-
Notifications
You must be signed in to change notification settings - Fork 3
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Use my credentials to store and retrieve container #113
Conversation
d18ac7b
to
6f57e81
Compare
dc66239
to
8caa2c1
Compare
tags: ${{ steps.meta.outputs.tags }} | ||
labels: ${{ steps.meta.outputs.labels }} |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Congratulations @twsearle 👍🏽
Just being picky really, will it be better to have some sensible tag and label for the image? like :
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The tags and labels are automatically generated from the docker metadata action. Its all still annoyingly chicken and egg! But I am hoping after I merge this I can version the tags the next PR.
Also, you might want to protect the |
[like] Yaswant Pradhan reacted to your message:
________________________________
From: Toby Searle ***@***.***>
Sent: Thursday, August 1, 2024 12:36:26 PM
To: MetOffice/orca-jedi ***@***.***>
Cc: Yaswant Pradhan ***@***.***>; Review requested ***@***.***>
Subject: Re: [MetOffice/orca-jedi] Use my credentials to store and retrieve container (PR #113)
This email was received from an external source. Always check sender details, links & attachments.
@twsearle commented on this pull request.
________________________________
In .github/workflows/build_ci_image.yml<#113 (comment)>:
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}
The tags and labels are automatically generated from the docker metadata action<https://github.com/docker/metadata-action>. Its all still annoyingly chicken and egg! But I am hoping after I merge this I can version the tags the next PR.
—
Reply to this email directly, view it on GitHub<#113 (comment)>, or unsubscribe<https://github.com/notifications/unsubscribe-auth/AAWYT6C4MGBXLKJD4LXBQRTZPITUVAVCNFSM6AAAAABLZ5YMFWVHI2DSMVQWIX3LMV43YUDVNRWFEZLROVSXG5CSMV3GSZLXHMZDEMJSGYYDENRZHA>.
You are receiving this because your review was requested.Message ID: ***@***.***>
|
Description
NOTE This is a temporary fix to the CI to get us past the atlas upgrade. I will help refactor this to use a centralised solution when possible if desired.
Rather than use a persistent GitHub PAT for CI, I experimented to use each users ephemeral GITHUB_TOKEN, which is automatically generated and has a lifetime for only the life of the github workflow run. This is safer, and also gets around us needing more permissions on the darth account to create packages. However, it didn't work on this repo. I am not sure why, but authentication did not work.
Resolves #111