apache · damccorm · Nov 10, 2025 · Nov 7, 2025 · Nov 7, 2025 · Nov 7, 2025
diff --git a/.github/workflows/beam_PostCommit_XVR_GoUsingJava_Dataflow.yml b/.github/workflows/beam_PostCommit_XVR_GoUsingJava_Dataflow.yml
@@ -75,15 +75,46 @@ jobs:
         uses: ./.github/actions/setup-environment-action
         with:
           python-version: default
+      - name: Set up writable gcloud config directory
+        run: |
+          mkdir -p /tmp/gcloud
+          echo "CLOUDSDK_CONFIG=/tmp/gcloud" >> $GITHUB_ENV
+      - name: Authenticate to GCP
+        env:
+          CLOUDSDK_CONFIG: /tmp/gcloud
+        uses: google-github-actions/auth@v3
+        with:
+          service_account: ${{ secrets.GCP_SA_EMAIL }}
+          credentials_json: ${{ secrets.GCP_SA_KEY }}
+      - name: Set up Cloud SDK
+        env:
+          CLOUDSDK_CONFIG: /tmp/gcloud
+        uses: google-github-actions/setup-gcloud@v3
       - name: Set up Docker Buildx
         uses: docker/setup-buildx-action@v3
-      - name: GCloud Docker credential helper
+      - name: Configure Docker auth for GCR
+        env:
+          CLOUDSDK_CONFIG: /tmp/gcloud
+        run: |
+          export CLOUDSDK_CONFIG=/tmp/gcloud
+          gcloud --quiet auth configure-docker us.gcr.io
+          gcloud --quiet auth configure-docker gcr.io
+          gcloud auth list
+          cat ~/.docker/config.json | grep -A 5 "us.gcr.io" || echo "Docker config check..."
+          echo "CLOUDSDK_CONFIG=/tmp/gcloud" >> ~/.docker/config.json.env || true
+      - name: Docker login to GCR (explicit)
+        env:
+          CLOUDSDK_CONFIG: /tmp/gcloud
         run: |
-          gcloud auth configure-docker us.gcr.io
+          export CLOUDSDK_CONFIG=/tmp/gcloud
+          gcloud auth print-access-token | docker login -u oauth2accesstoken --password-stdin https://us.gcr.io
+          docker info | grep -i "username" || echo "Docker auth configured"
+          export CLOUDSDK_CONFIG=/tmp/gcloud
+          echo "export CLOUDSDK_CONFIG=/tmp/gcloud" >> ~/.bashrc || true
       - name: run XVR GoUsingJava Dataflow script
         env:
           USER: github-actions
-          CLOUDSDK_CONFIG: ${{ env.KUBELET_GCLOUD_CONFIG_PATH}}
+          CLOUDSDK_CONFIG: /tmp/gcloud
         uses: ./.github/actions/gradle-command-self-hosted-action
         with:
           gradle-command: :runners:google-cloud-dataflow-java:validatesCrossLanguageRunnerGoUsingJava

diff --git a/runners/google-cloud-dataflow-java/build.gradle b/runners/google-cloud-dataflow-java/build.gradle
@@ -372,11 +372,56 @@ def buildAndPushDockerPythonContainer = tasks.create("buildAndPushDockerPythonCo
           root: "apache",
           tag: project.sdk_version)
   doLast {
+    def imageExists = false
+    try {
+      exec {
+        commandLine "docker", "inspect", "--type=image", "${defaultDockerImageName}"
+        ignoreExitValue = false
+      }
+      imageExists = true
+    } catch (Exception e) {
+      println "Image ${defaultDockerImageName} not found locally: ${e.message}"
+      println "Attempting to load image from buildx cache..."
+
+      def pythonContainerProject = project.project(":sdks:python:container:py${pythonVer.replace('.', '')}")
+      def dockerBuildDir = pythonContainerProject.tasks.getByName("dockerPrepare").destinationDir
+      def dockerfile = new File(pythonContainerProject.projectDir, "../Dockerfile")
+
+      def loadResult = exec {
+        commandLine "sh", "-c", """
+          cd ${dockerBuildDir} && \\
+          docker buildx build --output type=docker \\
+            --tag ${defaultDockerImageName} \\
+            --build-arg py_version=${pythonVer} \\
+            --build-arg pull_licenses=true \\
+            -f ${dockerfile.absolutePath} \\
+            .
+        """
+        ignoreExitValue = true
+      }
+
+      if (loadResult.exitValue != 0) {
+        println "Failed to load from buildx cache. Attempting to pull from registry..."
+        def pullResult = exec {
+          commandLine "docker", "pull", "${defaultDockerImageName}"
+          ignoreExitValue = true
+        }
+
+        if (pullResult.exitValue != 0) {
+          throw new GradleException(
+            "Docker image ${defaultDockerImageName} not found locally, in buildx cache, or in registry. " +
+            "Check the Docker build output for errors."
+          )
+        }
+      }
+    }
+
     exec {
       commandLine "docker", "tag", "${defaultDockerImageName}", "${dockerPythonImageName}"
     }
     exec {
-      commandLine "gcloud", "docker", "--", "push", "${dockerPythonImageName}"
+      environment "CLOUDSDK_CONFIG", System.getenv("CLOUDSDK_CONFIG") ?: System.getProperty("user.home") + "/.config/gcloud"
+      commandLine "docker", "push", "${dockerPythonImageName}"
     }
   }
 }