builder/.forgejo/workflows/build.yaml

on: [push]
env:
  REGISTRY: forge.hornwitser.no
  REGISTRY_IMAGE: forge.hornwitser.no/hornwitser/builder:${{ github.ref_name }}

jobs:
  build:
    runs-on: debian
    steps:
      -
        name: Install and configure dependencies
        run: |
          apt-get update
          apt-get install -y --no-install-recommends \
            buildah \
            ca-certificates \
            containers-storage \
            crun \
            git \
            netavark \
          ;
          shared=/var/lib/shared/storage
          sed /usr/share/containers/storage.conf \
            -e "/^additionalimagestores/a"'\
            '"\"$shared\"" \
          > /etc/containers/storage.conf
      -
        name: Checkout repository
        run: |
          git config --global credential.helper store
          echo "https://runner:${{ secrets.GITHUB_TOKEN }}@$(echo "${{ github.server_url }}" | cut -b 9-)" > ~/.git-credentials
          git clone --branch ${{ github.ref_name }} ${{ github.server_url }}/${{ github.repository }} ${{ github.workspace }}
      -
        name: Authenticate with registry
        run: |
          echo "${{ secrets.REGISTRY_TOKEN }}" | buildah login ${{ env.REGISTRY }} --username runner --password-stdin
      -
        name: Build and push
        run: |
          export BUILDAH_ISOLATION=chroot
          export _BUILDAH_STARTED_IN_USERNS=""
          ${{ github.workspace }}/builder.sh ${{ env.REGISTRY_IMAGE }}
          buildah push ${{ env.REGISTRY_IMAGE }}
Add forgejo workflow to build image 2024-07-15 22:05:19 +02:00			`on: [push]`
			`env:`
Test buildah builder 2025-05-16 17:42:27 +02:00			`REGISTRY: forge.hornwitser.no`
wip 2025-05-17 21:23:19 +02:00			`REGISTRY_IMAGE: forge.hornwitser.no/hornwitser/builder:${{ github.ref_name }}`
Add forgejo workflow to build image 2024-07-15 22:05:19 +02:00
			`jobs:`
			`build:`
Switch to debian and setup buildah 2025-05-17 21:01:50 +02:00			`runs-on: debian`
Add forgejo workflow to build image 2024-07-15 22:05:19 +02:00			`steps:`
Avoid circular dependency in build script Use the node image and install docker onto it in the CI pipeline building the builder image to avoid a circular dependency loop of requiring the builder image in order to build it. 2024-08-02 13:14:43 +02:00			`-`
Switch to debian and setup buildah 2025-05-17 21:01:50 +02:00			`name: Install and configure dependencies`
Avoid circular dependency in build script Use the node image and install docker onto it in the CI pipeline building the builder image to avoid a circular dependency loop of requiring the builder image in order to build it. 2024-08-02 13:14:43 +02:00			`run: \|`
Update package index 2025-05-17 21:02:57 +02:00			`apt-get update`
Add fuse-overlay-fs 2025-05-17 21:07:53 +02:00			`apt-get install -y --no-install-recommends \`
			`buildah \`
			`ca-certificates \`
			`containers-storage \`
try adding crun 2025-05-17 22:55:09 +02:00			`crun \`
Add fuse-overlay-fs 2025-05-17 21:07:53 +02:00			`git \`
Add netavark 2025-05-17 21:15:55 +02:00			`netavark \`
Add fuse-overlay-fs 2025-05-17 21:07:53 +02:00			`;`
use /var/lib/shared/storage for shared images 2025-05-18 17:01:57 +02:00			`shared=/var/lib/shared/storage`
Switch to debian and setup buildah 2025-05-17 21:01:50 +02:00			`sed /usr/share/containers/storage.conf \`
Setup shared image stores 2025-05-18 16:30:39 +02:00			`-e "/^additionalimagestores/a"'\`
			`'"\"$shared\"" \`
Switch to debian and setup buildah 2025-05-17 21:01:50 +02:00			`> /etc/containers/storage.conf`
Add forgejo workflow to build image 2024-07-15 22:05:19 +02:00			`-`
drop node dependency 2025-05-16 18:53:29 +02:00			`name: Checkout repository`
			`run: \|`
add credentials 2025-05-16 19:08:29 +02:00			`git config --global credential.helper store`
Remove redundant REGISTRY_USERNAME secret 2025-05-16 19:15:16 +02:00			`echo "https://runner:${{ secrets.GITHUB_TOKEN }}@$(echo "${{ github.server_url }}" \| cut -b 9-)" > ~/.git-credentials`
drop node dependency 2025-05-16 18:53:29 +02:00			`git clone --branch ${{ github.ref_name }} ${{ github.server_url }}/${{ github.repository }} ${{ github.workspace }}`
Test buildah builder 2025-05-16 17:42:27 +02:00			`-`
			`name: Authenticate with registry`
			`run: \|`
Remove redundant REGISTRY_USERNAME secret 2025-05-16 19:15:16 +02:00			`echo "${{ secrets.REGISTRY_TOKEN }}" \| buildah login ${{ env.REGISTRY }} --username runner --password-stdin`
Add forgejo workflow to build image 2024-07-15 22:05:19 +02:00			`-`
wip 2025-05-16 17:50:14 +02:00			`name: Build and push`
			`run: \|`
set isolation 2025-05-17 21:46:54 +02:00			`export BUILDAH_ISOLATION=chroot`
wip 2025-05-17 22:18:27 +02:00			`export _BUILDAH_STARTED_IN_USERNS=""`
Revert run inside a user namespace 2025-05-17 21:36:06 +02:00			`${{ github.workspace }}/builder.sh ${{ env.REGISTRY_IMAGE }}`
wip 2025-05-16 17:50:14 +02:00			`buildah push ${{ env.REGISTRY_IMAGE }}`