Merge pull request #292 from dprince/rapid_reset_cve_dp2 #207
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Cinder Operator image builder | |
on: | |
push: | |
branches: | |
- '*' | |
env: | |
imageregistry: 'quay.io' | |
imagenamespace: ${{ secrets.IMAGENAMESPACE || secrets.QUAY_USERNAME }} | |
latesttag: latest | |
jobs: | |
check-secrets: | |
runs-on: ubuntu-latest | |
steps: | |
- name: Check secrets are set | |
id: have-secrets | |
if: "${{ env.imagenamespace != '' }}" | |
run: echo "::set-output name=ok::true" | |
outputs: | |
have-secrets: ${{ steps.have-secrets.outputs.ok }} | |
build-cinder-operator: | |
name: Build cinder-operator image using buildah | |
runs-on: ubuntu-latest | |
needs: [check-secrets] | |
if: needs.check-secrets.outputs.have-secrets == 'true' | |
steps: | |
- uses: actions/checkout@v2 | |
- name: Get branch name | |
id: branch-name | |
uses: tj-actions/branch-names@v5 | |
- name: Set latest tag for non main branch | |
if: "${{ steps.branch-name.outputs.current_branch != 'main' }}" | |
run: | | |
echo "latesttag=${{ steps.branch-name.outputs.current_branch }}-latest" >> $GITHUB_ENV | |
- name: Buildah Action | |
id: build-cinder-operator | |
uses: redhat-actions/buildah-build@v2 | |
with: | |
image: cinder-operator | |
tags: ${{ env.latesttag }} ${{ github.sha }} | |
containerfiles: | | |
./Dockerfile | |
- name: Push cinder-operator To ${{ env.imageregistry }} | |
uses: redhat-actions/push-to-registry@v2 | |
with: | |
image: ${{ steps.build-cinder-operator.outputs.image }} | |
tags: ${{ steps.build-cinder-operator.outputs.tags }} | |
registry: ${{ env.imageregistry }}/${{ env.imagenamespace }} | |
username: ${{ secrets.QUAY_USERNAME }} | |
password: ${{ secrets.QUAY_PASSWORD }} | |
build-cinder-operator-bundle: | |
needs: [ check-secrets, build-cinder-operator ] | |
name: cinder-operator-bundle | |
runs-on: ubuntu-latest | |
if: needs.check-secrets.outputs.have-secrets == 'true' | |
steps: | |
- name: Install Go | |
uses: actions/setup-go@v2 | |
with: | |
go-version: 1.19.x | |
- name: Checkout cinder-operator repository | |
uses: actions/checkout@v2 | |
- name: Install operator-sdk | |
uses: redhat-actions/openshift-tools-installer@v1 | |
with: | |
source: github | |
operator-sdk: '1.26.0' | |
- name: Log in to Quay Registry | |
uses: redhat-actions/podman-login@v1 | |
with: | |
registry: ${{ env.imageregistry }} | |
username: ${{ secrets.QUAY_USERNAME }} | |
password: ${{ secrets.QUAY_PASSWORD }} | |
- name: Create bundle image | |
run: | | |
pushd "${GITHUB_WORKSPACE}"/.github/ | |
chmod +x "create_bundle.sh" | |
"./create_bundle.sh" | |
popd | |
env: | |
REGISTRY: ${{ env.imageregistry }}/${{ env.imagenamespace }} | |
GITHUB_SHA: ${{ github.sha }} | |
BASE_IMAGE: cinder-operator | |
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
- name: Get branch name | |
id: branch-name | |
uses: tj-actions/branch-names@v5 | |
- name: Set latest tag for non main branch | |
if: "${{ steps.branch-name.outputs.current_branch != 'main' }}" | |
run: | | |
echo "latesttag=${{ steps.branch-name.outputs.current_branch }}-latest" >> $GITHUB_ENV | |
- name: Build cinder-operator-bundle using buildah | |
id: build-cinder-operator-bundle | |
uses: redhat-actions/buildah-build@v2 | |
with: | |
image: cinder-operator-bundle | |
tags: ${{ env.latesttag }} ${{ github.sha }} | |
containerfiles: | | |
./bundle.Dockerfile | |
- name: Push cinder-operator To ${{ env.imageregistry }} | |
uses: redhat-actions/push-to-registry@v2 | |
with: | |
image: ${{ steps.build-cinder-operator-bundle.outputs.image }} | |
tags: ${{ steps.build-cinder-operator-bundle.outputs.tags }} | |
registry: ${{ env.imageregistry }}/${{ env.imagenamespace }} | |
username: ${{ secrets.QUAY_USERNAME }} | |
password: ${{ secrets.QUAY_PASSWORD }} | |
build-cinder-operator-index: | |
needs: [ check-secrets, build-cinder-operator-bundle ] | |
name: cinder-operator-index | |
runs-on: ubuntu-latest | |
if: needs.check-secrets.outputs.have-secrets == 'true' | |
steps: | |
- name: Checkout cinder-operator repository | |
uses: actions/checkout@v2 | |
- name: Get branch name | |
id: branch-name | |
uses: tj-actions/branch-names@v5 | |
- name: Set latest tag for non main branch | |
if: "${{ steps.branch-name.outputs.current_branch != 'main' }}" | |
run: | | |
echo "latesttag=${{ steps.branch-name.outputs.current_branch }}-latest" >> $GITHUB_ENV | |
- name: Install opm | |
uses: redhat-actions/openshift-tools-installer@v1 | |
with: | |
source: github | |
opm: 'latest' | |
- name: Log in to Red Hat Registry | |
uses: redhat-actions/podman-login@v1 | |
with: | |
registry: ${{ env.imageregistry }} | |
username: ${{ secrets.QUAY_USERNAME }} | |
password: ${{ secrets.QUAY_PASSWORD }} | |
- name: Create index image | |
run: | | |
pushd "${GITHUB_WORKSPACE}"/.github/ | |
chmod +x "create_opm_index.sh" | |
"./create_opm_index.sh" | |
popd | |
env: | |
REGISTRY: ${{ env.imageregistry }}/${{ env.imagenamespace }} | |
GITHUB_SHA: ${{ github.sha }} | |
BUNDLE_IMAGE: cinder-operator-bundle | |
INDEX_IMAGE_TAG: ${{ env.latesttag }} | |
INDEX_IMAGE: cinder-operator-index | |
- name: Push cinder-operator-index To ${{ env.imageregistry }} | |
uses: redhat-actions/push-to-registry@v2 | |
with: | |
image: cinder-operator-index | |
tags: ${{ env.latesttag }} ${{ github.sha }} | |
registry: ${{ env.imageregistry }}/${{ env.imagenamespace }} | |
username: ${{ secrets.QUAY_USERNAME }} | |
password: ${{ secrets.QUAY_PASSWORD }} |