From 1055cff8bdc877379b9549a056cadc38b15a1223 Mon Sep 17 00:00:00 2001 From: Ivan Mikushin Date: Thu, 2 Jan 2025 15:51:21 -0800 Subject: [PATCH] Build container image on push to release branch --- .dockerignore | 6 ++++ .github/workflows/build-image.yml | 51 +++++++++++++++++++++++++++++++ Dockerfile | 11 +++++++ 3 files changed, 68 insertions(+) create mode 100644 .dockerignore create mode 100644 .github/workflows/build-image.yml create mode 100644 Dockerfile diff --git a/.dockerignore b/.dockerignore new file mode 100644 index 0000000..47a34c9 --- /dev/null +++ b/.dockerignore @@ -0,0 +1,6 @@ +/.fleet +/.idea +/.run +/elf +/target +/tmp diff --git a/.github/workflows/build-image.yml b/.github/workflows/build-image.yml new file mode 100644 index 0000000..a770915 --- /dev/null +++ b/.github/workflows/build-image.yml @@ -0,0 +1,51 @@ +name: Create and publish a Docker image + +on: + push: + branches: ['release'] + +# Defines two custom environment variables for the workflow. These are used for the Container registry domain, and a name for the Docker image that this workflow builds. +env: + REGISTRY: ghcr.io + IMAGE_NAME: ${{ github.repository }} + +# There is a single job in this workflow. It's configured to run on the latest available version of Ubuntu. +jobs: + build-and-push-image: + runs-on: ubuntu-latest + # Sets the permissions granted to the `GITHUB_TOKEN` for the actions in this job. + permissions: + contents: read + packages: write + # + steps: + - name: Checkout repository + uses: actions/checkout@v4 + - name: Set up QEMU + uses: docker/setup-qemu-action@v3 + - name: Set up Docker Buildx + uses: docker/setup-buildx-action@v3 + # Uses the `docker/login-action` action to log in to the Container registry using the account and password that will publish the packages. Once published, the packages are scoped to the account defined here. + - name: Log in to the Container registry + uses: docker/login-action@v3 + with: + registry: ${{ env.REGISTRY }} + username: ${{ github.actor }} + password: ${{ secrets.GITHUB_TOKEN }} + # This step uses [docker/metadata-action](https://github.com/docker/metadata-action#about) to extract tags and labels that will be applied to the specified image. The `id` "meta" allows the output of this step to be referenced in a subsequent step. The `images` value provides the base name for the tags and labels. + - name: Extract metadata (tags, labels) for Docker + id: meta + uses: docker/metadata-action@v5 + with: + images: "${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}" + # This step uses the `docker/build-push-action` action to build the image, based on your repository's `Dockerfile`. If the build succeeds, it pushes the image to GitHub Packages. + # It uses the `context` parameter to define the build's context as the set of files located in the specified path. For more information, see "[Usage](https://github.com/docker/build-push-action#usage)" in the README of the `docker/build-push-action` repository. + # It uses the `tags` and `labels` parameters to tag and label the image with the output from the "meta" step. + - name: Build and push Docker image + uses: docker/build-push-action@v5 + with: + context: . + platforms: linux/amd64,linux/arm64 + push: true + tags: ${{ steps.meta.outputs.tags }} + labels: ${{ steps.meta.outputs.labels }} diff --git a/Dockerfile b/Dockerfile new file mode 100644 index 0000000..2c9614f --- /dev/null +++ b/Dockerfile @@ -0,0 +1,11 @@ +FROM rust:alpine AS base +RUN apk add --no-cache musl-dev openssl-dev pkgconfig openssl-libs-static + +FROM base AS builder +WORKDIR /app +COPY . . +RUN cargo install --path . + +FROM alpine AS runtime +COPY --from=builder /usr/local/cargo/bin/charms /usr/local/bin +CMD ["charms", "server"]