From 1af2264fabb5028c225dc16a8f580eee4d450cfd Mon Sep 17 00:00:00 2001 From: bunkerity Date: Fri, 3 Jun 2022 18:14:47 +0200 Subject: [PATCH] temp stop push to private repo --- .github/workflows/prod.yml | 73 ++++++++++++++++++++------------------ 1 file changed, 38 insertions(+), 35 deletions(-) diff --git a/.github/workflows/prod.yml b/.github/workflows/prod.yml index e73aad5..81259a4 100644 --- a/.github/workflows/prod.yml +++ b/.github/workflows/prod.yml @@ -39,10 +39,10 @@ jobs: context: . platforms: linux/amd64 load: true - tags: 10.20.1.1:5000/bw-prod:latest,bunkerity/bunkerweb:latest,bunkerity/bunkerweb:${{ env.VERSION }},${{ secrets.PRIVATE_REGISTRY }}/bunkerweb:latest - cache-to: type=registry,ref=10.20.1.1:5000/bw-prod:buildcache,mode=max + tags: 10.20.1.1:5000/bw-tests:latest,bunkerity/bunkerweb:latest,bunkerity/bunkerweb:${{ env.VERSION }},${{ secrets.PRIVATE_REGISTRY }}/bunkerweb:latest + cache-to: type=registry,ref=10.20.1.1:5000/bw-tests:buildcache,mode=max - name: Push BW test image - run: docker push 10.20.1.1:5000/bw-prod:latest + run: docker push 10.20.1.1:5000/bw-tests:latest - name: Build autoconf test image uses: docker/build-push-action@v2 @@ -51,10 +51,10 @@ jobs: file: autoconf/Dockerfile platforms: linux/amd64 load: true - tags: 10.20.1.1:5000/bw-autoconf-prod:latest,${{ secrets.PRIVATE_REGISTRY }}/bunkerweb-autoconf:latest - cache-to: type=registry,ref=10.20.1.1:5000/bw-autoconf-prod:buildcache,mode=max + tags: 10.20.1.1:5000/bw-autoconf-tests:latest,${{ secrets.PRIVATE_REGISTRY }}/bunkerweb-autoconf:latest,bunkerity/bunkerweb-autoconf:latest + cache-to: type=registry,ref=10.20.1.1:5000/bw-autoconf-tests:buildcache,mode=max - name: Push autoconf test image - run: docker push 10.20.1.1:5000/bw-autoconf-prod:latest + run: docker push 10.20.1.1:5000/bw-autoconf-tests:latest - name: Build UI test image uses: docker/build-push-action@v2 @@ -63,10 +63,10 @@ jobs: file: ui/Dockerfile platforms: linux/amd64 load: true - tags: 10.20.1.1:5000/bw-ui-prod:latest,${{ secrets.PRIVATE_REGISTRY }}/bunkerweb-ui:latest - cache-to: type=registry,ref=10.20.1.1:5000/bw-ui-prod:buildcache,mode=max + tags: 10.20.1.1:5000/bw-ui-tests:latest,${{ secrets.PRIVATE_REGISTRY }}/bunkerweb-ui:latest,bunkerity/bunkerweb-ui:latest + cache-to: type=registry,ref=10.20.1.1:5000/bw-ui-tests:buildcache,mode=max - name: Push UI test image - run: docker push 10.20.1.1:5000/bw-ui-prod:latest + run: docker push 10.20.1.1:5000/bw-ui-tests:latest - name: Build BW test DEB (ubuntu) uses: docker/build-push-action@v2 @@ -75,7 +75,7 @@ jobs: file: linux/Dockerfile-ubuntu platforms: linux/amd64 load: true - tags: bw-ubuntu-prod:latest + tags: bw-ubuntu-tests:latest - name: Build BW test DEB (debian) uses: docker/build-push-action@v2 @@ -84,7 +84,7 @@ jobs: file: linux/Dockerfile-debian platforms: linux/amd64 load: true - tags: bw-debian-prod:latest + tags: bw-debian-tests:latest - name: Build BW test RPM (centos) uses: docker/build-push-action@v2 @@ -93,7 +93,7 @@ jobs: file: linux/Dockerfile-centos platforms: linux/amd64 load: true - tags: bw-centos-prod:latest + tags: bw-centos-tests:latest - name: Build BW test RPM (fedora) uses: docker/build-push-action@v2 @@ -102,7 +102,7 @@ jobs: file: linux/Dockerfile-fedora platforms: linux/amd64 load: true - tags: bw-fedora-prod:latest + tags: bw-fedora-tests:latest # Check CVE security: @@ -113,7 +113,7 @@ jobs: - name: Check security vulnerabilities for BW uses: aquasecurity/trivy-action@master with: - image-ref: 10.20.1.1:5000/bw-prod:latest + image-ref: 10.20.1.1:5000/bw-tests:latest format: table exit-code: 1 ignore-unfixed: false @@ -122,7 +122,7 @@ jobs: - name: Check security vulnerabilities for autoconf uses: aquasecurity/trivy-action@master with: - image-ref: 10.20.1.1:5000/bw-autoconf-prod:latest + image-ref: 10.20.1.1:5000/bw-autoconf-tests:latest format: table exit-code: 1 ignore-unfixed: false @@ -131,7 +131,7 @@ jobs: - name: Check security vulnerabilities for UI uses: aquasecurity/trivy-action@master with: - image-ref: 10.20.1.1:5000/bw-ui-prod:latest + image-ref: 10.20.1.1:5000/bw-ui-tests:latest format: table exit-code: 1 ignore-unfixed: false @@ -209,8 +209,9 @@ jobs: context: . platforms: linux/amd64,linux/386 push: true - tags: bunkerity/bunkerweb:latest,bunkerity/bunkerweb:${{ env.VERSION }},${{ secrets.PRIVATE_REGISTRY }}/bunkerweb:latest - cache-from: type=registry,ref=10.20.1.1:5000/bw-prod:buildcache + tags: bunkerity/bunkerweb:latest,bunkerity/bunkerweb:${{ env.VERSION }} + #tags: bunkerity/bunkerweb:latest,bunkerity/bunkerweb:${{ env.VERSION }},${{ secrets.PRIVATE_REGISTRY }}/bunkerweb:latest + cache-from: type=registry,ref=10.20.1.1:5000/bw-tests:buildcache - name: Build and push BW autoconf image uses: docker/build-push-action@v2 @@ -218,8 +219,9 @@ jobs: context: . platforms: linux/amd64,linux/386 push: true - tags: bunkerity/bunkerweb-autoconf:latest,bunkerity/bunkerweb-autoconf:${{ env.VERSION }},${{ secrets.PRIVATE_REGISTRY }}/bunkerweb-autoconf:latest - cache-from: type=registry,ref=10.20.1.1:5000/bw-autoconf-prod:buildcache + tags: bunkerity/bunkerweb-autoconf:latest,bunkerity/bunkerweb-autoconf:${{ env.VERSION }} + #tags: bunkerity/bunkerweb-autoconf:latest,bunkerity/bunkerweb-autoconf:${{ env.VERSION }},${{ secrets.PRIVATE_REGISTRY }}/bunkerweb-autoconf:latest + cache-from: type=registry,ref=10.20.1.1:5000/bw-autoconf-tests:buildcache - name: Build and push BW UI image uses: docker/build-push-action@v2 @@ -227,8 +229,9 @@ jobs: context: . platforms: linux/amd64,linux/386 push: true - tags: bunkerity/bunkerweb-ui:latest,bunkerity/bunkerweb-ui:${{ env.VERSION }},${{ secrets.PRIVATE_REGISTRY }}/bunkerweb-ui:latest - cache-from: type=registry,ref=10.20.1.1:5000/bw-ui-prod:buildcache + tags: bunkerity/bunkerweb-ui:latest,bunkerity/bunkerweb-ui:${{ env.VERSION }} + #tags: bunkerity/bunkerweb-ui:latest,bunkerity/bunkerweb-ui:${{ env.VERSION }},${{ secrets.PRIVATE_REGISTRY }}/bunkerweb-ui:latest + cache-from: type=registry,ref=10.20.1.1:5000/bw-ui-tests:buildcache # Push to prod registries (ARM) push-arm: @@ -284,22 +287,22 @@ jobs: tags: bunkerity/bunkerweb-ui:latest,bunkerity/bunkerweb-ui:${{ env.VERSION }} # Deploy to prod infrastructure - deploy: - needs: push - runs-on: [self-hosted, X64] - steps: + # deploy: + # needs: push + # runs-on: [self-hosted, X64] + # steps: - - name: Checkout source code - uses: actions/checkout@v3 + # - name: Checkout source code + # uses: actions/checkout@v3 - - name: k8s login (prod) - uses: azure/k8s-set-context@v2 - with: - method: kubeconfig - kubeconfig: ${{ secrets.KUBE_CONFIG_PROD }} + # - name: k8s login (prod) + # uses: azure/k8s-set-context@v2 + # with: + # method: kubeconfig + # kubeconfig: ${{ secrets.KUBE_CONFIG_PROD }} - - name: k8s deploy (prod) - run: kubectl rollout restart deployment bunkerweb-controller && kubectl rollout restart daemonset bunkerweb + # - name: k8s deploy (prod) + # run: kubectl rollout restart deployment bunkerweb-controller && kubectl rollout restart daemonset bunkerweb # Push DEB/RPM to packagecloud push-linux: