Add .gitea/workflows/actions.yaml

2026-01-07 10:59:18 +00:00
parent cfa1e2fe83
commit 6b0ef02833
1 changed files with 135 additions and 0 deletions
--- a/.gitea/workflows/actions.yaml
+++ b/.gitea/workflows/actions.yaml
@@ -0,0 +1,135 @@
+name: build-image
+on: [push]
+
+jobs:
+  parse_tag:
+    name: Parse tag from upstream metadata
+    runs-on: ubuntu-latest
+    outputs:
+      version: ${{ steps.tag.outputs.version }}
+    steps:
+    #   - name: Check out repository code
+    #     uses: actions/checkout@v3
+      - name: Pull upstream metadata
+        id: tag
+        run: |
+          curl -IL https://downloads.filestash.app/upload/enterprise.tar.gz |
+            grep -i "last-modified" |
+            cut -d' ' -f2- |
+            date -f - +%Y%m%d >> $GITHUB_OUTPUT
+      - name: Assert tag output
+        run: |
+          [[ -z "${{ steps.tag.outputs.version }}" ]] && {
+            echo 'No release tag - exiting'; exit 1
+          } || {
+            echo 'Release tag set correctly: ${{ steps.tag.outputs.version }}'; exit 0
+          }
+      - name: Compare tag with existing package version
+        run: |
+          true
+
+  build_container:
+    name: Container image
+    runs-on: ubuntu-latest
+    env:
+      DOCKER_HOST: unix:///var/run/docker.sock
+    steps:
+      - name: Check out repository code
+        uses: actions/checkout@v4
+      - name: Create builder context
+        id: buildx-context
+        run: |
+          docker context create builders
+      - name: Set up buildx
+        id: buildx
+        uses: docker/setup-buildx-action@v3
+        with:
+          endpoint: builders
+      - name: Login to private repository
+        uses: docker/login-action@v3
+        with:
+          registry: code.spamasaurus.com
+          username: ${{ secrets.GIT_USERNAME }}
+          password: ${{ secrets.GIT_APIKEY }}
+    #   - name: Login to public repository
+    #     uses: docker/login-action@v3
+    #     with:
+    #       registry: docker.io
+    #       username: ${{ secrets.DOCKERHUB_USERNAME }}
+    #       password: ${{ secrets.DOCKERHUB_PASSWORD }}
+      - name: Extract source image version tag
+        id: source_tag
+        run: |
+          tag=$(grep -E '^FROM' Dockerfile | head -n1 | sed -E 's/^FROM [^:]+:([^ ]+).*/\1/' | cut -d '-' -f3)
+          echo "cthtag=cth$tag" | tee -a "$GITHUB_OUTPUT"
+      - name: Build & push container image
+        uses: docker/build-push-action@v5
+        with:
+          context: .
+          tags: |
+            code.spamasaurus.com/djpbessems/act-runner-extended:${{ needs.semrel_dryrun.outputs.version }}-${{ steps.source_tag.outputs.cthtag }}
+            docker.io/djpbessems/act-runner-extended:${{ needs.semrel_dryrun.outputs.version }}-${{ steps.source_tag.outputs.cthtag }}
+          provenance: false
+          push: true
+          labels: |
+            org.opencontainers.image.authors=https://code.spamasaurus.com/djpbessems
+            org.opencontainers.image.created=''
+            org.opencontainers.image.description=Customized act-runner with extra packages
+            org.opencontainers.image.documentation=''
+            org.opencontainers.image.revision=''
+            org.opencontainers.image.source=''
+            org.opencontainers.image.title=act-runner-extended
+            org.opencontainers.image.url=''
+            org.opencontainers.image.vendor=djpbessems
+            org.opencontainers.image.version=${{ needs.semrel_dryrun.outputs.version }}-${{ steps.source_tag.outputs.cthtag }}
+
+  # build_chart:
+  #   name: Helm chart
+  #   runs-on: dind-rootless
+  #   needs: semrel_dryrun
+  #   steps:
+  #     - name: Check out repository code
+  #       uses: actions/checkout@v4
+  #     - uses: azure/setup-helm@v4.2.0
+  #       id: setup
+  #       with:
+  #         version: "latest"
+  #     - name: Prepare build environment
+  #       run: |
+  #         helm plugin install https://github.com/chartmuseum/helm-push
+
+  #         sed -i 's/{{ chart_version }}/${{ needs.semrel_dryrun.outputs.version }}/g' charts/json-server/Chart.yaml
+  #         sed -i 's/{{ image_tag }}/${{ needs.semrel_dryrun.outputs.version }}/g' charts/json-server/values.yaml
+  #     - name: Build & push helm chart
+  #       run: |
+  #         helm package ./charts/json-server
+  #         helm repo add \
+  #           --username ${{ secrets.GIT_USERNAME }} \
+  #           --password ${{ secrets.GIT_APIKEY }} \
+  #           spamasaurus \
+  #           https://code.spamasaurus.com/api/packages/${{ secrets.GIT_USERNAME }}/helm
+  #         helm cm-push \
+  #           json-server-*.tgz \
+  #           spamasaurus
+
+  semrel:
+    name: Semantic Release
+    runs-on: ubuntu-latest
+    needs: [build_container,build_chart]
+    steps:
+      - name: Check out repository code
+        uses: actions/checkout@v3
+      - name: Install dependencies
+        run: |
+          npm install \
+            semantic-release \
+            @semantic-release/changelog \
+            @semantic-release/commit-analyzer \
+            @semantic-release/git \
+            @semantic-release/release-notes-generator
+      - name: Semantic Release
+        run: |
+          npx semantic-release \
+            --branches ${{ gitea.refname }} \
+            --tag-format 'v${version}' \
+            --plugins @semantic-release/commit-analyzer,@semantic-release/release-notes-generator,@semantic-release/changelog,@semantic-release/git