45 lines
1.5 KiB
YAML
45 lines
1.5 KiB
YAML
name: Build and push Docker image
|
|
|
|
on:
|
|
release:
|
|
types: [published]
|
|
|
|
jobs:
|
|
build-and-push:
|
|
runs-on: ubuntu-latest
|
|
permissions:
|
|
id-token: write # This is required for requesting the JWT
|
|
contents: read # This is required for actions/checkout
|
|
steps:
|
|
- name: Checkout main project
|
|
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
|
|
with:
|
|
submodules: true
|
|
|
|
- name: Docker cache
|
|
uses: ./.github/workflows/dockercache
|
|
with:
|
|
dockerdir: .
|
|
imagename: svr2_buildenv
|
|
target: builder
|
|
dockerfile: docker/Dockerfile
|
|
|
|
- name: 'Az CLI login'
|
|
uses: azure/login@cb79c773a3cfa27f31f25eb3f677781210c9ce3d # v1.6.1
|
|
with:
|
|
client-id: ${{ secrets.AZURE_CLIENT_ID }}
|
|
tenant-id: ${{ secrets.AZURE_TENANT_ID }}
|
|
subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
|
|
|
|
- name: 'Docker login'
|
|
run:
|
|
az acr login --name ${{ secrets.AZURE_CONTAINER_REGISTRY_NAME }}
|
|
|
|
- name: Build and push container image
|
|
run: |
|
|
make enclave_release
|
|
docker tag svr2_sgxrun:latest "${{ secrets.REGISTRY_LOGIN_SERVER }}/svr2:${GITHUB_REF_NAME}"
|
|
docker push "${{ secrets.REGISTRY_LOGIN_SERVER }}/svr2:${GITHUB_REF_NAME}"
|
|
docker tag svr2_nsmhost:latest "${{ secrets.REGISTRY_LOGIN_SERVER }}/svr2_nsmhost:${GITHUB_REF_NAME}"
|
|
docker push "${{ secrets.REGISTRY_LOGIN_SERVER }}/svr2_nsmhost:${GITHUB_REF_NAME}"
|