Merge branch 'refs/heads/dev' #5
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Release Helm chart and push | |
| on: | |
| push: | |
| branches: | |
| - main | |
| permissions: | |
| contents: write | |
| packages: write | |
| pages: write | |
| id-token: write | |
| concurrency: | |
| group: release | |
| cancel-in-progress: false | |
| jobs: | |
| release-charts: | |
| name: Release Charts | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| ref: main | |
| - name: Configure Git | |
| run: | | |
| git config user.name "$GITHUB_ACTOR" | |
| git config user.email "[email protected]" | |
| - name: Fetch current Chart Index | |
| run: | | |
| git checkout origin/helm-index index.yaml | |
| - name: Add Helm repos | |
| run: | | |
| helm repo add bitnami https://charts.bitnami.com/bitnami | |
| - name: Remove readme images | |
| run: | | |
| set -x | |
| for f in charts/**/README.md; do | |
| sed -i '/^<img .* alt=".* logo"/,+1d' "$f" | |
| done | |
| - name: Install chart-releaser | |
| uses: helm/[email protected] | |
| with: | |
| install_only: true | |
| - name: Package charts | |
| id: package_charts | |
| run: | | |
| changed_charts="" | |
| for dir in charts/*; do | |
| chart_name="$(basename "$dir")" | |
| version="$(yq '.version' "$dir/Chart.yaml")" | |
| if ! git rev-parse "$chart_name-${version#v}" &>/dev/null; then | |
| echo "Packaging chart $chart_name..." | |
| cr package --package-path=.cr-release-packages "$dir" | |
| changed_charts+="$chart_name," | |
| fi | |
| done | |
| echo "changed_charts=${changed_charts%,}" >> $GITHUB_OUTPUT | |
| # The GitHub repository secret `PGP_PRIVATE_KEY` contains the private key | |
| # in ASCII-armored format. To export a (new) key, run this command: | |
| # `gpg --armor --export-secret-key <my key>` | |
| - name: Prepare PGP key | |
| run: | | |
| IFS="" | |
| base64 -d <<< "$GPG_KEYRING_BASE64" > $HOME/secring.gpg | |
| echo "$PGP_PASSPHRASE" > $HOME/passphrase.txt | |
| # Tell chart-releaser-action where to find the key and its passphrase | |
| echo "CR_KEYRING=$HOME/secring.gpg" >> "$GITHUB_ENV" | |
| echo "CR_PASSPHRASE_FILE=$HOME/passphrase.txt" >> "$GITHUB_ENV" | |
| env: | |
| GPG_KEYRING_BASE64: "${{ secrets.GPG_KEYRING_BASE64 }}" | |
| PGP_PASSPHRASE: "${{ secrets.PGP_PASSPHRASE }}" | |
| - name: Run chart-releaser | |
| uses: helm/[email protected] | |
| if: steps.package_charts.outputs.changed_charts != '' | |
| with: | |
| config: "./.github/configs/cr.yaml" | |
| skip_existing: true | |
| env: | |
| CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}" | |
| CR_PAGES_BRANCH: helm-index | |
| - name: Login to GitHub Container Registry | |
| uses: docker/login-action@v3 | |
| if: steps.package_charts.outputs.changed_charts != '' | |
| with: | |
| registry: ghcr.io | |
| username: ${{ github.actor }} | |
| password: ${{ github.token }} | |
| - name: Push chart to GHCR | |
| if: steps.package_charts.outputs.changed_charts != '' | |
| run: | | |
| shopt -s nullglob | |
| for pkg in .cr-release-packages/*.tgz; do | |
| if [ -z "${pkg:-}" ]; then | |
| break | |
| fi | |
| helm push "${pkg}" oci://ghcr.io/${{ github.repository }} | |
| done | |
| build-docs: | |
| name: Build Docs | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| - name: Set up Python | |
| uses: actions/setup-python@v5 | |
| with: | |
| python-version: 3.x | |
| cache: pip | |
| cache-dependency-path: docs/requirements.txt | |
| - name: MkDocs cache | |
| uses: actions/cache@v4 | |
| with: | |
| path: docs/.cache | |
| key: ${{ runner.os }}-mkdocs-${{ github.sha }} | |
| restore-keys: | | |
| ${{ runner.os }}-mkdocs- | |
| - name: Install dependencies | |
| run: pip install -r docs/requirements.txt | |
| - name: Build docs | |
| working-directory: docs | |
| env: | |
| REPO_NAME: ${{ github.repository }} | |
| REPO_URL: ${{ github.server_url }}/${{ github.repository }} | |
| run: mkdocs build | |
| - name: Compress | |
| run: tar -czvf docs.tar.gz -C docs site | |
| - name: Upload artifact | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: docs | |
| path: docs.tar.gz | |
| deploy-site: | |
| name: Deploy Site | |
| runs-on: ubuntu-latest | |
| needs: [release-charts, build-docs] | |
| environment: | |
| name: github-pages | |
| url: ${{ steps.deployment.outputs.page_url }} | |
| steps: | |
| - name: Checkout Helm index | |
| uses: actions/checkout@v4 | |
| with: | |
| path: helm-index | |
| ref: refs/heads/helm-index | |
| - name: Download docs artifact | |
| uses: actions/download-artifact@v4 | |
| with: | |
| name: docs | |
| - name: Decompress docs | |
| run: tar -xzvf docs.tar.gz | |
| - name: Move Helm index to docs | |
| run: mv helm-index/* site | |
| - name: Upload release artifact | |
| uses: actions/upload-pages-artifact@v2 | |
| with: | |
| path: site | |
| - name: Deploy to GitHub Pages | |
| id: deployment | |
| uses: actions/deploy-pages@v3 |