ci:简化 GitHub Actions 工作流输出

-移除了不必要的输出项，只保留版本号 - 更新了 yq 命令和提交信息中版本号的引用
ci:优化 Docker 发布工作流
2025-01-21 21:46:29 +08:00 · 2025-01-21 21:37:15 +08:00 · 2025-01-21 21:01:53 +08:00 · 2025-01-21 20:49:43 +08:00 · 2025-01-21 20:49:33 +08:00 · 2025-01-21 20:38:42 +08:00
1 changed files with 42 additions and 3 deletions
--- a/.github/workflows/docker-publish.yml
+++ b/.github/workflows/docker-publish.yml
@ -16,7 +16,7 @@ on:
 env:
  # Use docker.io for Docker Hub if empty
  REGISTRY: ghcr.io
-  REGISTRY2: git.suyiiyii.top
+  REGISTRY2: registry.cn-shenzhen.aliyuncs.com
  # github.repository as <account>/<repo>
  IMAGE_NAME: ${{ github.repository }}

@ -63,6 +63,13 @@ jobs:
          username: ${{ github.actor }}
          password: ${{ secrets.GITHUB_TOKEN }}

+      - name: Get current date and commit ID
+        id: vars
+        run: |
+          echo "DATE=$(date +'%y%m%d')" >> $GITHUB_ENV
+          echo "COMMIT=$(git rev-parse --short HEAD)" >> $GITHUB_ENV
+      
+
      # Extract metadata (tags, labels) for Docker
      # https://github.com/docker/metadata-action
      - name: Extract Docker metadata
@ -70,6 +77,7 @@ jobs:
        uses: docker/metadata-action@96383f45573cb7f253c731d3b3ab81c87ef81934 # v5.0.0
        with:
          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}-${{ matrix.service }}
+          tags: ${{ env.DATE }}-${{ env.COMMIT }}

      # Build and push Docker image with Buildx (don't push on PR)
      # https://github.com/docker/build-push-action
@ -92,8 +100,8 @@ jobs:
        uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0
        with:
          registry: ${{ env.REGISTRY2 }}
-          username: ${{ github.actor }}
-          password: ${{ secrets.GITEATOKEN }}
+          username: ${{ secrets.ALI_REG_USERNAME }}
+          password: ${{ secrets.ALI_REG_PASSWORD }}

      # Extract metadata (tags, labels) for Docker
      # https://github.com/docker/metadata-action
@ -102,6 +110,7 @@ jobs:
        uses: docker/metadata-action@96383f45573cb7f253c731d3b3ab81c87ef81934 # v5.0.0
        with:
          images: ${{ env.REGISTRY2 }}/${{ env.IMAGE_NAME }}-${{ matrix.service }}
+          tags: ${{ env.DATE }}-${{ env.COMMIT }}

      # Build and push Docker image with Buildx (don't push on PR)
      # https://github.com/docker/build-push-action
@ -130,3 +139,33 @@ jobs:
        # This step uses the identity token to provision an ephemeral certificate
        # against the sigstore community Fulcio instance.
        run: echo "${TAGS}" | xargs -I {} cosign sign --yes {}@${DIGEST}
+    outputs:
+      version: ${{ steps.meta.outputs.version }}
+
+  update-manifest:
+    runs-on: ubuntu-latest
+    needs: [ "build" ]
+    permissions:
+      contents: write
+    steps:
+      - name: Checkout manifest
+        if: github.event_name == 'push'
+        uses: actions/checkout@v4
+        with:
+          ref: manifest
+          token: ${{ secrets.GITHUBTOKEN }}
+      - name: Update manifest
+        if: github.event_name == 'push'
+        uses: mikefarah/yq@master
+        with:
+          cmd: yq eval '.tag = "${{ needs.build.outputs.version }}"' -i values.yaml
+      - name: Git Auto Commit
+        if: github.event_name == 'push'
+        uses: stefanzweifel/git-auto-commit-action@v5.0.1
+        with:
+          commit_message: "Update deployment image tag to ${{ needs.build.outputs.version }}"
+          branch: manifest
+          commit_user_name: "github-actions[bot]"
+          commit_user_email: "github-actions[bot]@users.noreply.github.com"
+          commit_author: "github-actions[bot] <github-actions[bot]@users.noreply.github.com>"
+
Author	SHA1	Message	Date
suyiiyii	802e6498c8	ci:简化 GitHub Actions 工作流输出 -移除了不必要的输出项，只保留版本号 - 更新了 yq 命令和提交信息中版本号的引用	2025-01-21 21:46:29 +08:00
suyiiyii	5cae75ce26	ci:优化 Docker 发布工作流 - 移除了不必要的空行 - 在 cosign sign步骤添加了输出变量 - 优化了 update-manifest 步骤的 needs 参数格式	2025-01-21 21:37:15 +08:00
suyiiyii	1f60d18316	ci: 更新 Docker 镜像标签变量引用 - 修正 yq 命令中标签值的引用，使用正确的变量 ${{ needs.build.outputs.meta.outputs.version }} - 更新 Git 自动提交消息中的变量引用，确保提交信息反映正确的镜像标签	2025-01-21 21:01:53 +08:00
suyiiyii	4116fc71ef	ci: 更新 Docker 镜像发布配置 - 将 REGISTRY2 变量从 git.suyiiyii.top 修改为 registry.cn-shenzhen.aliyuncs.com - 更新登录 REGISTRY2 所需的用户名和密码环境变量	2025-01-21 20:49:43 +08:00
suyiiyii	2b75a2f97a	ci:修正 yq命令中标签值的引用- 将 yq 命令中的 '${{ needs.build.outputs.meta.outputs.tags }}' 修改为 '${{ needs.build.steps.meta.outputs.tags }}'- 此修改解决了标签值引用错误导致的问题	2025-01-21 20:49:33 +08:00
suyiiyii	7a979cd1a0	ci(docker): 为 manifest 更新操作添加 GITHUB_TOKEN 在更新 manifest 时添加 GITHUB_TOKEN以解决权限问题。这个改动解决了在没有适当权限时无法成功更新 manifest 的问题。	2025-01-21 20:38:42 +08:00
suyiiyii	3e7652eeb2	ci:为 update-manifest job 添加仓库写权限 - 在 GitHub Actions 工作流中为 update-manifest job 添加 contents: write权限 - 这个修改是为了确保 job 能够正确更新仓库中的 manifests	2025-01-21 20:28:24 +08:00
suyiiyii	14ad5aba68	ci: 更新 Docker 发布流程和镜像标签 - 在 Docker 发布流程中添加 update-manifest步骤 - 使用 yq 更新 values.yaml 中的镜像标签- 自动提交更新后的 manifest	2025-01-21 20:22:42 +08:00
suyiiyii	0eb6f1d6e7	ci: 更新 Docker 镜像构建和发布流程 - 添加日期和提交 ID 环境变量，用于镜像标签 - 在 Docker 元数据提取步骤中添加标签参数 - 更新 Cosign签名步骤的输出 - 新增在推送事件后自动更新 manifest 分支的步骤	2025-01-21 20:16:42 +08:00