[DSC-1448] Clean comments #989
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # DSpace Docker image build for hub.docker.com | ||
| name: Docker images | ||
| # Run this Build for all pushes to 'main' or maintenance branches, or tagged releases. | ||
| # Also run for PRs to ensure PR doesn't break Docker build process | ||
| # NOTE: uses "reusable-docker-build.yml" to actually build each of the Docker images. | ||
| on: | ||
| push: | ||
| branches: | ||
| - main | ||
| - 'dspace-**' | ||
| tags: | ||
| - 'dspace-**' | ||
| pull_request: | ||
| permissions: | ||
| contents: read # to fetch code (actions/checkout) | ||
| jobs: | ||
| #################################################### | ||
| # Build/Push the 'dspace/dspace-dependencies' image. | ||
| # This image is used by all other DSpace build jobs. | ||
| #################################################### | ||
| dspace-dependencies: | ||
| # Ensure this job never runs on forked repos. It's only executed for 'dspace/dspace' | ||
| if: github.repository == 'dspace/dspace' | ||
| uses: ./.github/workflows/reusable-docker-build.yml | ||
| with: | ||
| build_id: dspace-dependencies | ||
| image_name: dspace/dspace-dependencies | ||
| dockerfile_path: ./Dockerfile.dependencies | ||
| secrets: | ||
| DOCKER_USERNAME: ${{ secrets.DOCKER_USERNAME }} | ||
| DOCKER_ACCESS_TOKEN: ${{ secrets.DOCKER_ACCESS_TOKEN }} | ||
| ####################################### | ||
| # Build/Push the 'dspace/dspace' image | ||
| ####################################### | ||
| dspace: | ||
| # Ensure this job never runs on forked repos. It's only executed for 'dspace/dspace' | ||
| if: github.repository == 'dspace/dspace' | ||
| # Must run after 'dspace-dependencies' job above | ||
| needs: dspace-dependencies | ||
| uses: ./.github/workflows/reusable-docker-build.yml | ||
| with: | ||
| build_id: dspace | ||
| image_name: dspace/dspace | ||
| dockerfile_path: ./Dockerfile | ||
| secrets: | ||
| DOCKER_USERNAME: ${{ secrets.DOCKER_USERNAME }} | ||
| DOCKER_ACCESS_TOKEN: ${{ secrets.DOCKER_ACCESS_TOKEN }} | ||
| # Enable redeploy of sandbox & demo if the branch for this image matches the deployment branch of | ||
| # these sites as specified in reusable-docker-build.xml | ||
| REDEPLOY_SANDBOX_URL: ${{ secrets.REDEPLOY_SANDBOX_URL }} | ||
| REDEPLOY_DEMO_URL: ${{ secrets.REDEPLOY_DEMO_URL }} | ||
| ############################################################# | ||
| # Build/Push the 'dspace/dspace' image ('-test' tag) | ||
| ############################################################# | ||
| dspace-test: | ||
| # Ensure this job never runs on forked repos. It's only executed for 'dspace/dspace' | ||
| if: github.repository == 'dspace/dspace' | ||
| # Must run after 'dspace-dependencies' job above | ||
| needs: dspace-dependencies | ||
| uses: ./.github/workflows/reusable-docker-build.yml | ||
| with: | ||
| build_id: dspace-test | ||
| image_name: dspace/dspace | ||
| dockerfile_path: ./Dockerfile.test | ||
| # As this is a test/development image, its tags are all suffixed with "-test". Otherwise, it uses the same | ||
| # tagging logic as the primary 'dspace/dspace' image above. | ||
| tags_flavor: suffix=-test | ||
| secrets: | ||
| DOCKER_USERNAME: ${{ secrets.DOCKER_USERNAME }} | ||
| DOCKER_ACCESS_TOKEN: ${{ secrets.DOCKER_ACCESS_TOKEN }} | ||
| ########################################### | ||
| # Build/Push the 'dspace/dspace-cli' image | ||
| ########################################### | ||
| dspace-cli: | ||
| # Ensure this job never runs on forked repos. It's only executed for 'dspace/dspace' | ||
| if: github.repository == 'dspace/dspace' | ||
| # Must run after 'dspace-dependencies' job above | ||
| needs: dspace-dependencies | ||
| uses: ./.github/workflows/reusable-docker-build.yml | ||
| with: | ||
| build_id: dspace-cli | ||
| image_name: dspace/dspace-cli | ||
| dockerfile_path: ./Dockerfile.cli | ||
| secrets: | ||
| DOCKER_USERNAME: ${{ secrets.DOCKER_USERNAME }} | ||
| DOCKER_ACCESS_TOKEN: ${{ secrets.DOCKER_ACCESS_TOKEN }} | ||
| ########################################### | ||
| # Build/Push the 'dspace/dspace-solr' image | ||
| ########################################### | ||
| dspace-solr: | ||
| # Ensure this job never runs on forked repos. It's only executed for 'dspace/dspace' | ||
| if: github.repository == 'dspace/dspace' | ||
| uses: ./.github/workflows/reusable-docker-build.yml | ||
| with: | ||
| build_id: dspace-solr | ||
| image_name: dspace/dspace-solr | ||
| dockerfile_path: ./dspace/src/main/docker/dspace-solr/Dockerfile | ||
| secrets: | ||
| DOCKER_USERNAME: ${{ secrets.DOCKER_USERNAME }} | ||
| DOCKER_ACCESS_TOKEN: ${{ secrets.DOCKER_ACCESS_TOKEN }} | ||
| # Enable redeploy of sandbox & demo SOLR instance whenever dspace-solr image changes for deployed branch. | ||
| # These URLs MUST use different secrets than 'dspace/dspace' image build above as they are deployed separately. | ||
| REDEPLOY_SANDBOX_URL: ${{ secrets.REDEPLOY_SANDBOX_SOLR_URL }} | ||
| REDEPLOY_DEMO_URL: ${{ secrets.REDEPLOY_DEMO_SOLR_URL }} | ||
| ########################################################### | ||
| # Build/Push the 'dspace/dspace-postgres-pgcrypto' image | ||
| ########################################################### | ||
| dspace-postgres-pgcrypto: | ||
| # Ensure this job never runs on forked repos. It's only executed for 'dspace/dspace' | ||
| if: github.repository == 'dspace/dspace' | ||
| uses: ./.github/workflows/reusable-docker-build.yml | ||
| with: | ||
| build_id: dspace-postgres-pgcrypto | ||
| image_name: dspace/dspace-postgres-pgcrypto | ||
| # Must build out of subdirectory to have access to install script for pgcrypto. | ||
| # NOTE: this context will build the image based on the Dockerfile in the specified directory | ||
| dockerfile_context: ./dspace/src/main/docker/dspace-postgres-pgcrypto/ | ||
| secrets: | ||
| DOCKER_USERNAME: ${{ secrets.DOCKER_USERNAME }} | ||
| DOCKER_ACCESS_TOKEN: ${{ secrets.DOCKER_ACCESS_TOKEN }} | ||
| <<<<<<< HEAD | ||
| # https://github.com/docker/build-push-action | ||
| - name: Build and push 'dspace-dependencies' image | ||
| id: docker_build_deps | ||
| uses: docker/build-push-action@v4 | ||
| with: | ||
| context: . | ||
| file: ./Dockerfile.dependencies | ||
| platforms: ${{ env.PLATFORMS }} | ||
| # For pull requests, we run the Docker build (to ensure no PR changes break the build), | ||
| # but we ONLY do an image push to DockerHub if it's NOT a PR | ||
| push: ${{ github.event_name != 'pull_request' }} | ||
| # Use tags / labels provided by 'docker/metadata-action' above | ||
| tags: ${{ steps.meta_build_deps.outputs.tags }} | ||
| labels: ${{ steps.meta_build_deps.outputs.labels }} | ||
| ####################################### | ||
| # Build/Push the 'dspace/dspace' image | ||
| ####################################### | ||
| dspace: | ||
| # Ensure this job never runs on forked repos. It's only executed for 'dspace/dspace' | ||
| if: github.repository == 'dspace/dspace' | ||
| # Must run after 'dspace-dependencies' job above | ||
| needs: dspace-dependencies | ||
| runs-on: ubuntu-latest | ||
| steps: | ||
| # https://github.com/actions/checkout | ||
| - name: Checkout codebase | ||
| uses: actions/checkout@v3 | ||
| # https://github.com/docker/setup-buildx-action | ||
| - name: Setup Docker Buildx | ||
| uses: docker/setup-buildx-action@v2 | ||
| # https://github.com/docker/setup-qemu-action | ||
| - name: Set up QEMU emulation to build for multiple architectures | ||
| uses: docker/setup-qemu-action@v2 | ||
| # https://github.com/docker/login-action | ||
| - name: Login to DockerHub | ||
| # Only login if not a PR, as PRs only trigger a Docker build and not a push | ||
| if: github.event_name != 'pull_request' | ||
| uses: docker/login-action@v2 | ||
| with: | ||
| username: ${{ secrets.DOCKER_USERNAME }} | ||
| password: ${{ secrets.DOCKER_ACCESS_TOKEN }} | ||
| # Get Metadata for docker_build step below | ||
| - name: Sync metadata (tags, labels) from GitHub to Docker for 'dspace' image | ||
| id: meta_build | ||
| uses: docker/metadata-action@v4 | ||
| with: | ||
| images: dspace/dspace | ||
| tags: ${{ env.IMAGE_TAGS }} | ||
| flavor: ${{ env.TAGS_FLAVOR }} | ||
| - name: Build and push 'dspace' image | ||
| id: docker_build | ||
| uses: docker/build-push-action@v4 | ||
| with: | ||
| context: . | ||
| file: ./Dockerfile | ||
| platforms: ${{ env.PLATFORMS }} | ||
| # For pull requests, we run the Docker build (to ensure no PR changes break the build), | ||
| # but we ONLY do an image push to DockerHub if it's NOT a PR | ||
| push: ${{ github.event_name != 'pull_request' }} | ||
| # Use tags / labels provided by 'docker/metadata-action' above | ||
| tags: ${{ steps.meta_build.outputs.tags }} | ||
| labels: ${{ steps.meta_build.outputs.labels }} | ||
| ############################################################# | ||
| # Build/Push the 'dspace/dspace' image ('-test' tag) | ||
| ############################################################# | ||
| dspace-test: | ||
| # Ensure this job never runs on forked repos. It's only executed for 'dspace/dspace' | ||
| if: github.repository == 'dspace/dspace' | ||
| # Must run after 'dspace-dependencies' job above | ||
| needs: dspace-dependencies | ||
| runs-on: ubuntu-latest | ||
| steps: | ||
| # https://github.com/actions/checkout | ||
| - name: Checkout codebase | ||
| uses: actions/checkout@v3 | ||
| # https://github.com/docker/setup-buildx-action | ||
| - name: Setup Docker Buildx | ||
| uses: docker/setup-buildx-action@v2 | ||
| # https://github.com/docker/setup-qemu-action | ||
| - name: Set up QEMU emulation to build for multiple architectures | ||
| uses: docker/setup-qemu-action@v2 | ||
| # https://github.com/docker/login-action | ||
| - name: Login to DockerHub | ||
| # Only login if not a PR, as PRs only trigger a Docker build and not a push | ||
| if: github.event_name != 'pull_request' | ||
| uses: docker/login-action@v2 | ||
| with: | ||
| username: ${{ secrets.DOCKER_USERNAME }} | ||
| password: ${{ secrets.DOCKER_ACCESS_TOKEN }} | ||
| # Get Metadata for docker_build_test step below | ||
| - name: Sync metadata (tags, labels) from GitHub to Docker for 'dspace-test' image | ||
| id: meta_build_test | ||
| uses: docker/metadata-action@v4 | ||
| with: | ||
| images: dspace/dspace | ||
| tags: ${{ env.IMAGE_TAGS }} | ||
| # As this is a test/development image, its tags are all suffixed with "-test". Otherwise, it uses the same | ||
| # tagging logic as the primary 'dspace/dspace' image above. | ||
| flavor: ${{ env.TAGS_FLAVOR }} | ||
| suffix=-test | ||
| - name: Build and push 'dspace-test' image | ||
| id: docker_build_test | ||
| uses: docker/build-push-action@v4 | ||
| with: | ||
| context: . | ||
| file: ./Dockerfile.test | ||
| platforms: ${{ env.PLATFORMS }} | ||
| # For pull requests, we run the Docker build (to ensure no PR changes break the build), | ||
| # but we ONLY do an image push to DockerHub if it's NOT a PR | ||
| push: ${{ github.event_name != 'pull_request' }} | ||
| # Use tags / labels provided by 'docker/metadata-action' above | ||
| tags: ${{ steps.meta_build_test.outputs.tags }} | ||
| labels: ${{ steps.meta_build_test.outputs.labels }} | ||
| ########################################### | ||
| # Build/Push the 'dspace/dspace-cli' image | ||
| ########################################### | ||
| dspace-cli: | ||
| # Ensure this job never runs on forked repos. It's only executed for 'dspace/dspace' | ||
| if: github.repository == 'dspace/dspace' | ||
| # Must run after 'dspace-dependencies' job above | ||
| needs: dspace-dependencies | ||
| runs-on: ubuntu-latest | ||
| steps: | ||
| # https://github.com/actions/checkout | ||
| - name: Checkout codebase | ||
| uses: actions/checkout@v3 | ||
| # https://github.com/docker/setup-buildx-action | ||
| - name: Setup Docker Buildx | ||
| uses: docker/setup-buildx-action@v2 | ||
| # https://github.com/docker/setup-qemu-action | ||
| - name: Set up QEMU emulation to build for multiple architectures | ||
| uses: docker/setup-qemu-action@v2 | ||
| # https://github.com/docker/login-action | ||
| - name: Login to DockerHub | ||
| # Only login if not a PR, as PRs only trigger a Docker build and not a push | ||
| if: github.event_name != 'pull_request' | ||
| uses: docker/login-action@v2 | ||
| with: | ||
| username: ${{ secrets.DOCKER_USERNAME }} | ||
| password: ${{ secrets.DOCKER_ACCESS_TOKEN }} | ||
| # Get Metadata for docker_build_test step below | ||
| - name: Sync metadata (tags, labels) from GitHub to Docker for 'dspace-cli' image | ||
| id: meta_build_cli | ||
| uses: docker/metadata-action@v4 | ||
| with: | ||
| images: dspace/dspace-cli | ||
| tags: ${{ env.IMAGE_TAGS }} | ||
| flavor: ${{ env.TAGS_FLAVOR }} | ||
| - name: Build and push 'dspace-cli' image | ||
| id: docker_build_cli | ||
| uses: docker/build-push-action@v4 | ||
| with: | ||
| context: . | ||
| file: ./Dockerfile.cli | ||
| platforms: ${{ env.PLATFORMS }} | ||
| # For pull requests, we run the Docker build (to ensure no PR changes break the build), | ||
| # but we ONLY do an image push to DockerHub if it's NOT a PR | ||
| push: ${{ github.event_name != 'pull_request' }} | ||
| # Use tags / labels provided by 'docker/metadata-action' above | ||
| tags: ${{ steps.meta_build_cli.outputs.tags }} | ||
| labels: ${{ steps.meta_build_cli.outputs.labels }} | ||
| ########################################### | ||
| # Build/Push the 'dspace/dspace-solr' image | ||
| ########################################### | ||
| dspace-solr: | ||
| # Ensure this job never runs on forked repos. It's only executed for 'dspace/dspace' | ||
| if: github.repository == 'dspace/dspace' | ||
| runs-on: ubuntu-latest | ||
| steps: | ||
| # https://github.com/actions/checkout | ||
| - name: Checkout codebase | ||
| uses: actions/checkout@v3 | ||
| # https://github.com/docker/setup-buildx-action | ||
| - name: Setup Docker Buildx | ||
| uses: docker/setup-buildx-action@v2 | ||
| # https://github.com/docker/setup-qemu-action | ||
| - name: Set up QEMU emulation to build for multiple architectures | ||
| uses: docker/setup-qemu-action@v2 | ||
| # https://github.com/docker/login-action | ||
| - name: Login to DockerHub | ||
| # Only login if not a PR, as PRs only trigger a Docker build and not a push | ||
| if: github.event_name != 'pull_request' | ||
| uses: docker/login-action@v2 | ||
| with: | ||
| username: ${{ secrets.DOCKER_USERNAME }} | ||
| password: ${{ secrets.DOCKER_ACCESS_TOKEN }} | ||
| # Get Metadata for docker_build_solr step below | ||
| - name: Sync metadata (tags, labels) from GitHub to Docker for 'dspace-solr' image | ||
| id: meta_build_solr | ||
| uses: docker/metadata-action@v4 | ||
| with: | ||
| images: dspace/dspace-solr | ||
| tags: ${{ env.IMAGE_TAGS }} | ||
| flavor: ${{ env.TAGS_FLAVOR }} | ||
| - name: Build and push 'dspace-solr' image | ||
| id: docker_build_solr | ||
| uses: docker/build-push-action@v4 | ||
| with: | ||
| context: . | ||
| file: ./dspace/src/main/docker/dspace-solr/Dockerfile | ||
| platforms: ${{ env.PLATFORMS }} | ||
| # For pull requests, we run the Docker build (to ensure no PR changes break the build), | ||
| # but we ONLY do an image push to DockerHub if it's NOT a PR | ||
| push: ${{ github.event_name != 'pull_request' }} | ||
| # Use tags / labels provided by 'docker/metadata-action' above | ||
| tags: ${{ steps.meta_build_solr.outputs.tags }} | ||
| labels: ${{ steps.meta_build_solr.outputs.labels }} | ||
| ########################################################### | ||
| # Build/Push the 'dspace/dspace-postgres-pgcrypto' image | ||
| ########################################################### | ||
| dspace-postgres-pgcrypto: | ||
| # Ensure this job never runs on forked repos. It's only executed for 'dspace/dspace' | ||
| if: github.repository == 'dspace/dspace' | ||
| runs-on: ubuntu-latest | ||
| steps: | ||
| # https://github.com/actions/checkout | ||
| - name: Checkout codebase | ||
| uses: actions/checkout@v3 | ||
| # https://github.com/docker/setup-buildx-action | ||
| - name: Setup Docker Buildx | ||
| uses: docker/setup-buildx-action@v2 | ||
| # https://github.com/docker/setup-qemu-action | ||
| - name: Set up QEMU emulation to build for multiple architectures | ||
| uses: docker/setup-qemu-action@v2 | ||
| # https://github.com/docker/login-action | ||
| - name: Login to DockerHub | ||
| # Only login if not a PR, as PRs only trigger a Docker build and not a push | ||
| if: github.event_name != 'pull_request' | ||
| uses: docker/login-action@v2 | ||
| with: | ||
| username: ${{ secrets.DOCKER_USERNAME }} | ||
| password: ${{ secrets.DOCKER_ACCESS_TOKEN }} | ||
| # Get Metadata for docker_build_postgres step below | ||
| - name: Sync metadata (tags, labels) from GitHub to Docker for 'dspace-postgres-pgcrypto' image | ||
| id: meta_build_postgres | ||
| uses: docker/metadata-action@v4 | ||
| with: | ||
| images: dspace/dspace-postgres-pgcrypto | ||
| tags: ${{ env.IMAGE_TAGS }} | ||
| flavor: ${{ env.TAGS_FLAVOR }} | ||
| - name: Build and push 'dspace-postgres-pgcrypto' image | ||
| id: docker_build_postgres | ||
| uses: docker/build-push-action@v4 | ||
| with: | ||
| # Must build out of subdirectory to have access to install script for pgcrypto | ||
| context: ./dspace/src/main/docker/dspace-postgres-pgcrypto/ | ||
| dockerfile: Dockerfile | ||
| platforms: ${{ env.PLATFORMS }} | ||
| # For pull requests, we run the Docker build (to ensure no PR changes break the build), | ||
| # but we ONLY do an image push to DockerHub if it's NOT a PR | ||
| push: ${{ github.event_name != 'pull_request' }} | ||
| # Use tags / labels provided by 'docker/metadata-action' above | ||
| tags: ${{ steps.meta_build_postgres.outputs.tags }} | ||
| labels: ${{ steps.meta_build_postgres.outputs.labels }} | ||
| ######################################################################## | ||
| # Build/Push the 'dspace/dspace-postgres-pgcrypto' image (-loadsql tag) | ||
| ######################################################################## | ||
| dspace-postgres-pgcrypto-loadsql: | ||
| # Ensure this job never runs on forked repos. It's only executed for 'dspace/dspace' | ||
| if: github.repository == 'dspace/dspace' | ||
| runs-on: ubuntu-latest | ||
| steps: | ||
| # https://github.com/actions/checkout | ||
| - name: Checkout codebase | ||
| uses: actions/checkout@v3 | ||
| # https://github.com/docker/setup-buildx-action | ||
| - name: Setup Docker Buildx | ||
| uses: docker/setup-buildx-action@v2 | ||
| # https://github.com/docker/setup-qemu-action | ||
| - name: Set up QEMU emulation to build for multiple architectures | ||
| uses: docker/setup-qemu-action@v2 | ||
| # https://github.com/docker/login-action | ||
| - name: Login to DockerHub | ||
| # Only login if not a PR, as PRs only trigger a Docker build and not a push | ||
| if: github.event_name != 'pull_request' | ||
| uses: docker/login-action@v2 | ||
| with: | ||
| username: ${{ secrets.DOCKER_USERNAME }} | ||
| password: ${{ secrets.DOCKER_ACCESS_TOKEN }} | ||
| # Get Metadata for docker_build_postgres_loadsql step below | ||
| - name: Sync metadata (tags, labels) from GitHub to Docker for 'dspace-postgres-pgcrypto-loadsql' image | ||
| id: meta_build_postgres_loadsql | ||
| uses: docker/metadata-action@v4 | ||
| with: | ||
| images: dspace/dspace-postgres-pgcrypto | ||
| tags: ${{ env.IMAGE_TAGS }} | ||
| # Suffix all tags with "-loadsql". Otherwise, it uses the same | ||
| # tagging logic as the primary 'dspace/dspace-postgres-pgcrypto' image above. | ||
| flavor: ${{ env.TAGS_FLAVOR }} | ||
| suffix=-loadsql | ||
| - name: Build and push 'dspace-postgres-pgcrypto-loadsql' image | ||
| id: docker_build_postgres_loadsql | ||
| uses: docker/build-push-action@v4 | ||
| with: | ||
| # Must build out of subdirectory to have access to install script for pgcrypto | ||
| context: ./dspace/src/main/docker/dspace-postgres-pgcrypto-curl/ | ||
| dockerfile: Dockerfile | ||
| platforms: ${{ env.PLATFORMS }} | ||
| # For pull requests, we run the Docker build (to ensure no PR changes break the build), | ||
| # but we ONLY do an image push to DockerHub if it's NOT a PR | ||
| push: ${{ github.event_name != 'pull_request' }} | ||
| # Use tags / labels provided by 'docker/metadata-action' above | ||
| tags: ${{ steps.meta_build_postgres_loadsql.outputs.tags }} | ||
| labels: ${{ steps.meta_build_postgres_loadsql.outputs.labels }} | ||
| ======= | ||
| ######################################################################## | ||
| # Build/Push the 'dspace/dspace-postgres-pgcrypto' image (-loadsql tag) | ||
| ######################################################################## | ||
| dspace-postgres-pgcrypto-loadsql: | ||
| # Ensure this job never runs on forked repos. It's only executed for 'dspace/dspace' | ||
| if: github.repository == 'dspace/dspace' | ||
| uses: ./.github/workflows/reusable-docker-build.yml | ||
| with: | ||
| build_id: dspace-postgres-pgcrypto-loadsql | ||
| image_name: dspace/dspace-postgres-pgcrypto | ||
| # Must build out of subdirectory to have access to install script for pgcrypto. | ||
| # NOTE: this context will build the image based on the Dockerfile in the specified directory | ||
| dockerfile_context: ./dspace/src/main/docker/dspace-postgres-pgcrypto-curl/ | ||
| # Suffix all tags with "-loadsql". Otherwise, it uses the same | ||
| # tagging logic as the primary 'dspace/dspace-postgres-pgcrypto' image above. | ||
| tags_flavor: suffix=-loadsql | ||
| secrets: | ||
| DOCKER_USERNAME: ${{ secrets.DOCKER_USERNAME }} | ||
| DOCKER_ACCESS_TOKEN: ${{ secrets.DOCKER_ACCESS_TOKEN }} | ||
| >>>>>>> refs/remotes/githubDSpace/main | ||
