Bump to 1.2.46 and remove docker running as localuser #87
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Continuous integration testing for ChRIS Plugin. | |
# https://github.com/FNNDSC/python-chrisapp-template/wiki/Continuous-Integration | |
# | |
# - on push to main: build and push container images as ":latest" | |
# - on push to semver tag: build and push container image with tag and | |
# upload plugin description to https://chrisstore.co | |
name: build | |
on: | |
push: | |
branches: [ main ] | |
tags: | |
- "v?[0-9]+.[0-9]+.[0-9]+*" | |
pull_request: | |
branches: [ main ] | |
jobs: | |
build: | |
name: Build | |
if: github.event_name == 'push' || github.event_name == 'release' | |
runs-on: ubuntu-22.04 | |
steps: | |
- name: Stop docker | |
run: sudo systemctl stop docker | |
- name: Clean docker data | |
run: | | |
sudo rm -rf /var/lib/docker | |
sudo mkdir /var/lib/docker | |
- name: Maximize build space | |
uses: easimon/maximize-build-space@fc881a613ad2a34aca9c9624518214ebc21dfc0c | |
with: | |
root-reserve-mb: 8192 # space needed for logs | |
swap-size-mb: 1 # must be >0 | |
build-mount-path: /var/lib/docker | |
remove-dotnet: 'true' | |
remove-android: 'true' | |
remove-haskell: 'true' | |
remove-codeql: 'true' | |
remove-docker-images: 'false' | |
- name: Start docker | |
run: sudo systemctl start docker | |
- name: Decide image tags | |
id: info | |
shell: python | |
run: | | |
import os | |
import itertools | |
def join_tag(t): | |
registry, repo, tag = t | |
return f'{registry}/{repo}:{tag}'.lower() | |
registries = ['docker.io', 'ghcr.io'] | |
repos = ['${{ github.repository }}'] | |
if '${{ github.ref_type }}' == 'branch': | |
tags = ['latest'] | |
elif '${{ github.ref_type }}' == 'tag': | |
tag = '${{ github.ref_name }}' | |
version = tag[1:] if tag.startswith('v') else tag | |
tags = ['latest', version] | |
else: | |
tags = [] | |
if '${{ github.ref_type }}' == 'tag': | |
local_tag = join_tag(('ghcr.io', '${{ github.repository }}', version)) | |
else: | |
local_tag = join_tag(('localhost:5000', '${{ github.repository }}', 'latest')) | |
product = itertools.product(registries, repos, tags) | |
tags_csv = ','.join(map(join_tag, product)) | |
outputs = { | |
'tags_csv' : tags_csv, | |
'push' : 'true' if tags_csv else 'false', | |
'local_tag': local_tag | |
} | |
with open(os.environ['GITHUB_OUTPUT'], 'a') as out: | |
for k, v in outputs.items(): | |
out.write(f'{k}={v}\n') | |
- name: Run local registry | |
run: docker run --rm -d -p 5000:5000 registry:2 | |
- uses: actions/checkout@v4 | |
# QEMU is used for non-x86_64 builds | |
- uses: docker/setup-qemu-action@v3 | |
# buildx adds additional features to docker build | |
- uses: docker/setup-buildx-action@v3 | |
with: | |
driver-opts: network=host | |
- name: Login to DockerHub | |
if: (github.event_name == 'push' || github.event_name == 'release') && contains(steps.info.outputs.tags_csv, 'docker.io') | |
uses: docker/login-action@v3 | |
with: | |
username: ${{ secrets.DOCKERHUB_USERNAME }} | |
password: ${{ secrets.DOCKERHUB_PASSWORD }} | |
- name: Login to GitHub Container Registry | |
if: (github.event_name == 'push' || github.event_name == 'release') && contains(steps.info.outputs.tags_csv, 'ghcr.io') | |
uses: docker/login-action@v3 | |
with: | |
registry: ghcr.io | |
username: ${{ github.repository_owner }} | |
password: ${{ secrets.GITHUB_TOKEN }} | |
- name: Build and push | |
uses: docker/build-push-action@v5 | |
if: (github.event_name == 'push' || github.event_name == 'release') | |
with: | |
context: . | |
file: ./Dockerfile | |
tags: ${{ steps.info.outputs.tags_csv }},${{ steps.info.outputs.local_tag }} | |
platforms: linux/amd64 | |
push: ${{ steps.info.outputs.push }} | |
cache-to: type=gha,mode=max | |
- name: Upload ChRIS Plugin | |
id: upload | |
if: github.ref_type == 'tag' | |
uses: FNNDSC/upload-chris-plugin@v1 | |
with: | |
dock_image: ${{ steps.info.outputs.local_tag }} | |
username: ${{ secrets.CHRISPROJECT_USERNAME }} | |
password: ${{ secrets.CHRISPROJECT_PASSWORD }} | |
chris_url: https://cube.chrisproject.org/api/v1/ | |
compute_names: NERC | |
pull: missing | |
- name: Update DockerHub description | |
if: steps.upload.outcome == 'success' | |
uses: peter-evans/dockerhub-description@v3 | |
continue-on-error: true # it is not crucial that this works | |
with: | |
username: ${{ secrets.DOCKERHUB_USERNAME }} | |
password: ${{ secrets.DOCKERHUB_PASSWORD }} | |
short-description: ${{ steps.upload.outputs.title }} | |
readme-filepath: ./README.md |