kimjunte/juntekim.com
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 13

save

Browse source
This commit is contained in:
Jun-te Kim 2025-12-06 21:11:29 +00:00
parent 29f3e15a24
commit 4b5141b37d
1 changed files with 42 additions and 23 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

65
.github/workflows/k8s_traefik_init_setup.yml vendored
View file

@ -39,33 +39,52 @@ jobs:
kubectl config set-credentials runner --token="$SA_TOKEN" kubectl config set-credentials runner --token="$SA_TOKEN"
kubectl config set-context runner-context --cluster=microk8s --user=runner --namespace="$NAMESPACE" kubectl config set-context runner-context --cluster=microk8s --user=runner --namespace="$NAMESPACE"
kubectl config use-context runner-context kubectl config use-context runner-context
- name: Install Buildx Standalone
run: |
mkdir -p ~/.docker/cli-plugins/
curl -sSL https://github.com/docker/buildx/releases/download/v0.13.1/buildx-v0.13.1.linux-amd64 \
-o ~/.docker/cli-plugins/docker-buildx
chmod +x ~/.docker/cli-plugins/docker-buildx
docker buildx version
# ----------------------------------------------------- # -----------------------------------------------------
# Build & Push Docker Image (ARC-compatible, no Docker) # Install buildctl (standalone BuildKit client)
# ----------------------------------------------------- # -----------------------------------------------------
- name: Build & Push Traefik Image (ARC-compatible) - name: Install buildctl (BuildKit CLI)
uses: docker/build-push-action@v5 run: |
apt-get update && apt-get install -y curl
curl -sSL https://github.com/moby/buildkit/releases/download/v0.12.5/buildkit-v0.12.5.linux-amd64.tar.gz -o buildkit.tar.gz
tar -xzf buildkit.tar.gz
mv bin/buildctl /usr/local/bin/
chmod +x /usr/local/bin/buildctl
buildctl --version
# -----------------------------------------------------
# Log in to Docker Hub (registry auth for buildctl)
# -----------------------------------------------------
- name: Docker Hub Login for buildctl
run: |
echo "${{ secrets.DOCKER_HUB_PASSWORD }}" | \
buildctl login docker.io \
--username ${{ secrets.DOCKER_HUB_USERNAME }} \
--password-stdin
# -----------------------------------------------------
# Build & Push Docker Image (NO Docker, NO Buildx, NO Daemon)
# -----------------------------------------------------
- name: Build & Push Traefik Image (ARC-safe buildctl)
env: env:
BUILDKIT_SBOM_SCAN_STATUS: disabled IMAGE_TAG: docker.io/kimjunte/edge_router:${{ github.sha }}
with: LATEST_TAG: docker.io/kimjunte/edge_router:latest
context: ${{ github.workspace }}/traefik run: |
file: ${{ github.workspace }}/traefik/Dockerfile # Build SHA-tagged image
platforms: linux/amd64 buildctl build \
push: true --frontend dockerfile.v0 \
provenance: false --local context="${GITHUB_WORKSPACE}/traefik" \
sbom: false --local dockerfile="${GITHUB_WORKSPACE}/traefik" \
builder: default --opt platform=linux/amd64 \
tags: | --output type=image,name=${IMAGE_TAG},push=true
docker.io/kimjunte/edge_router:${{ github.sha }}
docker.io/kimjunte/edge_router:latest # Build latest tag
buildctl build \
--frontend dockerfile.v0 \
--local context="${GITHUB_WORKSPACE}/traefik" \
--local dockerfile="${GITHUB_WORKSPACE}/traefik" \
--opt platform=linux/amd64 \
--output type=image,name=${LATEST_TAG},push=true
# ----------------------------------------------------- # -----------------------------------------------------
# Apply Storage Classes + PVCs # Apply Storage Classes + PVCs