openimsdk
diff --git a/Diff for: ‎.env
+2-2 b/Diff for: ‎.env
+2-2
diff --git a/Diff for: ‎.github/workflows/auto-release.yml
+26 b/Diff for: ‎.github/workflows/auto-release.yml
+26
diff --git a/Diff for: ‎.github/workflows/bot-auto-cherry-pick.yml
+53 b/Diff for: ‎.github/workflows/bot-auto-cherry-pick.yml
+53
diff --git a/Diff for: ‎.github/workflows/bot-cherry-pick.yml
+19 b/Diff for: ‎.github/workflows/bot-cherry-pick.yml
+19
diff --git a/Diff for: ‎.github/workflows/build-docker-image.yml
+15-2 b/Diff for: ‎.github/workflows/build-docker-image.yml
+15-2
diff --git a/Diff for: ‎.github/workflows/cla.yml
+48 b/Diff for: ‎.github/workflows/cla.yml
+48
diff --git a/Diff for: ‎.github/workflows/deploy.yml
+45 b/Diff for: ‎.github/workflows/deploy.yml
+45
diff --git a/Diff for: ‎.github/workflows/depsreview.yaml
+18 b/Diff for: ‎.github/workflows/depsreview.yaml
+18
diff --git a/Diff for: ‎.github/workflows/e2e-test.yml
+2 b/Diff for: ‎.github/workflows/e2e-test.yml
+2
diff --git a/Diff for: ‎.github/workflows/golangci-link.yml
+1-1 b/Diff for: ‎.github/workflows/golangci-link.yml
+1-1
diff --git a/Diff for: ‎.github/workflows/gosec.yml
+29-28 b/Diff for: ‎.github/workflows/gosec.yml
+29-28
diff --git a/Diff for: ‎.github/workflows/image.yml
+14 b/Diff for: ‎.github/workflows/image.yml
+14
@@ -1,5 +1,5 @@
 USER=root
 PASSWORD=openIM123
-MINIO_ENDPOINT=http://127.0.0.1:10005
-API_URL=http://127.0.0.1:10002/object/
+MINIO_ENDPOINT=http://116.30.3.80:10005
+API_URL=http://116.30.3.80:10002/object/
 DATA_DIR=./
@@ -0,0 +1,26 @@
+name: Automatic Rebase
+on:
+  issue_comment:
+    types: [created]
+jobs:
+  rebase:
+    name: Rebase
+    runs-on: ubuntu-latest
+    if: >-
+      github.event.issue.pull_request != '' && 
+      (
+        contains(github.event.comment.body, '/rebase') || 
+        contains(github.event.comment.body, '/autosquash')
+      )
+    steps:
+      - name: Checkout the latest code
+        uses: actions/checkout@v3
+        with:
+          token: ${{ secrets.BOT_GITHUB_TOKEN }}
+          fetch-depth: 0 # otherwise, you will fail to push refs to dest repo
+      - name: Automatic Rebase
+        uses: cirrus-actions/[email protected]
+        with:
+          autosquash: ${{ contains(github.event.comment.body, '/autosquash') || contains(github.event.comment.body, '/rebase-autosquash') }}
+        env:
+          GITHUB_TOKEN: ${{ secrets.BOT_GITHUB_TOKEN }}
@@ -0,0 +1,53 @@
+name: 'Github Rebot for Cherry Pick when PR is merged'
+on:
+  pull_request_target:
+    types:
+      - closed
+
+jobs:
+  comment:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Comment cherry-pick command
+        uses: actions/github-script@v5
+        with:
+          script: |
+            const pr = context.payload.pull_request;
+            if (!pr.merged) {
+              console.log("PR is not merged. Skipping...");
+              return;
+            }
+            if (!pr.milestone || !pr.milestone.title) {
+              console.log("Milestone is not set. Skipping...");
+              return;
+            }
+            const milestone = pr.milestone.title;
+            const ref = `heads/release-${milestone}`;
+            let branchExists;
+            try {
+              await github.rest.git.getRef({
+                owner: context.repo.owner,
+                repo: context.repo.repo,
+                ref: ref
+              });
+              branchExists = true;
+            } catch (error) {
+              if (error.status === 404) {
+                console.log(`Branch ${ref} does not exist. Skipping...`);
+                branchExists = false;
+              } else {
+                throw error; // Rethrow if it's another error
+              }
+            }
+            if (!branchExists) {
+              return;
+            }
+            const cherryPickCmd = `/cherry-pick release-${milestone}`;
+            console.log(`Adding comment: ${cherryPickCmd}`);
+            await github.rest.issues.createComment({
+              owner: context.repo.owner,
+              repo: context.repo.repo,
+              issue_number: pr.number,
+              body: cherryPickCmd
+            });
+          github-token: ${{ secrets.BOT_GITHUB_TOKEN }}
@@ -0,0 +1,19 @@
+name: Github Rebot for Cherry Pick On Comment
+on:
+  issue_comment:
+    types: [created]
+jobs:
+  cherry-pick:
+    name: Cherry Pick
+    if: github.event.issue.pull_request != '' && contains(github.event.comment.body, '/cherry-pick') && github.event.comment.user.login=='kubbot'
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout the latest code
+        uses: actions/checkout@v2
+        with:
+          token: ${{ secrets.BOT_GITHUB_TOKEN }}
+          fetch-depth: 0 # otherwise, you will fail to push refs to dest repo
+      - name: Automatic Cherry Pick
+        uses: vendoo/gha-cherry-pick@v1
+        env:
+          GITHUB_TOKEN: ${{ secrets.BOT_GITHUB_TOKEN }}
@@ -1,3 +1,17 @@
+# Copyright © 2023 OpenIM open source community. All rights reserved.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
 name: OpenIM Build Docker Images
 on:
   push:
@@ -9,8 +23,7 @@ jobs:
     strategy:
       matrix:
         bin:
-          - ssserver
-          - sslocal
+          - openim-server
     steps:
       - name: Checkout
         uses: actions/checkout@v3
 
@@ -0,0 +1,48 @@
+name: "OpenIM CLA Assistant"
+on:
+  issue_comment:
+    types: [created]
+  pull_request_target:
+    types: [opened,closed,synchronize]
+
+# explicitly configure permissions, in case your GITHUB_TOKEN workflow permissions are set to read-only in repository settings
+permissions:
+  actions: write
+  contents: write
+  pull-requests: write
+  statuses: write
+
+env:
+  # Define Open-IM-Server variables here
+  REMOTE_ORGANIZATION: open-im-server
+  REMOTE_REPOSITORY: cla
+
+  OPEN_IM_SERVER_CLA_DOCUMENT: https://github.com/openim-sigs/cla/blob/main/README.md
+  OPEN_IM_SERVER_SIGNATURES_PATH: signatures/openkf/cla.json
+  OPEN_IM_SERVER_ALLOWLIST: kubbot,bot*
+  OPEN_IM_SERVER_REMOTE_ORGANIZATION: openim-sigs
+
+jobs:
+  CLAAssistant:
+    runs-on: ubuntu-latest
+    steps:
+      - name: "CLA Assistant"
+        if: (github.event.comment.body == 'recheck' || github.event.comment.body == 'I have read the CLA Document and I hereby sign the CLA') || github.event_name == 'pull_request_target'
+        uses: contributor-assistant/[email protected]
+        env:
+          GITHUB_TOKEN: ${{ secrets.BOT_GITHUB_TOKEN }}
+          PERSONAL_ACCESS_TOKEN: ${{ secrets.REDBOT_GITHUB_TOKEN }}
+        with:
+          path-to-signatures: ${{ env.OPEN_IM_SERVER_SIGNATURES_PATH }}
+          path-to-document: ${{ env.OPEN_IM_SERVER_CLA_DOCUMENT }}
+          branch: 'main'
+          allowlist: ${{ env.OPEN_IM_SERVER_ALLOWLIST }}
+
+          remote-organization-name: ${{ env.OPEN_IM_SERVER_REMOTE_ORGANIZATION }}
+          remote-repository-name: ${{ env.REMOTE_REPOSITORY }}
+          create-file-commit-message: '📚 Docs: Creating file for storing ${{ env.REMOTE_ORGANIZATION }} CLA Signatures'
+          custom-notsigned-prcomment: '💕 Thank you for your contribution and please kindly read and sign our [🎯https://github.com/openim-sigs/cla/blob/main/README.md](https://github.com/openim-sigs/cla/blob/main/README.md)'
+          custom-pr-sign-comment: 'The signature to be committed in order to sign the CLA'
+          custom-allsigned-prcomment: '🤖 All Contributors have signed the ${{ env.REMOTE_ORGANIZATION }} [CLA](https://github.com/openim-sigs/cla/blob/main/README.md).'
+        #   lock-pullrequest-aftermerge: false - if you don't want this bot to automatically lock the pull request after merging (default - true)
+        #   use-dco-flag: true - If you are using DCO instead of CLA
@@ -0,0 +1,45 @@
+name: deploy for dev
+
+on:
+    push:
+        branches:
+            - 'devops' # Only for the dev branch
+        paths:
+            - '.github/workflows/*'
+            # - '__test__/**' # dev No immediate testing is required
+            - 'src/**'
+            - 'Dockerfile'
+            - 'docker-compose.yml'
+            - 'bin/*'
+
+jobs:
+    deploy-dev:
+        runs-on: ubuntu-latest
+
+        steps:
+            - uses: actions/checkout@v2
+            - name: set ssh key # Temporarily set up ssh key
+              run: |
+                  mkdir -p ~/.ssh/
+                  # secrets.WFP_ID_RSA set in GitHub
+                  echo "${{secrets.WFP_ID_RSA}}" > ~/.ssh/id_rsa
+                  chmod 600 ~/.ssh/id_rsa
+                  ssh-keyscan "182.92.xxx.xxx" >> ~/.ssh/known_hosts
+            - name: deploy # Deployment
+              run: |
+                  ssh [email protected] "
+                    # 【Attention】Log in with the 'work' account, manually create /home/work/imooc-lego directory
+                    # Then git clone https://username:[email protected]/imooc-lego/biz-editor-server.git -b dev (private repository, use GitHub username and password)
+                    # Remember to delete origin to avoid exposing GitHub password
+
+                    cd /home/work/imooc-lego/biz-editor-server;
+                    git remote add origin https://openimbot:${{secrets.WFP_PASSWORD}}@github.com/OpenIMSDK/open-im-server.git;
+                    git checkout dev;
+                    git pull origin dev; # Download the latest code again
+                    git remote remove origin; # Remove origin to avoid exposing GitHub password
+                    # Start docker
+                    docker-compose build editor-server; # Same as the service name in docker-compose.yml
+                    docker-compose up -d;
+                  "
+            - name: delete ssh key # Delete ssh key
+              run: rm -rf ~/.ssh/id_rsa
@@ -0,0 +1,18 @@
+# Copyright © 2023 KubeCub open source community. All rights reserved.
+# Licensed under the MIT License (the "License");
+# you may not use this file except in compliance with the License.
+
+name: Dependency Review
+on: [pull_request]
+
+permissions:
+  contents: read
+
+jobs:
+  dependency-review:
+    runs-on: ubuntu-latest
+    steps:
+      - name: 'Checkout Repository'
+        uses: actions/checkout@v3
+      - name: 'Dependency Review'
+        uses: actions/dependency-review-action@v3
@@ -0,0 +1,2 @@
+
+# name: OpenIM e2e Test
@@ -13,7 +13,7 @@
 # limitations under the License.
 
 
-name: OpenKF golangci-lint
+name: OpenIM golangci-lint
 on:
   push:
     branches: [main]
 
@@ -1,30 +1,31 @@
-# name: Run gosec
+name: OpenIM Run Gosec
 
-# # gosec is a source code security audit tool for the Go language. It performs a static 
-# # analysis of the Go code, looking for potential security problems. The main functions of gosec are:
-# #     1. Find common security vulnerabilities, such as SQL injection, command injection, and cross-site scripting (XSS).
-# #     2. Audit codes according to common security standards and find non-standard codes.
-# #     3. Assist the Go language engineer to write safe and reliable code.
+# gosec is a source code security audit tool for the Go language. It performs a static 
+# analysis of the Go code, looking for potential security problems. The main functions of gosec are:
+#     1. Find common security vulnerabilities, such as SQL injection, command injection, and cross-site scripting (XSS).
+#     2. Audit codes according to common security standards and find non-standard codes.
+#     3. Assist the Go language engineer to write safe and reliable code.
+# https://github.com/securego/gosec/
+on:
+  push:
+    branches: "*"
+  pull_request:
+    branches: "*"
+    paths-ignore:
+      - '*.md'
+      - '*.yml'
+      - '.github'
 
-# on:
-#   push:
-#     branches: "*"
-#   pull_request:
-#     branches: "*"
-#     paths-ignore:
-#       - '*.md'
-#       - '*.yml'
-#       - '.github'
-
-# jobs:
-#   golang-security-action:
-#     runs-on: ubuntu-latest
-#     env:
-#       GO111MODULE: on
-#     steps:
-#       - name: Check out code
-#         uses: actions/checkout@v3
-#       - name: Run Gosec Security Scanner
-#         uses: securego/gosec@master
-#         with:
-#           args: ./...
+jobs:
+  golang-security-action:
+    runs-on: ubuntu-latest
+    env:
+      GO111MODULE: on
+    steps:
+      - name: Check out code
+        uses: actions/checkout@v3
+      - name: Run Gosec Security Scanner
+        uses: securego/gosec@master
+        with:
+          args: ./...
+        continue-on-error: true
@@ -1,3 +1,17 @@
+# Copyright © 2023 OpenIM open source community. All rights reserved.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
 name: Build Image
 
 on: