All checks were successful
		
		
	
	Create OCI image(s) / Build and push images (push) Successful in 2m42s
				
			
		
			
				
	
	
		
			62 lines
		
	
	
	
		
			1.9 KiB
		
	
	
	
		
			YAML
		
	
	
	
	
	
			
		
		
	
	
			62 lines
		
	
	
	
		
			1.9 KiB
		
	
	
	
		
			YAML
		
	
	
	
	
	
| name: Create OCI image(s)
 | |
| 
 | |
| on:
 | |
|   workflow_dispatch:
 | |
|   push:
 | |
|     branches:
 | |
|       - main
 | |
| 
 | |
| env:
 | |
|   registry: git.amarth.cloud
 | |
|   owner: amarth
 | |
|   image: default
 | |
|   tag: latest
 | |
| 
 | |
| jobs:
 | |
|   build:
 | |
|     name: Build and push images
 | |
|     runs-on: default
 | |
|     steps:
 | |
|       - name: Install dependencies
 | |
|         run: |
 | |
|           # configure container policy to accept insecure registry
 | |
|           nix-env -iA nixpkgs.nodejs nixpkgs.podman nixpkgs.kvmtool nixpkgs.curl nixpkgs.jq
 | |
| 
 | |
|           # configure container policy to accept insecure registry
 | |
|           mkdir -p ~/.config/containers
 | |
|           echo '{ "default": [ {"type":"insecureAcceptAnything"} ] }' > ~/.config/containers/policy.json
 | |
| 
 | |
|       - uses: actions/checkout@v4
 | |
| 
 | |
|       # - name: Log into registry
 | |
|       #   run: |
 | |
|       #     set -x
 | |
|           
 | |
|       #     podman login \
 | |
|       #     --username "${{ forge.actor }}" \
 | |
|       #     --password "${{ forge.token }}" \
 | |
|       #     ${{ env.registry }}
 | |
| 
 | |
|       #     curl --fail -u ${{ forge.actor }}:${{ forge.token }} -sS ${{ forge.server_url }}/v2/token | jq --raw-output '"Authorization: token \(.token)"' > /tmp/forgejo_token
 | |
| 
 | |
|       # - name: Create image
 | |
|       #   run: |
 | |
|       #     nix-build src/default.nix
 | |
|       #     podman load < result
 | |
| 
 | |
|       - name: Push image
 | |
|         run: |
 | |
|           set -x
 | |
| 
 | |
|           nix-build src/default.nix
 | |
|           podman load < result
 | |
| 
 | |
|           podman login --username "chris" --password "68a42ed98be50c9ce3e9cc246a66a5d80ef49410" git.amarth.cloud
 | |
| 
 | |
|           podman push localhost/default:latest git.amarth.cloud/amarth/runners/default:latest
 | |
| 
 | |
|           # podman manifest rm localhost:${{ env.tag }} || true
 | |
|           # podman manifest create localhost:${{ env.tag }} localhost/default:${{ env.tag }}
 | |
| 
 | |
|           # podman manifest inspect localhost:${{ env.tag }} > /tmp/manifest.json
 | |
|           # curl -sS @/tmp/forgejo_token -X PUT --data-binary @/tmp/manifest.json ${{ forge.server_url }}/v2/amarth/runners/manifests/${{ env.tag }}
 |