diff --git a/.forgejo/workflows/container.yml b/.forgejo/workflows/container.yml index 554b2e9..babda4d 100644 --- a/.forgejo/workflows/container.yml +++ b/.forgejo/workflows/container.yml @@ -4,9 +4,6 @@ on: workflow_dispatch: {} push: {} -permissions: - packages: write - jobs: build-container: name: Build Container @@ -14,13 +11,27 @@ jobs: container: image: ghcr.io/osscontainertools/kaniko:alpine steps: - - name: Install NodeJS for actions compatibility - run: apk add --no-cache nodejs + - name: Install required system packages compatibility + run: apk add --no-cache nodejs docker-cli + + + - name: Login to Container Registry (prod-only) + if: ${{ forgejo.ref_name == 'main' }} + uses: docker/login-action@v3 + with: + registry: git.hamburg.ccc.de + username: forgejo-actions + password: ${{ secrets.PACKAGES_TOKEN }} + - name: Checkout source code uses: actions/checkout@v6 - - name: Login to container registry (prod only) - if: ${{ forgejo.ref_name == 'main' }} - run: /kaniko/executor login --username="forgejo-actions" --password="${{ forgejo.token }}" git.hamburg.ccc.de + + # - name: Login to container registry (prod only) + # if: ${{ forgejo.ref_name == 'main' }} + # run: /kaniko/executor login --username="forgejo-actions" --password="${{ secrets.PACKAGES_TOKEN }}" git.hamburg.ccc.de + + - run: cat /root/.docker/config.json + - name: Build Container env: KANIKO_NO_PUSH: ${{ forgejo.ref_name != 'main' }} @@ -28,7 +39,6 @@ jobs: --dockerfile="${{forgejo.workspace }}/Containerfile" --context="dir://${{ forgejo.workspace }}" --destination=git.hamburg.ccc.de/ccchh/dooris:latest - --credential-helpers=env --no-push-cache --annotation=org.opencontainers.image.ref.name=dooris --annotation=org.opencontainers.image.url=${{ forgejo.server_url }}/${{ forgejo.repository }}