594550dc6d
GITHUB_TOKEN is the internal actions runner token — pushes made with it don't trigger new workflow runs (by design, prevents infinite loops). Using a real user PAT (SA_TOKEN_ACTION_PUSH_TAGS) makes the tag push trigger the tag.yaml workflow correctly. Fixes the issue where tag pushes from the 'tag' job didn't launch the 'Tag Release' pipeline (tag.yaml).
58 lines
2.2 KiB
YAML
58 lines
2.2 KiB
YAML
name: Main Release
|
|
on:
|
|
push:
|
|
branches: [master]
|
|
jobs:
|
|
hadolint:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
|
|
- uses: hadolint/hadolint-action@2332a7b74a6de0dda2e2221d575162eba76ba5e5 # v3.3.0
|
|
continue-on-error: true
|
|
with:
|
|
dockerfile: Dockerfile
|
|
build-push:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
|
|
- uses: docker/setup-buildx-action@d7f5e7f509e45cec5ec5cec76c4d5afdd7de93d0b3df5 # v4
|
|
- uses: docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee # v4
|
|
with:
|
|
username: ${{ secrets.DOCKERHUB_USERNAME }}
|
|
password: ${{ secrets.DOCKERHUB_TOKEN }}
|
|
- id: meta
|
|
uses: docker/metadata-action@80c7e94dd9b9319bdbe7f3a1c0a1c2e23a2a2e9 # v6
|
|
with:
|
|
images: jcabillot/offlineimap
|
|
tags: |
|
|
type=raw,value=latest
|
|
- uses: docker/build-push-action@f9f3042f7e2788959588e958b3e2e3c5195bfaf # v7.2.0
|
|
with:
|
|
context: .
|
|
push: true
|
|
tags: ${{ steps.meta.outputs.tags }}
|
|
labels: ${{ steps.meta.outputs.labels }}
|
|
pull: true
|
|
test:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
|
|
- uses: docker/setup-buildx-action@d7f5e7f509e45cec5ec5cec76c4d5afdd7de93d0b3df5 # v4
|
|
- run: docker build -t ci-image:${{ github.sha }} .
|
|
- run: bash tests/test.sh ci-image:${{ github.sha }}
|
|
tag:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
|
|
with:
|
|
fetch-depth: 0
|
|
- name: Configure git auth
|
|
run: |
|
|
git remote set-url origin "https://x-access-token:${{ secrets.SA_TOKEN_ACTION_PUSH_TAGS }}@scm.cabillot.eu/perso/offlineimap.git"
|
|
- uses: anothrNick/github-tag-action@4ed44965e0db8dab2b466a16d04aec3cc312fd8 # v1.75.0
|
|
env:
|
|
GITHUB_TOKEN: ${{ secrets.SA_TOKEN_ACTION_PUSH_TAGS }}
|
|
DEFAULT_BULB: patch
|
|
RELEASE_BRANCHES: master
|
|
WITH_V: true
|
|
GIT_API_TAGGING: false |