-
Notifications
You must be signed in to change notification settings - Fork 280
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #190 from akostadinov/master
workflow to build container images
- Loading branch information
Showing
1 changed file
with
100 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,100 @@ | ||
| name: Container Image | ||
|
|
||
| on: | ||
| workflow_dispatch: {} | ||
| workflow_call: {} | ||
| schedule: | ||
| # every Wednesday morning | ||
| - cron: 7 7 * * 3 | ||
| push: | ||
| branches: [ master ] | ||
| tags: | ||
| - '*' # Push events to every tag not containing / | ||
| pull_request: | ||
| types: [opened, reopened, synchronize] | ||
|
|
||
| concurrency: | ||
| group: ci-container-build-${{ github.ref }}-1 | ||
| cancel-in-progress: true | ||
|
|
||
| env: | ||
| # Use docker.io for Docker Hub if empty | ||
| REGISTRY: ghcr.io | ||
| # github.repository as <account>/<repo> | ||
| IMAGE_NAME: ${{ github.repository }} | ||
|
|
||
| # Sets permissions of the GITHUB_TOKEN to allow deployment to ghcr.io | ||
| permissions: | ||
| contents: read | ||
| packages: write | ||
| id-token: write | ||
|
|
||
| jobs: | ||
| buildah: | ||
| runs-on: ubuntu-latest | ||
| steps: | ||
| # Allow multi-target builds | ||
| - name: Set up QEMU | ||
| uses: docker/setup-qemu-action@v2 | ||
| with: | ||
| platforms: arm64 | ||
| # Login against a Docker registry except on PR | ||
| # https://github.com/docker/login-action | ||
| - name: Log into registry ${{ env.REGISTRY }} | ||
| if: github.event_name != 'pull_request' | ||
| uses: redhat-actions/podman-login@v1 | ||
| with: | ||
| registry: ${{ env.REGISTRY }} | ||
| username: ${{ github.actor }} | ||
| password: ${{ secrets.GITHUB_TOKEN }} | ||
| # Extract metadata (tags, labels) for Docker | ||
| # https://github.com/docker/metadata-action | ||
| - name: Docker meta | ||
| id: meta | ||
| uses: docker/metadata-action@v4 | ||
| with: | ||
| images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }} | ||
| tags: | | ||
| type=schedule | ||
| type=raw,value=latest,enable=${{ github.ref_name == 'master' }} | ||
| ${{ github.ref_name == 'master' && 'type=raw,value=nightly' || 'type=ref,event=branch' }} | ||
| type=ref,event=tag | ||
| type=ref,event=pr | ||
| # https://github.com/actions/checkout | ||
| - uses: actions/checkout@v3 | ||
|
|
||
| - name: Build image | ||
| id: build-image | ||
| uses: redhat-actions/buildah-build@v2 | ||
| with: | ||
| tags: ${{ steps.meta.outputs.tags }} | ||
| platforms: linux/amd64 | ||
| labels: ${{ steps.meta.outputs.labels }} | ||
| layers: false | ||
| oci: true | ||
| tls-verify: true | ||
| extra-args: | | ||
| --squash | ||
| --jobs=3 | ||
| containerfiles: | | ||
| Dockerfile | ||
| - name: Echo Outputs | ||
| run: | | ||
| echo "Image: ${{ steps.build-image.outputs.image }}" | ||
| echo "Tags: ${{ steps.build-image.outputs.tags }}" | ||
| echo "Tagged Image: ${{ steps.build-image.outputs.image-with-tag }}" | ||
| - name: Check images created | ||
| run: buildah images | ||
|
|
||
| - name: Push To Container Registry | ||
| id: push-to-container-registry | ||
| uses: redhat-actions/push-to-registry@v2 | ||
| if: github.event_name != 'pull_request' | ||
| with: | ||
| tags: ${{ steps.build-image.outputs.tags }} | ||
|
|
||
| - name: Print image url | ||
| run: echo "Image pushed to ${{ steps.push-to-container-registry.outputs.registry-paths }}" |