actions/kaniko
1
0
Fork 0
mirror of https://code.thetadev.de/actions/kaniko.git synced 2026-04-28 18:51:43 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
c6fa5d6f373626d249678585b84cb060f041279c
kaniko/entrypoint.sh
ThetaDev c6fa5d6f37 fix crane registry url
2024-03-02 19:51:08 +01:00

143 lines
4.3 KiB
Bash
Executable File
Raw Blame History

#!/bin/sh
set -e pipefail
if [ "$INPUT_DEBUG" = "true" ]; then
set -x
fi
REGISTRY="${INPUT_REGISTRY:-"docker.io"}"
IMAGE="$INPUT_IMAGE"
BRANCH=$(echo "$GITHUB_REF" | sed -E "s/refs\/(heads|tags)\///g" | sed -e "s/\//-/g")
TAG=${INPUT_TAG:-$([ "$BRANCH" = "master" ] && echo latest || echo "$BRANCH")}
TAG="${TAG:-"latest"}"
TAG="${TAG#$INPUT_STRIP_TAG_PREFIX}"
USERNAME="${INPUT_USERNAME:-$GITHUB_ACTOR}"
PASSWORD="${INPUT_PASSWORD:-$GITHUB_TOKEN}"
REPOSITORY="$IMAGE"
IMAGE="${IMAGE}:${TAG}"
CONTEXT_PATH="$INPUT_PATH"
if [ "$INPUT_TAG_WITH_LATEST" = "true" ]; then
IMAGE_LATEST="${REPOSITORY}:latest"
fi
ensure() {
if [ -z "${1}" ]; then
echo >&2 "Unable to find the ${2} variable. Did you set with.${2}?"
exit 1
fi
}
ensure "${REGISTRY}" "registry"
ensure "${USERNAME}" "username"
ensure "${PASSWORD}" "password"
ensure "${IMAGE}" "image"
ensure "${TAG}" "tag"
ensure "${CONTEXT_PATH}" "path"
if [ "$REGISTRY" = "ghcr.io" ]; then
IMAGE_NAMESPACE="$(echo $GITHUB_REPOSITORY | tr '[:upper:]' '[:lower:]')"
# Set `/` separator, unless image is pre-fixed with dash or slash
[ -n "$REPOSITORY" ] && [[ ! "$REPOSITORY" =~ ^[-/] ]] && SEPARATOR="/"
IMAGE="$IMAGE_NAMESPACE$SEPARATOR$IMAGE"
REPOSITORY="$IMAGE_NAMESPACE$SEPARATOR$REPOSITORY"
if [ -n "$IMAGE_LATEST" ]; then
IMAGE_LATEST="${IMAGE_NAMESPACE}/${IMAGE_LATEST}"
fi
if [ -n "$INPUT_CACHE_REGISTRY" ]; then
INPUT_CACHE_REGISTRY="${REGISTRY}/${IMAGE_NAMESPACE}/${INPUT_CACHE_REGISTRY}"
fi
fi
if [ "$REGISTRY" = "docker.io" ]; then
kanikoRegistry="index.docker.io/v1/"
else
kanikoRegistry="$REGISTRY"
IMAGE="${REGISTRY}/${IMAGE}"
if [ -n "$IMAGE_LATEST" ]; then
IMAGE_LATEST="${REGISTRY}/${IMAGE_LATEST}"
fi
fi
CACHE="${INPUT_CACHE:+"--cache=true"}"
CACHE="$CACHE"${INPUT_CACHE_TTL:+" --cache-ttl=$INPUT_CACHE_TTL"}
CACHE="$CACHE"${INPUT_CACHE_REGISTRY:+" --cache-repo=$INPUT_CACHE_REGISTRY"}
CACHE="$CACHE"${INPUT_CACHE_DIRECTORY:+" --cache-dir=$INPUT_CACHE_DIRECTORY"}
CONTEXT="--context $GITHUB_WORKSPACE/$CONTEXT_PATH"
DOCKERFILE="--dockerfile $CONTEXT_PATH/${INPUT_BUILD_FILE:-Dockerfile}"
TARGET=${INPUT_TARGET:+"--target=$INPUT_TARGET"}
ARGS="$CACHE $CONTEXT $DOCKERFILE $TARGET $INPUT_EXTRA_ARGS"
cat <<EOF >/kaniko/.docker/config.json
{
"auths": {
"https://${kanikoRegistry}": {
"username": "${USERNAME}",
"password": "${PASSWORD}"
}
}
}
EOF
runKaniko() {
# https://github.com/GoogleContainerTools/kaniko/issues/1803
# https://github.com/GoogleContainerTools/kaniko/issues/1349
IFS=''
kaniko_cmd="executor ${1} --reproducible --force"
echo "Running kaniko command: ${kaniko_cmd}"
eval "${kaniko_cmd}"
}
if [ -n "$INPUT_PLATFORMS" ]; then
# Build image for all platforms, then push the manifest
platformArray=$(echo "$INPUT_PLATFORMS" | sed 's/,/ /g' )
echo "Building for the following platforms: $platformArray"
for platform in $platformArray; do
platformFn=$(echo "$platform" | sed 's#/#-#g')
DESTINATION="--no-push --tarPath /build/${platformFn}.tar --destination $IMAGE"
DIGEST="--image-name-tag-with-digest-file=/build/${platformFn}_image-tag-digest"
runKaniko "${ARGS} $DESTINATION $DIGEST"
done
crane auth login "$REGISTRY" -u "$USERNAME" -p "$PASSWORD"
DIGESTS=""
for platform in $platformArray; do
crane push "/build/${platformFn}.tar" "$IMAGE"
DIGESTS="$DIGESTS -m $(cat "/build/${platformFn}_image-tag-digest")"
done
TAGS="-t $IMAGE"
if [ -n "$IMAGE_LATEST" ]; then
TAGS="$TAGS -t $IMAGE_LATEST"
fi
manifest_cmd="crane index append $TAGS $DIGESTS"
echo "Running crane command: ${manifest_cmd}"
IMAGE_TAG_DIGEST=$(eval "$manifest_cmd")
else
# Build and push image for the default platform
DESTINATION="--destination $IMAGE"
if [ -n "$IMAGE_LATEST" ]; then
DESTINATION="$DESTINATION --destination $IMAGE_LATEST"
fi
DIGEST="--image-name-tag-with-digest-file=/build/image-tag-digest"
runKaniko "${ARGS} $DESTINATION $DIGEST"
IMAGE_TAG_DIGEST=$(cat /build/image-tag-digest)
fi
DIGEST=$(echo "$IMAGE_TAG_DIGEST" | cut -f2 -d '@')
echo "image=$IMAGE" >> "$GITHUB_OUTPUT"
echo "digest=$DIGEST" >> "$GITHUB_OUTPUT"
echo "image-tag-digest=$IMAGE_TAG_DIGEST" >> "$GITHUB_OUTPUT"
echo "🎉 Successfully built $IMAGE_TAG_DIGEST"
Reference in New Issue View Git Blame Copy Permalink