ci(actions): enhance Docker build process with buildx setup #29
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Main Workflow | |
| on: | |
| push: | |
| paths: | |
| - "src/**" | |
| - ".github/workflows/main.yaml" | |
| pull_request: | |
| paths: | |
| - "src/**" | |
| - ".github/workflows/main.yaml" | |
| env: | |
| version: 9.1.${{github.run_number}} | |
| imageRepository: "emberstack/kubernetes-reflector" | |
| DOCKER_CLI_EXPERIMENTAL: "enabled" | |
| jobs: | |
| ci: | |
| name: CI | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: artifacts - prepare directories | |
| run: | | |
| mkdir -p .artifacts/helm | |
| mkdir -p .artifacts/kubectl | |
| - name: helm - import README | |
| run: cp README.md src/helm/reflector/README.md | |
| - name: helm - package chart | |
| run: helm package --destination .artifacts/helm --version ${{env.version}} --app-version ${{env.version}} src/helm/reflector | |
| - name: helm - template chart | |
| run: helm template --namespace kube-system reflector .artifacts/helm/reflector-${{env.version}}.tgz > .artifacts/kubectl/reflector-${{env.version}}.yaml | |
| - name: "artifacts - upload - helm chart" | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: helm | |
| path: .artifacts/helm | |
| - name: "artifacts - upload - artifacthub" | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: artifacthub | |
| path: src/helm/artifacthub-repo.yaml | |
| - name: "artifacts - upload - kubectl manifests" | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: kubectl | |
| path: .artifacts/kubectl | |
| - name: tools - docker - login | |
| uses: docker/login-action@v3 | |
| with: | |
| username: ${{ secrets.ES_DOCKERHUB_USERNAME }} | |
| password: ${{ secrets.ES_DOCKERHUB_PAT }} | |
| - name: docker - setup - buildx | |
| uses: docker/setup-buildx-action@v3 | |
| with: | |
| driver: docker-container # REQUIRED for multi-platform builds | |
| - name: docker - build and push | |
| uses: docker/build-push-action@v5 | |
| with: | |
| context: src/ | |
| file: src/ES.Kubernetes.Reflector/Dockerfile | |
| push: true | |
| provenance: false | |
| platforms: linux/amd64,linux/arm/v7,linux/arm64 | |
| tags: ${{ env.imageRepository }}:build-${{ env.version }} | |
| # - name: "docker - build PR" | |
| # if: github.event_name == 'pull_request' | |
| # run: | | |
| # docker run --rm --privileged multiarch/qemu-user-static --reset -p yes | |
| # docker buildx create --name builder --driver docker-container --use | |
| # docker buildx inspect --bootstrap | |
| # docker buildx build --platform linux/amd64 -t ${{env.imageRepository}}:build-${{env.version}}-amd64 -f src/ES.Kubernetes.Reflector/Dockerfile src/ | |
| # docker buildx build --platform linux/arm -t ${{env.imageRepository}}:build-${{env.version}}-arm32v7 -f src/ES.Kubernetes.Reflector/Dockerfile src/ | |
| # docker buildx build --platform linux/arm64 -t ${{env.imageRepository}}:build-${{env.version}}-arm64v8 -f src/ES.Kubernetes.Reflector/Dockerfile src/ | |
| # - name: tools - docker - login | |
| # if: github.event_name == 'push' && github.actor != 'dependabot[bot]' | |
| # uses: docker/login-action@v3 | |
| # with: | |
| # username: ${{ secrets.ES_DOCKERHUB_USERNAME }} | |
| # password: ${{ secrets.ES_DOCKERHUB_PAT }} | |
| # - name: "docker - build and publish" | |
| # if: github.event_name == 'push' && github.actor != 'dependabot[bot]' | |
| # run: | | |
| # docker run --rm --privileged multiarch/qemu-user-static --reset -p yes | |
| # docker buildx create --name builder --driver docker-container --use | |
| # docker buildx inspect --bootstrap | |
| # docker buildx build --push --platform linux/amd64 --provenance=false -t ${{env.imageRepository}}:build-${{env.version}}-amd64 -f src/ES.Kubernetes.Reflector/Dockerfile src/ | |
| # docker buildx build --push --platform linux/arm --provenance=false -t ${{env.imageRepository}}:build-${{env.version}}-arm32v7 -f src/ES.Kubernetes.Reflector/Dockerfile src/ | |
| # docker buildx build --push --platform linux/arm64 --provenance=false -t ${{env.imageRepository}}:build-${{env.version}}-arm64v8 -f src/ES.Kubernetes.Reflector/Dockerfile src/ | |
| # docker pull --platform linux/amd64 ${{env.imageRepository}}:build-${{env.version}}-amd64 | |
| # docker pull --platform linux/arm/v7 ${{env.imageRepository}}:build-${{env.version}}-arm32v7 | |
| # docker pull --platform linux/arm64 ${{env.imageRepository}}:build-${{env.version}}-arm64v8 | |
| # docker manifest create ${{env.imageRepository}}:build-${{env.version}} ${{env.imageRepository}}:build-${{env.version}}-amd64 ${{env.imageRepository}}:build-${{env.version}}-arm32v7 ${{env.imageRepository}}:build-${{env.version}}-arm64v8 | |
| # docker manifest inspect ${{env.imageRepository}}:build-${{env.version}} | |
| # docker manifest push ${{env.imageRepository}}:build-${{env.version}} | |
| cd: | |
| name: CD | |
| needs: ci | |
| if: github.event_name == 'push' && github.ref == 'refs/heads/workflows' | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: tools - docker - login | |
| uses: docker/login-action@v3 | |
| with: | |
| username: ${{ secrets.ES_DOCKERHUB_USERNAME }} | |
| password: ${{ secrets.ES_DOCKERHUB_PAT }} | |
| - name: tools - oras - setup | |
| uses: oras-project/setup-oras@v1 | |
| - name: artifacts - download - helm chart | |
| uses: actions/download-artifact@v4 | |
| with: | |
| name: helm | |
| path: .artifacts/helm | |
| - name: artifacts - download - artifacthub | |
| uses: actions/download-artifact@v4 | |
| with: | |
| name: artifacthub | |
| path: .artifacts/artifacthub | |
| - name: artifacts - download - kubectl manifests | |
| uses: actions/download-artifact@v4 | |
| with: | |
| name: kubectl | |
| path: .artifacts/kubectl | |
| # - name: "docker - tag and push" | |
| # run: | | |
| # docker pull ${{env.imageRepository}}:build-${{env.version}}-amd64 | |
| # docker pull ${{env.imageRepository}}:build-${{env.version}}-arm32v7 | |
| # docker pull ${{env.imageRepository}}:build-${{env.version}}-arm64v8 | |
| # docker manifest create ${{env.imageRepository}}:${{env.version}} ${{env.imageRepository}}:build-${{env.version}}-amd64 ${{env.imageRepository}}:build-${{env.version}}-arm32v7 ${{env.imageRepository}}:build-${{env.version}}-arm64v8 | |
| # docker manifest create ${{env.imageRepository}}:latest ${{env.imageRepository}}:build-${{env.version}}-amd64 ${{env.imageRepository}}:build-${{env.version}}-arm32v7 ${{env.imageRepository}}:build-${{env.version}}-arm64v8 | |
| # docker manifest push ${{env.imageRepository}}:${{env.version}} | |
| # docker manifest push ${{env.imageRepository}}:latest | |
| # docker manifest push ${{env.imageRepository}}:${{env.version}} | |
| # docker manifest push ${{env.imageRepository}}:latest | |
| # docker tag ${{env.imageRepository}}:build-${{env.version}}-amd64 ${{env.imageRepository}}:${{env.version}}-amd64 | |
| # docker tag ${{env.imageRepository}}:build-${{env.version}}-arm32v7 ${{env.imageRepository}}:${{env.version}}-arm32v7 | |
| # docker tag ${{env.imageRepository}}:build-${{env.version}}-arm64v8 ${{env.imageRepository}}:${{env.version}}-arm64v8 | |
| # docker push ${{env.imageRepository}}:${{env.version}}-amd64 | |
| # docker push ${{env.imageRepository}}:${{env.version}}-arm32v7 | |
| # docker push ${{env.imageRepository}}:${{env.version}}-arm64v8 | |
| - name: helm - login - ghcr | |
| run: | | |
| echo "${{ secrets.ES_GITHUB_PAT }}" | helm registry login ghcr.io -u ${{ github.actor }} --password-stdin | |
| - name: oras - login - ghcr | |
| run: echo "${{ secrets.ES_GITHUB_PAT }}" | oras login ghcr.io -u ${{ github.actor }} --password-stdin | |
| - name: helm - push | |
| run: helm push .artifacts/helm/reflector-${{env.version}}.tgz oci://ghcr.io/${{ github.repository_owner }}/helm-charts | |
| - name: oras - push - artifact hub metadata | |
| run: | | |
| oras push ghcr.io/${{ github.repository_owner }}/helm-charts/reflector:artifacthub.io \ | |
| --config /dev/null:application/vnd.cncf.artifacthub.config.v1+yaml \ | |
| .artifacts/artifacthub/artifacthub-repo.yaml:application/vnd.cncf.artifacthub.repository-metadata.layer.v1.yaml | |
| # - name: github - release - set manifest name | |
| # run: | | |
| # mkdir -p github | |
| # cp .artifacts/kubectl/reflector-${{env.version}}.yaml github/reflector.yaml | |
| # - name: github - create release | |
| # uses: softprops/action-gh-release@v2 | |
| # with: | |
| # repository: emberstack/kubernetes-reflector | |
| # tag_name: v${{env.version}} | |
| # body: The release process is automated. | |
| # generate_release_notes: true | |
| # token: ${{ secrets.ES_GITHUB_PAT }} | |
| # files: | | |
| # github/reflector.yaml |