ci(container): Update container image building workflow #392
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: "Price Feeder & Alarms Dispatcher CI" | |
on: | |
workflow_dispatch: | |
push: | |
branches: | |
- "main" | |
- "dev-*.*" | |
tags: | |
- "*" | |
pull_request: | |
branches: | |
- "main" | |
- "dev-*.*" | |
paths-ignore: | |
- ".gitignore" | |
- "README.md" | |
concurrency: | |
cancel-in-progress: true | |
group: |- | |
${{ format( | |
'{0}-{1}-{2}', | |
github.ref_name, | |
github.ref_type, | |
github.event_name | |
) }} | |
defaults: | |
run: | |
shell: "sh" | |
env: | |
CARGO_INCREMENTAL: "0" | |
jobs: | |
check_formatting: | |
runs-on: "ubuntu-latest" | |
steps: | |
- uses: "actions/checkout@v4" | |
- run: |- | |
"cargo" "fmt" --all --check | |
audit_dependencies: | |
runs-on: "ubuntu-latest" | |
steps: | |
- uses: "actions/checkout@v4" | |
- uses: "nolus-protocol/rust-ci-actions/rust_cache@main" | |
with: | |
update_and_cache_toolchains: "true" | |
- uses: "nolus-protocol/rust-ci-actions/audit_dependencies@main" | |
linting: | |
runs-on: "ubuntu-latest" | |
steps: | |
- uses: "actions/checkout@v4" | |
- uses: "nolus-protocol/rust-ci-actions/rust_cache@main" | |
with: | |
update_and_cache_toolchains: "true" | |
- name: "Run clippy" | |
run: |- | |
"cargo" "clippy" --workspace -- -D "warnings" | |
code_coverage: | |
runs-on: "ubuntu-latest" | |
steps: | |
- uses: "actions/checkout@v4" | |
- uses: "nolus-protocol/rust-ci-actions/rust_cache@main" | |
with: | |
update_and_cache_toolchains: "true" | |
- uses: "nolus-protocol/rust-ci-actions/code_coverage@main" | |
test_release_profile: | |
runs-on: "ubuntu-latest" | |
steps: | |
- uses: "actions/checkout@v4" | |
- uses: "nolus-protocol/rust-ci-actions/rust_cache@main" | |
with: | |
update_and_cache_toolchains: "true" | |
- name: "Run tests in release profile" | |
run: |- | |
"cargo" "test" --workspace --release | |
build: | |
runs-on: "ubuntu-latest" | |
needs: | |
- "check_formatting" | |
- "audit_dependencies" | |
- "linting" | |
- "code_coverage" | |
- "test_release_profile" | |
if: |- | |
github.ref_type == 'tag' | |
strategy: | |
fail-fast: true | |
matrix: | |
package: | |
- "alarms-dispatcher" | |
- "market-data-feeder" | |
# GitHub Actions escaped string evaluation | |
name: "Build image [${{ matrix.package }}]" | |
permissions: | |
packages: write | |
env: | |
container_registry: "ghcr.io" | |
container_repository: "nolus-protocol" | |
package: |- | |
${{ matrix.package }} | |
tag: |- | |
${{ github.ref_name }} | |
steps: | |
- uses: "actions/checkout@v4" | |
- name: "Build image" | |
run: |- | |
set -ex | |
apt update | |
apt install --force --yes podman | |
"podman" \ | |
"build" \ | |
--build-arg "package=${package}" \ | |
--build-arg "profile=release" \ | |
--build-arg "profile_output_dir=release" \ | |
--file "./Containerfile" \ | |
--format "oci" \ | |
--pull \ | |
--tag "service" \ | |
--target "service" \ | |
. | |
- name: "Login at container registry" | |
uses: "redhat-actions/podman-login@v1" | |
with: | |
username: "$" | |
password: |- | |
${{ secrets.GITHUB_TOKEN }} | |
registry: |- | |
${{ env.container_registry }} | |
- name: "Push image to container registry" | |
run: | | |
set -e | |
image_name="${package}" | |
readonly image_name | |
base_url="${container_registry}/${container_repository}" | |
readonly base_url | |
image_url="${base_url}/${image_name}" | |
readonly image_url | |
regex="^[[:digit:]]\{1,\}\.[[:digit:]]\{1,\}\.[[:digit:]]\{1,\}\$" | |
readonly regex | |
if "grep" -q -s "${regex}" <<-EOF | |
${tag} | |
EOF | |
then | |
"podman" "tag" "service" "${image_url}:latest" | |
"podman" "push" "${image_url}:latest" | |
fi | |
for image_tag in "${tag}" "dev" | |
do | |
"podman" "tag" "service" "${image_url}:${image_tag}" | |
"podman" "push" "${image_url}:${image_tag}" | |
done |