name: publish-package
on: [push]
jobs:
  build:
    runs-on: [self-hosted, Linux, X64, dsse-automation-dev]
    steps:
      - uses: actions/checkout@v3
      - name: Import Secrets
        id: import-secrets
        uses: hashicorp/vault-action@v3.0.0
        with:
          url: ${{ secrets.VAULT_URL }}
          method: approle
          namespace: 'admin/dev'
          roleId: ${{ secrets.VAULT_ROLE_ID }}
          secretId: ${{ secrets.VAULT_SECRET_ID }}
          tlsSkipVerify: true
          secrets: |
            dsse/data/kube/mmui-web npmToken | npmToken ;
      - uses: actions/setup-node@v3
        with:
          node-version: '20.x'
          registry-url: 'https://registry.npmjs.org'
      - run: |
          echo "@username:registry=https://registry.npmjs.org" >> .npmrc
          echo "//registry.npmjs.org/:_authToken=${npmToken}" >> .npmrc
      - run: npm whoami
      - run: npm ci
      - run: npm publish
        env:
          NODE_AUTH_TOKEN: ${npmToken}