Oppdater nav-dekoratoren-moduler til v2 (#190)

* Oppdater alpine-image * Bump nav-dekoratoren-moduler til v2 * Caps på keyword * Send reader_token inn i docker-image * Sett auth_token på en annen måte * Bump release-action
navikt · Aug 20, 2024 · 1ac9465 · 1ac9465
1 parent 88c00ea
commit 1ac9465
Show file tree

Hide file tree

Showing 5 changed files with 76 additions and 515 deletions.
diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
@@ -31,7 +31,7 @@ jobs:
       contents: write
       packages: write
       security-events: write # push sarif to github security
-      id-token: "write"
+      id-token: write
     if: github.ref_name == 'main' || github.event_name == 'workflow_dispatch'
     outputs:
       image: ${{ steps.docker-build-push.outputs.image }}
@@ -61,8 +61,9 @@ jobs:
           tag: ${{ env.IMAGE_TAG }}
           identity_provider: ${{ secrets.NAIS_WORKLOAD_IDENTITY_PROVIDER }}
           project_id: ${{ vars.NAIS_MANAGEMENT_PROJECT_ID }}
+          build_secrets: NODE_AUTH_TOKEN=${{ secrets.READER_TOKEN }}
       - name: Create release
-        uses: softprops/action-gh-release@v1
+        uses: softprops/action-gh-release@v2
         with:
           name: Release poao-frontend
           tag_name: ${{ env.IMAGE_TAG }}

diff --git a/Dockerfile b/Dockerfile
@@ -1,13 +1,17 @@
-FROM node:20-alpine3.19 as builder
+FROM node:20-alpine3.20 AS builder
 
 WORKDIR /app
 
 COPY . .
 
+RUN --mount=type=secret,id=NODE_AUTH_TOKEN \
+    npm config set //npm.pkg.github.com/:_authToken=$(cat /run/secrets/NODE_AUTH_TOKEN)
+RUN npm config set @navikt:registry=https://npm.pkg.github.com
+
 RUN npm ci
 RUN npm run build
 
-FROM node:20-alpine3.19
+FROM node:20-alpine3.20
 
 LABEL org.opencontainers.image.source="https://github.com/navikt/poao-frontend"