Skip to content

implement permissions #40

implement permissions

implement permissions #40

Workflow file for this run

name: Docker
on:
workflow_dispatch:
push:
pull_request:
env:
REGISTRY: ghcr.io
jobs:
build:
runs-on: ubuntu-latest
strategy:
fail-fast: false
matrix:
include:
- context: .
target: django
image: ghcr.io/ninanor/genlab_bestilling/backend-django
- context: ./nginx
image: ghcr.io/ninanor/genlab_bestilling/backend-nginx
- context: ./docs
image: ghcr.io/ninanor/genlab_bestilling/backend-docs
target: prod
permissions:
contents: read
packages: write
steps:
- name: Checkout repository
uses: actions/checkout@v4
- name: Log in to the Container registry
uses: docker/login-action@v3
with:
registry: ${{ env.REGISTRY }}
username: ${{ github.actor }}
password: ${{ secrets.GITHUB_TOKEN }}
- name: Extract Docker metadata
id: meta
uses: docker/metadata-action@v5
with:
images: ${{ matrix.image }}
tags: |
type=ref,event=branch
type=sha
- name: Build and push Docker image
uses: docker/build-push-action@v5
with:
context: ${{ matrix.context }}
target: ${{ matrix.target }}
push: true
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}
# publish_docs:
# if: github.ref == 'refs/heads/main'
# needs: build
# runs-on: ubuntu-latest
# container:
# image: ghcr.io/ninanor/genlab_bestilling/backend-docs:main
# credentials:
# username: ${{ github.actor }}
# password: ${{ secrets.GITHUB_TOKEN }}
# permissions:
# pages: write
# id-token: write
# environment:
# # environment created automatically by GitHub
# name: github-pages
# url: ${{ steps.deployment.outputs.page_url }}
# steps:
# - name: Upload artifact
# uses: actions/upload-pages-artifact@v1
# with:
# path: "/var/www"
# # - name: Deploy to GitHub Pages
# # id: deployment
# # uses: actions/deploy-pages@v2