Merge branch 'main' into eee-UID2-5757-clear-default-emails-in-sample-sites

Author: eiman-eltigani-ttd

.github/actions/cdn_deployment_aws/action.yaml

@@ -1,9 +1,6 @@
 name: CDN Deployment for AWS
 description: Deploys to AWS CDN and optionally invalidates the path in CloudFront
 inputs:
-  environment:
-    description: Environment to deploy to
-    default: 'integ'
   artifact:
     description: Name of the artifact
     required: true
@@ -19,6 +16,9 @@ inputs:
   aws_bucket_name:
     description: The AWS bucket to sync
     required: true
+  deploy_index_html:
+    description: Deploy a simple index.html file to S3 root
+    default: 'false'
 runs:
   using: 'composite'
 
@@ -42,6 +42,40 @@ runs:
       shell: bash
       run: aws s3 sync ./download s3://${{ inputs.aws_bucket_name }}
 
+    - name: Create and Deploy Index HTML
+      if: ${{ inputs.deploy_index_html == 'true' }}
+      shell: bash
+      run: |
+        echo '<!DOCTYPE html>
+        <html lang="en">
+        <head>
+            <meta charset="UTF-8">
+            <meta name="viewport" content="width=device-width, initial-scale=1.0">
+            <title>UID2/EUID SDK Files</title>
+            <style>
+                body { font-family: Arial, sans-serif; margin: 40px; }
+                h1 { color: #333; }
+                .file-list { margin: 20px 0; }
+                .file-item { margin: 10px 0; padding: 10px; background: #f5f5f5; border-radius: 5px; }
+                .file-link { text-decoration: none; color: #0066cc; font-weight: bold; }
+                .file-link:hover { text-decoration: underline; }
+            </style>
+        </head>
+        <body>
+            <h1>UID2/EUID SDK Files</h1>
+            <p>This directory contains the latest SDK files for UID2 and EUID integration.</p>
+            <div class="file-list">
+                <div class="file-item">
+                    <strong>SDK Files:</strong> Available in this directory
+                </div>
+                <div class="file-item">
+                    <strong>Documentation:</strong> <a href="https://unifiedid.com/docs/guides/summary-guides" target="_blank" class="file-link">Visit Documentation</a>
+                </div>
+            </div>
+        </body>
+        </html>' > index.html
+        aws s3 cp index.html s3://${{ inputs.aws_bucket_name }}/index.html
+
     - name: Invalidate CloudFront
       uses: chetan/invalidate-cloudfront-action@v2
       env:

.github/workflows/node.js.yaml

@@ -32,4 +32,6 @@ jobs:
       - run: npm test
         working-directory: ${{ env.WORKING_DIR }}
       - name: Vulnerability Scan
-        uses: IABTechLab/uid2-shared-actions/actions/vulnerability_scan_filesystem@v3
+        uses: IABTechLab/uid2-shared-actions/actions/vulnerability_scan@v3
+        with:
+          scan_type: 'fs'

.github/workflows/publish-package-to-cdn.yml

@@ -0,0 +1,191 @@
+name: Release SDK to NPM and CDN (v2)
+run-name: ${{ inputs.release_type == 'Snapshot' && 'Publish Pre-release' || format('Release {0}', inputs.release_type)}} SDK Package to NPM and CDN by @${{ github.actor }}
+
+on:
+  workflow_dispatch:
+    inputs:
+      release_type:
+        type: choice
+        description: The type of release
+        options:
+          - Major
+          - Minor
+          - Patch
+          - Snapshot
+        required: true
+      with_tag:
+        description: By default, running npm publish will tag your package with the latest dist-tag. To use another dist-tag, please add tag here
+        required: false
+      publish_to_npm:
+        type: boolean
+        description: Publish package to NPM (In general, always release to both)
+        required: false
+        default: true
+      publish_to_cdn:
+        type: boolean
+        description: Publish package to CDN (In general, always release to both)
+        required: false
+        default: true
+
+jobs:
+  incrementVersionNumber:
+    uses: IABTechLab/uid2-shared-actions/.github/workflows/shared-increase-version-number.yaml@v2
+    with:
+      release_type: ${{ inputs.release_type }}
+    secrets: inherit
+
+  build:
+    runs-on: ubuntu-latest
+    needs: [incrementVersionNumber]
+    strategy:
+      matrix:
+        node-version: [20.x]
+        target: [development, production]
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          ref: ${{ needs.incrementVersionNumber.outputs.git_tag_or_hash }}
+      - name: Use Node.js ${{ matrix.node-version }}
+        uses: actions/setup-node@v4
+        with:
+          node-version: ${{ matrix.node-version }}
+      - name: Get Package Version
+        id: version
+        run: |
+          echo "package_version=$(cat package.json | jq -r '.version')" >> $GITHUB_OUTPUT
+      - name: Install dependencies
+        run: npm install
+      - name: Build script
+        run: npm run build -- --mode=${{ matrix.target }}
+      - uses: actions/upload-artifact@v4
+        if: inputs.publish_to_cdn
+        with:
+          name: uid2SDK-${{ matrix.target }}-${{ steps.version.outputs.package_version }}
+          path: ./dist/uid2-sdk-${{ steps.version.outputs.package_version }}.js
+      - uses: actions/upload-artifact@v4
+        if: inputs.publish_to_cdn
+        with:
+          name: euidSDK-${{ matrix.target }}-${{ steps.version.outputs.package_version }}
+          path: ./dist/euid-sdk-${{ steps.version.outputs.package_version }}.js
+    outputs:
+      sdkVersion: ${{ steps.version.outputs.package_version }}
+
+  createNpmJsRelease:
+    needs: [incrementVersionNumber, build]
+    runs-on: ubuntu-latest
+    steps:
+      - name: Build Changelog
+        id: github_release_changelog
+        uses: mikepenz/release-changelog-builder-action@v4
+        with:
+          toTag: v${{ needs.incrementVersionNumber.outputs.new_version }}
+          configurationJson: |
+            {
+              "pr_template": " - #{{TITLE}} - ( PR: ##{{NUMBER}} )"
+            }
+      - name: Create Release Notes
+        uses: softprops/action-gh-release@v2
+        with:
+          name: v${{ needs.incrementVersionNumber.outputs.new_version }}
+          body: ${{ steps.github_release_changelog.outputs.changelog }}
+          draft: true
+
+  publish-package:
+    if: inputs.publish_to_npm
+    needs: [build, incrementVersionNumber]
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          ref: ${{ needs.incrementVersionNumber.outputs.git_tag_or_hash }}
+      - uses: actions/setup-node@v4
+        with:
+          node-version: '20.x'
+          registry-url: 'https://registry.npmjs.org'
+          scope: uid2
+      - run: npm ci
+      - name: Build package
+        run: npm run build-package
+      - name: Publish Latest package
+        if: ${{!github.event.inputs.with_tag}}
+        run: |
+          npm publish ./dist/uid2-npm --access public
+          npm publish ./dist/euid-npm --access public
+        env:
+          NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
+      - name: Publish Latest package with tag
+        if: ${{github.event.inputs.with_tag}}
+        run: |
+          npm publish ./dist/uid2-npm --tag ${{github.event.inputs.with_tag}} --access public
+          npm publish ./dist/euid-npm --tag ${{github.event.inputs.with_tag}} --access public
+        env:
+          NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
+
+  # Test Environment - UID2 only first
+  cdn-deployment-test:
+    if: inputs.publish_to_cdn
+    needs: [build, incrementVersionNumber]
+    runs-on: ubuntu-latest
+    permissions:
+      id-token: write
+    environment: uid2-test
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          ref: ${{ needs.incrementVersionNumber.outputs.git_tag_or_hash }}
+      - uses: ./.github/actions/cdn_deployment_aws
+        with:
+          artifact: uid2SDK-development-${{ needs.build.outputs.sdkVersion}}
+          invalidate_paths: '/uid2-sdk-${{ needs.build.outputs.sdkVersion}}.js'
+          aws_account_id: ${{ secrets.AWS_ACCOUNT_ID }}
+          aws_bucket_name: ${{ secrets.S3_BUCKET }}
+          aws_distribution_id: ${{ secrets.AWS_DISTRIBUTION_ID }}
+          deploy_index_html: 'true'
+
+  approval-to-deploy:
+    name: Approval To Deploy
+    needs: [cdn-deployment-test]
+    runs-on: ubuntu-latest
+    environment: approve-deployment
+    steps:
+      - name: Approval to deploy
+        shell: bash
+        run: echo "Approved"
+
+  # Consolidated CDN Deployment with Matrix
+  cdn-deployment:
+    if: inputs.publish_to_cdn
+    needs: [build, incrementVersionNumber, approval-to-deploy]
+    runs-on: ubuntu-latest
+    permissions:
+      id-token: write
+    strategy:
+      matrix:
+        include:
+          # UID2 Environments
+          - product: uid2
+            github_env: uid2-integ
+            build_type: development
+          - product: uid2
+            github_env: uid2-prod
+            build_type: production
+          # EUID Environments
+          - product: euid
+            github_env: euid-integ
+            build_type: development
+          - product: euid
+            github_env: euid-prod
+            build_type: production
+    environment: ${{ matrix.github_env }}
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          ref: ${{ needs.incrementVersionNumber.outputs.git_tag_or_hash }}
+      - uses: ./.github/actions/cdn_deployment_aws
+        with:
+          artifact: ${{ matrix.product }}SDK-${{ matrix.build_type }}-${{ needs.build.outputs.sdkVersion}}
+          invalidate_paths: '/${{ matrix.product }}-sdk-${{ needs.build.outputs.sdkVersion}}.js'
+          aws_account_id: ${{ secrets.AWS_ACCOUNT_ID }}
+          aws_bucket_name: ${{ secrets.S3_BUCKET }}
+          aws_distribution_id: ${{ secrets.AWS_DISTRIBUTION_ID }}
+          deploy_index_html: 'true'

.github/workflows/release-secure-signal-examples-docker-image-server-only.yaml

@@ -30,7 +30,7 @@ jobs:
       release_type: ${{ inputs.release_type }}
       docker_file: examples/google-secure-signals-integration/server_side/Dockerfile
       docker_context: examples/google-secure-signals-integration/server_side
-      docker_image_name: iabtechlab/uid2-secure-signals-example-srvonly
+      docker_image_name: iabtechlab/uid2-esp-example-srvonly
       docker_registry: ghcr.io
       force_release: no
     secrets: inherit

.github/workflows/release-secure-signal-examples-docker-image-standard.yaml

@@ -30,7 +30,7 @@ jobs:
       release_type: ${{ inputs.release_type }}
       docker_file: examples/google-secure-signals-integration/with_sdk_v3/Dockerfile
       docker_context: examples/google-secure-signals-integration/with_sdk_v3
-      docker_image_name: iabtechlab/uid2-secure-signals-example-jssdk
+      docker_image_name: iabtechlab/uid2-esp-example-jssdk
       docker_registry: ghcr.io
       force_release: no
     secrets: inherit

.github/workflows/secureSignal-cd.yaml

@@ -74,7 +74,6 @@ jobs:
       - name: Deploy UID2 Secure Signals to CDN
         uses: ./.github/actions/cdn_deployment_aws
         with:
-          environment: ${{ matrix.environment }}
           artifact: ${{ (matrix.environment == 'integ' && 'development') || matrix.environment }}Uid2SecureSignalScript
           invalidate_paths: '/uid2SecureSignal.js'
           aws_account_id: ${{ vars.AWS_ACCOUNT_ID }}
@@ -83,7 +82,6 @@ jobs:
       - name: Deploy EUID Secure Signals to CDN
         uses: ./.github/actions/cdn_deployment_aws
         with:
-          environment: ${{ matrix.environment }}
           artifact: ${{ (matrix.environment == 'integ' && 'development') || matrix.environment }}EuidSecureSignalScript
           invalidate_paths: '/euidSecureSignal.js'
           aws_account_id: ${{ vars.EUID_AWS_ACCOUNT_ID }}