Build and push images #248
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Build and push images | |
on: | |
push: | |
branches: | |
- 'main' | |
- 'master' | |
workflow_dispatch: | |
inputs: | |
authorinoVersion: | |
description: Authorino version | |
required: true | |
default: latest | |
channels: | |
description: Bundle and catalog channels, comma separated | |
required: true | |
default: stable | |
env: | |
IMG_TAGS: ${{ github.sha }} | |
IMG_REGISTRY_HOST: quay.io | |
IMG_REGISTRY_ORG: kuadrant | |
MAIN_BRANCH_NAME: main | |
OPERATOR_NAME: authorino-operator | |
BUILD_CONFIG_FILE: build.yaml | |
LATEST_AUTHORINO_GITREF: ${{ vars.AUTHORINO_SHA != '' && vars.AUTHORINO_SHA || 'latest' }} | |
jobs: | |
build: | |
name: Build and push image | |
runs-on: ubuntu-20.04 | |
steps: | |
- name: Check out code | |
uses: actions/checkout@v3 | |
- name: Add latest tag | |
if: ${{ github.ref_name == env.MAIN_BRANCH_NAME }} | |
id: add-latest-tag | |
run: | | |
echo "IMG_TAGS=latest ${{ env.IMG_TAGS }}" >> $GITHUB_ENV | |
- name: Add branch tag | |
if: ${{ github.ref_name != env.MAIN_BRANCH_NAME }} | |
id: add-branch-tag | |
run: | | |
echo "IMG_TAGS=${GITHUB_REF_NAME/\//-} ${{ env.IMG_TAGS }}" >> $GITHUB_ENV | |
- name: Set Operator version | |
id: operator-version | |
run: | | |
if [[ ${GITHUB_REF_NAME/\//-} =~ ^v[0-9]+\.[0-9]+\.[0-9]+(-.+)?$ ]]; then | |
echo "VERSION=${GITHUB_REF_NAME/\//-}" >> $GITHUB_ENV | |
else | |
echo "VERSION=${{ github.sha }}" >> $GITHUB_ENV | |
fi | |
- name: Set up QEMU | |
uses: docker/setup-qemu-action@v3 | |
- name: Install yq dependency | |
run: make yq | |
- name: Set default authorino image | |
run: | | |
echo "DEFAULT_AUTHORINO_IMAGE=$(./bin/yq e -e '.config.authorinoImage' ${{ env.BUILD_CONFIG_FILE }} || echo ${{ env.IMG_REGISTRY_HOST }}/${{ env.IMG_REGISTRY_ORG }}/authorino:${{ env.LATEST_AUTHORINO_GITREF }})" >> $GITHUB_ENV | |
- name: Build Image | |
id: build-image | |
uses: redhat-actions/buildah-build@v2 | |
with: | |
image: ${{ env.OPERATOR_NAME }} | |
tags: ${{ env.IMG_TAGS }} | |
platforms: linux/amd64,linux/arm64,linux/s390x,linux/ppc64le | |
build-args: | | |
OPERATOR_VERSION=${{ env.VERSION }} | |
GIT_SHA=${{ github.sha }} | |
DIRTY=false | |
DEFAULT_AUTHORINO_IMAGE=${{ env.DEFAULT_AUTHORINO_IMAGE }} | |
containerfiles: | | |
./Dockerfile | |
- name: Push Image | |
if: ${{ !env.ACT }} | |
id: push-to-quay | |
uses: redhat-actions/push-to-registry@v2 | |
with: | |
image: ${{ steps.build-image.outputs.image }} | |
tags: ${{ steps.build-image.outputs.tags }} | |
registry: ${{ env.IMG_REGISTRY_HOST }}/${{ env.IMG_REGISTRY_ORG }} | |
username: ${{ secrets.IMG_REGISTRY_USERNAME }} | |
password: ${{ secrets.IMG_REGISTRY_TOKEN }} | |
- name: Print Image URL | |
run: echo "Image pushed to ${{ steps.push-to-quay.outputs.registry-paths }}" | |
build-bundle: | |
needs: build | |
name: Build and push bundle image | |
runs-on: ubuntu-20.04 | |
if: github.ref_name == 'main' || startsWith(github.ref, 'refs/tags/v') # We cannot use `env.MAIN_BRANCH_NAME` because `env` context is not available to `job.if`. See https://docs.github.com/en/actions/learn-github-actions/contexts#context-availability | |
steps: | |
- name: Set up Go 1.21.x | |
uses: actions/setup-go@v4 | |
with: | |
go-version: 1.21.x | |
id: go | |
- name: Check out code | |
uses: actions/checkout@v3 | |
- name: Add latest tag | |
if: ${{ github.ref_name == env.MAIN_BRANCH_NAME }} | |
id: add-latest-tag | |
run: | | |
echo "IMG_TAGS=latest ${{ env.IMG_TAGS }}" >> $GITHUB_ENV | |
- name: Add release tag | |
if: ${{ github.ref_name != env.MAIN_BRANCH_NAME }} | |
id: add-branch-tag | |
run: | | |
TAG_NAME=${GITHUB_REF_NAME/\//-} | |
echo "TAG_NAME=${TAG_NAME}" >> $GITHUB_ENV | |
echo "IMG_TAGS=${TAG_NAME} ${{ env.IMG_TAGS }}" >> $GITHUB_ENV | |
- name: Set Operator version | |
id: operator-version | |
run: | | |
tag=${GITHUB_REF_NAME} | |
if [[ ${tag} =~ ^v[0-9]+\.[0-9]+\.[0-9]+(-.+)?$ ]]; then | |
echo "VERSION=${tag#v}" >> $GITHUB_ENV | |
else | |
echo "VERSION=${{ github.sha }}" >> $GITHUB_ENV | |
fi | |
- name: Set up QEMU | |
uses: docker/setup-qemu-action@v3 | |
- name: Run make bundle (main) | |
if: ${{ github.ref_name == env.MAIN_BRANCH_NAME }} | |
run: make bundle REGISTRY=${{ env.IMG_REGISTRY_HOST }} ORG=${{ env.IMG_REGISTRY_ORG }} IMAGE_TAG=${{ github.sha }} AUTHORINO_VERSION=${{ env.LATEST_AUTHORINO_GITREF }} | |
- name: Run make bundle (release) | |
if: ${{ github.ref_name != env.MAIN_BRANCH_NAME }} | |
run: make bundle REGISTRY=${{ env.IMG_REGISTRY_HOST }} ORG=${{ env.IMG_REGISTRY_ORG }} VERSION=${{env.VERSION}} AUTHORINO_VERSION=${{ github.event.inputs.authorinoVersion }} CHANNELS=${{ github.event.inputs.channels }} DEFAULT_CHANNEL=stable | |
- name: Git diff | |
run: git diff | |
- name: Verify manifests and bundle (main) | |
if: github.ref_name == env.MAIN_BRANCH_NAME | |
run: make verify-manifests verify-bundle REGISTRY=${{ env.IMG_REGISTRY_HOST }} ORG=${{ env.IMG_REGISTRY_ORG }} IMAGE_TAG=${{ github.sha }} AUTHORINO_VERSION=${{ env.LATEST_AUTHORINO_GITREF }} | |
- name: Verify manifests and bundle (release) | |
if: ${{ github.ref_name != env.MAIN_BRANCH_NAME }} | |
run: make verify-manifests verify-bundle REGISTRY=${{ env.IMG_REGISTRY_HOST }} ORG=${{ env.IMG_REGISTRY_ORG }} VERSION=${{env.VERSION}} AUTHORINO_VERSION=${{ github.event.inputs.authorinoVersion }} CHANNELS=${{ github.event.inputs.channels }} DEFAULT_CHANNEL=stable | |
- name: Build Image | |
id: build-image | |
uses: redhat-actions/buildah-build@v2 | |
with: | |
image: ${{ env.OPERATOR_NAME }}-bundle | |
tags: ${{ env.IMG_TAGS }} | |
platforms: linux/amd64,linux/arm64,linux/s390x,linux/ppc64le | |
build-args: | | |
version=${{ env.VERSION }} | |
containerfiles: | | |
./bundle.Dockerfile | |
- name: Push Image | |
if: ${{ !env.ACT }} | |
id: push-to-quay | |
uses: redhat-actions/push-to-registry@v2 | |
with: | |
image: ${{ steps.build-image.outputs.image }} | |
tags: ${{ steps.build-image.outputs.tags }} | |
registry: ${{ env.IMG_REGISTRY_HOST }}/${{ env.IMG_REGISTRY_ORG }} | |
username: ${{ secrets.IMG_REGISTRY_USERNAME }} | |
password: ${{ secrets.IMG_REGISTRY_TOKEN }} | |
- name: Print Image URL | |
run: echo "Image pushed to ${{ steps.push-to-quay.outputs.registry-paths }}" | |
build-catalog: | |
name: Build and push catalog image | |
needs: [build, build-bundle] | |
runs-on: ubuntu-20.04 | |
if: github.ref_name == 'main' || startsWith(github.ref, 'refs/tags/v') # We cannot use `env.MAIN_BRANCH_NAME` because `env` context is not available to `job.if`. See https://docs.github.com/en/actions/learn-github-actions/contexts#context-availability | |
steps: | |
- name: Set up Go 1.21.x | |
uses: actions/setup-go@v4 | |
with: | |
go-version: 1.21.x | |
id: go | |
- name: Check out code | |
uses: actions/checkout@v3 | |
- name: Add latest tag | |
if: ${{ github.ref_name == env.MAIN_BRANCH_NAME }} | |
id: add-latest-tag | |
run: | | |
echo "IMG_TAGS=latest ${{ env.IMG_TAGS }}" >> $GITHUB_ENV | |
- name: Add release tag | |
if: ${{ github.ref_name != env.MAIN_BRANCH_NAME }} | |
id: add-branch-tag | |
run: | | |
TAG_NAME=${GITHUB_REF_NAME/\//-} | |
echo "TAG_NAME=${TAG_NAME}" >> $GITHUB_ENV | |
echo "IMG_TAGS=${TAG_NAME} ${{ env.IMG_TAGS }}" >> $GITHUB_ENV | |
- name: Set Operator version | |
id: operator-version | |
run: | | |
tag=${GITHUB_REF_NAME} | |
if [[ ${tag} =~ ^v[0-9]+\.[0-9]+\.[0-9]+(-.+)?$ ]]; then | |
echo "VERSION=${tag#v}" >> $GITHUB_ENV | |
else | |
echo "VERSION=${{ github.sha }}" >> $GITHUB_ENV | |
fi | |
- name: Install qemu dependency | |
run: | | |
sudo apt-get update | |
sudo apt-get install -y qemu-user-static | |
- name: Run make catalog (main) | |
if: ${{ github.ref_name == env.MAIN_BRANCH_NAME }} | |
run: | | |
make catalog \ | |
REGISTRY=${{ env.IMG_REGISTRY_HOST }} ORG=${{ env.IMG_REGISTRY_ORG }} \ | |
VERSION=${{ env.VERSION }} \ | |
IMAGE_TAG=${{ github.sha }} \ | |
AUTHORINO_VERSION=${{ env.LATEST_AUTHORINO_GITREF }} \ | |
CHANNELS=${{ inputs.channels }} | |
- name: Run make catalog (release) | |
if: ${{ github.ref_name != env.MAIN_BRANCH_NAME }} | |
run: | | |
make catalog \ | |
REGISTRY=${{ env.IMG_REGISTRY_HOST }} ORG=${{ env.IMG_REGISTRY_ORG }} \ | |
VERSION=${{ env.VERSION }} \ | |
AUTHORINO_VERSION=${{ github.event.inputs.authorinoVersion }} \ | |
CHANNELS=${{ inputs.channels }} | |
- name: Git diff | |
run: git diff | |
- name: Build Image | |
id: build-image | |
uses: redhat-actions/buildah-build@v2 | |
with: | |
image: ${{ env.OPERATOR_NAME }}-catalog | |
tags: ${{ env.IMG_TAGS }} | |
platforms: linux/amd64,linux/arm64,linux/s390x,linux/ppc64le | |
context: ./catalog | |
dockerfiles: | | |
./catalog/${{ env.OPERATOR_NAME }}-catalog.Dockerfile | |
- name: Push Image | |
if: ${{ !env.ACT }} | |
id: push-to-quay | |
uses: redhat-actions/push-to-registry@v2 | |
with: | |
image: ${{ steps.build-image.outputs.image }} | |
tags: ${{ steps.build-image.outputs.tags }} | |
registry: ${{ env.IMG_REGISTRY_HOST }}/${{ env.IMG_REGISTRY_ORG }} | |
username: ${{ secrets.IMG_REGISTRY_USERNAME }} | |
password: ${{ secrets.IMG_REGISTRY_TOKEN }} | |
- name: Print Image URL | |
run: echo "Image pushed to ${{ steps.push-to-quay.outputs.registry-paths }}" |