Skip to content

Commit d7c558b

Browse files
4406arthurredhdx
4406arthur
authored and
redhdx
committed
Update docker-build.yaml
1 parent 002406b commit d7c558b

File tree

1 file changed

+4
-16
lines changed

1 file changed

+4
-16
lines changed

.github/workflows/docker-build.yaml

Lines changed: 4 additions & 16 deletions
Original file line numberDiff line numberDiff line change
@@ -12,14 +12,13 @@ on:
1212
env:
1313
REGION: us-east-1
1414
ECR_REGISTRY_ID: 553885929720
15-
AWS_ASSUMED_ROLE_ARN: arn:aws:iam::553885929720:role/tf_nodereal_prod_ecr_cicd_deployment_assume_role
1615
# Notice: must modify here to fit your service config path
1716
GIT_SYNC_PATH: qa/gitops/qa-us/demo-app/values.yaml
1817
TAG_FIELD: .image.tag
1918

2019
jobs:
2120
CI:
22-
runs-on: [self-hosted,qa-infra-k8s]
21+
runs-on: [self-hosted,prod-cicd-runners]
2322
steps:
2423
- uses: actions/checkout@v3
2524
# - uses: actions/setup-go@v3
@@ -30,25 +29,14 @@ jobs:
3029
# with:
3130
# # Optional: version of golangci-lint to use in form of v1.2 or v1.2.3 or `latest` to use the latest version
3231
# version: v1.45.2
33-
- name: aws assume role
34-
id: aws-assume-role
35-
run: |
36-
UUID=$(cat /proc/sys/kernel/random/uuid)
37-
OUT=$(aws sts assume-role --role-arn $AWS_ASSUMED_ROLE_ARN --role-session-name $UUID)
38-
echo ::set-output name=aws_access_key_id::"$(echo $OUT | jq -r '.Credentials''.AccessKeyId')"
39-
echo ::set-output name=aws_secret_key::"$(echo $OUT | jq -r '.Credentials''.SecretAccessKey')"
40-
echo ::set-output name=aws_sessions_token::"$(echo $OUT | jq -r '.Credentials''.SessionToken')"
4132
- name: Build, tag, and push image to Amazon ECR
42-
env:
43-
AWS_ACCESS_KEY_ID: ${{ steps.aws-assume-role.outputs.aws_access_key_id }}
44-
AWS_SECRET_ACCESS_KEY: ${{ steps.aws-assume-role.outputs.aws_secret_key }}
45-
AWS_SESSION_TOKEN: ${{ steps.aws-assume-role.outputs.aws_sessions_token }}
4633
run: |
4734
aws ecr get-login-password --region ${REGION} | docker login --username AWS --password-stdin ${ECR_REGISTRY_ID}.dkr.ecr.${REGION}.amazonaws.com
48-
aws ecr --region $REGION describe-repositories --registry-id $ECR_REGISTRY_ID --repository-names ${GITHUB_REPOSITORY#*/} || aws ecr --region $REGION create-repository --registry-id $ECR_REGISTRY_ID --repository-name ${GITHUB_REPOSITORY#*/}
49-
aws ecr --region $REGION set-repository-policy --registry-id $ECR_REGISTRY_ID --repository-name ${GITHUB_REPOSITORY#*/} --policy-text file:///home/runner/repo-access-permissions.json
5035
docker build -t ${ECR_REGISTRY_ID}.dkr.ecr.${REGION}.amazonaws.com/${GITHUB_REPOSITORY#*/}:${GITHUB_SHA} .
5136
docker push ${ECR_REGISTRY_ID}.dkr.ecr.${REGION}.amazonaws.com/${GITHUB_REPOSITORY#*/}:${GITHUB_SHA}
37+
38+
docker build -t ${ECR_REGISTRY_ID}.dkr.ecr.${REGION}.amazonaws.com/faucet:${GITHUB_SHA} -f Dockerfile.alltools .
39+
docker push ${ECR_REGISTRY_ID}.dkr.ecr.${REGION}.amazonaws.com/faucet:${GITHUB_SHA}
5240
# CD:
5341
# needs: [CI]
5442
# runs-on: [self-hosted,qa-infra-k8s]

0 commit comments

Comments
 (0)