Build someengineering/fix-collect-single Docker image #599
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Build someengineering/fix-collect-single Docker image | |
on: | |
push: | |
tags: | |
- '*.*.*' | |
branches: | |
- main | |
pull_request: | |
branches: | |
- main | |
workflow_dispatch: | |
jobs: | |
split-build: | |
name: Build Docker images | |
runs-on: ubuntu-latest | |
steps: | |
- name: Check out repository | |
uses: actions/checkout@v3 | |
- name: Set build platforms | |
id: platform | |
run: | | |
GITHUB_REF="${{ github.ref }}" | |
GITHUB_TAG=${GITHUB_REF##*/} | |
echo "targets=linux/amd64,linux/arm64" >> $GITHUB_OUTPUT | |
if [ "${{ github.ref_type }}" = tag ]; then | |
if [[ "$GITHUB_TAG" =~ [0-9]([ab]|rc)[0-9]* ]]; then | |
echo "latest=false" >> $GITHUB_OUTPUT | |
else | |
echo "latest=true" >> $GITHUB_OUTPUT | |
fi | |
else | |
echo "latest=false" >> $GITHUB_OUTPUT | |
fi | |
- name: Check short commit SHA and build targets | |
run: | | |
echo ${{ steps.platform.outputs.targets }} | |
echo ${{ steps.platform.outputs.latest }} | |
- name: Generate full hash | |
id: full_hash | |
run: | | |
FIXINVENTORY_SHORT_SHA=$(curl -s -H "Authorization: token ${{ secrets.SOME_CI_PAT }}" https://api.github.com/repos/someengineering/fixinventory/git/ref/heads/main | jq -r '.object.sha[:7]') | |
echo "Resulting combined hash is ${FIXINVENTORY_SHORT_SHA}_${GITHUB_SHA::7}" | |
echo "full_hash=${FIXINVENTORY_SHORT_SHA}_${GITHUB_SHA::7}" >> $GITHUB_OUTPUT | |
- name: Docker metadata | |
id: metadata | |
uses: docker/metadata-action@v4 | |
with: | |
images: | | |
someengineering/fix-collect-single | |
ghcr.io/someengineering/fix-collect-single | |
flavor: | | |
latest=${{ steps.platform.outputs.latest }} | |
tags: | | |
type=pep440,pattern={{version}} | |
type=pep440,pattern={{major}}.{{minor}} | |
type=pep440,pattern={{major}} | |
type=sha,prefix= | |
type=edge | |
labels: | | |
org.opencontainers.image.title=fix-collect-single | |
org.opencontainers.image.description=Run a single collect cycle. | |
org.opencontainers.image.vendor=Some Engineering Inc. | |
- name: Set up QEMU | |
id: qemu | |
uses: docker/setup-qemu-action@v2 | |
with: | |
platforms: arm64,amd64 | |
- name: Set up Docker Buildx | |
id: buildx | |
uses: docker/setup-buildx-action@v2 | |
- name: Log in to Docker Hub | |
if: github.event_name != 'pull_request' | |
uses: docker/login-action@v2 | |
with: | |
username: ${{ secrets.DOCKERHUB_USER }} | |
password: ${{ secrets.DOCKERHUB_PASS }} | |
- name: Log in to GitHub Container Registry | |
if: github.event_name != 'pull_request' | |
uses: docker/login-action@v2 | |
with: | |
registry: ghcr.io | |
username: ${{ github.actor }} | |
password: ${{ secrets.GITHUB_TOKEN }} | |
- name: Build and push fix-collect-single Docker image | |
uses: docker/build-push-action@v3 | |
with: | |
context: . | |
file: ./Dockerfile | |
platforms: ${{ steps.platform.outputs.targets }} | |
push: ${{ github.event_name != 'pull_request' }} | |
tags: ${{ steps.metadata.outputs.tags }},"someengineering/fix-collect-single:${{ steps.full_hash.outputs.full_hash }}" | |
labels: ${{ steps.metadata.outputs.labels }} | |
provenance: false # Temporary workaround for https://github.com/docker/buildx/issues/1533 | |
- name: Setup yq | |
uses: mikefarah/yq@master | |
- name: Authenticate with GitHub CLI | |
if: github.event_name != 'pull_request' | |
run: | | |
gh auth login --with-token <<< "${{ secrets.SOME_CI_PAT }}" | |
- name: Bump tag version | |
if: github.event_name != 'pull_request' | |
env: | |
GITHUB_TOKEN: ${{ secrets.SOME_CI_PAT }} | |
run: | | |
git config --global user.email "[email protected]" | |
git config --global user.name "Some CI" | |
git clone "https://[email protected]/someengineering/setup-infra.git" | |
# update the tag | |
cd setup-infra | |
yq eval "(.configMapGenerator[] | select(.name == \"fix-collect-coordinator-versions\") | .literals)[] |= sub(\"FIX_COLLECT_SINGLE_VERSION=.*\", \"FIX_COLLECT_SINGLE_VERSION=${{ steps.full_hash.outputs.full_hash }}\")" -i argocd/envs/dev/fix-collect-coordinator/kustomization.yaml | |
git add . | |
git commit -m "Bump fix-collect-single on dev to ${{ steps.full_hash.outputs.full_hash }}" | |
git push origin main |