forked from ManifoldScholar/manifold
-
Notifications
You must be signed in to change notification settings - Fork 0
143 lines (139 loc) · 4.95 KB
/
build_docker_images.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
name: Build Docker Images
run-name: Build Docker Images of ${{ github.ref_name }} by @${{ github.actor }}
on:
push:
branches:
- main
pull_request:
branches:
- main
workflow_dispatch:
inputs:
debug_enabled:
type: boolean
description: 'Run the build with tmate debugging enabled (https://github.com/marketplace/actions/debugging-with-tmate)'
required: false
default: false
env:
REGISTRY: ghcr.io
DOCKER_BUILDKIT: 1
COMPOSE_DOCKER_CLI_BUILD: 1
jobs:
build-api:
runs-on: ubuntu-latest
steps:
- id: setup
name: Setup
uses: scientist-softserv/actions/[email protected]
with:
token: ${{ secrets.CHECKOUT_TOKEN || secrets.GITHUB_TOKEN }}
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v2
- name: Login to GitHub Container Registry
uses: docker/login-action@v2
with:
registry: ${{ env.REGISTRY }}
username: ${{ github.actor }}
password: ${{ secrets.GITHUB_TOKEN }}
- name: Setup tmate session
uses: mxschmitt/action-tmate@v3
if: ${{ github.event_name == 'workflow_dispatch' && inputs.debug_enabled }}
with:
limit-access-to-actor: true
- name: Retag action for API
id: meta-api
uses: docker/[email protected]
with:
images: |
name=${{ env.REGISTRY }}/${{ env.REPO_LOWER }}/api
tags: |
type=raw,value=latest,enable={{is_default_branch}}
- name: Build and push API
env:
BUILD_TYPE: api_rails
BUILD_LOCATION: /api
CAS_CLIENT_ID: ${{ secrets.CAS_CLIENT_ID }}
CAS_CLIENT_SECRET: ${{ secrets.CAS_CLIENT_SECRET }}
TAGS: ${{ steps.meta-api.outputs.tags }}
shell: bash
run: |
TAG=latest docker compose pull ${BUILD_TYPE} || true
docker compose build \
--build-arg CAS_CLIENT_ID=$CAS_CLIENT_ID \
--build-arg CAS_CLIENT_SECRET=$CAS_CLIENT_SECRET \
--build-arg BUILDKIT_INLINE_CACHE=1 \
${BUILD_TYPE}
docker compose push ${BUILD_TYPE}
ruby -e "ENV.fetch('TAGS', []).split(',').each {|tag| %x{docker tag #{ENV['REGISTRY']}/#{ENV['REPO_LOWER']}#{ENV['BUILD_LOCATION']}:#{ENV['TAG']} #{ENV['REGISTRY']}/#{ENV['REPO_LOWER']}#{ENV['BUILD_LOCATION']}:#{tag}}; %x{docker push #{ENV['REGISTRY']}/#{ENV['REPO_LOWER']}#{ENV['BUILD_LOCATION']}:#{tag}}}"
build-client:
runs-on: ubuntu-latest
steps:
- id: setup
name: Setup
uses: scientist-softserv/actions/[email protected]
with:
token: ${{ secrets.CHECKOUT_TOKEN || secrets.GITHUB_TOKEN }}
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v2
- name: Login to GitHub Container Registry
uses: docker/login-action@v2
with:
registry: ${{ env.REGISTRY }}
username: ${{ github.actor }}
password: ${{ secrets.GITHUB_TOKEN }}
- name: Setup tmate session
uses: mxschmitt/action-tmate@v3
if: ${{ github.event_name == 'workflow_dispatch' && inputs.debug_enabled }}
with:
limit-access-to-actor: true
- name: Retag action for Client
id: meta-client
uses: docker/[email protected]
with:
images: |
name=${{ env.REGISTRY }}/${{ env.REPO_LOWER }}/client
tags: |
type=raw,value=latest,enable={{is_default_branch}}
- name: Build and push Client
uses: scientist-softserv/actions/[email protected]
with:
type: client
location: /client
subdir: .
tags: ${{ steps.meta-client.outputs.tags }}
build-nginx:
runs-on: ubuntu-latest
steps:
- id: setup
name: Setup
uses: scientist-softserv/actions/[email protected]
with:
token: ${{ secrets.CHECKOUT_TOKEN || secrets.GITHUB_TOKEN }}
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v2
- name: Login to GitHub Container Registry
uses: docker/login-action@v2
with:
registry: ${{ env.REGISTRY }}
username: ${{ github.actor }}
password: ${{ secrets.GITHUB_TOKEN }}
- name: Setup tmate session
uses: mxschmitt/action-tmate@v3
if: ${{ github.event_name == 'workflow_dispatch' && inputs.debug_enabled }}
with:
limit-access-to-actor: true
- name: Retag action for Nginx
id: meta-nginx
uses: docker/[email protected]
with:
images: |
name=${{ env.REGISTRY }}/${{ env.REPO_LOWER }}/nginx
tags: |
type=raw,value=latest,enable={{is_default_branch}}
- name: Build and push Nginx
uses: scientist-softserv/actions/[email protected]
with:
type: nginx
location: /nginx
subdir: .
tags: ${{ steps.meta-nginx.outputs.tags }}