name: GitHub Actions Demo
run-name: ${{ github.actor }} is testing out GitHub Actions 🚀
on: [push]
jobs:
  Explore-GitHub-Actions:
    runs-on: ubuntu-latest
    env:
        PIN: ${{ secrets.HSM_USER_PIN }}
    steps:
      - run: echo "🎉 The job was automatically triggered by a ${{ github.event_name }} event."
      - run: echo "🐧 This job is now running on a ${{ runner.os }} server hosted by GitHub!"
      - run: echo "🔎 The name of your branch is ${{ github.ref }} and your repository is ${{ github.repository }}."
      - name: Check out repository code
        uses: actions/checkout@v3
      - run: echo "💡 The ${{ github.repository }} repository has been cloned to the runner."
      - run: echo "🖥️ The workflow is now ready to test your code on the runner."
      - name: List files in the repository
        run: |
          ls ${{ github.workspace }}
      - run: docker run --rm -it -v /run/pcscd/pcscd.comm:/run/pcscd/pcscd.comm:ro -v "${{ github.workspace }}":/home/user git.lerch.org/lobo/pkcs11:1 -s --id 3 -m SHA256-RSA-PKCS -i foo -o foo.sig --pin env:PIN
      - run: echo "🍏 This job's status is ${{ job.status }}."
  Sign-Something:
    runs-on: ubuntu-latest
    needs: Explore-GitHub-Actions
    container:
      image: git.lerch.org/lobo/pkcs11:1
      env:
        PIN: ${{ secrets.HSM_USER_PIN }}
      volumes:
        /run/pcscd/pcscd.comm:/run/pcscd/pcscd.comm
    steps:
      - run: -s --id 3 -m SHA256-RSA-PKCS --pin env:PIN -i foo -o foo.sig
      # - name: Success Notification
      #   if: success()
      #   run: |
      #          curl -u '${{ secrets.NTFY_USER }}:${{ secrets.NTFY_PASSWORD }}' \
      #          -H 'Title: Job Succeeded. ${{ github.repository }}/${{ github.ref }}' \
      #          -H "Tags: +1" \
      #          -d 'Job succeeded. See '$GITHUB_SERVER_URL'/${{ github.repository }}/actions/runs/${{ github.run_number }} for details' \
      #          '${{ secrets.NTFY_HOST }}${{ secrets.NTFY_TOPIC }}'
      # - name: Failure Notification
      #   if: failure()
      #   run: |
      #          curl -u '${{ secrets.NTFY_USER }}:${{ secrets.NTFY_PASSWORD }}' \
      #          -H "Priority: high" \
      #          -H 'Title: Job FAILED. ${{ github.repository }}/${{ github.ref }}' \
      #          -H "Tags: warning" \
      #          -d 'Job failed. See '$GITHUB_SERVER_URL'/${{ github.repository }}/actions/runs/${{ github.run_number }} for details' \
      #          '${{ secrets.NTFY_HOST }}${{ secrets.NTFY_TOPIC }}'