NuKVM/vagrant-libvirt
3
0
Fork 0
mirror of https://github.com/vagrant-libvirt/vagrant-libvirt.git synced 2025-02-25 18:55:27 -06:00
Code Issues Packages Projects Releases Wiki Activity

Publish docker image to github packages for PRs (#1646)

Browse Source 
Publish images built from PRs to the github container registry to
provide a
simple way to test changes made by being able to pull the built
container.
This commit is contained in:
Darragh Bailey
2022-11-03 14:49:55 +00:00
committed by GitHub
parent aa826b2291
commit b709758c00
2 changed files with 156 additions and 61 deletions
Download Patch File Download Diff File Expand all files Collapse all files

159
.github/workflows/docker-image.yml vendored
View File

@@ -6,11 +6,24 @@ on:
- main - main
tags: tags:
- '*.*.*' - '*.*.*'
pull_request: pull_request_target:
types:
- assigned
- opened
- synchronize
- reopened
# for delete
- closed
permissions:
packages: write
pull-requests: write
jobs: jobs:
build-image-with-buildah: build-image-with-buildah:
runs-on: ubuntu-latest if: ${{ ! (startsWith(github.event_name, 'pull_request') && github.event.action == 'closed' ) }}
runs-on: ubuntu-22.04
steps: steps:
- -
name: Checkout name: Checkout
@@ -21,46 +34,37 @@ jobs:
name: Build with buildah name: Build with buildah
run: buildah bud . run: buildah bud .
generate-docker-metadata:
uses: vagrant-libvirt/vagrant-libvirt/.github/workflows/docker-meta.yml@publish-pr-docker-image
secrets: inherit
generate-docker-metadata-slim:
uses: vagrant-libvirt/vagrant-libvirt/.github/workflows/docker-meta.yml@publish-pr-docker-image
with:
flavor: |
suffix=-slim
secrets: inherit
build-docker-image: build-docker-image:
runs-on: ubuntu-latest if: ${{ ! (startsWith(github.event_name, 'pull_request') && github.event.action == 'closed' ) }}
runs-on: ubuntu-22.04
needs:
- generate-docker-metadata
- generate-docker-metadata-slim
steps: steps:
- -
name: Checkout name: Checkout
if: ${{ ! startsWith(github.event_name, 'pull_request') }}
uses: actions/checkout@v3 uses: actions/checkout@v3
with: with:
fetch-depth: 0 fetch-depth: 0
- -
name: Prepare if: startsWith(github.event_name, 'pull_request')
id: prep name: Checkout
run: | uses: actions/checkout@v3
DOCKER_IMAGE=${DOCKERHUB_ORGANIZATION:-vagrantlibvirt}/vagrant-libvirt with:
VERSION=noop fetch-depth: 0
if [ "${{ github.event_name }}" = "schedule" ]; then ref: ${{ github.event.pull_request.head.sha }}
VERSION=nightly
elif [[ $GITHUB_REF == refs/tags/* ]]; then
VERSION=${GITHUB_REF#refs/tags/}
elif [[ $GITHUB_REF == refs/heads/* ]]; then
VERSION=$(echo ${GITHUB_REF#refs/heads/} | sed -r 's#/+#-#g')
if [ "${{ github.event.repository.default_branch }}" = "$VERSION" ]; then
VERSION=edge
fi
elif [[ $GITHUB_REF == refs/pull/* ]]; then
VERSION=pr-${{ github.event.number }}
fi
TAGS="${DOCKER_IMAGE}:${VERSION}"
if [[ $VERSION =~ ^[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}$ ]]; then
MINOR=${VERSION%.*}
MAJOR=v${MINOR%.*}
TAGS="$TAGS,${DOCKER_IMAGE}:${MINOR},${DOCKER_IMAGE}:${MAJOR},${DOCKER_IMAGE}:latest"
elif [ "${{ github.event_name }}" = "push" ]; then
TAGS="$TAGS,${DOCKER_IMAGE}:sha-${GITHUB_SHA::8}"
fi
echo ::set-output name=version::${VERSION}
echo ::set-output name=tags::${TAGS}
echo ::set-output name=slim_tags::$(echo $TAGS | sed "s/,/-slim,/g")-slim
echo ::set-output name=created::$(date -u +'%Y-%m-%dT%H:%M:%SZ')
env:
DOCKERHUB_ORGANIZATION: ${{ secrets.DOCKERHUB_ORGANIZATION }}
- -
name: Set up QEMU name: Set up QEMU
uses: docker/setup-qemu-action@v2 uses: docker/setup-qemu-action@v2
@@ -78,13 +82,15 @@ jobs:
restore-keys: | restore-keys: |
${{ runner.os }}-buildx- ${{ runner.os }}-buildx-
- -
name: Check have credentials name: Login to GitHub Container Registry
id: have_credentials uses: docker/login-action@v2
run: | with:
echo ::set-output name=access::${{ secrets.DOCKERHUB_USERNAME != '' && github.event_name != 'pull_request' }} registry: ghcr.io
username: ${{ github.repository_owner }}
password: ${{ secrets.GITHUB_TOKEN }}
- -
name: Login to DockerHub name: Login to DockerHub
if: steps.have_credentials.outputs.access == 'true' if: steps.docker_io_publish.outputs.enable == 'true'
uses: docker/login-action@v2 uses: docker/login-action@v2
with: with:
username: ${{ secrets.DOCKERHUB_USERNAME }} username: ${{ secrets.DOCKERHUB_USERNAME }}
@@ -96,18 +102,10 @@ jobs:
with: with:
context: . context: .
platforms: linux/amd64 platforms: linux/amd64
push: ${{ steps.have_credentials.outputs.access }} push: true
tags: ${{ steps.prep.outputs.tags }} tags: ${{ needs.generate-docker-metadata.outputs.tags }}
target: final target: final
labels: | labels: ${{ needs.generate-docker-metadata.outputs.labels }}
org.opencontainers.image.title=${{ github.event.repository.name }}
org.opencontainers.image.description=${{ github.event.repository.description }}
org.opencontainers.image.url=${{ github.event.repository.html_url }}
org.opencontainers.image.source=${{ github.event.repository.clone_url }}
org.opencontainers.image.version=${{ steps.prep.outputs.version }}
org.opencontainers.image.created=${{ steps.prep.outputs.created }}
org.opencontainers.image.revision=${{ github.sha }}
org.opencontainers.image.licenses=${{ github.event.repository.license.spdx_id }}
cache-from: type=local,src=/tmp/.buildx-cache cache-from: type=local,src=/tmp/.buildx-cache
cache-to: type=local,dest=/tmp/.buildx-cache,mode=max cache-to: type=local,dest=/tmp/.buildx-cache,mode=max
- -
@@ -117,18 +115,10 @@ jobs:
with: with:
context: . context: .
platforms: linux/amd64 platforms: linux/amd64
push: ${{ steps.have_credentials.outputs.access }} push: true
tags: ${{ steps.prep.outputs.slim_tags }} tags: ${{ needs.generate-docker-metadata-slim.outputs.tags }}
target: slim target: slim
labels: | labels: ${{ needs.generate-docker-metadata-slim.outputs.labels }}
org.opencontainers.image.title=${{ github.event.repository.name }}
org.opencontainers.image.description=${{ github.event.repository.description }}
org.opencontainers.image.url=${{ github.event.repository.html_url }}
org.opencontainers.image.source=${{ github.event.repository.clone_url }}
org.opencontainers.image.version=${{ steps.prep.outputs.version }}
org.opencontainers.image.created=${{ steps.prep.outputs.created }}
org.opencontainers.image.revision=${{ github.sha }}
org.opencontainers.image.licenses=${{ github.event.repository.license.spdx_id }}
cache-from: type=local,src=/tmp/.buildx-cache cache-from: type=local,src=/tmp/.buildx-cache
cache-to: type=local,dest=/tmp/.buildx-cache,mode=max cache-to: type=local,dest=/tmp/.buildx-cache,mode=max
- -
@@ -137,3 +127,50 @@ jobs:
- -
name: Image digest Slim name: Image digest Slim
run: echo ${{ steps.docker_build_slim.outputs.digest }} run: echo ${{ steps.docker_build_slim.outputs.digest }}
-
name: Comment on label required for docs preview deploy
if: startsWith(github.event_name, 'pull_request')
uses: marocchino/sticky-pull-request-comment@v2
with:
recreate: true
header: docker-image-tag
message: |-
A docker image containing the code from this plugin to allow testing locally without installing
can be pulled from: ${{ fromJSON(steps.docker_build_slim.outputs.metadata)['image.name'] }}
If you need the image with the full dev toolchain, you can instead pull: ${{ fromJSON(steps.docker_build.outputs.metadata)['image.name'] }}
generate-delete-docker-images-matrix:
if: startsWith(github.event_name, 'pull_request') && github.event.action == 'closed'
runs-on: ubuntu-22.04
needs:
- generate-docker-metadata
- generate-docker-metadata-slim
outputs:
matrix: ${{ steps.matrix.outputs.tags }}
steps:
-
name: Generate matrix
id: matrix
run: |
TAGS="$(echo "${{ needs.generate-docker-metadata-slim.outputs.tags }},${{ needs.generate-docker-metadata.outputs.tags }}" | jq --raw-input -c '[split(",") | .[] / ":" |.[1]]')"
echo "tags=${TAGS}" >> ${GITHUB_OUTPUT}
# Currently delete requires a PAT, which is considered unsafe until it is possible to scope them to a specific org.
# As this appears to be in beta, uncomment the following at some point in the future.
#
# delete-docker-images:
# needs: generate-delete-docker-images-matrix
# runs-on: ubuntu-22.04
# strategy:
# matrix:
# tag: ${{ fromJSON(needs.generate-delete-docker-images-matrix.outputs.matrix) }}
# steps:
# - name: Delete image
# uses: bots-house/ghcr-delete-image-action@v1.0.0
# with:
# owner: ${{ github.repository_owner }}
# name: ${{ github.event.repository.name }}
# token: ${{ secrets.GITHUB_TOKEN }}
# tag: ${{ matrix.tag }}

58
.github/workflows/docker-meta.yml vendored Normal file
View File

@@ -0,0 +1,58 @@
name: Docker Metadata
on:
workflow_call:
inputs:
flavor:
required: false
type: string
secrets:
DOCKERHUB_USERNAME:
required: false
DOCKERHUB_ORGANIZATION:
required: false
outputs:
labels:
value: ${{ jobs.generate-metadata.outputs.labels }}
tags:
value: ${{ jobs.generate-metadata.outputs.tags }}
jobs:
generate-metadata:
name: Generate Metadata
runs-on: ubuntu-22.04
outputs:
labels: ${{ steps.metadata.outputs.labels }}
tags: ${{ steps.metadata.outputs.tags }}
steps:
-
name: Generate docker image names for publishing
id: docker_image_names
run: |
IMAGE_NAMES="ghcr.io/${{ github.repository_owner }}/vagrant-libvirt"
if [[ -n "${{ secrets.DOCKERHUB_USERNAME }}" ]] && [[ ${{ github.event_name }} != pull_request* ]]
then
IMAGE_NAMES="${IMAGE_NAMES}\n${{ secrets.DOCKERHUB_ORGANIZATION }}/vagrant-libvirt"
fi
echo "image_names=${IMAGE_NAMES}" >> ${GITHUB_OUTPUT}
-
name: Setup publish tags and versions for image
id: metadata
uses: docker/metadata-action@v4
with:
images: ${{ steps.docker_image_names.outputs.image_names }}
tags: |
# nightly
type=schedule
# tag events
type=pep440,pattern={{version}}
type=pep440,pattern={{major}}
type=pep440,pattern={{major}}.{{minor}}
type=pep440,pattern={{version}},value=latest
# push to master
type=edge,branch=${{ github.event.repository.default_branch }}
type=sha,enable={{is_default_branch}}
# pull requests
type=ref,event=pr
flavor: ${{ inputs.flavor }}