cleanup and fix docker #369
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Publish to GitHub registry | |
| on: | |
| push: | |
| tags: | |
| - v*.*.* | |
| jobs: | |
| # publish-docker: | |
| # runs-on: [self-hosted, Linux] | |
| # steps: | |
| # - name: Checkout | |
| # uses: actions/checkout@v4 | |
| # with: | |
| # submodules: recursive | |
| # - name: Docker meta | |
| # id: meta | |
| # uses: docker/metadata-action@v5 | |
| # with: | |
| # images: | | |
| # ghcr.io/DefGuard/defguard | |
| # tags: | | |
| # type=raw,value=latest | |
| # type=semver,pattern={{version}} | |
| # type=semver,pattern={{major}}.{{minor}} | |
| # type=sha | |
| # - name: Set up QEMU | |
| # uses: docker/setup-qemu-action@v3 | |
| # - name: Set up Docker BuildX | |
| # uses: docker/setup-buildx-action@v3 | |
| # with: | |
| # buildkitd-config-inline: | | |
| # [registry."docker.io"] | |
| # mirrors = ["dockerhub-proxy.teonite.net"] | |
| # - name: Login to GitHub container registry | |
| # if: github.event_name != 'pull_request' | |
| # uses: docker/login-action@v3 | |
| # with: | |
| # registry: ghcr.io | |
| # username: ${{ github.actor }} | |
| # password: ${{ secrets.GITHUB_TOKEN }} | |
| # - name: Build container | |
| # uses: docker/build-push-action@v5 | |
| # with: | |
| # context: . | |
| # platforms: linux/amd64 | |
| # push: ${{ github.event_name != 'pull_request' }} | |
| # tags: ${{ steps.meta.outputs.tags }} | |
| # labels: ${{ steps.meta.outputs.labels }} | |
| # cache-from: type=gha | |
| # cache-to: type=gha,mode=max | |
| create-release: | |
| name: create-release | |
| runs-on: self-hosted | |
| outputs: | |
| upload_url: ${{ steps.release.outputs.upload_url }} | |
| steps: | |
| - name: Create GitHub release | |
| id: release | |
| uses: softprops/action-gh-release@v1 | |
| if: startsWith(github.ref, 'refs/tags/') | |
| with: | |
| draft: true | |
| generate_release_notes: true | |
| build-binaries: | |
| needs: [ "create-release" ] | |
| runs-on: | |
| - self-hosted | |
| - ${{ matrix.os }} | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| # build: [ linux, linux-arm, linux-arm64, freebsd ] | |
| build: [ linux ] | |
| include: | |
| - build: linux | |
| os: Linux | |
| target: x86_64-unknown-linux-gnu | |
| # - build: linux-arm | |
| # os: Linux | |
| # target: armv7-unknown-linux-gnueabihf | |
| # - build: linux-arm64 | |
| # os: Linux | |
| # target: aarch64-unknown-linux-gnu | |
| # - build: freebsd | |
| # os: Linux | |
| # target: x86_64-unknown-freebsd | |
| steps: | |
| # Store the version, stripping any v-prefix | |
| - name: Write release version | |
| run: | | |
| VERSION=${GITHUB_REF_NAME#v} | |
| echo Version: $VERSION | |
| echo "VERSION=$VERSION" >> $GITHUB_ENV | |
| - name: Checkout | |
| uses: actions/checkout@v4 | |
| with: | |
| submodules: recursive | |
| - name: Install Rust stable | |
| uses: actions-rs/toolchain@v1 | |
| with: | |
| toolchain: stable | |
| target: ${{ matrix.target }} | |
| override: true | |
| - name: Set up Docker BuildX | |
| uses: docker/setup-buildx-action@v3 | |
| with: | |
| buildkitd-config-inline: | | |
| [registry."docker.io"] | |
| mirrors = ["dockerhub-proxy.teonite.net"] | |
| - name: Install pnpm | |
| uses: pnpm/action-setup@v4 | |
| with: | |
| version: 9 | |
| - name: Use Node.js 20 | |
| uses: actions/setup-node@v4 | |
| with: | |
| node-version: 20 | |
| cache: 'pnpm' | |
| cache-dependency-path: ./web/pnpm-lock.yaml | |
| - name: Install frontend dependencies | |
| run: pnpm install --ignore-scripts --frozen-lockfile | |
| working-directory: web | |
| - name: Build frontend | |
| run: pnpm build | |
| working-directory: web | |
| - name: Build release binary | |
| uses: actions-rs/cargo@v1 | |
| with: | |
| use-cross: true | |
| command: build | |
| args: --locked --release --target ${{ matrix.target }} | |
| - name: Rename binary | |
| run: mv target/${{ matrix.target }}/release/defguard defguard-${{ github.ref_name }}-${{ matrix.target }} | |
| - name: Tar | |
| uses: a7ul/[email protected] | |
| with: | |
| command: c | |
| files: | | |
| defguard-${{ github.ref_name }}-${{ matrix.target }} | |
| outPath: defguard-${{ github.ref_name }}-${{ matrix.target }}.tar.gz | |
| - name: Upload release archive | |
| uses: actions/[email protected] | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| with: | |
| upload_url: ${{ needs.create-release.outputs.upload_url }} | |
| asset_path: defguard-${{ github.ref_name }}-${{ matrix.target }}.tar.gz | |
| asset_name: defguard-${{ github.ref_name }}-${{ matrix.target }}.tar.gz | |
| asset_content_type: application/octet-stream | |
| - name: Build DEB package | |
| if: matrix.build == 'linux' | |
| uses: bpicode/github-action-fpm@master | |
| with: | |
| fpm_args: "defguard-${{ github.ref_name }}-${{ matrix.target }}=/usr/bin/defguard defguard.service=/usr/lib/systemd/system/defguard.service .env=/etc/defguard/core.conf" | |
| fpm_opts: "--debug --output-type deb --version ${{ env.VERSION }} --package defguard-${{ env.VERSION }}-${{ matrix.target }}.deb" | |
| - name: Upload DEB | |
| if: matrix.build == 'linux' | |
| uses: actions/[email protected] | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| with: | |
| upload_url: ${{ needs.create-release.outputs.upload_url }} | |
| asset_path: defguard-${{ env.VERSION }}-${{ matrix.target }}.deb | |
| asset_name: defguard-${{ env.VERSION }}-${{ matrix.target }}.deb | |
| asset_content_type: application/octet-stream | |
| - name: Build RPM package | |
| if: matrix.build == 'linux' | |
| uses: bpicode/github-action-fpm@master | |
| with: | |
| fpm_args: "defguard-${{ github.ref_name }}-${{ matrix.target }}=/usr/bin/defguard defguard.service=/usr/lib/systemd/system/defguard.service .env=/etc/defguard/core.conf" | |
| fpm_opts: "--debug --output-type rpm --version ${{ env.VERSION }} --package defguard-${{ env.VERSION }}-${{ matrix.target }}.rpm" | |
| - name: Upload RPM | |
| if: matrix.build == 'linux' | |
| uses: actions/[email protected] | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| with: | |
| upload_url: ${{ needs.create-release.outputs.upload_url }} | |
| asset_path: defguard-${{ env.VERSION }}-${{ matrix.target }}.rpm | |
| asset_name: defguard-${{ env.VERSION }}-${{ matrix.target }}.rpm | |
| asset_content_type: application/octet-stream |