From 1eca9841675fde50a229f6272918e4bb83dfa6d0 Mon Sep 17 00:00:00 2001 From: c6ristian Date: Mon, 29 Jul 2024 19:21:50 +0200 Subject: [PATCH 01/19] nextcloud: try a .keep file to save the folder --- nextcloud/Containerfile | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/nextcloud/Containerfile b/nextcloud/Containerfile index 5a3c30d..ac8eafb 100644 --- a/nextcloud/Containerfile +++ b/nextcloud/Containerfile @@ -4,7 +4,8 @@ FROM docker.io/library/nextcloud:${TAG} RUN apt-get update \ && apt-get install -y supervisor \ && rm -rf /var/lib/apt/lists/* \ - && mkdir /var/log/supervisord /var/run/supervisord + && mkdir -p /var/log/supervisord /var/run/supervisord \ + && touch /var/log/supervisord/.keep /var/run/supervisord/.keep COPY supervisord.conf / From 88569e05f515cb06f2898b297e150c6988da8c1c Mon Sep 17 00:00:00 2001 From: c6ristian Date: Mon, 29 Jul 2024 19:46:31 +0200 Subject: [PATCH 02/19] COPY .keep --- nextcloud/.keep | 0 nextcloud/Containerfile | 6 ++++-- 2 files changed, 4 insertions(+), 2 deletions(-) create mode 100644 nextcloud/.keep diff --git a/nextcloud/.keep b/nextcloud/.keep new file mode 100644 index 0000000..e69de29 diff --git a/nextcloud/Containerfile b/nextcloud/Containerfile index ac8eafb..583bb1c 100644 --- a/nextcloud/Containerfile +++ b/nextcloud/Containerfile @@ -4,8 +4,10 @@ FROM docker.io/library/nextcloud:${TAG} RUN apt-get update \ && apt-get install -y supervisor \ && rm -rf /var/lib/apt/lists/* \ - && mkdir -p /var/log/supervisord /var/run/supervisord \ - && touch /var/log/supervisord/.keep /var/run/supervisord/.keep + && mkdir -p /var/log/supervisord /var/run/supervisord + +COPY .keep /var/log/supervisord/ +COPY .keep /var/run/supervisord/ COPY supervisord.conf / From cc2f0cdc8109083f24dc9c0491b6870bf964f92e Mon Sep 17 00:00:00 2001 From: c6ristian Date: Mon, 29 Jul 2024 19:53:52 +0200 Subject: [PATCH 03/19] no keep var log --- nextcloud/Containerfile | 1 - 1 file changed, 1 deletion(-) diff --git a/nextcloud/Containerfile b/nextcloud/Containerfile index 583bb1c..0b12d28 100644 --- a/nextcloud/Containerfile +++ b/nextcloud/Containerfile @@ -6,7 +6,6 @@ RUN apt-get update \ && rm -rf /var/lib/apt/lists/* \ && mkdir -p /var/log/supervisord /var/run/supervisord -COPY .keep /var/log/supervisord/ COPY .keep /var/run/supervisord/ COPY supervisord.conf / From 2fd26d6f6f6ae0fdb2991561de5cf71763904853 Mon Sep 17 00:00:00 2001 From: c6ristian Date: Mon, 29 Jul 2024 19:55:52 +0200 Subject: [PATCH 04/19] no keep var run --- nextcloud/Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/nextcloud/Containerfile b/nextcloud/Containerfile index 0b12d28..8cc4fe2 100644 --- a/nextcloud/Containerfile +++ b/nextcloud/Containerfile @@ -6,7 +6,7 @@ RUN apt-get update \ && rm -rf /var/lib/apt/lists/* \ && mkdir -p /var/log/supervisord /var/run/supervisord -COPY .keep /var/run/supervisord/ +#COPY .keep /var/run/supervisord/ COPY supervisord.conf / From 59d03f97a3f429e2035da30c079fd6c5277d9eec Mon Sep 17 00:00:00 2001 From: c6ristian Date: Mon, 29 Jul 2024 20:15:58 +0200 Subject: [PATCH 05/19] explain why the COPY step exists --- nextcloud/Containerfile | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/nextcloud/Containerfile b/nextcloud/Containerfile index 8cc4fe2..d139a4d 100644 --- a/nextcloud/Containerfile +++ b/nextcloud/Containerfile @@ -6,10 +6,11 @@ RUN apt-get update \ && rm -rf /var/lib/apt/lists/* \ && mkdir -p /var/log/supervisord /var/run/supervisord -#COPY .keep /var/run/supervisord/ +# We need to copy a file to the supervisord folder in /var/run so it exists when the container starts. +COPY .keep /var/run/supervisord/ COPY supervisord.conf / ENV NEXTCLOUD_UPDATE=1 -CMD ["/usr/bin/supervisord", "-c", "/supervisord.conf"] +CMD ["/usr/bin/supervisord", "-c", "/supervisord.conf"] \ No newline at end of file From 99cce09ef64ab7093f0e8b2f3d7ea2e29d774247 Mon Sep 17 00:00:00 2001 From: c6ristian Date: Mon, 29 Jul 2024 21:28:58 +0200 Subject: [PATCH 06/19] Squashed commit of the following: commit 59d03f97a3f429e2035da30c079fd6c5277d9eec Author: c6ristian Date: Mon Jul 29 20:15:58 2024 +0200 explain why the COPY step exists commit 2fd26d6f6f6ae0fdb2991561de5cf71763904853 Author: c6ristian Date: Mon Jul 29 19:55:52 2024 +0200 no keep var run commit cc2f0cdc8109083f24dc9c0491b6870bf964f92e Author: c6ristian Date: Mon Jul 29 19:53:52 2024 +0200 no keep var log commit 88569e05f515cb06f2898b297e150c6988da8c1c Author: c6ristian Date: Mon Jul 29 19:46:31 2024 +0200 COPY .keep commit 1eca9841675fde50a229f6272918e4bb83dfa6d0 Author: c6ristian Date: Mon Jul 29 19:21:50 2024 +0200 nextcloud: try a .keep file to save the folder --- nextcloud/.keep | 0 nextcloud/Containerfile | 7 +++++-- 2 files changed, 5 insertions(+), 2 deletions(-) create mode 100644 nextcloud/.keep diff --git a/nextcloud/.keep b/nextcloud/.keep new file mode 100644 index 0000000..e69de29 diff --git a/nextcloud/Containerfile b/nextcloud/Containerfile index 5a3c30d..d139a4d 100644 --- a/nextcloud/Containerfile +++ b/nextcloud/Containerfile @@ -4,10 +4,13 @@ FROM docker.io/library/nextcloud:${TAG} RUN apt-get update \ && apt-get install -y supervisor \ && rm -rf /var/lib/apt/lists/* \ - && mkdir /var/log/supervisord /var/run/supervisord + && mkdir -p /var/log/supervisord /var/run/supervisord + +# We need to copy a file to the supervisord folder in /var/run so it exists when the container starts. +COPY .keep /var/run/supervisord/ COPY supervisord.conf / ENV NEXTCLOUD_UPDATE=1 -CMD ["/usr/bin/supervisord", "-c", "/supervisord.conf"] +CMD ["/usr/bin/supervisord", "-c", "/supervisord.conf"] \ No newline at end of file From c9f1ead4188d2e3e85a1ef014423ae95d0fe6b2d Mon Sep 17 00:00:00 2001 From: c6ristian Date: Mon, 29 Jul 2024 21:51:01 +0200 Subject: [PATCH 07/19] Add Nextcloud image to README.md --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index 0daf4ba..ade5424 100644 --- a/README.md +++ b/README.md @@ -11,3 +11,4 @@ Tools in use: ## Images - `git.hamburg.ccc.de/CCCHH/oci-images/keycloak` +- `git.hamburg.ccc.de/CCCHH/oci-images/nextcloud` \ No newline at end of file From 6783e974b91464e5b598461496272208ab243636 Mon Sep 17 00:00:00 2001 From: c6ristian Date: Mon, 29 Jul 2024 22:20:59 +0200 Subject: [PATCH 08/19] keycloak: fix login theme for mobile --- keycloak/themes/ccchh/login/resources/css/ccchh/login.css | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/keycloak/themes/ccchh/login/resources/css/ccchh/login.css b/keycloak/themes/ccchh/login/resources/css/ccchh/login.css index ac10ab2..9a31b32 100644 --- a/keycloak/themes/ccchh/login/resources/css/ccchh/login.css +++ b/keycloak/themes/ccchh/login/resources/css/ccchh/login.css @@ -8,8 +8,7 @@ div.kc-logo-text { background: url("../../img/CCCHH.svg") no-repeat center center; background-size: contain; filter: invert(1); - height: 126px; - width: 600px; + height: 100px; } div.kc-logo-text span { From 2906ee45d815f65eda2965ac4d42a7c1c3a24428 Mon Sep 17 00:00:00 2001 From: Julian Schacher Date: Sat, 10 Aug 2024 19:16:52 +0200 Subject: [PATCH 09/19] organize the image publishing/tagging process better Every image gets pushed with a unique version-branch tag by default and then the version and latest tags get only tagged from the main branch and the main branch and the desired version respectively. --- .woodpecker/keycloak.yaml | 23 ++++++++++++++++++----- .woodpecker/nextcloud.yaml | 18 ++++++++++++++---- 2 files changed, 32 insertions(+), 9 deletions(-) diff --git a/.woodpecker/keycloak.yaml b/.woodpecker/keycloak.yaml index f98ad87..06eed66 100644 --- a/.woodpecker/keycloak.yaml +++ b/.woodpecker/keycloak.yaml @@ -28,6 +28,7 @@ steps: image: alpine commands: - mkdir /woodpecker/images + - name: build-image image: gcr.io/kaniko-project/executor entrypoint: @@ -38,6 +39,7 @@ steps: - --destination=${IMAGE_NAME}:${KEYCLOAK_VERSION} - --no-push - --tar-path=/woodpecker/images/keycloak.tar + - name: publish-image image: alpine secrets: @@ -45,16 +47,27 @@ steps: commands: - apk -u add crane - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN - - crane push /woodpecker/images/keycloak.tar $IMAGE_NAME:$KEYCLOAK_VERSION - - name: tag-branch-and-latest + - crane push /woodpecker/images/keycloak.tar $IMAGE_NAME:$KEYCLOAK_VERSION-$CI_COMMIT_BRANCH + + - name: tag-version image: alpine when: - branch: main - - evaluate: 'KEYCLOAK_VERSION == "25.0"' secrets: - GIT_API_TOKEN commands: - apk -u add crane - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN - - crane tag $IMAGE_NAME:$KEYCLOAK_VERSION $CI_COMMIT_BRANCH - - crane tag $IMAGE_NAME:$KEYCLOAK_VERSION latest + - crane tag $IMAGE_NAME:$KEYCLOAK_VERSION-$CI_COMMIT_BRANCH $KEYCLOAK_VERSION + + - name: tag-latest + image: alpine + when: + - branch: main + evaluate: 'KEYCLOAK_VERSION == "25.0"' + secrets: + - GIT_API_TOKEN + commands: + - apk -u add crane + - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN + - crane tag $IMAGE_NAME:$KEYCLOAK_VERSION-$CI_COMMIT_BRANCH latest diff --git a/.woodpecker/nextcloud.yaml b/.woodpecker/nextcloud.yaml index 36b4a19..feea22e 100644 --- a/.woodpecker/nextcloud.yaml +++ b/.woodpecker/nextcloud.yaml @@ -48,9 +48,20 @@ steps: commands: - apk -u add crane - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN - - crane push /woodpecker/images/nextcloud.tar $IMAGE_NAME:$NEXTCLOUD_VERSION + - crane push /woodpecker/images/nextcloud.tar $IMAGE_NAME:$NEXTCLOUD_VERSION-$CI_COMMIT_BRANCH - - name: tag-branch-and-latest + - name: tag-version + image: docker.io/library/alpine + when: + - branch: main + secrets: + - GIT_API_TOKEN + commands: + - apk -u add crane + - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN + - crane tag $IMAGE_NAME:$NEXTCLOUD_VERSION-$CI_COMMIT_BRANCH $NEXTCLOUD_VERSION + + - name: tag-latest image: docker.io/library/alpine when: - branch: main @@ -60,5 +71,4 @@ steps: commands: - apk -u add crane - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN - - crane tag $IMAGE_NAME:$NEXTCLOUD_VERSION $CI_COMMIT_BRANCH - - crane tag $IMAGE_NAME:$NEXTCLOUD_VERSION latest + - crane tag $IMAGE_NAME:$NEXTCLOUD_VERSION-$CI_COMMIT_BRANCH latest From a4a0af5d6540e55a5774c9d2f526e402d3ef1d41 Mon Sep 17 00:00:00 2001 From: Julian Schacher Date: Sat, 10 Aug 2024 20:39:10 +0200 Subject: [PATCH 10/19] penpot: introduce ci for building custom penpot images This is in preparation for building penpot images with custom patches applied. --- .woodpecker/penpot.yaml | 91 +++++++++++++++++++++++++++++++++++++++++ README.md | 5 ++- 2 files changed, 95 insertions(+), 1 deletion(-) create mode 100644 .woodpecker/penpot.yaml diff --git a/.woodpecker/penpot.yaml b/.woodpecker/penpot.yaml new file mode 100644 index 0000000..4ff29eb --- /dev/null +++ b/.woodpecker/penpot.yaml @@ -0,0 +1,91 @@ +when: + - event: push + path: + - 'penpot/**' + - '.woodpecker/penpot.yaml' + - event: cron + cron: daily + +# Manually set a workspace path, so we can use it literally, without using +# ${CI_WORKSPACE}, when running kaniko, since using ${CI_WORKSPACE} doesn't work. +# https://github.com/woodpecker-ci/woodpecker/issues/3982 +workspace: + path: src + +# Use matrix to set PENPOT_VERSION instead of setting the PENPOT_VERSION as an +# environment variable in the build-images step, since string substitution +# doesn't work for custom environment variables. +# https://github.com/woodpecker-ci/woodpecker/issues/3983 +# Also because global environment variables aren't a thing. +matrix: + PENPOT_VERSION: + - 2.1.2 + IMAGE_BASE_NAME: + - git.hamburg.ccc.de/ccchh/oci-images/penpot + IMAGE_TYPE: + - frontend + - backend + - exporter + +steps: + - name: setup-image-path + image: alpine + commands: + - mkdir /woodpecker/images + + - name: setup-penpot-repo + image: alpine + commands: + - apk -u add git curl + - git clone --branch $PENPOT_VERSION https://github.com/penpot/penpot.git /woodpecker/penpot + - cd /woodpecker/penpot + - git submodule update --init --recursive + # Get build system patch allowing for building images with kaniko. + # https://github.com/penpot/penpot/pull/4945 + # https://github.com/penpot/penpot/pull/4945/commits/752574bac789cc90cc218004bb9545cc6239895d + - curl https://github.com/penpot/penpot/commit/752574bac789cc90cc218004bb9545cc6239895d.patch > 0001-move-entire-image-build-process-into-Dockerfiles.patch + - git config user.name "Woodpecker" + - git config user.email "woodpecker@woodpecker.invalid" + - git am *.patch + + - name: build-image + image: gcr.io/kaniko-project/executor + entrypoint: + - /kaniko/executor + - --context=dir:///woodpecker/penpot + - --dockerfile=./docker/images/Dockerfile.${IMAGE_TYPE} + - --destination=${IMAGE_BASE_NAME}/${IMAGE_TYPE}:${PENPOT_VERSION} + - --no-push + - --tar-path=/woodpecker/images/penpot-${IMAGE_TYPE}.tar + + - name: publish-image + image: docker.io/library/alpine + secrets: + - GIT_API_TOKEN + commands: + - apk -u add crane + - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN + - crane push /woodpecker/images/penpot-$IMAGE_TYPE.tar $IMAGE_BASE_NAME/$IMAGE_TYPE:$PENPOT_VERSION-$CI_COMMIT_BRANCH + + - name: tag-version + image: docker.io/library/alpine + when: + - branch: main + secrets: + - GIT_API_TOKEN + commands: + - apk -u add crane + - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN + - crane tag $IMAGE_BASE_NAME/$IMAGE_TYPE:$PENPOT_VERSION-$CI_COMMIT_BRANCH $PENPOT_VERSION + + - name: tag-latest + image: docker.io/library/alpine + when: + - branch: main + evaluate: 'PENPOT_VERSION == "2.1.2"' + secrets: + - GIT_API_TOKEN + commands: + - apk -u add crane + - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN + - crane tag $IMAGE_BASE_NAME/$IMAGE_TYPE:$PENPOT_VERSION-$CI_COMMIT_BRANCH latest diff --git a/README.md b/README.md index ade5424..557f82b 100644 --- a/README.md +++ b/README.md @@ -11,4 +11,7 @@ Tools in use: ## Images - `git.hamburg.ccc.de/CCCHH/oci-images/keycloak` -- `git.hamburg.ccc.de/CCCHH/oci-images/nextcloud` \ No newline at end of file +- `git.hamburg.ccc.de/CCCHH/oci-images/nextcloud` +- `git.hamburg.ccc.de/CCCHH/oci-images/penpot/frontend` +- `git.hamburg.ccc.de/CCCHH/oci-images/penpot/backend` +- `git.hamburg.ccc.de/CCCHH/oci-images/penpot/exporter` From 98175014f99bf722405b0dcf64084b6b7ebb37cc Mon Sep 17 00:00:00 2001 From: Julian Schacher Date: Sat, 10 Aug 2024 20:40:03 +0200 Subject: [PATCH 11/19] penpot: add patch disallow. reg. with invite, if pass. login is disabled --- .woodpecker/penpot.yaml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/.woodpecker/penpot.yaml b/.woodpecker/penpot.yaml index 4ff29eb..9e79d1b 100644 --- a/.woodpecker/penpot.yaml +++ b/.woodpecker/penpot.yaml @@ -44,6 +44,10 @@ steps: # https://github.com/penpot/penpot/pull/4945 # https://github.com/penpot/penpot/pull/4945/commits/752574bac789cc90cc218004bb9545cc6239895d - curl https://github.com/penpot/penpot/commit/752574bac789cc90cc218004bb9545cc6239895d.patch > 0001-move-entire-image-build-process-into-Dockerfiles.patch + # Get patch disallowing registration with invitation token, when disable-login-with-password flag is set. + # https://github.com/penpot/penpot/issues/4975 + # https://github.com/june128/penpot/commit/f799da132bf5a51015859031f45154172fbf7cd0 + - curl https://github.com/june128/penpot/commit/f799da132bf5a51015859031f45154172fbf7cd0.patch > 0002-hotfix-dont-allow-registration-with-invite-if-password-login-is-disabled.patch - git config user.name "Woodpecker" - git config user.email "woodpecker@woodpecker.invalid" - git am *.patch From 8dbb9c64b3b25769ae86c0e93d7f482f82c0ed6f Mon Sep 17 00:00:00 2001 From: c6ristian Date: Fri, 4 Oct 2024 16:19:02 +0200 Subject: [PATCH 12/19] Build Keycloak image with version 26 --- .woodpecker/keycloak.yaml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/.woodpecker/keycloak.yaml b/.woodpecker/keycloak.yaml index 06eed66..b507779 100644 --- a/.woodpecker/keycloak.yaml +++ b/.woodpecker/keycloak.yaml @@ -20,6 +20,7 @@ workspace: matrix: KEYCLOAK_VERSION: - 25.0 + - 26.0 IMAGE_NAME: - git.hamburg.ccc.de/ccchh/oci-images/keycloak @@ -64,7 +65,7 @@ steps: image: alpine when: - branch: main - evaluate: 'KEYCLOAK_VERSION == "25.0"' + evaluate: 'KEYCLOAK_VERSION == "26.0"' secrets: - GIT_API_TOKEN commands: From 6023af9f0ffe06ddd23b19b9e3982ab316c5256c Mon Sep 17 00:00:00 2001 From: c6ristian Date: Thu, 31 Oct 2024 23:22:48 +0100 Subject: [PATCH 13/19] nextcloud: Remove version 28 add version 30 --- .woodpecker/nextcloud.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.woodpecker/nextcloud.yaml b/.woodpecker/nextcloud.yaml index feea22e..5aa788f 100644 --- a/.woodpecker/nextcloud.yaml +++ b/.woodpecker/nextcloud.yaml @@ -19,8 +19,8 @@ workspace: # Also because global environment variables aren't a thing. matrix: NEXTCLOUD_VERSION: - - 28 - 29 + - 30 IMAGE_NAME: - git.hamburg.ccc.de/ccchh/oci-images/nextcloud From 8eb83415d9c8420d804050a7310126f223c60456 Mon Sep 17 00:00:00 2001 From: c6ristian Date: Sun, 26 Jan 2025 03:17:11 +0100 Subject: [PATCH 14/19] keycloak: drop version 25.0 and add 26.1 --- .woodpecker/keycloak.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.woodpecker/keycloak.yaml b/.woodpecker/keycloak.yaml index b507779..0057312 100644 --- a/.woodpecker/keycloak.yaml +++ b/.woodpecker/keycloak.yaml @@ -19,8 +19,8 @@ workspace: # Also because global environment variables aren't a thing. matrix: KEYCLOAK_VERSION: - - 25.0 - 26.0 + - 26.1 IMAGE_NAME: - git.hamburg.ccc.de/ccchh/oci-images/keycloak From d0b7c324749e71d3bf376e74dde0800de95ac282 Mon Sep 17 00:00:00 2001 From: c6ristian Date: Tue, 20 May 2025 20:11:59 +0200 Subject: [PATCH 15/19] updates ci files --- .woodpecker/keycloak.yaml | 16 ++++++++++------ .woodpecker/nextcloud.yaml | 18 +++++++++++------- 2 files changed, 21 insertions(+), 13 deletions(-) diff --git a/.woodpecker/keycloak.yaml b/.woodpecker/keycloak.yaml index 0057312..dc64f11 100644 --- a/.woodpecker/keycloak.yaml +++ b/.woodpecker/keycloak.yaml @@ -21,6 +21,7 @@ matrix: KEYCLOAK_VERSION: - 26.0 - 26.1 + - 26.2 IMAGE_NAME: - git.hamburg.ccc.de/ccchh/oci-images/keycloak @@ -43,8 +44,9 @@ steps: - name: publish-image image: alpine - secrets: - - GIT_API_TOKEN + environment: + GIT_API_TOKEN: + from_secret: GIT_API_TOKEN commands: - apk -u add crane - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN @@ -54,8 +56,9 @@ steps: image: alpine when: - branch: main - secrets: - - GIT_API_TOKEN + environment: + GIT_API_TOKEN: + from_secret: GIT_API_TOKEN commands: - apk -u add crane - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN @@ -66,8 +69,9 @@ steps: when: - branch: main evaluate: 'KEYCLOAK_VERSION == "26.0"' - secrets: - - GIT_API_TOKEN + environment: + GIT_API_TOKEN: + from_secret: GIT_API_TOKEN commands: - apk -u add crane - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN diff --git a/.woodpecker/nextcloud.yaml b/.woodpecker/nextcloud.yaml index 5aa788f..a9b3fa2 100644 --- a/.woodpecker/nextcloud.yaml +++ b/.woodpecker/nextcloud.yaml @@ -21,6 +21,7 @@ matrix: NEXTCLOUD_VERSION: - 29 - 30 + - 31 IMAGE_NAME: - git.hamburg.ccc.de/ccchh/oci-images/nextcloud @@ -43,8 +44,9 @@ steps: - name: publish-image image: docker.io/library/alpine - secrets: - - GIT_API_TOKEN + environment: + GIT_API_TOKEN: + from_secret: GIT_API_TOKEN commands: - apk -u add crane - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN @@ -54,8 +56,9 @@ steps: image: docker.io/library/alpine when: - branch: main - secrets: - - GIT_API_TOKEN + environment: + GIT_API_TOKEN: + from_secret: GIT_API_TOKEN commands: - apk -u add crane - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN @@ -65,9 +68,10 @@ steps: image: docker.io/library/alpine when: - branch: main - evaluate: 'NEXTCLOUD_VERSION == "28"' - secrets: - - GIT_API_TOKEN + evaluate: 'NEXTCLOUD_VERSION == "29"' + environment: + GIT_API_TOKEN: + from_secret: GIT_API_TOKEN commands: - apk -u add crane - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN From f4bfd374f92bbe817f672d4454cf3d9e78f5a2bb Mon Sep 17 00:00:00 2001 From: c6ristian Date: Mon, 2 Jun 2025 19:24:35 +0200 Subject: [PATCH 16/19] alertmanager-ntfy --- .woodpecker/alertmanager-ntfy.yaml | 73 ++++++++++++++++++++++++++++++ alertmanager-ntfy/Containerfile | 14 ++++++ 2 files changed, 87 insertions(+) create mode 100644 .woodpecker/alertmanager-ntfy.yaml create mode 100644 alertmanager-ntfy/Containerfile diff --git a/.woodpecker/alertmanager-ntfy.yaml b/.woodpecker/alertmanager-ntfy.yaml new file mode 100644 index 0000000..d92a169 --- /dev/null +++ b/.woodpecker/alertmanager-ntfy.yaml @@ -0,0 +1,73 @@ +when: + - event: push + path: + - 'alertmanager-ntfy/**' + - '.woodpecker/alertmanager-ntfy.yaml' + - event: cron + cron: daily + +# Manually set a workspace path, so we can use it literally, without using +# ${CI_WORKSPACE}, when running kaniko, since using ${CI_WORKSPACE} doesn't work. +# https://github.com/woodpecker-ci/woodpecker/issues/3982 +workspace: + path: src + +matrix: + ALERTMANAGER-NTFY_VERSION: + - 76d5f772f70d6915c89da00414c20009b03cc361 + IMAGE_NAME: + - git.hamburg.ccc.de/ccchh/oci-images/alertmanager-ntfy + +steps: + - name: setup + image: alpine + commands: + - apk -u add git + - mkdir /woodpecker/images + - git clone --revision=${ALERTMANAGER-NTFY_VERSION} https://github.com/alexbakker/alertmanager-ntfy.git + - ls + +# - name: build-image +# image: gcr.io/kaniko-project/executor +# entrypoint: +# - /kaniko/executor +# - --context=dir:///woodpecker/src/alertmanager-ntfy +# - --dockerfile=./Containerfile +# - --destination=${IMAGE_NAME}:${ALERTMANAGER-NTFY_VERSION} +# - --no-push +# - --tar-path=/woodpecker/images/alertmanager-ntfy.tar +# +# - name: publish-image +# image: alpine +# environment: +# GIT_API_TOKEN: +# from_secret: GIT_API_TOKEN +# commands: +# - apk -u add crane +# - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN +# - crane push /woodpecker/images/keycloak.tar $IMAGE_NAME:$ALERTMANAGER-NTFY_VERSION-$CI_COMMIT_BRANCH +# +# - name: tag-version +# image: alpine +# when: +# - branch: main +# environment: +# GIT_API_TOKEN: +# from_secret: GIT_API_TOKEN +# commands: +# - apk -u add crane +# - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN +# - crane tag $IMAGE_NAME:$ALERTMANAGER-NTFY_VERSION-$CI_COMMIT_BRANCH $ALERTMANAGER-NTFY_VERSION +# +# - name: tag-latest +# image: alpine +# when: +# - branch: main +# evaluate: 'KEYCLOAK_VERSION == "26.0"' +# environment: +# GIT_API_TOKEN: +# from_secret: GIT_API_TOKEN +# commands: +# - apk -u add crane +# - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN +# - crane tag $IMAGE_NAME:$ALERTMANAGER-NTFY_VERSION-$CI_COMMIT_BRANCH latest diff --git a/alertmanager-ntfy/Containerfile b/alertmanager-ntfy/Containerfile new file mode 100644 index 0000000..8f45f75 --- /dev/null +++ b/alertmanager-ntfy/Containerfile @@ -0,0 +1,14 @@ +ARG TAG=latest +FROM docker.io/golang:${TAG} as builder +ARG CGO_ENABLED=0 +WORKDIR /app + +COPY go.mod go.sum ./ +RUN go mod download +COPY . . + +RUN go build + +FROM scratch +COPY --from=builder /app/alertmanager-ntfy /alertmanager-ntfy +ENTRYPOINT ["/alertmanager-ntfy"] \ No newline at end of file From 1e323bfa923aac17a8b21bfb775e19017b868777 Mon Sep 17 00:00:00 2001 From: c6ristian Date: Tue, 24 Jun 2025 22:51:06 +0200 Subject: [PATCH 17/19] remove never used image build --- .woodpecker/alertmanager-ntfy.yaml | 73 ------------------------------ alertmanager-ntfy/Containerfile | 14 ------ 2 files changed, 87 deletions(-) delete mode 100644 .woodpecker/alertmanager-ntfy.yaml delete mode 100644 alertmanager-ntfy/Containerfile diff --git a/.woodpecker/alertmanager-ntfy.yaml b/.woodpecker/alertmanager-ntfy.yaml deleted file mode 100644 index d92a169..0000000 --- a/.woodpecker/alertmanager-ntfy.yaml +++ /dev/null @@ -1,73 +0,0 @@ -when: - - event: push - path: - - 'alertmanager-ntfy/**' - - '.woodpecker/alertmanager-ntfy.yaml' - - event: cron - cron: daily - -# Manually set a workspace path, so we can use it literally, without using -# ${CI_WORKSPACE}, when running kaniko, since using ${CI_WORKSPACE} doesn't work. -# https://github.com/woodpecker-ci/woodpecker/issues/3982 -workspace: - path: src - -matrix: - ALERTMANAGER-NTFY_VERSION: - - 76d5f772f70d6915c89da00414c20009b03cc361 - IMAGE_NAME: - - git.hamburg.ccc.de/ccchh/oci-images/alertmanager-ntfy - -steps: - - name: setup - image: alpine - commands: - - apk -u add git - - mkdir /woodpecker/images - - git clone --revision=${ALERTMANAGER-NTFY_VERSION} https://github.com/alexbakker/alertmanager-ntfy.git - - ls - -# - name: build-image -# image: gcr.io/kaniko-project/executor -# entrypoint: -# - /kaniko/executor -# - --context=dir:///woodpecker/src/alertmanager-ntfy -# - --dockerfile=./Containerfile -# - --destination=${IMAGE_NAME}:${ALERTMANAGER-NTFY_VERSION} -# - --no-push -# - --tar-path=/woodpecker/images/alertmanager-ntfy.tar -# -# - name: publish-image -# image: alpine -# environment: -# GIT_API_TOKEN: -# from_secret: GIT_API_TOKEN -# commands: -# - apk -u add crane -# - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN -# - crane push /woodpecker/images/keycloak.tar $IMAGE_NAME:$ALERTMANAGER-NTFY_VERSION-$CI_COMMIT_BRANCH -# -# - name: tag-version -# image: alpine -# when: -# - branch: main -# environment: -# GIT_API_TOKEN: -# from_secret: GIT_API_TOKEN -# commands: -# - apk -u add crane -# - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN -# - crane tag $IMAGE_NAME:$ALERTMANAGER-NTFY_VERSION-$CI_COMMIT_BRANCH $ALERTMANAGER-NTFY_VERSION -# -# - name: tag-latest -# image: alpine -# when: -# - branch: main -# evaluate: 'KEYCLOAK_VERSION == "26.0"' -# environment: -# GIT_API_TOKEN: -# from_secret: GIT_API_TOKEN -# commands: -# - apk -u add crane -# - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN -# - crane tag $IMAGE_NAME:$ALERTMANAGER-NTFY_VERSION-$CI_COMMIT_BRANCH latest diff --git a/alertmanager-ntfy/Containerfile b/alertmanager-ntfy/Containerfile deleted file mode 100644 index 8f45f75..0000000 --- a/alertmanager-ntfy/Containerfile +++ /dev/null @@ -1,14 +0,0 @@ -ARG TAG=latest -FROM docker.io/golang:${TAG} as builder -ARG CGO_ENABLED=0 -WORKDIR /app - -COPY go.mod go.sum ./ -RUN go mod download -COPY . . - -RUN go build - -FROM scratch -COPY --from=builder /app/alertmanager-ntfy /alertmanager-ntfy -ENTRYPOINT ["/alertmanager-ntfy"] \ No newline at end of file From 1f3e972fbd036a38131cefdf7d283780c31648f3 Mon Sep 17 00:00:00 2001 From: c6ristian Date: Sun, 29 Jun 2025 20:33:09 +0200 Subject: [PATCH 18/19] fix secrets --- .woodpecker/penpot.yaml | 15 +++++++++------ 1 file changed, 9 insertions(+), 6 deletions(-) diff --git a/.woodpecker/penpot.yaml b/.woodpecker/penpot.yaml index 9e79d1b..8cedcbe 100644 --- a/.woodpecker/penpot.yaml +++ b/.woodpecker/penpot.yaml @@ -64,8 +64,9 @@ steps: - name: publish-image image: docker.io/library/alpine - secrets: - - GIT_API_TOKEN + environment: + GIT_API_TOKEN: + from_secret: GIT_API_TOKEN commands: - apk -u add crane - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN @@ -75,8 +76,9 @@ steps: image: docker.io/library/alpine when: - branch: main - secrets: - - GIT_API_TOKEN + environment: + GIT_API_TOKEN: + from_secret: GIT_API_TOKEN commands: - apk -u add crane - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN @@ -87,8 +89,9 @@ steps: when: - branch: main evaluate: 'PENPOT_VERSION == "2.1.2"' - secrets: - - GIT_API_TOKEN + environment: + GIT_API_TOKEN: + from_secret: GIT_API_TOKEN commands: - apk -u add crane - crane auth login git.hamburg.ccc.de -u woodpecker -p $GIT_API_TOKEN From b722397a8be291c9dd8631092a4b22257d11111f Mon Sep 17 00:00:00 2001 From: c6ristian Date: Sun, 29 Jun 2025 20:34:53 +0200 Subject: [PATCH 19/19] do not build eol keycloak and nextcloud --- .woodpecker/keycloak.yaml | 1 - .woodpecker/nextcloud.yaml | 1 - 2 files changed, 2 deletions(-) diff --git a/.woodpecker/keycloak.yaml b/.woodpecker/keycloak.yaml index dc64f11..5c3433a 100644 --- a/.woodpecker/keycloak.yaml +++ b/.woodpecker/keycloak.yaml @@ -19,7 +19,6 @@ workspace: # Also because global environment variables aren't a thing. matrix: KEYCLOAK_VERSION: - - 26.0 - 26.1 - 26.2 IMAGE_NAME: diff --git a/.woodpecker/nextcloud.yaml b/.woodpecker/nextcloud.yaml index a9b3fa2..d570293 100644 --- a/.woodpecker/nextcloud.yaml +++ b/.woodpecker/nextcloud.yaml @@ -19,7 +19,6 @@ workspace: # Also because global environment variables aren't a thing. matrix: NEXTCLOUD_VERSION: - - 29 - 30 - 31 IMAGE_NAME: