name: authentik-on-release on: release: types: [published, created] jobs: # Build build-server: runs-on: ubuntu-latest steps: - uses: actions/checkout@v2 - name: Set up QEMU uses: docker/setup-qemu-action@v1.2.0 - name: Set up Docker Buildx uses: docker/setup-buildx-action@v1 - name: Docker Login Registry uses: docker/login-action@v1 with: username: ${{ secrets.DOCKER_USERNAME }} password: ${{ secrets.DOCKER_PASSWORD }} - name: Login to GitHub Container Registry uses: docker/login-action@v1 with: registry: ghcr.io username: ${{ github.repository_owner }} password: ${{ secrets.GITHUB_TOKEN }} - name: Building Docker Image uses: docker/build-push-action@v2 with: push: ${{ github.event_name == 'release' }} tags: | beryju/authentik:2021.12.1-rc4, beryju/authentik:latest, ghcr.io/goauthentik/server:2021.12.1-rc4, ghcr.io/goauthentik/server:latest platforms: linux/amd64,linux/arm64 context: . - name: Building Docker Image (stable) if: ${{ github.event_name == 'release' && !contains('2021.12.1-rc4', 'rc') }} run: | docker pull beryju/authentik:latest docker tag beryju/authentik:latest beryju/authentik:stable docker push beryju/authentik:stable docker pull ghcr.io/goauthentik/server:latest docker tag ghcr.io/goauthentik/server:latest ghcr.io/goauthentik/server:stable docker push ghcr.io/goauthentik/server:stable build-outpost: runs-on: ubuntu-latest strategy: fail-fast: false matrix: type: - proxy - ldap steps: - uses: actions/checkout@v2 - uses: actions/setup-go@v2 with: go-version: "^1.15" - name: Set up QEMU uses: docker/setup-qemu-action@v1.2.0 - name: Set up Docker Buildx uses: docker/setup-buildx-action@v1 - name: Docker Login Registry uses: docker/login-action@v1 with: username: ${{ secrets.DOCKER_USERNAME }} password: ${{ secrets.DOCKER_PASSWORD }} - name: Login to GitHub Container Registry uses: docker/login-action@v1 with: registry: ghcr.io username: ${{ github.repository_owner }} password: ${{ secrets.GITHUB_TOKEN }} - name: Building Docker Image uses: docker/build-push-action@v2 with: push: ${{ github.event_name == 'release' }} tags: | beryju/authentik-${{ matrix.type }}:2021.12.1-rc4, beryju/authentik-${{ matrix.type }}:latest, ghcr.io/goauthentik/${{ matrix.type }}:2021.12.1-rc4, ghcr.io/goauthentik/${{ matrix.type }}:latest file: ${{ matrix.type }}.Dockerfile platforms: linux/amd64,linux/arm64 - name: Building Docker Image (stable) if: ${{ github.event_name == 'release' && !contains('2021.12.1-rc4', 'rc') }} run: | docker pull beryju/authentik-${{ matrix.type }}:latest docker tag beryju/authentik-${{ matrix.type }}:latest beryju/authentik-${{ matrix.type }}:stable docker push beryju/authentik-${{ matrix.type }}:stable docker pull ghcr.io/goauthentik/${{ matrix.type }}:latest docker tag ghcr.io/goauthentik/${{ matrix.type }}:latest ghcr.io/goauthentik/${{ matrix.type }}:stable docker push ghcr.io/goauthentik/${{ matrix.type }}:stable test-release: needs: - build-server - build-outpost runs-on: ubuntu-latest steps: - uses: actions/checkout@v2 - name: Run test suite in final docker images run: | echo "PG_PASS=$(openssl rand -base64 32)" >> .env echo "AUTHENTIK_SECRET_KEY=$(openssl rand -base64 32)" >> .env docker-compose pull -q docker-compose up --no-start docker-compose start postgresql redis docker-compose run -u root server test sentry-release: needs: - test-release runs-on: ubuntu-latest steps: - uses: actions/checkout@v2 - name: Get static files from docker image run: | docker pull ghcr.io/goauthentik/server:latest container=$(docker container create ghcr.io/goauthentik/server:latest) docker cp ${container}:web/ . - name: Create a Sentry.io release uses: getsentry/action-release@v1 if: ${{ github.event_name == 'release' }} env: SENTRY_AUTH_TOKEN: ${{ secrets.SENTRY_AUTH_TOKEN }} SENTRY_ORG: beryjuorg SENTRY_PROJECT: authentik SENTRY_URL: https://sentry.beryju.org with: version: authentik@2021.12.1-rc4 environment: beryjuorg-prod sourcemaps: './web/dist' url_prefix: '~/static/dist'