From c3027c05e122558896df42f1cab058bc83297528 Mon Sep 17 00:00:00 2001 From: authcompanion Date: Mon, 2 Oct 2023 22:46:31 -0400 Subject: [PATCH] build: create and publish a AuthC Docker image to Repo --- .../workflows/authc2-release-publish-img.yml | 48 +++++++++++++++++++ Dockerfile | 8 ++-- 2 files changed, 53 insertions(+), 3 deletions(-) create mode 100644 .github/workflows/authc2-release-publish-img.yml diff --git a/.github/workflows/authc2-release-publish-img.yml b/.github/workflows/authc2-release-publish-img.yml new file mode 100644 index 0000000..9f1fbbc --- /dev/null +++ b/.github/workflows/authc2-release-publish-img.yml @@ -0,0 +1,48 @@ +# +name: Create and publish a AuthC Docker image to Repo + +# Configures this workflow to run every time a change is pushed to the branch called `release`. +on: + push: + branches: ['release'] + +# Defines two custom environment variables for the workflow. These are used for the Container registry domain, and a name for the Docker image that this workflow builds. +env: + REGISTRY: ghcr.io + IMAGE_NAME: ${{ github.repository }} + +# There is a single job in this workflow. It's configured to run on the latest available version of Ubuntu. +jobs: + build-and-push-image: + runs-on: ubuntu-latest + # Sets the permissions granted to the `GITHUB_TOKEN` for the actions in this job. + permissions: + contents: read + packages: write + # + steps: + - name: Checkout repository + uses: actions/checkout@v4 + # Uses the `docker/login-action` action to log in to the Container registry registry using the account and password that will publish the packages. Once published, the packages are scoped to the account defined here. + - name: Log in to the Container registry + uses: docker/login-action@65b78e6e13532edd9afa3aa52ac7964289d1a9c1 + with: + registry: ${{ env.REGISTRY }} + username: ${{ github.actor }} + password: ${{ secrets.GITHUB_TOKEN }} + # This step uses [docker/metadata-action](https://github.com/docker/metadata-action#about) to extract tags and labels that will be applied to the specified image. The `id` "meta" allows the output of this step to be referenced in a subsequent step. The `images` value provides the base name for the tags and labels. + - name: Extract metadata (tags, labels) for Docker + id: meta + uses: docker/metadata-action@9ec57ed1fcdbf14dcef7dfbe97b2010124a938b7 + with: + images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }} + # This step uses the `docker/build-push-action` action to build the image, based on your repository's `Dockerfile`. If the build succeeds, it pushes the image to GitHub Packages. + # It uses the `context` parameter to define the build's context as the set of files located in the specified path. For more information, see "[Usage](https://github.com/docker/build-push-action#usage)" in the README of the `docker/build-push-action` repository. + # It uses the `tags` and `labels` parameters to tag and label the image with the output from the "meta" step. + - name: Build and push Docker image + uses: docker/build-push-action@f2a1d5e99d037542a71f64918e516c093c6f3fc4 + with: + context: . + push: true + tags: ${{ steps.meta.outputs.tags }} + labels: ${{ steps.meta.outputs.labels }} diff --git a/Dockerfile b/Dockerfile index 8c7b087..33b649e 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,8 +1,10 @@ FROM node:18-slim as builder -LABEL version="3.0.0-beta.15" -LABEL description="An admin-friendly, User Management Server (with Passkeys & JWTs) - for seamless and secure integration of user authentication" -LABEL maintainer="Paul Fischer" +LABEL org.opencontainers.image.title="AuthCompanion" +LABEL org.opencontainers.image.version="3.0.0-beta.17" +LABEL org.opencontainers.image.description="An admin-friendly, User Management Server (with Passkeys & JWTs) - for seamless and secure integration of user authentication" +LABEL org.opencontainers.image.authors="Paul Fischer" +LABEL org.opencontainers.image.source=https://github.com/authcompanion/authcompanion2 # update packages, to reduce risk of vulnerabilities RUN apt-get update && apt-get upgrade -y && apt-get autoclean -y && apt-get autoremove -y