Skip to content

remove scope in token exchange #146

remove scope in token exchange

remove scope in token exchange #146

name: Docker automatic build and publish when changes in container dir
on:
push:
branches:
- main
env:
REGISTRY: ghcr.io
jobs:
build-matrix-from-changed-dirs:
runs-on: ubuntu-latest
name: Build matrix from directories with changed files
steps:
- uses: actions/[email protected]
with:
fetch-depth: 2 # "0" (OR "2" -> To retrieve the preceding commit).
- name: Run changed-files with dir_names
id: changed-files
uses: tj-actions/[email protected]
with:
files_ignore: |
.github/**
infrastructure/**
.gitignore
*.md
*.png
LICENSE
**/README.md
dir_names: "true"
dir_names_exclude_current_dir: "true"
- name: List all changed dirs
id: format-output
run: |
containers=()
for dir in ${{ steps.changed-files.outputs.all_changed_files }}; do
echo "$dir was changed"
tmp_dir=$(echo $dir | cut -d'/' -f2)
containers+=("\"${tmp_dir}\"")
done
CONT_LIST=`echo "[${containers[@]}]" | sed 's/ /,/g'`
echo "Updated containers list: $CONT_LIST"
echo ::set-output name=container_list::$CONT_LIST
outputs:
modified_containers: ${{ steps.format-output.outputs.container_list }}
build-and-push-modified-containers:
if: needs.build-matrix-from-changed-dirs.outputs.modified_containers != '[]'
needs: build-matrix-from-changed-dirs
runs-on: ubuntu-latest
strategy:
matrix:
containers: ${{ fromJSON(needs.build-matrix-from-changed-dirs.outputs.modified_containers) }}
permissions:
contents: read
packages: write
steps:
- name: Docker Checkout
uses: actions/[email protected]
- name: Action for git describe
id: ghd
uses: proudust/[email protected]
- name: Check gh-describe output
run: |
echo "describe : ${{ steps.ghd.outputs.describe }}"
echo "tag : ${{ steps.ghd.outputs.tag }}"
echo "distance : ${{ steps.ghd.outputs.distance }}"
echo "sha : ${{ steps.ghd.outputs.sha }}"
echo "short-sha : ${{ steps.ghd.outputs.short-sha }}"
- name: Log in to the GH Container Registry
id: login
uses: docker/[email protected]
with:
registry: ${{ env.REGISTRY }}
username: ${{ github.actor }}
password: ${{ secrets.GITHUB_TOKEN }}
- name: Extract metadata for ${{ matrix.containers }}
id: metadata
uses: docker/[email protected]
with:
flavor: |
latest=true
tags: |
type=raw,value=${{ steps.ghd.outputs.tag }}-${{ steps.ghd.outputs.distance }}-${{ steps.ghd.outputs.short-sha }}
# Expected format: ghcr.io/vre-hub/{vre}-{container_name}:{tag}
images: ${{ env.REGISTRY }}/${{ github.repository_owner }}/${{ github.event.repository.name }}-${{ matrix.containers }}
- name: Build and push ${{ matrix.containers }}
id: build
uses: docker/[email protected]
with:
context: containers/${{ matrix.containers }}
file: containers/${{ matrix.containers }}/Dockerfile
push: true
tags: ${{ steps.metadata.outputs.tags }}
labels: ${{ steps.metadata.outputs.labels }}
# The version of the base image of all ops containers is the latest tag of the base-ops image
build-args: |
BUILD_DATE=$(date +'%Y-%m-%dT%H:%M:%SZ')
TAG=${{ steps.ghd.outputs.tag }}