Skip to content

Refactor build process for airlock #26

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
gabrielpetry wants to merge 9 commits into from
Closed

Refactor build process for airlock #26

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
9 commits
Select commit Hold shift + click to select a range
c317379
refactor: streamline Docker build process and update build.yml workflow
gabrielpetry Feb 12, 2026
b55049f
chore: add Docker setup actions for QEMU and Buildx in build workflow
gabrielpetry Feb 12, 2026
c9faaca
setup docker
gabrielpetry Feb 12, 2026
4b144e8
fix
gabrielpetry Feb 12, 2026
a2ed624
fix tag
gabrielpetry Feb 12, 2026
03d8fb1
build in parallel for improved speed
gabrielpetry Feb 12, 2026
0d6c499
remove redundant flags
gabrielpetry Feb 12, 2026
fd2e499
sequential build
gabrielpetry Feb 13, 2026
d5e654d
remove comments
gabrielpetry Feb 13, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
37 changes: 12 additions & 25 deletions .github/workflows/build.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,6 @@ on:
- develop
- main
pull_request:

permissions:
contents: read
pull-requests: read
Expand All @@ -17,42 +16,30 @@ jobs:
build-and-test:
name: Build and test
runs-on: ubuntu-latest

steps:
- uses: actions/checkout@v3
with:
fetch-depth: 1
path: ${{ env.__W_SRC_REL }}
- uses: actions/setup-go@v3
with:
go-version: "=1.21.0"
cache: false
- name: Build binary
run: |
cd $__W_SRC_REL
go mod tidy
make build
- name: Set up QEMU
uses: docker/setup-qemu-action@v2
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v2

- uses: docker/setup-qemu-action@v2
- uses: docker/setup-docker-action@v4
- uses: docker/setup-buildx-action@v2

- name: Login to Docker Registry
uses: docker/login-action@v2
with:
username: ${{ secrets.DOCKERREGISTRY_USERNAME }}
password: ${{ secrets.DOCKERREGISTRY_PASSWORD }}
- name: Build Docker image
uses: docker/build-push-action@v3
with:
context: ${{ env.__W_SRC_REL }}
file: ${{ env.__W_SRC_REL }}/Dockerfile
platforms: linux/amd64,linux/arm64,linux/arm/v7
push: false
- name: Push Docker image
- name: Build and push
uses: docker/build-push-action@v3
with:
context: ${{ env.__W_SRC_REL }}
file: ${{ env.__W_SRC_REL }}/Dockerfile
platforms: linux/amd64,linux/arm64,linux/arm/v7
file: Dockerfile
platforms: linux/amd64,linux/arm64
push: true
secrets: |
PRIVATE_REPO_ACCESS_KEY=${{ secrets.PRIVATE_REPO_ACCESS_KEY }}
GOPRIVATE=github.com/RocketChat
tags: |
rocketchat/airlock:${{github.sha}}
20 changes: 19 additions & 1 deletion Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,10 +1,28 @@
FROM golang:1.21-alpine AS builder

WORKDIR /app
RUN apk add git
ENV PRIVATE_REPO_ACCESS_KEY=
ENV GOPRIVATE=
RUN \
git config \
--global \
url."https://rocketchat-cloudbot:$PRIVATE_REPO_ACCESS_KEY@github.com".insteadOf "https://github.com"

COPY go.mod go.sum ./
RUN go mod tidy
COPY . .

RUN \
CGO_ENABLED=0 \
go build -o /app/manager main.go
# Use distroless as minimal base image to package the manager binary
# Refer to https://github.com/GoogleContainerTools/distroless for more details
FROM gcr.io/distroless/static:nonroot
WORKDIR /

# Copy the binary the GH Action built on an earlier step
COPY bin/manager .
COPY --from=builder /app/manager .

USER 65532:65532

Expand Down
Loading