Values.cnpg.instances }}
bootstrap:
initdb:
database: {{ .Values.cnpg.database | quote }}
owner: {{ .Values.cnpg.owner | quote }}
secret:
name: {{ include "plateforme-ebs.cnpgClusterName" . }}-credentials
postInitApplicationSQL:
- ALTER ROLE {{ .Values.cnpg.owner }} CREATEDB;
storage:
size: {{ .Values.cnpg.storage.size | quote }}
{{- if .Values.cnpg.storage.storageClass }}
storageClass: {{ .Values.cnpg.storage.storageClass | quote }}
{{- end }}
{{- with .Values.cnpg.resources }}
resources:
{{- toYaml . | nindent 4 }}
{{- end }}
{{- end }}

9
helm/chart/templates/secrets.yaml
View file

@ -6,8 +6,9 @@ metadata:
{{- include "plateforme-ebs.labels" . | nindent 4 }} {{- include "plateforme-ebs.labels" . | nindent 4 }}
type: Opaque type: Opaque
data: data:
{{- if .Values.postgresql.enabled }} {{- if .Values.cnpg.enabled }}
database-url: {{ printf "pgsql://%s:%s@%s-postgresql/%s?serverVersion=14&charset=utf8" .Values.postgresql.global.postgresql.auth.username .Values.postgresql.global.postgresql.auth.password .Release.Name .Values.postgresql.global.postgresql.auth.database | b64enc | quote }} database-url: {{ printf "postgresql://%s:%s@%s-rw/%s?serverVersion=%s&charset=utf8" .Values.cnpg.owner .Values.cnpg.credentials.password (include "plateforme-ebs.cnpgClusterName" .) .Values.cnpg.database .Values.cnpg.postgresql.version | b64enc | quote }}
cnpg-password: {{ .Values.cnpg.credentials.password | b64enc | quote }}
{{- else }} {{- else }}
database-url: {{ .Values.postgresql.url | b64enc | quote }} database-url: {{ .Values.postgresql.url | b64enc | quote }}
{{- end }} {{- end }}
@ -23,5 +24,5 @@ data:
{{- end }} {{- end }}
sms-dsn: {{ .Values.sms.dsn | b64enc | quote }} sms-dsn: {{ .Values.sms.dsn | b64enc | quote }}
payum-apikey: {{ .Values.payum.apikey | b64enc | quote }} payum-apikey: {{ .Values.payum.apikey | b64enc | quote }}
php-storage-key: {{ .Values.php.storage.key | b64enc | quote }} php-storage-key: {{ .Values.php.storage.key | default "" | b64enc | quote }}
php-storage-secret: {{ .Values.php.storage.secret | b64enc | quote }} php-storage-secret: {{ .Values.php.storage.secret | default "" | b64enc | quote }}

7
helm/chart/values-minikube.yml
View file

@ -14,10 +14,9 @@ payum:
gateway: 'mollie' gateway: 'mollie'
apikey: 'test' apikey: 'test'
postgresql: cnpg:
auth: credentials:
# PostgreSQL password is set only the first time chart in installed password: change_me
postgresPassword: change_me
maildev: maildev:
enabled: true enabled: true

5
helm/chart/values-nonprod.yml
View file

@ -27,8 +27,9 @@ redis:
storageClass: "standard" storageClass: "standard"
size: "1Gi" size: "1Gi"
postgresql: cnpg:
url: change_me credentials:
password: change_me
php: php:
fixtureJob: fixtureJob:

5
helm/chart/values-prod.yml
View file

@ -27,8 +27,9 @@ redis:
storageClass: "standard" storageClass: "standard"
size: "1Gi" size: "1Gi"
postgresql: cnpg:
url: change_me credentials:
password: change_me
php: php:
fixtureJob: fixtureJob:

39
helm/chart/values.yaml
View file

@ -69,34 +69,33 @@ mercure:
jwtSecret: "!ChangeThisMercureHubJWTSecretKey!" jwtSecret: "!ChangeThisMercureHubJWTSecretKey!"
extraDirectives: cors_origins http://ghcr.io https://ghcr.io extraDirectives: cors_origins http://ghcr.io https://ghcr.io
# Full configuration: https://github.com/bitnami/charts/tree/master/bitnami/postgresql # CloudNativePG cluster configuration.
postgresql: # The CNPG operator must be pre-installed in the cluster.
# See: https://cloudnative-pg.io/documentation/current/installation_upgrade/
cnpg:
enabled: true enabled: true
# If bringing your own PostgreSQL, the full uri to use instances: 1
# url: postgresql://plateforme-ebs:!ChangeMe!@database:5432/api?serverVersion=13&charset=utf8
global:
postgresql: postgresql:
auth: version: "16"
username: "example" database: app
password: "!ChangeMe!" owner: app
database: "api" credentials:
postgresPassword: "!ChangeMe!" # IMPORTANT: use only alphanumeric characters. Special characters (@, #, %, :)
# Persistent Volume Storage configuration. # will break the DATABASE_URL parsing by PHP's parse_url().
# ref: https://kubernetes.io/docs/user-guide/persistent-volumes password: "ChangeMe"
pullPolicy: IfNotPresent storage:
image:
repository: bitnami/postgresql
tag: 14
primary:
persistence:
enabled: true
storageClass: standard
size: 1Gi size: 1Gi
storageClass: standard
resources: resources:
requests: requests:
memory: 50Mi memory: 50Mi
cpu: 1m cpu: 1m
# External PostgreSQL URL, used when cnpg.enabled is false.
# url: postgresql://app:!ChangeMe!@database:5432/app?serverVersion=16&charset=utf8
postgresql:
url: ""
payum: payum:
# @see https://my.mollie.com/dashboard/org_XXXXXXXX/developers/api-keys # @see https://my.mollie.com/dashboard/org_XXXXXXXX/developers/api-keys
# even it's a fake key it must start with 'test_' or 'live_' and must be at least 30 characters long # even it's a fake key it must start with 'test_' or 'live_' and must be at least 30 characters long

3
src/Controller/Product/ProductController.php
View file

@ -103,8 +103,7 @@ final class ProductController extends AbstractController
} }
return $this->render('pages/product/show.html.twig', compact('slug', 'id', 'product')); return $this->render('pages/product/show.html.twig', compact('slug', 'id', 'product'));
} else { }
throw new GoneHttpException(); throw new GoneHttpException();
} }
}
} }

6
src/Controller/User/Product/ServiceController.php
View file

@ -69,9 +69,8 @@ final class ServiceController extends AbstractController
} }
return $this->render('pages/product/new_service.html.twig', compact('form', 'product')); return $this->render('pages/product/new_service.html.twig', compact('form', 'product'));
} else {
throw new GoneHttpException();
} }
throw new GoneHttpException();
} }
#[Route([ #[Route([
@ -96,8 +95,7 @@ final class ServiceController extends AbstractController
} }
return $this->render('pages/product/edit_service.html.twig', compact('form', 'product')); return $this->render('pages/product/edit_service.html.twig', compact('form', 'product'));
} else { }
throw new GoneHttpException(); throw new GoneHttpException();
} }
}
} }

3
src/Controller/User/Product/UserProductsController.php
View file

@ -94,8 +94,7 @@ final class UserProductsController extends AbstractController
if ($this->configurationRepository->getServicesParameter()) { if ($this->configurationRepository->getServicesParameter()) {
return $this->render('pages/account/product/list.html.twig', compact('pagination', 'form')); return $this->render('pages/account/product/list.html.twig', compact('pagination', 'form'));
} else { }
throw new GoneHttpException('there is no services'); throw new GoneHttpException('there is no services');
} }
}
} }

4
src/Payment/PayumManager.php
View file

@ -80,7 +80,8 @@ final class PayumManager
'groupOfferId' => (string) $offer->getId(), 'groupOfferId' => (string) $offer->getId(),
], ],
]; ];
} else { }
return [ return [
// method must be set as the default value is not retrieved from the gateway configuration // method must be set as the default value is not retrieved from the gateway configuration
'method' => PaymentMethod::CREDITCARD->value, 'method' => PaymentMethod::CREDITCARD->value,
@ -90,7 +91,6 @@ final class PayumManager
], ],
]; ];
} }
}
/** /**
* @param array<string, string> $afterParameters * @param array<string, string> $afterParameters

2
src/Repository/MenuItemRepository.php
View file

@ -12,6 +12,8 @@ use Doctrine\ORM\QueryBuilder;
use Gedmo\Sortable\Entity\Repository\SortableRepository; use Gedmo\Sortable\Entity\Repository\SortableRepository;
/** /**
* @extends SortableRepository<MenuItem>
*
* @method MenuItem|null find($id, $lockMode = null, $lockVersion = null) * @method MenuItem|null find($id, $lockMode = null, $lockVersion = null)
* @method MenuItem|null findOneBy(array $criteria, array $orderBy = null) * @method MenuItem|null findOneBy(array $criteria, array $orderBy = null)
* @method MenuItem[] findAll() * @method MenuItem[] findAll()

2
src/State/GroupGetStatsProvider.php
View file

@ -15,7 +15,7 @@ use App\Repository\GroupRepository;
final class GroupGetStatsProvider implements ProviderInterface final class GroupGetStatsProvider implements ProviderInterface
{ {
public function __construct( public function __construct(
readonly private GroupRepository $groupRepository, private readonly GroupRepository $groupRepository,
) { ) {
} }

4
src/State/GroupsProvider.php
View file

@ -16,8 +16,8 @@ use App\Repository\UserRepository;
class GroupsProvider implements ProviderInterface class GroupsProvider implements ProviderInterface
{ {
public function __construct( public function __construct(
readonly private GroupRepository $groupRepository, private readonly GroupRepository $groupRepository,
readonly private UserRepository $userRepository, private readonly UserRepository $userRepository,
) { ) {
} }

4
tests/Unit/Notifier/SmsNotifierTest.php
View file

@ -6,14 +6,14 @@ namespace App\Tests\Unit\Notifier;
use App\Entity\User; use App\Entity\User;
use App\Notifier\SmsNotifier; use App\Notifier\SmsNotifier;
use Monolog\Test\TestCase; use Monolog\Test\MonologTestCase;
use PHPUnit\Framework\MockObject\MockObject; use PHPUnit\Framework\MockObject\MockObject;
use Psr\Log\LoggerInterface; use Psr\Log\LoggerInterface;
use Symfony\Component\HttpClient\Response\MockResponse; use Symfony\Component\HttpClient\Response\MockResponse;
use Symfony\Component\Notifier\Exception\TransportException; use Symfony\Component\Notifier\Exception\TransportException;
use Symfony\Component\Notifier\TexterInterface; use Symfony\Component\Notifier\TexterInterface;
final class SmsNotifierTest extends TestCase final class SmsNotifierTest extends MonologTestCase
{ {
public function testNotify(): void public function testNotify(): void
{ {