22a746d0fe
Release / release (push) Failing after 7s
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
59 lines
2.2 KiB
YAML
59 lines
2.2 KiB
YAML
name: Release
|
|
|
|
# Livraison par tag : un tag "vX.Y.Z" déclenche build + push registry + release Gitea.
|
|
on:
|
|
push:
|
|
tags:
|
|
- "v*"
|
|
|
|
permissions:
|
|
contents: write # créer la release
|
|
packages: write # pousser dans le registry Gitea
|
|
|
|
env:
|
|
REGISTRY: git.maisongrondin.fr
|
|
# ⚠️ namespace du registry Gitea en minuscules
|
|
IMAGE: git.maisongrondin.fr/alexandre/mkv2avi
|
|
|
|
jobs:
|
|
release:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- name: Checkout
|
|
uses: actions/checkout@v4
|
|
|
|
- name: Version depuis le tag
|
|
id: ver
|
|
run: echo "version=${GITHUB_REF_NAME#v}" >> "$GITHUB_OUTPUT"
|
|
|
|
# Le token auto GITEA_TOKEN n'a PAS de droit push sur le registry de paquets
|
|
# (→ "unauthorized"). On utilise les secrets registry (niveau utilisateur).
|
|
- name: Connexion au registry Gitea
|
|
run: echo "${{ secrets.REGISTRY_PASSWORD }}" | docker login "$REGISTRY" -u "${{ secrets.REGISTRY_USERNAME }}" --password-stdin
|
|
|
|
- name: Build & push de l'image
|
|
run: |
|
|
VERSION="${{ steps.ver.outputs.version }}"
|
|
docker build -t "$IMAGE:$VERSION" -t "$IMAGE:latest" .
|
|
docker push "$IMAGE:$VERSION"
|
|
docker push "$IMAGE:latest"
|
|
|
|
- name: Release Gitea (+ compose de prod en asset)
|
|
env:
|
|
TOKEN: ${{ secrets.GITEA_TOKEN }}
|
|
API: ${{ github.server_url }}/api/v1/repos/${{ github.repository }}
|
|
run: |
|
|
VERSION="${{ steps.ver.outputs.version }}"
|
|
TAG="${{ github.ref_name }}"
|
|
BODY="Image Docker : \`$IMAGE:$VERSION\`\n\nDéploiement :\n\`docker compose --env-file .env.prod -f docker-compose.prod.yml up -d\`"
|
|
REL_ID=$(curl -sSf -X POST "$API/releases" \
|
|
-H "Authorization: token $TOKEN" -H "Content-Type: application/json" \
|
|
-d "{\"tag_name\":\"$TAG\",\"name\":\"$TAG\",\"body\":\"$BODY\"}" | jq -r '.id')
|
|
echo "Release créée (id=$REL_ID)"
|
|
for f in docker-compose.prod.yml .env.prod.example; do
|
|
curl -sSf -X POST "$API/releases/$REL_ID/assets?name=$f" \
|
|
-H "Authorization: token $TOKEN" \
|
|
-F "attachment=@$f;type=text/plain" >/dev/null
|
|
echo " asset ajouté : $f"
|
|
done
|