fix(docker): remove all remaining backslash-pipe YAML escape sequences #18
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: CI | |
| on: | |
| push: | |
| branches: [main, develop, 'feature/**', 'bugfix/**'] | |
| pull_request: | |
| branches: [main, develop] | |
| permissions: | |
| contents: read | |
| security-events: write | |
| jobs: | |
| validate: | |
| name: Validate Configuration | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Validate Docker Compose files | |
| run: | | |
| for f in docker/docker-compose.*.yml; do | |
| echo "Validating: $f" | |
| docker compose -f "$f" config --no-interpolate -q | |
| done | |
| - name: ShellCheck — lab test scripts | |
| run: | | |
| sudo apt-get install -y shellcheck -qq | |
| shellcheck --severity=error tests/labs/*.sh | |
| - name: Validate module manifest | |
| run: | | |
| python3 -c " | |
| import sys, re | |
| with open('it-stack-odoo.yml') as f: | |
| content = f.read() | |
| required = ['module:', 'version:', 'phase:', 'category:', 'ports:'] | |
| missing = [k for k in required if k not in content] | |
| if missing: | |
| print('Missing fields:', missing); sys.exit(1) | |
| print('Manifest valid') | |
| " | |
| security-scan: | |
| name: Security Scan | |
| runs-on: ubuntu-latest | |
| needs: validate | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Trivy — scan Dockerfile | |
| uses: aquasecurity/trivy-action@0.28.0 | |
| with: | |
| scan-type: config | |
| scan-ref: . | |
| exit-code: '0' | |
| severity: CRITICAL,HIGH | |
| - name: Trivy — SARIF output | |
| uses: aquasecurity/trivy-action@0.28.0 | |
| with: | |
| scan-type: config | |
| scan-ref: . | |
| format: sarif | |
| output: trivy-results.sarif | |
| - name: Upload SARIF to GitHub Security | |
| uses: github/codeql-action/upload-sarif@v3 | |
| if: always() | |
| with: | |
| sarif_file: trivy-results.sarif | |
| lab-01-smoke: | |
| name: Lab 01 -- Odoo Standalone (PostgreSQL + ERP) | |
| runs-on: ubuntu-latest | |
| needs: validate | |
| continue-on-error: true | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Install tools | |
| run: sudo apt-get install -y curl | |
| - name: Validate standalone compose | |
| run: docker compose -f docker/docker-compose.standalone.yml config -q && echo "Standalone compose valid" | |
| - name: Start standalone stack | |
| run: docker compose -f docker/docker-compose.standalone.yml up -d | |
| - name: Wait for PostgreSQL | |
| run: timeout 120 bash -c 'until docker exec odoo-s01-db pg_isready -U odoo > /dev/null 2>&1; do sleep 5; done' | |
| - name: Wait for Odoo | |
| run: timeout 240 bash -c 'until curl -sf http://localhost:8303/ | grep -qi odoo; do sleep 10; done' | |
| - name: Run Lab 13-01 test script | |
| run: bash tests/labs/test-lab-13-01.sh --no-cleanup | |
| - name: Collect logs on failure | |
| if: failure() | |
| run: docker compose -f docker/docker-compose.standalone.yml logs | |
| - name: Cleanup | |
| if: always() | |
| run: docker compose -f docker/docker-compose.standalone.yml down -v | |
| lab-02-smoke: | |
| name: Lab 02 -- Odoo External Dependencies (PostgreSQL + Redis + Mailhog) | |
| runs-on: ubuntu-latest | |
| needs: validate | |
| continue-on-error: true | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Install tools | |
| run: sudo apt-get install -y curl postgresql-client | |
| - name: Validate LAN compose | |
| run: docker compose -f docker/docker-compose.lan.yml config -q && echo "LAN compose valid" | |
| - name: Start LAN stack | |
| run: docker compose -f docker/docker-compose.lan.yml up -d | |
| - name: Wait for PostgreSQL | |
| run: timeout 60 bash -c 'until docker exec odoo-l02-db pg_isready -U odoo -d odoo_lab02; do sleep 5; done' | |
| - name: Wait for Redis | |
| run: timeout 30 bash -c 'until docker exec odoo-l02-redis redis-cli ping | grep -q PONG; do sleep 3; done' | |
| - name: Wait for Mailhog | |
| run: timeout 60 bash -c 'until curl -sf http://localhost:8612/api/v2/messages; do sleep 5; done' | |
| - name: Wait for Odoo | |
| run: timeout 180 bash -c 'until curl -sf http://localhost:8312/web/health | grep -q ok; do sleep 10; done' | |
| - name: Run Lab 13-02 test script | |
| run: bash tests/labs/test-lab-13-02.sh --no-cleanup | |
| - name: Collect logs on failure | |
| if: failure() | |
| run: docker compose -f docker/docker-compose.lan.yml logs | |
| - name: Cleanup | |
| if: always() | |
| run: docker compose -f docker/docker-compose.lan.yml down -v | |
| lab-03-smoke: | |
| name: Lab 03 -- Odoo Advanced Features (multi-worker + gevent longpolling) | |
| runs-on: ubuntu-latest | |
| needs: validate | |
| continue-on-error: true | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Install tools | |
| run: sudo apt-get install -y curl postgresql-client redis-tools | |
| - name: Validate advanced compose | |
| run: docker compose -f docker/docker-compose.advanced.yml config -q && echo "Advanced compose valid" | |
| - name: Start advanced stack | |
| run: docker compose -f docker/docker-compose.advanced.yml up -d | |
| - name: Wait for PostgreSQL | |
| run: timeout 60 bash -c 'until docker exec odoo-a03-db pg_isready -U odoo -d odoo_lab03; do sleep 5; done' | |
| - name: Wait for Redis | |
| run: timeout 30 bash -c 'until docker exec odoo-a03-redis redis-cli ping | grep -q PONG; do sleep 3; done' | |
| - name: Wait for Mailhog | |
| run: timeout 60 bash -c 'until curl -sf http://localhost:8630/api/v2/messages; do sleep 5; done' | |
| - name: Wait for Odoo web | |
| run: timeout 180 bash -c 'until curl -sf http://localhost:8330/web/health | grep -q ok; do sleep 10; done' | |
| - name: Run Lab 13-03 test script | |
| run: bash tests/labs/test-lab-13-03.sh --no-cleanup | |
| - name: Collect logs on failure | |
| if: failure() | |
| run: docker compose -f docker/docker-compose.advanced.yml logs | |
| - name: Cleanup | |
| if: always() | |
| run: docker compose -f docker/docker-compose.advanced.yml down -v | |
| lab-04-smoke: | |
| name: Lab 04 -- Odoo SSO Integration (OpenLDAP + Keycloak OIDC) | |
| runs-on: ubuntu-latest | |
| needs: validate | |
| continue-on-error: true | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Install tools | |
| run: sudo apt-get install -y curl postgresql-client netcat-openbsd ldap-utils | |
| - name: Validate SSO compose | |
| run: docker compose -f docker/docker-compose.sso.yml config -q && echo "SSO compose valid" | |
| - name: Start SSO stack | |
| run: docker compose -f docker/docker-compose.sso.yml up -d | |
| - name: Wait for PostgreSQL | |
| run: timeout 120 bash -c 'until docker exec odoo-s04-db pg_isready -U odoo; do sleep 5; done' | |
| - name: Wait for OpenLDAP | |
| run: timeout 120 bash -c 'until docker exec odoo-s04-ldap ldapsearch -x -H ldap://localhost -b dc=lab,dc=local -D cn=admin,dc=lab,dc=local -w LdapLab04! cn=admin >/dev/null 2>&1; do sleep 5; done' | |
| - name: Wait for Keycloak | |
| run: timeout 300 bash -c 'until curl -sf http://localhost:8450/realms/master; do sleep 10; done' | |
| - name: Wait for Mailhog | |
| run: timeout 60 bash -c 'until curl -sf http://localhost:8650/api/v2/messages; do sleep 5; done' | |
| - name: Wait for Odoo web | |
| run: timeout 300 bash -c 'until curl -sf http://localhost:8350/web/login; do sleep 10; done' | |
| - name: Run Lab 13-04 test script | |
| run: bash tests/labs/test-lab-13-04.sh --no-cleanup | |
| - name: Collect logs on failure | |
| if: failure() | |
| run: docker compose -f docker/docker-compose.sso.yml logs | |
| - name: Cleanup | |
| if: always() | |
| run: docker compose -f docker/docker-compose.sso.yml down -v | |
| lab-05-smoke: | |
| name: Lab 05 -- Odoo Advanced Integration (INT-05 Odoo↔Keycloak OIDC + INT-12 Odoo↔SuiteCRM customer sync + WireMock) | |
| runs-on: ubuntu-latest | |
| needs: validate | |
| continue-on-error: true | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Install tools | |
| run: sudo apt-get install -y curl postgresql-client netcat-openbsd ldap-utils python3 | |
| - name: Validate integration compose | |
| run: docker compose -f docker/docker-compose.integration.yml config -q && echo "Integration compose valid" | |
| - name: Start integration stack | |
| run: docker compose -f docker/docker-compose.integration.yml up -d | |
| - name: Wait for PostgreSQL | |
| run: timeout 120 bash -c 'until docker exec odoo-i05-db pg_isready -U odoo; do sleep 5; done' | |
| - name: Wait for OpenLDAP | |
| run: timeout 120 bash -c 'until docker exec odoo-i05-ldap ldapsearch -x -H ldap://localhost -b dc=lab,dc=local -D cn=admin,dc=lab,dc=local -w LdapLab05! cn=admin >/dev/null 2>&1; do sleep 5; done' | |
| - name: Wait for LDAP seed | |
| run: timeout 60 bash -c 'until docker inspect odoo-int-ldap-seed --format "{{.State.Status}}" 2>/dev/null | grep -q exited; do sleep 5; done' | |
| - name: Wait for WireMock | |
| run: timeout 60 bash -c 'until curl -sf http://localhost:8372/__admin/health; do sleep 5; done' | |
| - name: Wait for Keycloak | |
| run: timeout 240 bash -c 'until curl -sf http://localhost:8470/realms/master; do sleep 10; done' | |
| - name: Wait for Mailhog | |
| run: timeout 60 bash -c 'until curl -sf http://localhost:8670/api/v2/messages; do sleep 5; done' | |
| - name: Wait for Odoo web | |
| run: timeout 300 bash -c 'until curl -sf http://localhost:8370/web/login; do sleep 10; done' | |
| - name: Run Lab 13-05 test script | |
| run: bash tests/labs/test-lab-13-05.sh --no-cleanup | |
| - name: Collect logs on failure | |
| if: failure() | |
| run: docker compose -f docker/docker-compose.integration.yml logs | |
| - name: Cleanup | |
| if: always() | |
| run: docker compose -f docker/docker-compose.integration.yml down -v | |
| lab-06-smoke: | |
| name: Lab 06 -- Odoo Production Deployment (PostgreSQL + Redis + LDAP + Keycloak + workers=2) | |
| runs-on: ubuntu-latest | |
| needs: validate | |
| continue-on-error: true | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Install tools | |
| run: sudo apt-get install -y curl postgresql-client netcat-openbsd ldap-utils | |
| - name: Validate production compose | |
| run: docker compose -f docker/docker-compose.production.yml config -q && echo "Production compose valid" | |
| - name: Start production stack | |
| run: docker compose -f docker/docker-compose.production.yml up -d | |
| - name: Wait for PostgreSQL | |
| run: timeout 120 bash -c 'until docker exec odoo-p06-db pg_isready -U odoo; do sleep 5; done' | |
| - name: Wait for Keycloak | |
| run: timeout 300 bash -c 'until curl -sf http://localhost:8490/realms/master; do sleep 10; done' | |
| - name: Wait for Mailhog | |
| run: timeout 60 bash -c 'until curl -sf http://localhost:8690/api/v2/messages; do sleep 5; done' | |
| - name: Wait for Odoo web | |
| run: timeout 300 bash -c 'until curl -sf http://localhost:8390/web/login; do sleep 10; done' | |
| - name: Run Lab 13-06 test script | |
| run: bash tests/labs/test-lab-13-06.sh --no-cleanup | |
| - name: Collect logs on failure | |
| if: failure() | |
| run: docker compose -f docker/docker-compose.production.yml logs | |
| - name: Cleanup | |
| if: always() | |
| run: docker compose -f docker/docker-compose.production.yml down -v |