Build Alpine image
Build an image based on Alpine: - name build stages (scratch and alpine respectively) to use them as targets during a build - set `DOCKER_BUILDKIT` to build only required stages within one `Dockerfile` - improve tagging mechanism - bump GitHub Actions versions to get rid of warnings about "save-state deprecation"
This commit is contained in:
tiaga
parent
907d52b7fa
commit
03f42cc24f
|
|
@ -7,6 +7,10 @@ on:
|
||||||
release:
|
release:
|
||||||
types: [published]
|
types: [published]
|
||||||
|
|
||||||
|
env:
|
||||||
|
DOCKER_BUILDKIT: 1
|
||||||
|
DOCKER_TAG_PREFIX: ${{ secrets.DOCKERHUB_USERNAME }}/${{ github.event.repository.name }}
|
||||||
|
|
||||||
jobs:
|
jobs:
|
||||||
docker:
|
docker:
|
||||||
runs-on: ubuntu-latest
|
runs-on: ubuntu-latest
|
||||||
|
|
@ -27,32 +31,52 @@ jobs:
|
||||||
skip-unshallow: 'true'
|
skip-unshallow: 'true'
|
||||||
abbrev: 7
|
abbrev: 7
|
||||||
-
|
-
|
||||||
name: Determine image tag type
|
name: Determine scratch image tag type
|
||||||
uses: haya14busa/action-cond@v1
|
uses: haya14busa/action-cond@v1
|
||||||
id: imgtag
|
id: imgtag_scratch
|
||||||
with:
|
with:
|
||||||
cond: ${{ github.event_name == 'release' }}
|
cond: ${{ github.event_name == 'release' }}
|
||||||
if_true: ${{ secrets.DOCKERHUB_USERNAME }}/${{ github.event.repository.name }}:${{ github.event.release.tag_name }},${{ secrets.DOCKERHUB_USERNAME }}/${{ github.event.repository.name }}:latest
|
if_true: ${{ env.DOCKER_TAG_PREFIX }}:${{ github.event.release.tag_name }},${{ env.DOCKER_TAG_PREFIX }}:latest
|
||||||
if_false: ${{ secrets.DOCKERHUB_USERNAME }}/${{ github.event.repository.name }}:latest
|
if_false: ${{ env.DOCKER_TAG_PREFIX }}:latest
|
||||||
|
-
|
||||||
|
name: Determine Alpine image tag type
|
||||||
|
uses: haya14busa/action-cond@v1
|
||||||
|
id: imgtag_alpine
|
||||||
|
with:
|
||||||
|
cond: ${{ github.event_name == 'release' }}
|
||||||
|
if_true: ${{ env.DOCKER_TAG_PREFIX }}:${{ github.event.release.tag_name }}-alpine,${{ env.DOCKER_TAG_PREFIX }}:latest-alpine
|
||||||
|
if_false: ${{ env.DOCKER_TAG_PREFIX }}:latest-alpine
|
||||||
-
|
-
|
||||||
name: Set up QEMU
|
name: Set up QEMU
|
||||||
uses: docker/setup-qemu-action@v1
|
uses: docker/setup-qemu-action@v2
|
||||||
-
|
-
|
||||||
name: Set up Docker Buildx
|
name: Set up Docker Buildx
|
||||||
uses: docker/setup-buildx-action@v1
|
uses: docker/setup-buildx-action@v2
|
||||||
-
|
-
|
||||||
name: Login to DockerHub
|
name: Login to DockerHub
|
||||||
uses: docker/login-action@v1
|
uses: docker/login-action@v2
|
||||||
with:
|
with:
|
||||||
username: ${{ secrets.DOCKERHUB_USERNAME }}
|
username: ${{ secrets.DOCKERHUB_USERNAME }}
|
||||||
password: ${{ secrets.DOCKERHUB_TOKEN }}
|
password: ${{ secrets.DOCKERHUB_TOKEN }}
|
||||||
-
|
-
|
||||||
name: Build and push
|
name: Build and push scratch image
|
||||||
id: docker_build
|
id: docker_build_scratch
|
||||||
uses: docker/build-push-action@v2
|
uses: docker/build-push-action@v4
|
||||||
with:
|
with:
|
||||||
context: .
|
context: .
|
||||||
platforms: linux/amd64,linux/arm64,linux/386,linux/arm/v7
|
platforms: linux/amd64,linux/arm64,linux/386,linux/arm/v7
|
||||||
push: true
|
push: true
|
||||||
tags: ${{ steps.imgtag.outputs.value }}
|
tags: ${{ steps.imgtag_scratch.outputs.value }}
|
||||||
|
target: scratch
|
||||||
|
build-args: 'GIT_DESC=${{ steps.tagger.outputs.tag }}'
|
||||||
|
-
|
||||||
|
name: Build and push Alpine image
|
||||||
|
id: docker_build_alpine
|
||||||
|
uses: docker/build-push-action@v4
|
||||||
|
with:
|
||||||
|
context: .
|
||||||
|
platforms: linux/amd64,linux/arm64,linux/386,linux/arm/v7
|
||||||
|
push: true
|
||||||
|
tags: ${{ steps.imgtag_alpine.outputs.value }}
|
||||||
|
target: alpine
|
||||||
build-args: 'GIT_DESC=${{ steps.tagger.outputs.tag }}'
|
build-args: 'GIT_DESC=${{ steps.tagger.outputs.tag }}'
|
||||||
|
|
|
||||||
12
Dockerfile
12
Dockerfile
|
|
@ -8,12 +8,16 @@ RUN CGO_ENABLED=0 go build -a -tags netgo -ldflags '-s -w -extldflags "-static"
|
||||||
ADD https://curl.haxx.se/ca/cacert.pem /certs.crt
|
ADD https://curl.haxx.se/ca/cacert.pem /certs.crt
|
||||||
RUN chmod 0644 /certs.crt
|
RUN chmod 0644 /certs.crt
|
||||||
|
|
||||||
FROM scratch AS arrange
|
FROM scratch AS scratch
|
||||||
|
COPY --from=build /go/src/github.com/Snawoot/dumbproxy/dumbproxy /
|
||||||
|
COPY --from=build /certs.crt /etc/ssl/certs/ca-certificates.crt
|
||||||
|
USER 9999:9999
|
||||||
|
EXPOSE 8080/tcp
|
||||||
|
ENTRYPOINT ["/dumbproxy", "-bind-address", ":8080"]
|
||||||
|
|
||||||
|
FROM alpine AS alpine
|
||||||
COPY --from=build /go/src/github.com/Snawoot/dumbproxy/dumbproxy /
|
COPY --from=build /go/src/github.com/Snawoot/dumbproxy/dumbproxy /
|
||||||
COPY --from=build /certs.crt /etc/ssl/certs/ca-certificates.crt
|
COPY --from=build /certs.crt /etc/ssl/certs/ca-certificates.crt
|
||||||
|
|
||||||
FROM scratch
|
|
||||||
COPY --from=arrange / /
|
|
||||||
USER 9999:9999
|
USER 9999:9999
|
||||||
EXPOSE 8080/tcp
|
EXPOSE 8080/tcp
|
||||||
ENTRYPOINT ["/dumbproxy", "-bind-address", ":8080"]
|
ENTRYPOINT ["/dumbproxy", "-bind-address", ":8080"]
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue