forked from FrankThomasTveter/astro-api
-
Notifications
You must be signed in to change notification settings - Fork 1
64 lines (60 loc) · 3.29 KB
/
depot-build.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
# based on: https://depot.dev/docs/integrations/github-actions#build-multi-platform-images-natively-without-emulation
# see docs at: https://github.com/depot/build-push-action
# note: could also use a more direct approach based on the depot CLI, which is more like that used for the depot-bitbucket integration
# and also more similar to the native `docker buildx build` CLI (in fact they've deliberately set it up to accept the same CLI options):
# CLI approach for Bitbucket (docker build): https://depot.dev/docs/integrations/bitbucket-pipelines#basic-build-and-push-to-dockerhub
# CLI approach for GitHub (generic): https://depot.dev/docs/integrations/github-actions#option-3--depot-cli
name: depot-build
on:
# you need to set workflow_dispatch to be able to run it manually:
# https://stackoverflow.com/a/67523883/4070848
workflow_dispatch: {}
push:
# have included both main and master only to prevent an issue if using this yml in a repo where the other branch name is used...
branches:
- main
- master
# reduce the number of builds by limiting automatic builds being triggered only with a push to *this* yml file (e.g. to change the docker tag version number):
# can trigger a build manually too via: https://github.com/drmrbrewer/astro-api/actions/workflows/depot-build.yml
paths:
- '.github/workflows/depot-build.yml'
# - 'Dockerfile-captain'
# - 'captain-apache2.conf'
jobs:
docker:
runs-on: ubuntu-latest
steps:
- name: Checkout repo
uses: actions/checkout@v3
- name: Set up Depot CLI
uses: depot/setup-action@v1
- name: Login to DockerHub
uses: docker/login-action@v2
with:
# these secrets are set at repository level:
# https://github.com/drmrbrewer/astro-api/settings/secrets/actions
# https://docs.github.com/en/actions/security-guides/encrypted-secrets
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }}
- name: Build and push
uses: depot/build-push-action@v1
with:
# these secrets are set at repository level:
project: ${{ secrets.DEPOT_PROJECT_ID }}
token: ${{ secrets.DEPOT_PROJECT_TOKEN }}
# what tags to apply to the generated image:
# the images will be pushed to: https://hub.docker.com/repository/docker/drmrbrewer/astro-api/general
tags: drmrbrewer/astro-api,drmrbrewer/astro-api:v23
# base folder for the build (equivalent to PATH in docker buildx build)...
# commented out for now as the docker image seems to be much smaller without it...
# context: .
# this is a multi-platform build... specify required platforms here:
platforms: linux/amd64,linux/arm64
# which (of several) Dockerfiles to use for the build:
file: "Dockerfile-captain"
# push to the Docker Hub (login credentials set above):
push: true
# following is to avoid an 'unknown/unknown' entry for 'OS/arch' showing (in addition to the ones you ask for) in the registry UI (probably just cosmetic, but annoying):
# https://github.com/orgs/community/discussions/45969
# https://docs.docker.com/build/attestations/#creating-attestations
provenance: false