Skip to content

Commit

Permalink
HDDS-11632. Publish images to GitHub container repo (#32)
Browse files Browse the repository at this point in the history
(cherry picked from commit 7ef3e0b)
  • Loading branch information
adoroszlai committed Nov 12, 2024
1 parent 783149e commit aca1f6e
Show file tree
Hide file tree
Showing 2 changed files with 177 additions and 0 deletions.
84 changes: 84 additions & 0 deletions .github/workflows/build-and-tag.yaml
Original file line number Diff line number Diff line change
@@ -0,0 +1,84 @@
# Licensed to the Apache Software Foundation (ASF) under one or more
# contributor license agreements. See the NOTICE file distributed with
# this work for additional information regarding copyright ownership.
# The ASF licenses this file to You under the Apache License, Version 2.0
# (the "License"); you may not use this file except in compliance with
# the License. You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.

name: build-and-tag

# This workflow builds (if necessary) and tags the Docker image.
# Images are tagged by extracting the version from branch name:
# ozone-X.Y -> X.Y

on:
push:
branches:
- 'ozone-**'

permissions:
contents: read
packages: write

jobs:
build:
uses: ./.github/workflows/build.yaml

tag:
needs: build
runs-on: ubuntu-latest
env:
DOCKERHUB_USER: ${{ secrets.DOCKERHUB_USER }}
IMAGE_ID: ${{ needs.build.outputs.image-id }}
REGISTRIES: ghcr.io # docker.io is appended dynamically
steps:
- name: Generate tags
uses: docker/metadata-action@8e5442c4ef9f78752691e2d8f8d19755c6f78e81
with:
images: |
${{ github.repository_owner }}/ozone
tags: |
type=match,pattern=ozone-(.*),value={{branch}},group=1
flavor: |
latest=false
- name: Add Docker Hub to targets
if: ${{ env.DOCKERHUB_USER }}
run: |
echo "REGISTRIES=${{ env.REGISTRIES }} docker.io" >> $GITHUB_ENV
- name: Pull image
run: |
docker pull "$IMAGE_ID"
- name: Login to GitHub Container Registry
uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567
with:
registry: ghcr.io
username: ${{ github.repository_owner }}
password: ${{ secrets.GITHUB_TOKEN }}

- name: Login to Docker Hub
if: ${{ env.DOCKERHUB_USER }}
uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567
with:
username: ${{ env.DOCKERHUB_USER }}
password: ${{ secrets.DOCKERHUB_TOKEN }}

- name: Apply tags to existing image
run: |
set -x
for registry in $REGISTRIES; do
opts="$(echo "$DOCKER_METADATA_OUTPUT_TAGS" | sed "s@^@--tag $registry/@g" | xargs echo)"
if [[ -n "$opts" ]]; then
docker buildx imagetools create $opts "$IMAGE_ID"
fi
done
93 changes: 93 additions & 0 deletions .github/workflows/build.yaml
Original file line number Diff line number Diff line change
@@ -0,0 +1,93 @@
# Licensed to the Apache Software Foundation (ASF) under one or more
# contributor license agreements. See the NOTICE file distributed with
# this work for additional information regarding copyright ownership.
# The ASF licenses this file to You under the Apache License, Version 2.0
# (the "License"); you may not use this file except in compliance with
# the License. You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.

name: build

# This workflow builds the Docker image if it does not exists already.
# For non-PR runs, it also publishes the image to the registry, tagging it by the full SHA of the commit.

on:
pull_request:
types: [opened, ready_for_review, synchronize]
push:
branches-ignore:
- 'ozone-**'
workflow_call:
outputs:
image-id:
description: "Docker image ID in repo/owner/name:tag format"
value: ${{ jobs.build.outputs.image-id }}

concurrency:
group: ${{ github.sha }}
cancel-in-progress: false

permissions:
contents: read
packages: write

jobs:
build:
runs-on: ubuntu-latest
outputs:
image-id: ${{ steps.meta.outputs.tags }}
steps:
- name: Generate image ID
id: meta
uses: docker/metadata-action@8e5442c4ef9f78752691e2d8f8d19755c6f78e81
with:
images: |
ghcr.io/${{ github.repository_owner }}/ozone
tags: |
# keep single item
# any further tags should be added only in build-and-tag.yaml, not here
type=sha,prefix=,format=long
- name: Check if image exists
id: pull
run: |
success=false
if docker pull "$DOCKER_METADATA_OUTPUT_TAGS"; then
success=true
fi
echo "success=$success" >> $GITHUB_OUTPUT
- name: Set up QEMU
if: ${{ steps.pull.outputs.success == 'false' }}
uses: docker/setup-qemu-action@49b3bc8e6bdd4a60e6116a5414239cba5943d3cf

- name: Set up Docker Buildx
if: ${{ steps.pull.outputs.success == 'false' }}
uses: docker/setup-buildx-action@c47758b77c9736f4b2ef4073d4d51994fabfe349

- name: Login to GitHub Container Registry
id: login
if: ${{ github.event_name != 'pull_request' && steps.pull.outputs.success == 'false' }}
uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567
with:
registry: ghcr.io
username: ${{ github.repository_owner }}
password: ${{ secrets.GITHUB_TOKEN }}

- name: Build and push image to GitHub Container Registry
id: build
if: ${{ steps.pull.outputs.success == 'false' }}
uses: docker/build-push-action@4f58ea79222b3b9dc2c8bbdd6debcef730109a75
with:
platforms: linux/amd64,linux/arm64
push: ${{ github.event_name != 'pull_request' }}
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}

0 comments on commit aca1f6e

Please sign in to comment.