diff --git a/.github/workflows/ghcr-docker.yml b/.github/workflows/ghcr-docker.yml index 9bce56f..eee7687 100644 --- a/.github/workflows/ghcr-docker.yml +++ b/.github/workflows/ghcr-docker.yml @@ -12,106 +12,106 @@ env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} -#jobs: -# build-and-push-image: -# runs-on: ubuntu-latest -# -# permissions: -# contents: read -# packages: write -# attestations: write -# id-token: write -# -# steps: -# - name: Checkout repository -# uses: actions/checkout@v4 -# -# - name: Log in to the Container registry -# uses: docker/login-action@v3 -# with: -# registry: ${{ env.REGISTRY }} -# username: ${{ github.actor }} -# password: ${{ secrets.GITHUB_TOKEN }} -# -# - name: Extract metadata (tags, labels) for Docker -# id: meta -# uses: docker/metadata-action@v5 -# with: -# labels: | -# org.opencontainers.image.title=fhir-candle -# org.opencontainers.image.description=A small in-memory FHIR server that can be used for testing and development - NOT for production workloads. -# images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }} -# tags: | -# type=raw,value=latest,enable={{is_default_branch}} -# -# - name: Build and push Docker image -# id: push -# uses: docker/build-push-action@v6 -# with: -# context: . -# push: true -# tags: ${{ steps.meta.outputs.tags }} -# labels: ${{ steps.meta.outputs.labels }} -# -# - name: Generate artifact attestation -# uses: actions/attest-build-provenance@v1 -# with: -# subject-name: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME}} -# subject-digest: ${{ steps.push.outputs.digest }} -# push-to-registry: true - jobs: - build-and-push-image: - runs-on: ubuntu-latest - if: ${{ github.event.workflow_run.conclusion == 'success' }} - - permissions: - contents: read - packages: write - attestations: write - id-token: write - - steps: - - name: Set up QEMU - uses: docker/setup-qemu-action@v3 - - - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v3 - - - name: Checkout repository - uses: actions/checkout@v4 - - - name: Log in to the Container registry - uses: docker/login-action@v3 - with: - registry: ${{ env.REGISTRY }} - username: ${{ github.actor }} - password: ${{ secrets.GITHUB_TOKEN }} - - - name: Extract metadata (tags, labels) for Docker - id: meta - uses: docker/metadata-action@v5 - with: - labels: | - org.opencontainers.image.title=fhir-candle - org.opencontainers.image.description=A small in-memory FHIR server that can be used for testing and development - NOT for production workloads. - images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }} - tags: | - type=raw,value=latest,enable={{is_default_branch}} - - - name: Build and push Docker image - id: push - uses: docker/build-push-action@v6 - with: - context: . - platforms: linux/amd64,linux/arm64 - push: true - tags: ${{ steps.meta.outputs.tags }} - labels: ${{ steps.meta.outputs.labels }} - - - name: Generate artifact attestation - uses: actions/attest-build-provenance@v1 - with: - subject-name: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME}} - subject-digest: ${{ steps.push.outputs.digest }} - push-to-registry: true + build-and-push-image: + runs-on: ubuntu-latest + + permissions: + contents: read + packages: write + attestations: write + id-token: write + + steps: + - name: Checkout repository + uses: actions/checkout@v4 + + - name: Log in to the Container registry + uses: docker/login-action@v3 + with: + registry: ${{ env.REGISTRY }} + username: ${{ github.actor }} + password: ${{ secrets.GITHUB_TOKEN }} + + - name: Extract metadata (tags, labels) for Docker + id: meta + uses: docker/metadata-action@v5 + with: + labels: | + org.opencontainers.image.title=fhir-candle + org.opencontainers.image.description=A small in-memory FHIR server that can be used for testing and development - NOT for production workloads. + images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }} + tags: | + type=raw,value=latest,enable={{is_default_branch}} + + - name: Build and push Docker image + id: push + uses: docker/build-push-action@v6 + with: + context: . + push: true + tags: ${{ steps.meta.outputs.tags }} + labels: ${{ steps.meta.outputs.labels }} + + - name: Generate artifact attestation + uses: actions/attest-build-provenance@v1 + with: + subject-name: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME}} + subject-digest: ${{ steps.push.outputs.digest }} + push-to-registry: true + +# jobs: +# build-and-push-image: +# runs-on: ubuntu-latest +# if: ${{ github.event.workflow_run.conclusion == 'success' }} + +# permissions: +# contents: read +# packages: write +# attestations: write +# id-token: write + +# steps: +# - name: Set up QEMU +# uses: docker/setup-qemu-action@v3 + +# - name: Set up Docker Buildx +# uses: docker/setup-buildx-action@v3 + +# - name: Checkout repository +# uses: actions/checkout@v4 + +# - name: Log in to the Container registry +# uses: docker/login-action@v3 +# with: +# registry: ${{ env.REGISTRY }} +# username: ${{ github.actor }} +# password: ${{ secrets.GITHUB_TOKEN }} + +# - name: Extract metadata (tags, labels) for Docker +# id: meta +# uses: docker/metadata-action@v5 +# with: +# labels: | +# org.opencontainers.image.title=fhir-candle +# org.opencontainers.image.description=A small in-memory FHIR server that can be used for testing and development - NOT for production workloads. +# images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }} +# tags: | +# type=raw,value=latest,enable={{is_default_branch}} + +# - name: Build and push Docker image +# id: push +# uses: docker/build-push-action@v6 +# with: +# context: . +# platforms: linux/amd64,linux/arm64 +# push: true +# tags: ${{ steps.meta.outputs.tags }} +# labels: ${{ steps.meta.outputs.labels }} + +# - name: Generate artifact attestation +# uses: actions/attest-build-provenance@v1 +# with: +# subject-name: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME}} +# subject-digest: ${{ steps.push.outputs.digest }} +# push-to-registry: true