This commit is contained in:
Anders da Silva Rytter Hansen
parent
70b9d6a7dd
commit
05956f893d
1 changed files with 0 additions and 20 deletions
|
|
@ -24,7 +24,6 @@ jobs:
|
||||||
permissions:
|
permissions:
|
||||||
contents: read
|
contents: read
|
||||||
packages: write
|
packages: write
|
||||||
id-token: write # Påkrævet til cosign keyless signering
|
|
||||||
|
|
||||||
steps:
|
steps:
|
||||||
|
|
||||||
|
|
@ -60,10 +59,6 @@ jobs:
|
||||||
--label "org.opencontainers.image.source=https://forge.pc-rytteren.dk/${{ github.repository }}" \
|
--label "org.opencontainers.image.source=https://forge.pc-rytteren.dk/${{ github.repository }}" \
|
||||||
-t raw-img .
|
-t raw-img .
|
||||||
|
|
||||||
# Gem det primære tag til signering (vi tager det første fra listen)
|
|
||||||
PRIMARY_TAG=$(echo "${{ steps.meta.outputs.tags }}" | head -n 1)
|
|
||||||
echo "primary_tag=$PRIMARY_TAG" >> $FORGEJO_OUTPUT
|
|
||||||
|
|
||||||
- name: Push to Forgejo Container Registry
|
- name: Push to Forgejo Container Registry
|
||||||
if: github.event_name != 'pull_request'
|
if: github.event_name != 'pull_request'
|
||||||
run: |
|
run: |
|
||||||
|
|
@ -73,18 +68,3 @@ jobs:
|
||||||
buildah push "$tag"
|
buildah push "$tag"
|
||||||
done
|
done
|
||||||
|
|
||||||
- name: Install cosign
|
|
||||||
if: github.event_name != 'pull_request'
|
|
||||||
uses: sigstore/cosign-installer@v3.3.0
|
|
||||||
|
|
||||||
- name: Log into Forgejo Container Registry (Cosign)
|
|
||||||
if: github.event_name != 'pull_request'
|
|
||||||
run: |
|
|
||||||
cosign login ${{ env.REGISTRY }} -u ${{ github.actor }} -p ${{ secrets.PACKAGE_TOKEN }}
|
|
||||||
|
|
||||||
- name: Sign image
|
|
||||||
if: github.event_name != 'pull_request'
|
|
||||||
run: |
|
|
||||||
# Vi signerer det primære tag.
|
|
||||||
# Vi bruger --yes til at acceptere betingelserne automatisk.
|
|
||||||
cosign sign --yes "${{ steps.build-image.outputs.primary_tag }}"
|
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue