Alessio
8e229fc77c
- Cambiato URL da github.com a gitea.home-nas-ds.org - Usa REGISTRY_TOKEN per autenticazione git clone - Embedded credentials nell'URL (username:token@host) - Risolve: richiesta credenziali GitHub
245 lines
8.2 KiB
YAML
245 lines
8.2 KiB
YAML
name: Build and Push Docker Images
|
|
|
|
on:
|
|
push:
|
|
branches:
|
|
- main
|
|
- development
|
|
- staging
|
|
workflow_dispatch:
|
|
inputs:
|
|
force_build:
|
|
description: 'Force build even without code changes'
|
|
required: false
|
|
default: false
|
|
type: boolean
|
|
|
|
env:
|
|
# Gitea Container Registry (self-hosted instance)
|
|
REGISTRY: gitea.home-nas-ds.org
|
|
# Repository path (format: owner/repo)
|
|
IMAGE_NAME: alessio/data-coupler
|
|
|
|
jobs:
|
|
build-linux:
|
|
name: Build Linux Container
|
|
runs-on: ubuntu-latest
|
|
permissions:
|
|
contents: read
|
|
packages: write
|
|
|
|
steps:
|
|
- name: Checkout repository
|
|
uses: actions/checkout@v4
|
|
|
|
- name: Set up Docker Buildx
|
|
uses: docker/setup-buildx-action@v3
|
|
|
|
- name: Debug - Check registry access
|
|
run: |
|
|
echo "Testing registry access..."
|
|
curl -v https://gitea.home-nas-ds.org/v2/ || echo "Registry not accessible"
|
|
echo "Registry: ${{ env.REGISTRY }}"
|
|
echo "Image: ${{ env.IMAGE_NAME }}"
|
|
continue-on-error: true
|
|
|
|
- name: Debug - Verify secret is configured
|
|
run: |
|
|
if [ -z "${{ secrets.REGISTRY_TOKEN }}" ]; then
|
|
echo "::error::REGISTRY_TOKEN secret is not configured or is empty!"
|
|
exit 1
|
|
else
|
|
echo "REGISTRY_TOKEN secret is configured (length: ${#REGISTRY_TOKEN})"
|
|
fi
|
|
env:
|
|
REGISTRY_TOKEN: ${{ secrets.REGISTRY_TOKEN }}
|
|
|
|
- name: Log in to Gitea Container Registry
|
|
run: |
|
|
echo "${{ secrets.REGISTRY_TOKEN }}" | docker login ${{ env.REGISTRY }} -u alessio --password-stdin
|
|
shell: bash
|
|
|
|
- name: Extract metadata for Docker
|
|
id: meta
|
|
uses: docker/metadata-action@v5
|
|
with:
|
|
images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
|
|
tags: |
|
|
# Tag based on branch
|
|
type=raw,value=latest,enable=${{ github.ref == 'refs/heads/main' }}
|
|
type=raw,value=latest,enable=${{ github.ref == 'refs/heads/development' }}
|
|
type=raw,value=development-latest,enable=${{ github.ref == 'refs/heads/development' }}
|
|
type=raw,value=dev-latest,enable=${{ github.ref == 'refs/heads/dev' }}
|
|
type=raw,value=staging-latest,enable=${{ github.ref == 'refs/heads/staging' }}
|
|
# Tag with commit sha
|
|
type=sha,prefix={{branch}}-,format=short
|
|
# Tag with date
|
|
type=raw,value={{branch}}-{{date 'YYYYMMDD-HHmmss'}}
|
|
flavor: |
|
|
latest=false
|
|
|
|
- name: Build and push Linux Docker image
|
|
id: build
|
|
uses: docker/build-push-action@v5
|
|
with:
|
|
context: .
|
|
file: ./Dockerfile
|
|
push: true
|
|
tags: ${{ steps.meta.outputs.tags }}
|
|
labels: ${{ steps.meta.outputs.labels }}
|
|
cache-from: type=gha
|
|
cache-to: type=gha,mode=max
|
|
platforms: linux/amd64
|
|
|
|
build-windows:
|
|
name: Build Windows Container
|
|
runs-on: windows
|
|
permissions:
|
|
contents: read
|
|
packages: write
|
|
|
|
steps:
|
|
- name: Checkout repository with Git
|
|
run: |
|
|
echo ===== Cloning repository from Gitea =====
|
|
git clone --depth 1 --branch ${{ github.ref_name }} https://alessio:%REGISTRY_TOKEN%@gitea.home-nas-ds.org/${{ github.repository }}.git repo
|
|
if errorlevel 1 (
|
|
echo Failed to clone repository
|
|
exit /b 1
|
|
)
|
|
|
|
echo ===== Moving files to working directory =====
|
|
robocopy repo . /E /MOVE /NFL /NDL /NJH /NJS
|
|
rmdir repo /S /Q 2>nul
|
|
|
|
echo ===== Verifying checkout =====
|
|
if exist Dockerfile.windows (
|
|
echo SUCCESS: Repository checked out, Dockerfile.windows found
|
|
) else (
|
|
echo ERROR: Dockerfile.windows not found
|
|
dir /B
|
|
exit /b 1
|
|
)
|
|
env:
|
|
REGISTRY_TOKEN: ${{ secrets.REGISTRY_TOKEN }}
|
|
shell: cmd
|
|
|
|
- name: Debug - Verify files
|
|
run: |
|
|
echo Working directory:
|
|
cd
|
|
echo.
|
|
echo Dockerfiles found:
|
|
dir Dockerfile* /B 2>nul || echo No Dockerfiles found
|
|
shell: cmd
|
|
continue-on-error: true
|
|
|
|
- name: Debug - Verify secret
|
|
run: |
|
|
if "${{ secrets.REGISTRY_TOKEN }}"=="" (
|
|
echo ERROR: REGISTRY_TOKEN not configured!
|
|
exit /b 1
|
|
) else (
|
|
echo REGISTRY_TOKEN is configured
|
|
)
|
|
shell: cmd
|
|
|
|
- name: Log in to Gitea Container Registry
|
|
run: echo ${{ secrets.REGISTRY_TOKEN }} | docker login ${{ env.REGISTRY }} -u alessio --password-stdin
|
|
shell: cmd
|
|
|
|
- name: Build and push Windows Docker image
|
|
run: |
|
|
set IMAGE_LOWER=${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
|
|
set BRANCH=${{ github.ref_name }}
|
|
set SHA=${{ github.sha }}
|
|
set SHORT_SHA=%SHA:~0,7%
|
|
|
|
REM Determine tags based on branch
|
|
set TAGS=
|
|
if "%BRANCH%"=="main" (
|
|
set TAGS=%IMAGE_LOWER%:latest-windows
|
|
set TAGS=%TAGS% %IMAGE_LOWER%:main-windows-%SHORT_SHA%
|
|
)
|
|
if "%BRANCH%"=="development" (
|
|
set TAGS=%IMAGE_LOWER%:latest-windows
|
|
set TAGS=%TAGS% %IMAGE_LOWER%:development-latest-windows
|
|
set TAGS=%TAGS% %IMAGE_LOWER%:development-windows-%SHORT_SHA%
|
|
)
|
|
if "%BRANCH%"=="staging" (
|
|
set TAGS=%IMAGE_LOWER%:staging-latest-windows
|
|
set TAGS=%TAGS% %IMAGE_LOWER%:staging-windows-%SHORT_SHA%
|
|
)
|
|
|
|
echo Building Windows Docker image...
|
|
docker build -t temp-windows -f Dockerfile.windows .
|
|
if errorlevel 1 (
|
|
echo Build failed!
|
|
exit /b 1
|
|
)
|
|
|
|
echo Tagging and pushing images...
|
|
for %%t in (%TAGS%) do (
|
|
echo Tagging: %%t
|
|
docker tag temp-windows %%t
|
|
echo Pushing: %%t
|
|
docker push %%t
|
|
)
|
|
|
|
echo Cleaning up temporary image...
|
|
docker rmi temp-windows
|
|
|
|
echo Windows build completed successfully!
|
|
shell: cmd
|
|
|
|
create-manifest:
|
|
name: Create Multi-Platform Manifest
|
|
runs-on: ubuntu-latest
|
|
needs: [build-linux, build-windows]
|
|
permissions:
|
|
contents: read
|
|
packages: write
|
|
|
|
steps:
|
|
- name: Log in to Gitea Container Registry
|
|
uses: docker/login-action@v3
|
|
with:
|
|
registry: ${{ env.REGISTRY }}
|
|
username: alessio
|
|
password: ${{ secrets.REGISTRY_TOKEN }}
|
|
|
|
- name: Create and push manifest for main branch
|
|
if: github.ref == 'refs/heads/main'
|
|
run: |
|
|
IMAGE_LOWER=$(echo "${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}" | tr '[:upper:]' '[:lower:]')
|
|
docker buildx imagetools create -t ${IMAGE_LOWER}:latest \
|
|
${IMAGE_LOWER}:latest \
|
|
${IMAGE_LOWER}:latest-windows
|
|
|
|
- name: Create and push manifest for development branch
|
|
if: github.ref == 'refs/heads/development'
|
|
run: |
|
|
IMAGE_LOWER=$(echo "${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}" | tr '[:upper:]' '[:lower:]')
|
|
docker buildx imagetools create -t ${IMAGE_LOWER}:latest \
|
|
${IMAGE_LOWER}:latest \
|
|
${IMAGE_LOWER}:latest-windows
|
|
docker buildx imagetools create -t ${IMAGE_LOWER}:development-latest \
|
|
${IMAGE_LOWER}:development-latest \
|
|
${IMAGE_LOWER}:development-latest-windows
|
|
|
|
- name: Create and push manifest for dev branch
|
|
if: github.ref == 'refs/heads/dev'
|
|
run: |
|
|
IMAGE_LOWER=$(echo "${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}" | tr '[:upper:]' '[:lower:]')
|
|
docker buildx imagetools create -t ${IMAGE_LOWER}:dev-latest \
|
|
${IMAGE_LOWER}:dev-latest \
|
|
${IMAGE_LOWER}:dev-latest-windows
|
|
|
|
- name: Create and push manifest for staging branch
|
|
if: github.ref == 'refs/heads/staging'
|
|
run: |
|
|
IMAGE_LOWER=$(echo "${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}" | tr '[:upper:]' '[:lower:]')
|
|
docker buildx imagetools create -t ${IMAGE_LOWER}:staging-latest \
|
|
${IMAGE_LOWER}:staging-latest \
|
|
${IMAGE_LOWER}:staging-latest-windows
|