gitea-actions-templates/.gitea/workflows/docker-build-and-push.yaml

name: Workflow to build and push docker image to registry
on:
  workflow_call:
    inputs:
      APP_NAME:
        required: true
        type: string
        description: Application name which would be the name of Docker and Helm release
      REGISTRY:
        required: true
        type: string
      DOCKERFILE_PATH:
        type: string
        default: Dockerfile
      USER_FOR_IMAGE_STORE:
        type: string
        default: registry-bot 
    secrets:
      VAULT_TOKEN:
        required: true

jobs:

  build:
    runs-on: ubuntu-latest
    container: 
      image: catthehacker/ubuntu:act-22.04

    steps:

      - name: Import Secrets
        uses: hashicorp/vault-action@v2
        with:
          url: https://vault.project-quest-dev.com
          token: ${{ secrets.VAULT_TOKEN }}
          secrets: |
            cicd/data/docker password | REGISTRY_PASSWORD ;
            cicd/data/docker username | REGISTRY_USERNAME ;
            cicd/data/submodule token | SUBMODULE_TOKEN   ;

      - name: Checkout code
        uses: actions/checkout@v4
        with:
          submodules: recursive
          fetch-depth: 0
          token: ${{ env.SUBMODULE_TOKEN }}

      - name: Set up Docker BuildX
        uses: docker/setup-buildx-action@v2
        with:
          driver-opts: network=host
          config-inline: |
             [registries.insecure]
              "${{ inputs.REGISTRY }}" = true                               

      - &get_version
        name: Extract version from tag or set commit SHA
        id: vars
        run: |
          if [ "${{ github.ref_type }}" = "tag" ]; then
            echo "VERSION=${{ github.ref_name }}" >> $GITHUB_ENV
          else
            VERSION=$(echo "${{ github.sha }}" | cut -c1-7)
            echo "VERSION=$VERSION" >> $GITHUB_ENV
          fi

      - name: Login to Docker registry
        uses: docker/login-action@v2
        with:
          registry: ${{ inputs.REGISTRY }}
          username: ${{ env.REGISTRY_USERNAME }}
          password: ${{ env.REGISTRY_PASSWORD }}

      - name: Build Docker image
        run: |
          docker build -t ${{ inputs.REGISTRY }}/${{ inputs.USER_FOR_IMAGE_STORE }}/${{ inputs.APP_NAME }}:${{ env.VERSION }} .          

      - name: Push Docker image
        run: |
          docker push ${{ inputs.REGISTRY }}/${{ inputs.USER_FOR_IMAGE_STORE }}/${{ inputs.APP_NAME }}:${{ env.VERSION }}          

      - name: Logout from Docker registry
        run: docker logout ${{ inputs.REGISTRY }}