#!/usr/bin/env bash # Note that this does not use pipefail # because if the grep later doesn't match any deleted files, # which is likely the majority case, # it does not exit with a 0, and I only care about the final exit. set -eo # Provide a basic version identifier, particularly since this script # is usually accessed via CDN. echo "ℹī¸Ž WP-ORG-PLUGIN-DEPLOY VERSION: 2019041401" if [[ -z "$CI" ]]; then echo "𝘅ī¸Ž Script is only to be run by GitLab CI" 1>&2 exit 1 fi # Ensure certain environment variables are set # IMPORTANT: while access to secrets is restricted in the GitLab UI, # they are by necessity provided as plaintext in the context of this script, # so do not echo or use debug mode unless you want your secrets exposed! if [[ -z "$WP_ORG_USERNAME" ]]; then echo "𝘅ī¸Ž WordPress.org username not set" 1>&2 exit 1 fi if [[ -z "$WP_ORG_PASSWORD" ]]; then echo "𝘅ī¸Ž WordPress.org password not set" 1>&2 exit 1 fi if [[ -z "$PLUGIN_SLUG" ]]; then echo "𝘅ī¸Ž Plugin's SVN slug is not set" 1>&2 exit 1 fi if [[ -z "$PLUGIN_VERSION" ]]; then echo "𝘅ī¸Ž Plugin's version is not set" 1>&2 exit 1 fi if [[ -z "$WP_ORG_ASSETS_DIR" ]]; then WP_ORG_ASSETS_DIR=".wordpress-org" fi echo "ℹī¸Ž PLUGIN_SLUG: $PLUGIN_SLUG" echo "ℹī¸Ž PLUGIN_VERSION: $PLUGIN_VERSION" echo "ℹī¸Ž WP_ORG_RELEASE_REF: $WP_ORG_RELEASE_REF" echo "ℹī¸Ž WP_ORG_ASSETS_DIR: $WP_ORG_ASSETS_DIR" SVN_URL="https://plugins.svn.wordpress.org/${PLUGIN_SLUG}/" SVN_DIR="$CI_BUILDS_DIR/svn-${PLUGIN_SLUG}" TMP_DIR="$CI_BUILDS_DIR/git-archive" # Limit checkouts for efficiency echo "➤ Checking out dotorg repository..." svn checkout --depth immediates "$SVN_URL" "$SVN_DIR" cd "$SVN_DIR" svn update --set-depth infinity assets svn update --set-depth infinity trunk svn update --set-depth infinity "tags/${PLUGIN_VERSION}" # Ensure we are in the $CI_PROJECT_DIR directory, just in case echo "➤ Copying files..." cd "$CI_PROJECT_DIR" git config --global user.email "git-contrib+ci@ethitter.com" git config --global user.name "Erick Hitter (GitLab CI)" # If there's no .gitattributes file, write a default one into place if [[ ! -e "$CI_PROJECT_DIR/.gitattributes" ]]; then cat > "$CI_PROJECT_DIR/.gitattributes" <<-EOL /${WP_ORG_ASSETS_DIR} export-ignore /.gitattributes export-ignore /.gitignore export-ignore /.gitlab-ci.yml export-ignore EOL # The .gitattributes file has to be committed to be used # Just don't push it to the origin repo :) git add .gitattributes && git commit -m "Add .gitattributes file" fi # This will exclude everything in the .gitattributes file with the export-ignore flag mkdir "$TMP_DIR" git archive HEAD | tar x --directory="$TMP_DIR" cd "$SVN_DIR" # Copy from clean copy to /trunk # The --delete flag will delete anything in destination that no longer exists in source rsync -r "$TMP_DIR/" trunk/ --delete # Copy dotorg assets to /assets rsync -r "${CI_PROJECT_DIR}/${WP_ORG_ASSETS_DIR}/" assets/ --delete # Add everything and commit to SVN # The force flag ensures we recurse into subdirectories even if they are already added # Suppress stdout in favor of svn status later for readability echo "➤ Preparing files..." svn add . --force > /dev/null # SVN delete all deleted files # Also suppress stdout here svn status | grep '^\!' | sed 's/! *//' | xargs -I% svn rm % > /dev/null # Copy tag locally to make this a single commit echo "➤ Copying tag..." svn cp "trunk" "tags/$PLUGIN_VERSION" svn status # Stop here unless this is a merge into master. if [[ -z "$CI_COMMIT_REF_NAME" || -z "$WP_ORG_RELEASE_REF" || "$CI_COMMIT_REF_NAME" != "$WP_ORG_RELEASE_REF" ]]; then echo "𝘅ī¸Ž EXITING before commit step as this is the '${CI_COMMIT_REF_NAME}' ref, not the '${WP_ORG_RELEASE_REF}' ref." 1>&2 exit 0 fi echo "➤ Committing files..." svn commit -m "Update to version ${PLUGIN_VERSION} from GitLab (${CI_PROJECT_URL}; ${CI_JOB_URL})" --no-auth-cache --non-interactive --username "$WP_ORG_USERNAME" --password "$WP_ORG_PASSWORD" echo "✓ Plugin deployed!"