Merge pull request #1635 from atsign-foundation/dependabot/github_act… #21
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: promote_canary | |
# Workflow to promote a canary release to production | |
on: | |
push: | |
tags: | |
- 'p*.*.*' | |
workflow_dispatch: | |
permissions: # added using https://github.com/step-security/secure-workflows | |
contents: read | |
jobs: | |
# Add layer to canary secondary image with prod pubspec.yaml | |
deploy_canary_secondary_to_prod_image: | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
# Extract version for docker tag | |
- name: Get version | |
run: echo "VERSION=${GITHUB_REF##*/}" >> $GITHUB_ENV | |
- name: Set up QEMU | |
uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0 | |
- name: Set up Docker Buildx | |
uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3.0.0 | |
- name: Login to DockerHub | |
uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0 | |
with: | |
username: ${{ secrets.DOCKERHUB_USERNAME }} | |
password: ${{ secrets.DOCKERHUB_TOKEN }} | |
# Builds and pushes the secondary server image to docker hub. | |
- name: Build and push secondary image for amd64 and arm64 | |
id: docker_build_canary_to_prod | |
uses: docker/build-push-action@0565240e2d4ab88bba5387d719585280857ece09 # v5.0.0 | |
with: | |
push: true | |
provenance: false | |
file: tools/build_secondary/Dockerfile.canary_to_prod | |
context: . | |
tags: | | |
atsigncompany/secondary:prod | |
atsigncompany/secondary:dess | |
atsigncompany/secondary:prod-${{ env.VERSION }} | |
platforms: | | |
linux/amd64 | |
linux/arm64/v8 | |
linux/arm/v7 | |
# Add layer to canary virtualenv image with prod pubspec.yaml | |
deploy_canary_virtualenv_to_prod_image: | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
# Extract version for docker tag | |
- name: Get version | |
run: echo "VERSION=${GITHUB_REF##*/}" >> $GITHUB_ENV | |
- name: Set up QEMU | |
uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0 | |
- name: Set up Docker Buildx | |
uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3.0.0 | |
- name: Login to DockerHub | |
uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0 | |
with: | |
username: ${{ secrets.DOCKERHUB_USERNAME }} | |
password: ${{ secrets.DOCKERHUB_TOKEN }} | |
# Builds and pushes the secondary server image to docker hub. | |
- name: Build and push virtualenv image for amd64 and arm64 | |
id: docker_build_canary_to_vip | |
uses: docker/build-push-action@0565240e2d4ab88bba5387d719585280857ece09 # v5.0.0 | |
with: | |
push: true | |
file: tools/build_virtual_environment/ve/Dockerfile.canary_to_vip | |
context: . | |
tags: | | |
atsigncompany/virtualenv:vip | |
atsigncompany/virtualenv:vip-${{ env.VERSION }} | |
platforms: | | |
linux/amd64 | |
linux/arm64/v8 |