-
Notifications
You must be signed in to change notification settings - Fork 14
105 lines (89 loc) · 3.88 KB
/
build_docker_image.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
---
name: Deploy Docker Image
on:
push:
branches:
- main
paths:
- 'renv/profiles/**/renv.lock'
workflow_dispatch: # give possibility to run it manually
permissions: write-all
env:
REGISTRY: ghcr.io
concurrency:
group: deploy-docker-image-${{ github.event.pull_request.number || github.ref }}
cancel-in-progress: true
jobs:
get_renv_list:
runs-on: ubuntu-latest
outputs:
matrix: ${{ steps.matrix.outputs.renv }}
steps:
- name: Checkout repo
uses: actions/checkout@v3
with:
fetch-depth: 2 # "2" -> To retrieve the preceding commit.
- name: Get changed files in renv/profiles
id: changed-files
uses: tj-actions/changed-files@v41
with:
files: renv/profiles/**/renv.lock
# TODO: what to do with renv_legacy ?
- name: Get Updated renv # note: for case schedules job, we update every docker images, and for renv.lock files updates we only update modified renv.lock versions
id: matrix
run: |
if [[ "${{github.event_name}}" == "schedule" || "${{github.event_name}}" == "workflow_dispatch" ]]
then
renv_list=$(find renv/profiles | grep renv.lock )
else
renv_list="${{ steps.changed-files.outputs.all_changed_files }}"
fi
renv_list=$(echo $renv_list | sed 's/ /", "/g')
echo "renv=[\"$renv_list\"]" >> $GITHUB_OUTPUT
deploy-image:
needs: [ get_renv_list ]
runs-on: ubuntu-latest
strategy:
fail-fast: false # if one of the job "deploy-image" fails, the other parallel jobs will just continue
matrix:
value: ${{ fromJson(needs.get_renv_list.outputs.matrix) }}
# Token permissions
permissions:
contents: read
packages: write
steps:
- name: Checkout repo
uses: actions/checkout@v3
with:
fetch-depth: 0
- name: Print message
run: |
echo "updating docker image for renv ${{ matrix.value }}"
- name: Set image specs
id: image_specs
run: |
package_name=$(grep "Package:" DESCRIPTION | awk '{print $NF}')
r_version=$(basename $(dirname ${{ matrix.value }})) # TODO: check here if legacy renv (if yes, delete _legacy suffix and add _legacy suffix to docker im?)
echo "r_version=$r_version" >> $GITHUB_OUTPUT
echo "image_name=$package_name-$r_version" >> $GITHUB_OUTPUT
renv=$(echo "${{ matrix.value }}" | tr -d '"')
echo "renv_lock_path=$renv" >> $GITHUB_OUTPUT
if [ "$r_version" = "4.3" ]; then
echo "platforms=linux/amd64,linux/arm64" >> $GITHUB_OUTPUT
else
echo "platforms=linux/amd64" >> $GITHUB_OUTPUT
fi
- name: Call deploy docker image action for every renv
uses: insightsengineering/r-image-creator@v1
with:
image-name: "${{ steps.image_specs.outputs.image_name }}"
tag-latest: true
base-image: "rocker/rstudio:${{ steps.image_specs.outputs.r_version }}"
sysdeps: qpdf,libxt-dev,curl,npm,libicu-dev,libcurl4-openssl-dev,libssl-dev,make,zlib1g-dev,libfontconfig1-dev,libfreetype6-dev,libfribidi-dev,libharfbuzz-dev,libjpeg-dev,libpng-dev,libtiff-dev,pandoc,libxml2-dev,libgit2-dev,libgit2-dev,jq
renv-lock-file: "${{ steps.image_specs.outputs.renv_lock_path }}"
repository-owner: ${{ github.repository_owner }}
repo-user: ${{ github.actor }}
repo-token: "${{ secrets.GITHUB_TOKEN }}"
platforms: "${{ steps.image_specs.outputs.platforms }}"
# note: in case of 403 error when pushing to ghcr : link current repo to the given package registry - https://github.com/docker/build-push-action/issues/687
# (got to https://github.com/<user name>?tab=packages to go to packages settings) and there https://github.com/users/<user name>/packages/container/admiralci-4.0/settings