Container image #173
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Container image | |
on: | |
push: | |
paths-ignore: | |
- 'ci/**' | |
- 'README.md' | |
pull_request: | |
types: [opened, reopened, synchronize] | |
workflow_dispatch: | |
jobs: | |
build: | |
name: Build image | |
runs-on: ubuntu-latest | |
steps: | |
- name: Checkout | |
uses: actions/checkout@v4 | |
- name: Docker build | |
run: docker build -t mreg . | |
- name: Save image | |
run: docker save mreg | gzip > mreg.tgz | |
- name: Upload artifact | |
uses: actions/upload-artifact@v4 | |
with: | |
name: mreg | |
path: mreg.tgz | |
test: | |
name: Unit tests | |
needs: build | |
runs-on: ubuntu-latest | |
services: | |
postgres: | |
image: postgres:latest | |
env: | |
POSTGRES_USER: mreg | |
POSTGRES_PASSWORD: mreg | |
# Set health checks to wait until postgres has started | |
options: >- | |
--health-cmd "pg_isready --username=mreg" | |
--health-interval 10s | |
--health-timeout 5s | |
--health-retries 5 | |
ports: | |
# Map the containerized port to localhost. | |
- 5432:5432 | |
steps: | |
- name: Download artifact | |
uses: actions/download-artifact@v4 | |
with: | |
name: mreg | |
- name: Load image | |
run: docker load --input mreg.tgz | |
- name: Run tests | |
run: | | |
docker run --rm -t --network host --entrypoint /app/entrypoint-test.sh \ | |
-e MREG_DB_HOST=localhost -e MREG_DB_PASSWORD=mreg -e MREG_DB_USER=mreg \ | |
mreg | |
mreg-cli: | |
name: Test with mreg-cli | |
needs: build | |
runs-on: ubuntu-latest | |
steps: | |
- name: Download artifact | |
uses: actions/download-artifact@v4 | |
with: | |
name: mreg | |
- name: Load container image | |
run: docker load --input mreg.tgz | |
- name: Tag container image | |
# There's a docker-compose.yml file in the mreg-cli repo that wants the image from ghcr.io, | |
# but we want to use the newly built custom image | |
run: docker tag mreg ghcr.io/unioslo/mreg:latest | |
- name: Setup Python | |
uses: actions/setup-python@v5 | |
with: | |
python-version: 3.11 | |
- name: Install mreg-cli | |
run: | | |
curl -L -o mreg-cli https://github.com/unioslo/mreg-cli/releases/download/1.0.1/mreg-cli-ubuntu-latest-3.12 | |
chmod 0755 mreg-cli | |
sudo mv mreg-cli /usr/bin/ # put it somewhere in $PATH | |
- name: Run the tests | |
run: | | |
wget -nd https://github.com/unioslo/mreg-cli/archive/refs/heads/master.zip | |
unzip master.zip | |
cd mreg-cli-master | |
cp data/mreg-cli.conf ~/.config/mreg-cli.conf | |
pip install -r requirements-dev.txt | |
ci/run_testsuite_and_record.sh | |
- name: Upload the log as an artifact | |
uses: actions/upload-artifact@v4 | |
with: | |
name: new_testsuite_log.json | |
path: mreg-cli-master/ci/new_testsuite_log.json | |
test-with-curl: | |
name: Test with curl | |
needs: build | |
runs-on: ubuntu-latest | |
services: | |
postgres: | |
image: postgres:latest | |
env: | |
POSTGRES_USER: mreg | |
POSTGRES_PASSWORD: mreg | |
# Set health checks to wait until postgres has started | |
options: >- | |
--health-cmd "pg_isready --username=mreg" | |
--health-interval 10s | |
--health-timeout 5s | |
--health-retries 5 | |
ports: | |
# Map the containerized port to localhost. | |
- 5432:5432 | |
steps: | |
- name: Download artifact | |
uses: actions/download-artifact@v4 | |
with: | |
name: mreg | |
- name: Load container image | |
run: docker load --input mreg.tgz | |
- name: Start mreg | |
run: | | |
docker run --rm -t --network host --detach --name mreg \ | |
-e MREG_DB_HOST=localhost -e MREG_DB_PASSWORD=mreg -e MREG_DB_USER=mreg \ | |
mreg | |
- name: Wait for mreg to create the database schema and start up | |
run: sleep 10s | |
- name: Create a user | |
run: docker exec -t mreg /app/manage.py create_mreg_superuser --username test --password test123 | |
- name: Authenticate using curl | |
shell: bash | |
run: | | |
curl http://127.0.0.1:8000/api/token-auth/ \ | |
-X POST -H "Content-Type: application/json" \ | |
--data "{\"username\":\"test\",\"password\":\"test123\"}" \ | |
--output /tmp/curl_output.txt \ | |
--verbose --no-progress-meter \ | |
--write-out %{http_code} \ | |
> /tmp/http_status_code.txt 2> /tmp/curl_errors.txt | |
STATUS=$(cat /tmp/http_status_code.txt) | |
if [ $STATUS -ge 400 ]; then | |
cat /tmp/curl_output.txt | |
exit 1 | |
fi | |
publish: | |
name: Publish | |
# only publish the image if this event was triggered by a version tag | |
if: startsWith(github.ref, 'refs/tags/v') | |
needs: [test, mreg-cli, test-with-curl] | |
runs-on: ubuntu-latest | |
permissions: | |
packages: write | |
contents: read | |
steps: | |
- name: Download artifact | |
uses: actions/download-artifact@v4 | |
with: | |
name: mreg | |
- name: Load image | |
run: docker load --input mreg.tgz | |
- name: Log in to registry | |
run: > | |
echo "${{ secrets.GITHUB_TOKEN }}" | |
| docker login ghcr.io -u ${{ github.actor }} --password-stdin | |
- name: Push image | |
run: | | |
IMAGE_ID=ghcr.io/${{ github.repository_owner }}/mreg | |
TAG_NAME=latest | |
docker tag mreg:latest $IMAGE_ID:$TAG_NAME | |
docker push $IMAGE_ID:$TAG_NAME |