Docker hub authentication #38
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| name: Build Spacktainers | |
| on: [push] | |
| jobs: | |
| base-container-job: | |
| runs-on: | |
| - codebuild-spacktainers-${{ github.run_id }}-${{ github.run_attempt }} | |
| - image:ubuntu-7.0 | |
| - instance-size:small | |
| steps: | |
| - name: clone repo | |
| uses: actions/checkout@v4 | |
| - name: create builder | |
| uses: ./.github/actions/build_base_container | |
| with: | |
| AWS_ECR_URL: ${{ secrets.AWS_ECR_URL }} | |
| AWS_ECR_PATH: /spacktainers/builder | |
| AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ECR_ACCESS_KEY_ID }} | |
| AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_ECR_SECRET_ACCESS_KEY }} | |
| BUILD_PATH: builder | |
| BUILDAH_EXTRA_ARGS: --label org.opencontainers.image.revision="$GITHUB_SHA" | |
| --label org.opencontainers.image.authors="$GITHUB_TRIGGERING_ACTOR" --label | |
| org.opencontainers.image.url="https://github.com/${GITHUB_REPOSITORY}" | |
| --label org.opencontainers.image.source="https://github.com/${GITHUB_REPOSITORY}" | |
| --label ch.epfl.bbpgitlab.ci-pipeline-url="$GITHUB_SERVER_URL/$GITHUB_REPOSITORY/actions/runs/$GITHUB_RUN_ID" | |
| --label ch.epfl.bbpgitlab.ci-commit-branch="$GITHUB_REF_NAME" --build-arg | |
| SPACK_BRANCH=develop | |
| # ' --label org.opencontainers.image.created="$CI_JOB_STARTED_AT"' | |
| DOCKERHUB_USER: ${{ secrets.DOCKERHUB_USER }} | |
| DOCKERHUB_PASSWORD: ${{ secrets.DOCKERHUB_PASSWORD }} | |
| SPACK_DEPLOYMENT_KEY_PUB: ${{ secrets.SPACK_DEPLOYMENT_KEY_PUB }} | |
| - name: create runtime | |
| uses: ./.github/actions/build_base_container | |
| env: | |
| AWS_ECR_URL: ${{ secrets.AWS_ECR_URL }} | |
| AWS_ECR_PATH: /spacktainers/runtime | |
| AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ECR_ACCESS_KEY_ID }} | |
| AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_ECR_SECRET_ACCESS_KEY }} | |
| BUILD_PATH: runtime | |
| BUILDAH_EXTRA_ARGS: --label org.opencontainers.image.revision="$GITHUB_SHA" | |
| --label org.opencontainers.image.authors="$GITHUB_TRIGGERING_ACTOR" --label | |
| org.opencontainers.image.url="https://github.com/${GITHUB_REPOSITORY}" | |
| --label org.opencontainers.image.source="https://github.com/${GITHUB_REPOSITORY}" | |
| --label ch.epfl.bbpgitlab.ci-pipeline-url="$GITHUB_SERVER_URL/$GITHUB_REPOSITORY/actions/runs/$GITHUB_RUN_ID" | |
| --label ch.epfl.bbpgitlab.ci-commit-branch="$GITHUB_REF_NAME" --build-arg | |
| SPACK_BRANCH=develop | |
| # ' --label org.opencontainers.image.created="$CI_JOB_STARTED_AT"' | |
| DOCKERHUB_USER: ${{ secrets.DOCKERHUB_USER }} | |
| DOCKERHUB_PASSWORD: ${{ secrets.DOCKERHUB_PASSWORD }} | |
| SPACK_DEPLOYMENT_KEY_PUB: ${{ secrets.SPACK_DEPLOYMENT_KEY_PUB }} | |
| spacktainer-build-job: | |
| runs-on: | |
| - codebuild-spacktainers-${{ github.run_id }}-${{ github.run_attempt }} | |
| - image:LINUX_IMAGE-130659266700.dkr.ecr.us-east-1.amazonaws.com/spacktainers/builder:latest | |
| - instance-size:small | |
| needs: base-container-job | |
| steps: | |
| - name: configure-build-cache | |
| env: | |
| AWS_CACHE_ACCESS_KEY_ID: ${{ secrets.AWS_CACHE_ACCESS_KEY_ID }} | |
| AWS_CACHE_SECRET_ACCESS_KEY: ${{ secrets.AWS_CACHE_SECRET_ACCESS_KEY }} | |
| AWS_CACHE_BUCKET: ${{ secrets.AWS_CACHE_BUCKET }} | |
| run: |- | |
| echo "Configuring build cache" | |
| /opt/spack/bin/spack config blame mirrors | |
| /opt/spack/bin/spack mirror add --s3-access-key-id=${AWS_CACHE_ACCESS_KEY_ID} --s3-access-key-secret=${AWS_CACHE_SECRET_ACCESS_KEY} s3cache s3://${AWS_CACHE_BUCKET} | |
| /opt/spack/bin/spack config blame mirrors | |
| - name: second step | |
| run: |- | |
| /opt/spack/bin/spack config blame mirrors |