Skip to content
Continuous Deployment

fix: Dockerimage (#206) #141

Sign in to view logs

fix: Dockerimage (#206)

fix: Dockerimage (#206) #141

Workflow file for this run

.github/workflows/deploy.yml at 8315e6f
name: Continuous Deployment
on:
push:
branches: [main]
# DO NOT SET workflow_dispatch SINCE IT ENABLES DEVs TO BYPASS CI PIPELINE
env:
PYTHON_VERSION: '3.12'
DOCKER_REGISTRY: 'woped'
DOCKER_IMAGE_NAME: 'pnml-bpmn-transformer'
jobs:
build_and_push_docker:
name: Push Docker image to Docker Hub
runs-on: ubuntu-latest
permissions:
packages: write
contents: read
attestations: write
id-token: write
steps:
- name: Set environment variables
run: |
echo "GCP_SERVICE_ACCOUNT_CERTIFICATE=${{ secrets.GCP_SERVICE_ACCOUNT_CERTIFICATE }}" >> $GITHUB_ENV
- name: Check out the repo
uses: actions/checkout@v4
- name: Set environment variables
run: |
echo "GCP_SERVICE_ACCOUNT_CERTIFICATE=${{ secrets.GCP_SERVICE_ACCOUNT_CERTIFICATE }}" >> $GITHUB_ENV
- name: Log in to Docker Hub
uses: docker/login-action@v3
with:
username: ${{ secrets.DOCKER_HUB_USERNAME }}
password: ${{ secrets.DOCKER_HUB_ACCESSTOKEN }}
- name: Extract metadata (tags, labels) for Docker
id: meta
uses: docker/metadata-action@v5
with:
images: ${{ env.DOCKER_REGISTRY }}/${{ env.DOCKER_IMAGE_NAME }}
- name: Build and push Docker image
id: push
uses: docker/build-push-action@v6
with:
context: .
file: ./Dockerfile
push: true
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}
# Quick Fix: Temporaryly disabeld due to error `Error: No credentials found for registry ***`
# - name: Generate artifact attestation
# uses: actions/attest-build-provenance@v1
# with:
# subject-name: ${{ env.DOCKER_REGISTRY }}/${{ env.DOCKER_IMAGE_NAME }}
# subject-digest: ${{ steps.push.outputs.digest }}
# push-to-registry: true
# github-token: ${{ github.token }}
deploy:
runs-on: ubuntu-latest
# deploy even if build
# needs: build_and_push_docker
strategy:
matrix:
function:
- name: health
entry_point: "get_health"
source_dir: "src/health"
description: "Health status endpoint."
- name: transform
entry_point: "post_transform"
source_dir: "src/transform"
description: "Transformation endpoint."
set_force_std_xml: true
- name: checkTokens
entry_point: "check_tokens"
source_dir: "src/checkTokens"
description: "Check Tokens endpoint."
permissions:
contents: "read"
id-token: "write"
steps:
- name: Set environment variables
run: |
echo "GCP_SERVICE_ACCOUNT_CERTIFICATE=${{ secrets.GCP_SERVICE_ACCOUNT_CERTIFICATE }}" >> $GITHUB_ENV
- name: Check out the repo
uses: actions/checkout@v4
- id: "auth"
name: "Authenticate to Google Cloud"
uses: "google-github-actions/auth@v2"
with:
workload_identity_provider: ${{ secrets.GCP_WORKLOAD_IDENTITY_PROVIDER }}
service_account: ${{ secrets.GCP_SERVICE_ACCOUNT }}
- name: Set up Python
uses: actions/setup-python@v5
with:
python-version: ${{ env.PYTHON_VERSION }}
cache: 'pip'
- name: Install dependencies
run: |
python -m pip install --upgrade pip
pip install -r requirements.txt
- name: Set FUNCTION_ENV_VARS
run: |
if [ "${{ matrix.function.set_force_std_xml }}" == "true" ]; then
echo "FUNCTION_ENV_VARS=FORCE_STD_XML=true" >> $GITHUB_ENV
else
echo "FUNCTION_ENV_VARS=" >> $GITHUB_ENV
fi
- id: "deploy"
uses: "google-github-actions/deploy-cloud-functions@v2"
with:
name: ${{ matrix.function.name }}
entry_point: ${{ matrix.function.entry_point }}
source_dir: ${{ matrix.function.source_dir }}
runtime: "python312"
region: "europe-west3"
description: ${{ matrix.function.description }}
env_vars: ${{ env.FUNCTION_ENV_VARS }},GCP_SERVICE_ACCOUNT_CERTIFICATE=${{ secrets.GCP_SERVICE_ACCOUNT_CERTIFICATE }}