Skip to content

docker workflow: execute only if the pr actor is not dependabot or labels contains docker #4

docker workflow: execute only if the pr actor is not dependabot or labels contains docker

docker workflow: execute only if the pr actor is not dependabot or labels contains docker #4

Workflow file for this run

# Copyright 2024 Zaphiro Technologies
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
name: Docker Build
concurrency:
group: ${{github.repository}}-${{ github.ref_name }}-docker
cancel-in-progress: true
on:
pull_request:
branches:
- main
workflow_call:
inputs:
image-name:
required: false
description: Override default image name which is the repo name
type: string
docker-context:
required: false
description: Docker context path
type: string
default: ./
docker-file:
required: false
description: Dockerfile path
type: string
default: .docker/Dockerfile
platforms:
required: false
description: Platform to build for, comma separated
type: string
default: linux/amd64,linux/arm64
# Permissions needed
# permissions:
# contents: read
# packages: write
# pull-requests: read
jobs:
check:
runs-on: ubuntu-latest
if: ${{ github.actor== 'dependabot[bot]' || contains(github.event.pull_request.labels.*.name, 'docker') || startsWith(github.ref, 'refs/tags/') }} # ignore the pull request which comes from user depbot.
steps:
- run: |
echo "ok"
build:
needs: check
runs-on: ubuntu-latest
env:
GH_ACCESS_TOKEN: ${{ secrets.REPO_PRIVATE_READ_PAT }}
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Run pre-build
run: |
if test -f "Makefile"; then
make ci-pre-build
fi
- name: Docker meta
id: meta
uses: docker/metadata-action@v5
with:
# list of Docker images to use as base name for tags
images: ghcr.io/${{github.repository_owner}}/${{ inputs.image-name || github.event.repository.name }}
# generate Docker tags based on the following events/attributes
tags: |
type=edge,branch=main
type=ref,event=branch
type=ref,event=pr
type=semver,pattern={{version}}
type=semver,pattern={{major}}.{{minor}}
type=semver,pattern={{major}}
- name: Set up QEMU
uses: docker/setup-qemu-action@v3
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3
- name: Login to GitHub Container Registry
uses: docker/login-action@v3
with:
registry: ghcr.io
username: ${{ github.actor }}
password: ${{ secrets.GITHUB_TOKEN }}
- name: Build and push
uses: docker/build-push-action@v5
with:
context: ${{ inputs.docker-context }}
file: ${{ inputs.docker-file }}
platforms: ${{ inputs.platforms }}
push: true
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}
cache-from: type=gha
cache-to: type=gha,mode=max
build-args: |
GIT_REV=${{fromJson(steps.meta.outputs.json).labels['org.opencontainers.image.revision']}}
GIT_VERSION=${{fromJson(steps.meta.outputs.json).labels['org.opencontainers.image.version']}}
GIT_URL=${{fromJson(steps.meta.outputs.json).labels['org.opencontainers.image.source']}}
BUILD_DATE=${{fromJson(steps.meta.outputs.json).labels['org.opencontainers.image.created']}}