diff --git a/.github/workflows/workflow-docker-release.yml b/.github/workflows/workflow-docker-release.yml new file mode 100644 index 0000000..54dcbf0 --- /dev/null +++ b/.github/workflows/workflow-docker-release.yml @@ -0,0 +1,99 @@ +name: workflow-docker-release + +on: + push: + tags: + - '*' + +jobs: + gcr-dockerhub-build-publish: + runs-on: ubuntu-latest + steps: + - name: Checkout + uses: actions/checkout@v2 + - name: Login to Docker Hub + uses: docker/login-action@v1 + with: + username: ${{ secrets.DOCKERHUB_USERNAME }} + password: ${{ secrets.DOCKERHUB_TOKEN }} + - name: Login to GitHub Container Registry (GHCR) + uses: docker/login-action@v1 + with: + registry: ghcr.io + username: ${{ github.repository_owner }} + password: ${{ secrets.CR_PAT }} + - name: Sync GitHub README.md with Docker Hub + uses: peter-evans/dockerhub-description@v2 + with: + username: ${{ secrets.DOCKERHUB_USERNAME }} + password: ${{ secrets.DOCKERHUB_PASSWORD }} # NOTE: This MUST be the password NOT the token + repository: ${{ github.repository }} + short-description: ${{ github.event.repository.description }} + - name: DEBUG Show Runners environment + uses: nick-invision/retry@v2.4.0 + with: + timeout_minutes: 5 + max_attempts: 3 + retry_wait_seconds: 120 + command: | + export + - name: Identify GitHub tag name + # get tag name from runners environment 'GITHUB_REF' and then use bash substring + # to strip out '+' symbol - required due to gcr not supporting this as a tag + # name (docker hub does support it). + # note if push is NOT triggered by tag then 'GITHUB_REF' will be the branch name. + uses: nick-invision/retry@v2.4.0 + with: + timeout_minutes: 5 + max_attempts: 3 + retry_wait_seconds: 120 + command: | + echo "##[set-output name=tag;]$(tag_name=${GITHUB_REF#refs/tags/} && echo "${tag_name//+/-}")" + id: identify_tag + - name: Build Docker image and tag + uses: nick-invision/retry@v2.4.0 + with: + timeout_minutes: 60 + max_attempts: 3 + retry_wait_seconds: 120 + command: | + docker build \ + --tag ${{ github.repository }}:latest \ + --tag ${{ github.repository }}:${{ steps.identify_tag.outputs.tag }} \ + --tag ghcr.io/${{ github.repository }}:latest \ + --tag ghcr.io/${{ github.repository }}:${{ steps.identify_tag.outputs.tag }} \ + . + - name: DEBUG Show built Docker Images + uses: nick-invision/retry@v2.4.0 + with: + timeout_minutes: 5 + max_attempts: 3 + retry_wait_seconds: 120 + command: | + docker images + - name: Run Tests + shell: bash + run: | + git_clone_scripts_dest="/tmp/scripts" + git_clone_scripts_repo="https://github.com/binhex/scripts.git" + + git clone "${git_clone_scripts_repo}" "${git_clone_scripts_dest}" + "${git_clone_scripts_dest}/shell/arch/docker/testrunner.sh" --image-name "ghcr.io/${{ github.repository }}:${{ steps.identify_tag.outputs.tag }}" --host-port '9999' --container-port '8118' --network-type 'bridge' --env-vars '-e VPN_ENABLED=no' + - name: Push Docker image to Docker Hub + uses: nick-invision/retry@v2.4.0 + with: + timeout_minutes: 30 + max_attempts: 3 + retry_wait_seconds: 120 + command: | + docker push ${{ github.repository }}:latest + docker push ${{ github.repository }}:${{ steps.identify_tag.outputs.tag }} + - name: Push Docker image to GitHub Container Registry (GHCR) + uses: nick-invision/retry@v2.4.0 + with: + timeout_minutes: 30 + max_attempts: 3 + retry_wait_seconds: 120 + command: | + docker push ghcr.io/${{ github.repository }}:latest + docker push ghcr.io/${{ github.repository }}:${{ steps.identify_tag.outputs.tag }} \ No newline at end of file