2023-07-17 08:08:20 +00:00
|
|
|
name: Container
|
|
|
|
|
|
|
|
on:
|
|
|
|
workflow_call:
|
|
|
|
inputs:
|
2023-08-10 12:21:01 +00:00
|
|
|
build_image_name:
|
2023-07-17 08:08:20 +00:00
|
|
|
required: true
|
|
|
|
type: string
|
|
|
|
outputs:
|
2023-08-10 12:21:01 +00:00
|
|
|
build_image:
|
|
|
|
value: '${{ inputs.build_image_name }}:${{ github.sha }}'
|
|
|
|
|
|
|
|
permissions:
|
|
|
|
packages: write
|
2023-07-17 08:08:20 +00:00
|
|
|
|
|
|
|
env:
|
|
|
|
default_labels: |
|
|
|
|
org.opencontainers.image.documentation=https://zitadel.com/docs
|
|
|
|
org.opencontainers.image.vendor=CAOS AG
|
|
|
|
|
|
|
|
jobs:
|
|
|
|
build:
|
|
|
|
name: zitadel
|
|
|
|
runs-on: ubuntu-latest
|
|
|
|
strategy:
|
|
|
|
fail-fast: false
|
|
|
|
matrix:
|
|
|
|
arch: [amd64,arm64]
|
|
|
|
steps:
|
|
|
|
-
|
|
|
|
uses: actions/checkout@v3
|
|
|
|
-
|
|
|
|
name: Scratch meta
|
|
|
|
id: scratch-meta
|
|
|
|
uses: docker/metadata-action@v4
|
|
|
|
with:
|
2023-08-10 12:21:01 +00:00
|
|
|
images: ${{ inputs.build_image_name }}
|
2023-07-17 08:08:20 +00:00
|
|
|
labels: ${{ env.default_labels}}
|
|
|
|
tags: |
|
|
|
|
type=sha,prefix=,suffix=,format=long
|
|
|
|
-
|
|
|
|
name: Debug meta
|
|
|
|
id: debug-meta
|
|
|
|
uses: docker/metadata-action@v4
|
|
|
|
with:
|
2023-08-10 12:21:01 +00:00
|
|
|
images: ${{ inputs.build_image_name }}
|
2023-07-17 08:08:20 +00:00
|
|
|
labels: ${{ env.default_labels}}
|
|
|
|
tags: |
|
|
|
|
type=sha,prefix=,suffix=-debug,format=long
|
|
|
|
-
|
|
|
|
name: Set up QEMU
|
2024-03-06 08:29:51 +00:00
|
|
|
uses: docker/setup-qemu-action@v3
|
2023-07-17 08:08:20 +00:00
|
|
|
-
|
|
|
|
name: Set up Docker Buildx
|
2024-03-07 15:38:38 +00:00
|
|
|
uses: docker/setup-buildx-action@v3
|
2023-07-17 08:08:20 +00:00
|
|
|
with:
|
|
|
|
driver-opts: 'image=moby/buildkit:v0.11.6'
|
2023-08-10 12:21:01 +00:00
|
|
|
-
|
2023-07-17 08:08:20 +00:00
|
|
|
name: Login to Docker registry
|
|
|
|
uses: docker/login-action@v2
|
|
|
|
with:
|
|
|
|
registry: ghcr.io
|
|
|
|
username: ${{ github.actor }}
|
|
|
|
password: ${{ secrets.GITHUB_TOKEN }}
|
|
|
|
-
|
2024-03-06 07:26:03 +00:00
|
|
|
uses: actions/download-artifact@v4
|
2023-07-17 08:08:20 +00:00
|
|
|
with:
|
|
|
|
path: .artifacts
|
|
|
|
name: zitadel-linux-${{ matrix.arch }}
|
|
|
|
-
|
|
|
|
name: Unpack executable
|
|
|
|
run: |
|
2023-08-11 12:49:28 +00:00
|
|
|
tar -xvf .artifacts/zitadel-linux-${{ matrix.arch }}.tar.gz
|
2023-07-17 08:08:20 +00:00
|
|
|
mv zitadel-linux-${{ matrix.arch }}/zitadel ./zitadel
|
|
|
|
-
|
|
|
|
name: Debug
|
|
|
|
id: build-debug
|
2024-03-08 06:52:49 +00:00
|
|
|
uses: docker/build-push-action@v5
|
2023-07-17 08:08:20 +00:00
|
|
|
timeout-minutes: 3
|
|
|
|
with:
|
|
|
|
context: .
|
2023-08-10 12:21:01 +00:00
|
|
|
cache-from: type=gha
|
|
|
|
cache-to: type=gha,mode=max
|
2023-07-17 08:08:20 +00:00
|
|
|
file: build/Dockerfile
|
|
|
|
target: artifact
|
|
|
|
platforms: linux/${{ matrix.arch }}
|
|
|
|
push: true
|
|
|
|
labels: ${{ steps.debug-meta.outputs.labels }}
|
2023-08-10 12:21:01 +00:00
|
|
|
outputs: type=image,name=${{ inputs.build_image_name }},push-by-digest=true,name-canonical=true,push=true
|
2023-07-17 08:08:20 +00:00
|
|
|
-
|
|
|
|
name: Scratch
|
|
|
|
id: build-scratch
|
2024-03-08 06:52:49 +00:00
|
|
|
uses: docker/build-push-action@v5
|
2023-07-17 08:08:20 +00:00
|
|
|
timeout-minutes: 3
|
|
|
|
with:
|
|
|
|
context: .
|
2023-08-10 12:21:01 +00:00
|
|
|
cache-from: type=gha
|
|
|
|
cache-to: type=gha,mode=max
|
2023-07-17 08:08:20 +00:00
|
|
|
file: build/Dockerfile
|
|
|
|
target: final
|
|
|
|
platforms: linux/${{ matrix.arch }}
|
|
|
|
push: true
|
|
|
|
labels: ${{ steps.scratch-meta.outputs.labels }}
|
2023-08-10 12:21:01 +00:00
|
|
|
outputs: type=image,name=${{ inputs.build_image_name }},push-by-digest=true,name-canonical=true,push=true
|
2023-07-17 08:08:20 +00:00
|
|
|
-
|
|
|
|
name: Export debug digest
|
|
|
|
run: |
|
|
|
|
mkdir -p /tmp/digests/debug
|
|
|
|
digest="${{ steps.build-debug.outputs.digest }}"
|
|
|
|
touch "/tmp/digests/debug/${digest#sha256:}"
|
|
|
|
-
|
|
|
|
name: Export scratch digest
|
|
|
|
run: |
|
|
|
|
mkdir -p /tmp/digests/scratch
|
|
|
|
digest="${{ steps.build-scratch.outputs.digest }}"
|
|
|
|
touch "/tmp/digests/scratch/${digest#sha256:}"
|
|
|
|
-
|
|
|
|
name: Upload digest
|
2024-03-06 07:26:03 +00:00
|
|
|
uses: actions/upload-artifact@v4
|
2023-07-17 08:08:20 +00:00
|
|
|
with:
|
|
|
|
name: digests
|
|
|
|
path: /tmp/digests
|
|
|
|
if-no-files-found: error
|
|
|
|
retention-days: 1
|
|
|
|
|
|
|
|
merge:
|
|
|
|
runs-on: ubuntu-latest
|
|
|
|
needs:
|
|
|
|
- build
|
|
|
|
strategy:
|
|
|
|
fail-fast: false
|
|
|
|
matrix:
|
|
|
|
image: [scratch, debug]
|
|
|
|
include:
|
|
|
|
- image: scratch
|
|
|
|
suffix: ''
|
|
|
|
- image: debug
|
|
|
|
suffix: '-debug'
|
|
|
|
steps:
|
|
|
|
-
|
|
|
|
name: Download digests
|
2024-03-06 07:26:03 +00:00
|
|
|
uses: actions/download-artifact@v4
|
2023-07-17 08:08:20 +00:00
|
|
|
with:
|
|
|
|
name: digests
|
|
|
|
path: /tmp/digests
|
|
|
|
-
|
|
|
|
name: Set up Docker Buildx
|
2024-03-07 15:38:38 +00:00
|
|
|
uses: docker/setup-buildx-action@v3
|
2023-07-17 08:08:20 +00:00
|
|
|
with:
|
|
|
|
driver-opts: 'image=moby/buildkit:v0.11.6'
|
|
|
|
-
|
|
|
|
name: Login to Docker registry
|
|
|
|
uses: docker/login-action@v2
|
|
|
|
with:
|
|
|
|
registry: ghcr.io
|
|
|
|
username: ${{ github.actor }}
|
|
|
|
password: ${{ secrets.GITHUB_TOKEN }}
|
2023-08-10 12:21:01 +00:00
|
|
|
-
|
|
|
|
name: Docker meta
|
|
|
|
id: build-meta
|
|
|
|
uses: docker/metadata-action@v4
|
|
|
|
with:
|
|
|
|
images: '${{ inputs.build_image_name }}'
|
|
|
|
tags: |
|
|
|
|
type=sha,prefix=,suffix=${{ matrix.suffix }},format=long
|
|
|
|
-
|
|
|
|
name: Create build manifest list and push
|
2023-07-17 08:08:20 +00:00
|
|
|
working-directory: /tmp/digests/${{ matrix.image }}
|
|
|
|
run: |
|
2023-08-10 12:21:01 +00:00
|
|
|
docker buildx imagetools create $(jq -cr '.tags | map("-t " + .) | join(" ")' <<< '${{ steps.build-meta.outputs.json }}') \
|
|
|
|
$(printf '${{ inputs.build_image_name }}@sha256:%s ' *)
|
2023-07-17 08:08:20 +00:00
|
|
|
-
|
2023-08-10 12:21:01 +00:00
|
|
|
name: Inspect build image
|
2023-07-17 08:08:20 +00:00
|
|
|
run: |
|
2023-08-10 12:21:01 +00:00
|
|
|
docker buildx imagetools inspect ${{ inputs.build_image_name }}:${{ github.sha }}${{ matrix.suffix }}
|
|
|
|
|