Skip to content

Updates for release 1.10.0 (#93) #3

Updates for release 1.10.0 (#93)

Updates for release 1.10.0 (#93) #3

name: Publish 3Key Docker image
on:
push:
branches: [develop]
tags:
- '*'
workflow_dispatch:
jobs:
push_to_registry:
name: Push Docker images
runs-on: ubuntu-latest
steps:
- name: Check out the repo
uses: actions/checkout@v4
- name: Install Cosign
uses: sigstore/[email protected]
- name: Set up QEMU
uses: docker/setup-qemu-action@v3
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3
- name: Log in to 3Key Docker Hub
uses: docker/login-action@v3
with:
username: ${{ secrets.DOCKER_HUB_3KEY_USERNAME }}
password: ${{ secrets.DOCKER_HUB_3KEY_PASSWORD }}
- name: Extract metadata (tags, labels) for Docker
id: meta
uses: docker/metadata-action@v5
with:
images: |
3keycompany/czertainly-ejbca-ng-connector
tags: |
type=ref,event=tag
type=raw,value=develop-latest
type=sha,prefix=develop-,format=long
- name: Build and push Docker image
uses: docker/build-push-action@v6
id: build-and-push
with:
context: .
platforms: linux/amd64,linux/arm64
file: ./Dockerfile
push: true
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}
- name: Sign images with a key
run: |
images=""
for tag in ${TAGS}; do
images+="${tag}@${DIGEST} "
done
cosign sign --yes --key env://COSIGN_PRIVATE_KEY ${images}
env:
TAGS: ${{ steps.meta.outputs.tags }}
COSIGN_PRIVATE_KEY: ${{ secrets.COSIGN_PRIVATE_KEY }}
COSIGN_PASSWORD: ${{ secrets.COSIGN_PASSWORD }}
DIGEST: ${{ steps.build-and-push.outputs.digest }}
- name: Push README to 3Key Docker Hub
uses: christian-korneck/update-container-description-action@v1
env:
DOCKER_USER: ${{ secrets.DOCKER_HUB_3KEY_USERNAME }}
DOCKER_PASS: ${{ secrets.DOCKER_HUB_3KEY_PASSWORD }}
with:
destination_container_repo: 3keycompany/czertainly-ejbca-ng-connector
provider: dockerhub