dev/msa-django-ansible
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
4df3fafe18370bcc440715b5fecadc5505f9da31
msa-django-ansible/.github/workflows/build.yaml
icurfer 4df3fafe18
Some checks failed
Build And Test / build-and-push (push) Failing after 2m17s
Details
verifier: private.pem 의존 제거 + CI trigger 표준화 
- settings.py: ISTIO_JWT 모드에서 verifier는 public.pem만 로드
  (기존 코드가 무조건 private.pem 읽어 Secret 미생성 시 크래시)
- version 파치 증가
- CI 트리거를 version 파일 변경 시로 제한 (이미지 태그 불변성 보장)

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-04-19 01:06:24 +09:00

78 lines
2.1 KiB
YAML
Raw Blame History

name: Build And Test
run-name: ${{ gitea.actor }} is runs ci pipeline
on:
push:
branches: [ "main" ]
paths:
- 'version'
pull_request:
branches: [ "main" ]
paths:
- 'version'
# paths-ignore:
# - LICENCE
# - 'docs/**'
# - 'helm/**'
jobs:
build-and-push:
runs-on: ubuntu-latest
steps:
- name: checkout source code
uses: actions/checkout@v3
- name: Retrieve version # tag version
id: img-ver
uses: juliangruber/read-file-action@v1
with:
path: ./version
- name: Install Docker // Docker 설치
run: |
curl -fsSL https://get.docker.com -o get-docker.sh
sh get-docker.sh
if: runner.os == 'Linux'
- name: Set up Docker Buildx
# uses: https://github.com/docker/setup-buildx-action@v1
uses: docker/setup-buildx-action@v1
- name: Login to Registry
run: docker login -u ${{ secrets.DOCKER_ID }} -p ${{ secrets.DOCKER_PW }} https://harbor.icurfer.com
- name: build
run: docker build -t harbor.icurfer.com/msa-demo/msa-django-ansible:${{ steps.img-ver.outputs.content }} .
- name: Push to Docker
run: docker push harbor.icurfer.com/msa-demo/msa-django-ansible:${{ steps.img-ver.outputs.content }}
## pre cd
- name: Setup Kustomize
uses: yokawasa/action-setup-kube-tools@v0.9.2
with:
kustomize: "3.7.0"
- name: Checkout kustomize repository
uses: actions/checkout@v3
with:
repository: "dev/cd-msa-django-ansible"
ref: main
token: ${{ secrets.ACTION_TOKEN }}
path: cd-msa-django-ansible
- name: Update Kubernetes resources
run: |
cd cd-msa-django-ansible/overlays/dev/
kustomize edit set image harbor.icurfer.com/msa-demo/msa-django-ansible:${{ steps.img-ver.outputs.content }}
cat kustomization.yaml
## cd commit
- name: Commit files
run: |
cd cd-msa-django-ansible
git config --global user.email "icurfer@gmail.com"
git config --global user.name "icurfer"
git commit -am "Update image tag"
git push -u origin main
Reference in New Issue View Git Blame Copy Permalink