Push

feat(rbac): add the optional maxDepth feature (#1486) #27

	name: Push

	on:
	push:
	branches:
	- main
	# starting from 1.1.x, allow releases from the 1.yy.x branches as long as we remember to bump plugin versions in main immediately after creating a 1.new.x branch
	# see this script for how to check which plugins need bumping
	# see also root package.json -> .release.branches
	- 1.**.x
	# do not run on 1.0.x, as we didn't bump plugin versions correctly there
	- '!1.0.x'

	concurrency:
	group: push
	cancel-in-progress: true

	jobs:
	test:
	name: Test
	runs-on: ubuntu-latest
	steps:
	- name: Checkout
	uses: actions/checkout@v4

	- name: Test
	uses: ./.github/actions/test

	release:
	name: Release
	needs:
	- test
	runs-on: ubuntu-latest
	steps:
	- name: Generate token
	id: generate-token
	uses: actions/create-github-app-token@7bfa3a4717ef143a604ee0a99d859b8886a96d00 # v1.9.3
	with:
	app-id: ${{ vars.JANUS_IDP_GITHUB_APP_ID }}
	private-key: ${{ secrets.JANUS_IDP_GITHUB_APP_PRIVATE_KEY }}

	- name: Checkout
	uses: actions/checkout@v4
	with:
	# don't persist the GITHUB_TOKEN
	# so that semantic-release can use use the generated token
	persist-credentials: false

	- name: Build all packages
	uses: ./.github/actions/build

	- name: Setup Node.js
	uses: actions/setup-node@v4
	with:
	node-version-file: '.nvmrc'
	registry-url: 'https://registry.npmjs.org'

	- name: Release via semantic-release
	run: \|
	npm config set workspaces-update false
	yarn release --ignore-private-packages
	env:
	GITHUB_TOKEN: ${{ steps.generate-token.outputs.token }}
	NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
	NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
	NODE_OPTIONS: '--max-old-space-size=8192'

Provide feedback