fix typo #3
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: release-rc-version | |
on: | |
push: | |
tags: | |
- 'v1*-rc*' | |
concurrency: | |
group: ${{ github.workflow }}-${{ github.ref }} | |
cancel-in-progress: false | |
jobs: | |
binary: | |
runs-on: nscloud | |
steps: | |
- uses: actions/checkout@v4 | |
# fetch all commits instead of only the last as some branches are long lived and could have many between versions | |
# fetch all tags to ensure that "git describe" reports expected Gitea version, eg. v1.21.0-dev-1-g1234567 | |
- run: git fetch --unshallow --quiet --tags --force | |
- uses: actions/setup-go@v4 | |
with: | |
go-version: "~1.21" | |
check-latest: true | |
- uses: actions/setup-node@v3 | |
with: | |
node-version: 20 | |
- run: make deps-frontend deps-backend | |
# xgo build | |
- run: make release | |
env: | |
TAGS: bindata sqlite sqlite_unlock_notify | |
- name: import gpg key | |
id: import_gpg | |
uses: crazy-max/ghaction-import-gpg@v5 | |
with: | |
gpg_private_key: ${{ secrets.GPGSIGN_KEY }} | |
passphrase: ${{ secrets.GPGSIGN_PASSPHRASE }} | |
- name: sign binaries | |
run: | | |
for f in dist/release/*; do | |
echo '${{ secrets.GPGSIGN_PASSPHRASE }}' | gpg --pinentry-mode loopback --passphrase-fd 0 --batch --yes --detach-sign -u ${{ steps.import_gpg.outputs.fingerprint }} --output "$f.asc" "$f" | |
done | |
# clean branch name to get the folder name in S3 | |
- name: Get cleaned branch name | |
id: clean_name | |
run: | | |
REF_NAME=$(echo "${{ github.ref }}" | sed -e 's/refs\/heads\///' -e 's/refs\/tags\///' -e 's/release\/v//') | |
echo "Cleaned name is ${REF_NAME}" | |
echo "branch=${REF_NAME}" >> "$GITHUB_OUTPUT" | |
- name: configure aws | |
uses: aws-actions/configure-aws-credentials@v4 | |
with: | |
aws-region: ${{ secrets.AWS_REGION }} | |
aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} | |
aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} | |
- name: upload binaries to s3 | |
run: | | |
aws s3 sync dist/release s3://${{ secrets.AWS_S3_BUCKET }}/gitea/${{ steps.clean_name.outputs.branch }} --no-progress | |
docker-rootful: | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
# fetch all commits instead of only the last as some branches are long lived and could have many between versions | |
# fetch all tags to ensure that "git describe" reports expected Gitea version, eg. v1.21.0-dev-1-g1234567 | |
- run: git fetch --unshallow --quiet --tags --force | |
- uses: docker/setup-qemu-action@v2 | |
- uses: docker/setup-buildx-action@v2 | |
- name: Docker meta | |
id: meta | |
uses: docker/metadata-action@v5 | |
with: | |
images: gitea/gitea | |
tags: | | |
# 1.2.3-rc0 | |
type=semver,pattern={{version}} | |
- name: Login to Docker Hub | |
uses: docker/login-action@v2 | |
with: | |
username: ${{ secrets.DOCKERHUB_USERNAME }} | |
password: ${{ secrets.DOCKERHUB_TOKEN }} | |
- name: build rootful docker image | |
uses: docker/build-push-action@v4 | |
with: | |
context: . | |
platforms: linux/amd64,linux/arm64 | |
push: true | |
tags: ${{ steps.meta.outputs.tags }} | |
labels: ${{ steps.meta.outputs.labels }} | |
docker-rootless: | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
# fetch all commits instead of only the last as some branches are long lived and could have many between versions | |
# fetch all tags to ensure that "git describe" reports expected Gitea version, eg. v1.21.0-dev-1-g1234567 | |
- run: git fetch --unshallow --quiet --tags --force | |
- uses: docker/setup-qemu-action@v2 | |
- uses: docker/setup-buildx-action@v2 | |
- name: Docker meta | |
id: meta | |
uses: docker/metadata-action@v5 | |
with: | |
images: gitea/gitea | |
flavor: | | |
# each tag below will have the suffix of -rootless | |
suffix=-rootless | |
tags: | | |
# 1.2.3-rc0 | |
type=semver,pattern={{version}} | |
- name: Login to Docker Hub | |
uses: docker/login-action@v2 | |
with: | |
username: ${{ secrets.DOCKERHUB_USERNAME }} | |
password: ${{ secrets.DOCKERHUB_TOKEN }} | |
- name: build rootless docker image | |
uses: docker/build-push-action@v4 | |
with: | |
context: . | |
platforms: linux/amd64,linux/arm64 | |
push: true | |
file: Dockerfile.rootless | |
tags: ${{ steps.meta.outputs.tags }} | |
labels: ${{ steps.meta.outputs.labels }} |