add temurin 17

Author: eksrha

.github/flavours.json

@@ -0,0 +1,12 @@
+{
+    "flavour": [
+        "ansible-k8s",
+        "fullstacked",
+        "golang",
+        "kaniko-sidecar",
+        "maven-adopt-8-ng",
+        "maven-temurin-11",
+        "maven-temurin-17",
+        "ng-cli-karma"
+    ]
+}

.github/workflows/build-pr.yml

@@ -12,6 +12,16 @@ jobs:
     secrets:
       token: ${{ secrets.GITHUB_TOKEN }}
 
+  load_matrix:
+    runs-on: ubuntu-latest
+    outputs:
+      matrix: ${{ steps.set-matrix.outputs.matrix }}
+    steps:
+      - id: set-matrix
+        run: |
+          JSON=$(cat .github/flavours.json)
+          echo "::set-output name=matrix::${JSON//'%'/'%25'}"
+
   build_base:
     runs-on: ubuntu-latest
     needs: generate_infos
@@ -40,40 +50,11 @@ jobs:
           tags: |
             ${{ env.IMAGE_BASE }}:base-pr-${{ github.event.pull_request.number }}
 
-  build_kaniko-sidecar:
-    runs-on: ubuntu-latest
-    needs: generate_infos
-    steps:
-      - name: Check out the repo
-        uses: actions/checkout@v2
-
-      - name: Login to GitHub Container Registry
-        uses: docker/login-action@v1
-        with:
-          registry: ghcr.io
-          username: ${{ github.repository_owner }}
-          password: ${{ secrets.GITHUB_TOKEN }}
-
-      - name: Set up QEMU
-        uses: docker/setup-qemu-action@v1
-      - name: Set up Docker Buildx
-        id: buildx
-        uses: docker/setup-buildx-action@v1
-
-      - name: Build github-actions-runner:kaniko-sidecar
-        uses: docker/build-push-action@v2
-        with:
-          context: ./images/kaniko-sidecar
-          push: true
-          tags: |
-            ${{ env.IMAGE_BASE }}:kaniko-sidecar-pr-${{ github.event.pull_request.number }}
-
-  build_flavors:
+  build_flavours:
     runs-on: ubuntu-latest
-    needs: [generate_infos, build_base]
+    needs: [generate_infos, load_matrix, build_base]
     strategy:
-      matrix:
-        flavor: [ansible-k8s, maven-adopt-8-ng, maven-temurin-11, golang, ng-cli-karma, fullstacked]
+      matrix: ${{ fromJson(needs.load_matrix.outputs.matrix) }}
     steps:
       - name: Check out the repo
         uses: actions/checkout@v2
@@ -94,12 +75,12 @@ jobs:
       - name: link child image to current pr
         run: |
           sed -i --expression "s@FROM ${{ env.IMAGE_BASE }}.*@FROM ${{ env.IMAGE_BASE }}:base-pr-${{ github.event.pull_request.number }}@g" \
-          images/${{ matrix.flavor }}/Dockerfile
+          images/${{ matrix.flavour }}/Dockerfile
 
-      - name: Build github-actions-runner:${{ matrix.flavor }}
+      - name: Build github-actions-runner:${{ matrix.flavour }}
         uses: docker/build-push-action@v2
         with:
-          context: ./images/${{ matrix.flavor }}
+          context: ./images/${{ matrix.flavour }}
           push: true
           tags: |
-            ${{ env.IMAGE_BASE }}:${{ matrix.flavor }}-pr-${{ github.event.pull_request.number }}
+            ${{ env.IMAGE_BASE }}:${{ matrix.flavour }}-pr-${{ github.event.pull_request.number }}

.github/workflows/cleanup-pr.yml

@@ -25,17 +25,16 @@ jobs:
           token: ${{ secrets.GH_DEL_IMAGE_PAT }}
           tag: kaniko-sidecar-pr-${{ github.event.pull_request.number }}
 
-  purge_flavor_images:
+  purge_flavour_images:
     name: Delete image from ghcr.io
     runs-on: ubuntu-latest
     strategy:
-      matrix:
-        flavor: [ansible-k8s, maven-adopt-8-ng, maven-temurin-11, golang, ng-cli-karma, fullstacked]
+      matrix: ${{ fromJson(.github/flavours.json) }}
     steps:
-      - name: Delete github-actions-runner:${{ matrix.flavor }}
+      - name: Delete github-actions-runner:${{ matrix.flavour }}
         uses: bots-house/ghcr-delete-image-action@v1.0.0
         with:
           owner: ${{ github.repository_owner }}
           name: github-actions-runner
           token: ${{ secrets.GH_DEL_IMAGE_PAT }}
-          tag: ${{ matrix.flavor }}-pr-${{ github.event.pull_request.number }}
+          tag: ${{ matrix.flavour }}-pr-${{ github.event.pull_request.number }}

.github/workflows/create-release.yml

@@ -92,12 +92,11 @@ jobs:
             quay.io/${{ env.IMAGE_NAME }}:latest-kaniko-sidecar
             quay.io/${{ env.IMAGE_NAME }}:${{needs.create_release.outputs.version}}-kaniko-sidecar
 
-  build_flavors:
+  build_flavours:
     runs-on: ubuntu-latest
     needs: [create_release, build_base]
     strategy:
-      matrix:
-        flavor: [ansible-k8s, maven-adopt-8-ng, maven-temurin-11, golang, ng-cli-karma, fullstacked]
+      matrix: ${{ fromJson(.github/flavours.json) }}
     steps:
       - name: Check out the repo
         uses: actions/checkout@v2
@@ -123,22 +122,22 @@ jobs:
       - name: link child image to current version
         run: |
           sed -i --expression "s@FROM ghcr.io/${{ env.IMAGE_NAME }}.*@FROM ghcr.io/${{ env.IMAGE_NAME }}:${{needs.create_release.outputs.version}}-base@g" \
-          images/${{ matrix.flavor }}/Dockerfile
+          images/${{ matrix.flavour }}/Dockerfile
 
-      - name: Build github-actions-runner:${{ matrix.flavor }}
+      - name: Build github-actions-runner:${{ matrix.flavour }}
         uses: docker/build-push-action@v2
         with:
-          context: ./images/${{ matrix.flavor }}
+          context: ./images/${{ matrix.flavour }}
           push: true
           tags: |
-            ghcr.io/${{ env.IMAGE_NAME }}:latest-${{ matrix.flavor }}
-            ghcr.io/${{ env.IMAGE_NAME }}:${{needs.create_release.outputs.version}}-${{ matrix.flavor }}
-            quay.io/${{ env.IMAGE_NAME }}:latest-${{ matrix.flavor }}
-            quay.io/${{ env.IMAGE_NAME }}:${{needs.create_release.outputs.version}}-${{ matrix.flavor }}
+            ghcr.io/${{ env.IMAGE_NAME }}:latest-${{ matrix.flavour }}
+            ghcr.io/${{ env.IMAGE_NAME }}:${{needs.create_release.outputs.version}}-${{ matrix.flavour }}
+            quay.io/${{ env.IMAGE_NAME }}:latest-${{ matrix.flavour }}
+            quay.io/${{ env.IMAGE_NAME }}:${{needs.create_release.outputs.version}}-${{ matrix.flavour }}
 
   publish_release:
     runs-on: ubuntu-latest
-    needs: [create_release, build_base, build_flavors]
+    needs: [create_release, build_base, build_flavours]
     steps:
       - name: Checkout code
         uses: actions/checkout@v2

README.md

@@ -2,7 +2,7 @@
 [![Anchore Container Scan](https://github.com/fullstack-devops/github-actions-runner/actions/workflows/anchore.yml/badge.svg)](https://github.com/fullstack-devops/github-actions-runner/actions/workflows/anchore.yml)
 
 # GitHub Actions Custom Runner
-Container images with Github Actions Runner. Different flavored images with preinstalled tools and software for builds with limited internet access and non root privileges (exception for kaniko).
+Container images with Github Actions Runner. Different flavoured images with preinstalled tools and software for builds with limited internet access and non root privileges (exception for kaniko).
 With a focus on already installed software to avoid a subsequent installation by a `setup-action`.
 
 Ideal for building software in corporate environments of large and small organizations that often restrict Internet access.

images/maven-temurin-17/Dockerfile

@@ -0,0 +1,50 @@
+FROM ghcr.io/fullstack-devops/github-actions-runner:latest-base
+
+USER root
+# install packages along with jq so we can parse JSON
+# add additional packages as necessary
+ARG PACKAGES="temurin-17-jdk maven nodejs ansible"
+ARG PACKAGES_PYTHON="kubernetes"
+
+## ansible keys
+RUN wget -O - https://packages.adoptium.net/artifactory/api/gpg/key/public | apt-key add - \
+  && echo "deb https://packages.adoptium.net/artifactory/deb $(awk -F= '/^VERSION_CODENAME/{print$2}' /etc/os-release) main" | tee /etc/apt/sources.list.d/adoptium.list
+
+RUN apt-get update \
+  && add-apt-repository -y --update ppa:ansible/ansible \
+  && apt-get install -y --no-install-recommends ${PACKAGES} \
+  && rm -rf /var/lib/apt/lists/* \
+  && apt-get clean
+
+ENV GH_RUNNER_LABELS="ubuntu-20.04,maven,temurin-17,helm,ansible"
+# https://github.com/helm/helm/releases
+ARG HELM_VERSION=3.8.1
+
+# Install helm
+RUN export ARCH=$(/helper-scripts/translate-aarch.sh a-short) \
+  && wget -q https://get.helm.sh/helm-v${HELM_VERSION}-linux-${ARCH}.tar.gz -O - | tar -xzO linux-${ARCH}/helm > /usr/local/bin/helm \
+  && chmod +x /usr/local/bin/helm
+
+ENV TMP_DIR=/home/${USERNAME}/tmp
+
+RUN mkdir /run/user/$USERID
+RUN mkdir /home/${USERNAME}/.ansible
+RUN mkdir ${TMP_DIR}
+
+COPY requirements.yml ${TMP_DIR}/requirements.yml
+
+RUN mkdir -p /home/${USERNAME}/.m2/ \
+  && chown -R $USERNAME /home/$USERNAME \
+  && chown -R $USERNAME /run/user/$USERID
+
+USER $USERNAME
+
+RUN pip3 install $PACKAGES_PYTHON --user
+
+# RUN ansible-galaxy install -c -r ${TMP_DIR}/requirements.yml
+RUN ansible-galaxy collection install -c -r ${TMP_DIR}/requirements.yml
+
+# install helm plugins helm push, appr && diff
+RUN helm plugin install --version 0.10.2 https://github.com/chartmuseum/helm-push.git \
+  && helm plugin install --version 0.7.0 https://github.com/app-registry/appr-helm-plugin.git \
+  && helm plugin install --version 3.4.2 https://github.com/databus23/helm-diff

images/maven-temurin-17/requirements.yml

@@ -0,0 +1,4 @@
+---
+collections:
+  - name: kubernetes.core
+    version: 2.3.1