propagate the buildx commands #167

Workflow file for this run

	name: Build / Test / Push

	on:
	push:
	branches:
	- '**'
	workflow_call:
	workflow_dispatch:

	env:
	BUILD_SUFFIX: -build-${{ github.run_id }}_${{ github.run_attempt }}
	DOCKER_METADATA_SET_OUTPUT_ENV: 'true'

	jobs:
	build:
	runs-on: ${{ matrix.runner }}
	outputs:
	build-image-arm: ${{ steps.gen-output.outputs.image-arm64 }}
	build-image-x64: ${{ steps.gen-output.outputs.image-x64 }}
	strategy:
	fail-fast: false
	matrix:
	include:
	- platform: linux/amd64
	runner: ubuntu-24.04
	- platform: linux/arm64
	runner: ubuntu-24.04-arm
	steps:
	- name: Checkout code
	uses: actions/checkout@v4

	- name: Set up Docker Buildx
	uses: docker/setup-buildx-action@v3

	- name: Login to GitHub Container Registry
	uses: docker/login-action@v3
	with:
	registry: ghcr.io
	username: ${{ github.actor }}
	password: ${{ secrets.GITHUB_TOKEN }}

	- id: build-meta
	name: Docker meta
	uses: docker/metadata-action@v5
	with:
	images: ghcr.io/${{ github.repository }}
	tags: type=sha,suffix=${{ env.BUILD_SUFFIX }}

	# Build cache is shared among all builds of the same architecture
	- id: cache-meta
	name: Docker meta
	uses: docker/metadata-action@v5
	with:
	images: ghcr.io/${{ github.repository }}
	tags: type=raw,value=buildcache-${{ runner.arch }}

	- id: get-registry
	name: Get the sanitized registry name
	run: \|
	echo "registry=$(echo '${{ steps.build-meta.outputs.tags }}' \| cut -f1 -d:)" \| tee -a "$GITHUB_OUTPUT"

	- id: set_build_url
	name: Set BUILD_URL
	run: \|
	echo "build_url=${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}/actions/runs/${GITHUB_RUN_ID}" \| tee -a "$GITHUB_OUTPUT"

	- id: build
	name: Build/push the arch-specific image
	uses: docker/build-push-action@v6
	with:
	platforms: ${{ matrix.platform }}
	build-args: \|
	BUILD_TIMESTAMP=${{ github.event.repository.updated_at }}
	BUILD_URL=${{ steps.set_build_url.outputs.build_url }}
	GIT_REF_NAME=${{ github.ref_name }}
	GIT_SHA=${{ github.sha }}
	GIT_REPOSITORY_URL=${{ github.repositoryUrl }}
	cache-from: type=registry,ref=${{ steps.cache-meta.outputs.tags }}
	cache-to: type=registry,ref=${{ steps.cache-meta.outputs.tags }},mode=max
	labels: ${{ steps.build-meta.outputs.labels }}
	provenance: mode=max
	sbom: true
	tags: ${{ steps.get-registry.outputs.registry }}
	outputs: type=image,push-by-digest=true,push=true

	- id: gen-output
	name: Write arch-specific image digest to outputs
	run: \|
	echo "image-${RUNNER_ARCH,,}=${{ steps.get-registry.outputs.registry }}@${{ steps.build.outputs.digest }}" \| tee -a "$GITHUB_OUTPUT"

	merge:
	runs-on: ubuntu-24.04
	needs:
	- build
	env:
	DOCKER_APP_IMAGE_ARM64: ${{ needs.build.outputs.build-image-arm }}
	DOCKER_APP_IMAGE_X64: ${{ needs.build.outputs.build-image-x64 }}
	outputs:
	build-image: ${{ steps.meta.outputs.tags }}
	build-image-arm: ${{ needs.build.outputs.build-image-arm }}
	build-image-x64: ${{ needs.build.outputs.build-image-x64 }}
	steps:
	- name: Checkout code
	uses: actions/checkout@v4

	- name: Set up Docker Buildx
	uses: docker/setup-buildx-action@v3

	- name: Login to GitHub Container Registry
	uses: docker/login-action@v3
	with:
	registry: ghcr.io
	username: ${{ github.actor }}
	password: ${{ secrets.GITHUB_TOKEN }}

	- name: Docker meta
	id: meta
	uses: docker/metadata-action@v5
	with:
	images: ghcr.io/${{ github.repository }}
	tags: \|
	type=sha,suffix=-build-${{ github.run_id }}_${{ github.run_attempt }}

	- name: Push the multi-platform image
	run: \|
	docker buildx imagetools create \
	--tag "$DOCKER_METADATA_OUTPUT_TAGS" \
	"$DOCKER_APP_IMAGE_ARM64" "$DOCKER_APP_IMAGE_X64"

	test:
	runs-on: ubuntu-24.04
	needs:
	- merge
	env:
	COMPOSE_FILE: docker-compose.yml:docker-compose.ci.yml
	DOCKER_APP_IMAGE: ${{ needs.merge.outputs.build-image }}
	steps:
	- name: Checkout code
	uses: actions/checkout@v4

	- name: Set up Docker Compose
	uses: docker/setup-compose-action@v1

	- name: Login to GitHub Container Registry
	uses: docker/login-action@v3
	with:
	registry: ghcr.io
	username: ${{ github.actor }}
	password: ${{ secrets.GITHUB_TOKEN }}

	- name: Run the test script
	env:
	LIT_TIND_API_KEY: ${{ secrets.LIT_TIND_API_KEY }}
	run: \|
	docker compose run --rm --user root app chown -R avplayer:avplayer artifacts
	docker compose up --detach --wait
	docker compose exec app bin/test

	push:
	runs-on: ubuntu-24.04
	needs:
	- merge
	- test
	env:
	DOCKER_APP_IMAGE: ${{ needs.merge.outputs.build-image }}
	DOCKER_APP_IMAGE_ARM64: ${{ needs.merge.outputs.build-image-arm }}
	DOCKER_APP_IMAGE_X64: ${{ needs.merge.outputs.build-image-x64 }}
	steps:
	- name: Checkout code
	uses: actions/checkout@v4

	- name: Set up Docker Buildx
	uses: docker/setup-buildx-action@v3

	- name: Login to GitHub Container Registry
	uses: docker/login-action@v3
	with:
	registry: ghcr.io
	username: ${{ github.actor }}
	password: ${{ secrets.GITHUB_TOKEN }}

	- name: Produce permanent image tags
	id: branch-meta
	uses: docker/metadata-action@v5
	with:
	images: ghcr.io/${{ github.repository }}
	tags: \|
	type=sha
	type=ref,event=branch
	type=raw,value=latest,enable={{is_default_branch}}

	- name: Retag and push the image
	run: \|
	docker buildx imagetools create \
	$(jq -cr '.tags \| map("--tag " + .) \| join(" ")' <<< "$DOCKER_METADATA_OUTPUT_JSON") $DOCKER_APP_IMAGE_ARM64 $DOCKER_APP_IMAGE_X64

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

propagate the buildx commands #167

Workflow file

propagate the buildx commands #167

Uh oh!

Workflow file for this run