diff --git a/.github/workflows/docker-image-alpha.yml b/.github/workflows/docker-image-alpha.yml index c02bd4097..53573fe37 100644 --- a/.github/workflows/docker-image-alpha.yml +++ b/.github/workflows/docker-image-alpha.yml @@ -11,19 +11,39 @@ on: required: false jobs: - push_to_registries: - name: Push Docker image to multiple registries - runs-on: ubuntu-latest + build_single_arch: + name: Build & push (${{ matrix.arch }}) [native] + strategy: + fail-fast: false + matrix: + include: + - arch: amd64 + platform: linux/amd64 + runner: ubuntu-latest + - arch: arm64 + platform: linux/arm64 + runner: ubuntu-24.04-arm64 + runs-on: ${{ matrix.runner }} permissions: packages: write contents: read steps: - - name: Check out the repo + - name: Check out (shallow) uses: actions/checkout@v4 + with: + fetch-depth: 1 - - name: Save version info + - name: Determine alpha version + id: version run: | - echo "alpha-$(date +'%Y%m%d')-$(git rev-parse --short HEAD)" > VERSION + VERSION="alpha-$(date +'%Y%m%d')-$(git rev-parse --short HEAD)" + echo "$VERSION" > VERSION + echo "value=$VERSION" >> $GITHUB_OUTPUT + echo "VERSION=$VERSION" >> $GITHUB_ENV + echo "Publishing version: $VERSION for ${{ matrix.arch }}" + + - name: Set up Docker Buildx + uses: docker/setup-buildx-action@v3 - name: Log in to Docker Hub uses: docker/login-action@v3 @@ -31,32 +51,95 @@ jobs: username: ${{ secrets.DOCKERHUB_USERNAME }} password: ${{ secrets.DOCKERHUB_TOKEN }} - - name: Log in to the Container registry + - name: Log in to GHCR uses: docker/login-action@v3 with: registry: ghcr.io username: ${{ github.actor }} password: ${{ secrets.GITHUB_TOKEN }} - - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v3 - - - name: Extract metadata (tags, labels) for Docker + - name: Extract metadata (labels) id: meta uses: docker/metadata-action@v5 with: images: | calciumion/new-api ghcr.io/${{ github.repository }} - tags: | - type=raw,value=alpha - type=raw,value=alpha-{{date 'YYYYMMDD'}}-{{sha}} - - name: Build and push Docker images - uses: docker/build-push-action@v5 + - name: Build & push single-arch (to both registries) + uses: docker/build-push-action@v6 with: context: . - platforms: linux/amd64,linux/arm64 + platforms: ${{ matrix.platform }} push: true - tags: ${{ steps.meta.outputs.tags }} + tags: | + calciumion/new-api:alpha-${{ matrix.arch }} + calciumion/new-api:${{ steps.version.outputs.value }}-${{ matrix.arch }} + ghcr.io/${{ github.repository }}:alpha-${{ matrix.arch }} + ghcr.io/${{ github.repository }}:${{ steps.version.outputs.value }}-${{ matrix.arch }} labels: ${{ steps.meta.outputs.labels }} + cache-from: type=gha + cache-to: type=gha,mode=max + provenance: false + sbom: false + + create_manifests: + name: Create multi-arch manifests (Docker Hub + GHCR) + needs: [build_single_arch] + runs-on: ubuntu-latest + permissions: + packages: write + contents: read + steps: + - name: Check out (shallow) + uses: actions/checkout@v4 + with: + fetch-depth: 1 + + - name: Determine alpha version + id: version + run: | + VERSION="alpha-$(date +'%Y%m%d')-$(git rev-parse --short HEAD)" + echo "value=$VERSION" >> $GITHUB_OUTPUT + echo "VERSION=$VERSION" >> $GITHUB_ENV + + - name: Log in to Docker Hub + uses: docker/login-action@v3 + with: + username: ${{ secrets.DOCKERHUB_USERNAME }} + password: ${{ secrets.DOCKERHUB_TOKEN }} + + - name: Create & push manifest (Docker Hub - alpha) + run: | + docker buildx imagetools create \ + -t calciumion/new-api:alpha \ + calciumion/new-api:alpha-amd64 \ + calciumion/new-api:alpha-arm64 + + - name: Create & push manifest (Docker Hub - versioned alpha) + run: | + docker buildx imagetools create \ + -t calciumion/new-api:${VERSION} \ + calciumion/new-api:${VERSION}-amd64 \ + calciumion/new-api:${VERSION}-arm64 + + - name: Log in to GHCR + uses: docker/login-action@v3 + with: + registry: ghcr.io + username: ${{ github.actor }} + password: ${{ secrets.GITHUB_TOKEN }} + + - name: Create & push manifest (GHCR - alpha) + run: | + docker buildx imagetools create \ + -t ghcr.io/${GITHUB_REPOSITORY}:alpha \ + ghcr.io/${GITHUB_REPOSITORY}:alpha-amd64 \ + ghcr.io/${GITHUB_REPOSITORY}:alpha-arm64 + + - name: Create & push manifest (GHCR - versioned alpha) + run: | + docker buildx imagetools create \ + -t ghcr.io/${GITHUB_REPOSITORY}:${VERSION} \ + ghcr.io/${GITHUB_REPOSITORY}:${VERSION}-amd64 \ + ghcr.io/${GITHUB_REPOSITORY}:${VERSION}-arm64 diff --git a/.github/workflows/docker-image-arm64.yml b/.github/workflows/docker-image-arm64.yml index 8e4656aa7..cbaabf1fc 100644 --- a/.github/workflows/docker-image-arm64.yml +++ b/.github/workflows/docker-image-arm64.yml @@ -1,26 +1,41 @@ -name: Publish Docker image (Multi Registries) +name: Publish Docker image (Multi Registries, native amd64+arm64) on: push: tags: - '*' + jobs: - push_to_registries: - name: Push Docker image to multiple registries - runs-on: ubuntu-latest + build_single_arch: + name: Build & push (${{ matrix.arch }}) [native] + strategy: + fail-fast: false + matrix: + include: + - arch: amd64 + platform: linux/amd64 + runner: ubuntu-latest + - arch: arm64 + platform: linux/arm64 + runner: ubuntu-24.04-arm64 + runs-on: ${{ matrix.runner }} + permissions: packages: write contents: read + steps: - - name: Check out the repo + - name: Check out (shallow) uses: actions/checkout@v4 + with: + fetch-depth: 1 - - name: Save version info + - name: Resolve tag & write VERSION run: | - git describe --tags > VERSION - - - name: Set up QEMU - uses: docker/setup-qemu-action@v3 + git fetch --tags --force --depth=1 + echo "TAG=${GITHUB_REF#refs/tags/}" >> $GITHUB_ENV + echo "$TAG" > VERSION + echo "Building tag: $TAG for ${{ matrix.arch }}" - name: Set up Docker Buildx uses: docker/setup-buildx-action@v3 @@ -31,14 +46,14 @@ jobs: username: ${{ secrets.DOCKERHUB_USERNAME }} password: ${{ secrets.DOCKERHUB_TOKEN }} - - name: Log in to the Container registry + - name: Log in to GHCR uses: docker/login-action@v3 with: registry: ghcr.io username: ${{ github.actor }} password: ${{ secrets.GITHUB_TOKEN }} - - name: Extract metadata (tags, labels) for Docker + - name: Extract metadata (labels) id: meta uses: docker/metadata-action@v5 with: @@ -46,11 +61,70 @@ jobs: calciumion/new-api ghcr.io/${{ github.repository }} - - name: Build and push Docker images - uses: docker/build-push-action@v5 + - name: Build & push single-arch (to both registries) + uses: docker/build-push-action@v6 with: context: . - platforms: linux/amd64,linux/arm64 + platforms: ${{ matrix.platform }} push: true - tags: ${{ steps.meta.outputs.tags }} - labels: ${{ steps.meta.outputs.labels }} \ No newline at end of file + tags: | + calciumion/new-api:${{ env.TAG }}-${{ matrix.arch }} + calciumion/new-api:latest-${{ matrix.arch }} + ghcr.io/${{ github.repository }}:${{ env.TAG }}-${{ matrix.arch }} + ghcr.io/${{ github.repository }}:latest-${{ matrix.arch }} + labels: ${{ steps.meta.outputs.labels }} + cache-from: type=gha + cache-to: type=gha,mode=max + provenance: false + sbom: false + + create_manifests: + name: Create multi-arch manifests (Docker Hub + GHCR) + needs: [build_single_arch] + runs-on: ubuntu-latest + if: startsWith(github.ref, 'refs/tags/') + steps: + - name: Extract tag + run: echo "TAG=${GITHUB_REF#refs/tags/}" >> $GITHUB_ENV + + - name: Log in to Docker Hub + uses: docker/login-action@v3 + with: + username: ${{ secrets.DOCKERHUB_USERNAME }} + password: ${{ secrets.DOCKERHUB_TOKEN }} + + - name: Create & push manifest (Docker Hub - version) + run: | + docker buildx imagetools create \ + -t calciumion/new-api:${TAG} \ + calciumion/new-api:${TAG}-amd64 \ + calciumion/new-api:${TAG}-arm64 + + - name: Create & push manifest (Docker Hub - latest) + run: | + docker buildx imagetools create \ + -t calciumion/new-api:latest \ + calciumion/new-api:latest-amd64 \ + calciumion/new-api:latest-arm64 + + # ---- GHCR ---- + - name: Log in to GHCR + uses: docker/login-action@v3 + with: + registry: ghcr.io + username: ${{ github.actor }} + password: ${{ secrets.GITHUB_TOKEN }} + + - name: Create & push manifest (GHCR - version) + run: | + docker buildx imagetools create \ + -t ghcr.io/${GITHUB_REPOSITORY}:${TAG} \ + ghcr.io/${GITHUB_REPOSITORY}:${TAG}-amd64 \ + ghcr.io/${GITHUB_REPOSITORY}:${TAG}-arm64 + + - name: Create & push manifest (GHCR - latest) + run: | + docker buildx imagetools create \ + -t ghcr.io/${GITHUB_REPOSITORY}:latest \ + ghcr.io/${GITHUB_REPOSITORY}:latest-amd64 \ + ghcr.io/${GITHUB_REPOSITORY}:latest-arm64 diff --git a/Dockerfile b/Dockerfile index 08cc86f72..fb4cbbc36 100644 --- a/Dockerfile +++ b/Dockerfile @@ -9,10 +9,12 @@ COPY ./VERSION . RUN DISABLE_ESLINT_PLUGIN='true' VITE_REACT_APP_VERSION=$(cat VERSION) bun run build FROM golang:alpine AS builder2 +ENV GO111MODULE=on CGO_ENABLED=0 + +ARG TARGETOS +ARG TARGETARCH +ENV GOOS=${TARGETOS:-linux} GOARCH=${TARGETARCH:-amd64} -ENV GO111MODULE=on \ - CGO_ENABLED=0 \ - GOOS=linux WORKDIR /build