Bruk GAR i build workflow (#842)

b162214 · web-flow · commit b27720e3452a · 2025-03-12T09:26:27.000+01:00
Ta i bruk docker-build-push/v0 for å publisere til GAR.
Bruk artifact upload workaround for å kunne bruke docker-build-push output i deploy steget.
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
@@ -8,8 +8,6 @@ on:
       - dev/**
 
 env:
-  DOCKER_REGISTRY: ghcr.io
-  DOCKER_IMAGE_PREFIX: ${{ github.repository }}/im-
   ORG_GRADLE_PROJECT_githubPassword: ${{ secrets.GITHUB_TOKEN }}
 
 jobs:
@@ -73,6 +71,7 @@ jobs:
     runs-on: ubuntu-latest
     permissions:
       packages: write
+      id-token: write
     needs: generate_vars
     if: needs.generate_vars.outputs.is_matrix_empty == 'false'
     strategy:
@@ -96,20 +95,29 @@ jobs:
         with:
           files: "apps/${{ matrix.project }}/build/libs/app.jar"
 
-      - name: Create docker tag
-        if: steps.app_jar.outputs.files_exists == 'true'
-        run: |
-          echo "IMAGE=$DOCKER_REGISTRY/${DOCKER_IMAGE_PREFIX}${{ matrix.project }}:${{ needs.generate_vars.outputs.short_sha }}" >> $GITHUB_ENV
-
-      - name: Build docker image
-        if: steps.app_jar.outputs.files_exists == 'true'
-        run: docker build apps/${{ matrix.project }} --pull -t $IMAGE -f Dockerfile
-
-      - name: Push docker image
+      - name: build docker image
         if: steps.app_jar.outputs.files_exists == 'true'
+        uses: nais/docker-build-push@v0
+        id: docker-build-push
+        with:
+          team: helsearbeidsgiver
+          image_suffix: im-${{ matrix.project }}
+          tag: ${{ needs.generate_vars.outputs.short_sha }}
+          dockerfile: Dockerfile
+          docker_context: apps/${{ matrix.project }}
+
+      - name: lag build fil
+        if: ${{ always() }}
         run: |
-          echo ${{ secrets.GITHUB_TOKEN }} | docker login --username $GITHUB_REPOSITORY --password-stdin https://$DOCKER_REGISTRY
-          docker push $IMAGE
+          echo ${{ steps.docker-build-push.outputs.image }} > "${{ matrix.project }}_build_${{ steps.docker-build-push.outcome }}.txt"
+      - name: laste opp build-fil
+        if: ${{ always() }}
+        uses: actions/upload-artifact@v4
+        with:
+          overwrite: true
+          retention-days: 1
+          name: "${{ matrix.project }}_build_result"
+          path: "${{ matrix.project }}_build_${{ steps.docker-build-push.outcome }}.txt"
 
   deploy:
     runs-on: ubuntu-latest
@@ -123,37 +131,44 @@ jobs:
     concurrency:
       group: deploy-dev-${{ matrix.project }}
     steps:
-      - name: Check if docker image exists
-        run: |
-          LAYERS=$(curl -X GET https://$DOCKER_REGISTRY/${DOCKER_IMAGE_PREFIX}${{ matrix.project }}/manifests/${{ needs.generate_vars.outputs.short_sha }} -u $GITHUB_ACTOR:${{ secrets.GITHUB_TOKEN }} | jq '.layers')
-          if [ "$LAYERS" == 'null' ]; then
-            echo "IMAGE_EXISTS=false" >> $GITHUB_ENV
-          else
-            echo "IMAGE_EXISTS=true" >> $GITHUB_ENV
-          fi
-
-      - name: Fetch sources
-        if: env.IMAGE_EXISTS == 'true'
-        uses: actions/checkout@v4
-
       - name: Determine app configuration file
-        if: env.IMAGE_EXISTS == 'true'
         run: |
           CONFIG_FILE="config/${{ matrix.project }}/${{ matrix.cluster }}.yml"
           echo "VARS=$CONFIG_FILE" >> $GITHUB_ENV # VARS-variable is used by nais/deploy/actions/deploy
 
       - name: Confirm app configuration file existence
         id: confirm_config_file
-        if: env.IMAGE_EXISTS == 'true'
         uses: andstor/file-existence-action@v3
         with:
           files: "${{ env.VARS }}"
 
+      - name: Fetch sources
+        uses: actions/checkout@v4
+      - name: create env vars
+        run: |
+          # VARS og IMAGE er miljøvariabler som leses automatisk av nais/deploy/actions/deploy
+          VARS_FILE="config/${{ matrix.project }}/${{ matrix.cluster }}.yml"
+          echo "VARS=$VARS_FILE" >> $GITHUB_ENV
+
+      - name: laste ned build-fil
+        uses: actions/download-artifact@v4
+        with:
+          name: "${{ matrix.project }}_build_result"
+      - name: ser om vi har nais config og at bygget gikk bra
+        id: deploy-files
+        uses: andstor/file-existence-action@v3
+        with:
+          files: "${{ env.VARS }}, ${{ matrix.project }}_build_success.txt"
+
+      - name: Sett docker image som env-var
+        id: sett_docker_image_var
+        run: echo "docker_image=$(cat ${{ matrix.project }}_build_success.txt)" >> $GITHUB_ENV
+
       - name: Deploy
-        if: env.IMAGE_EXISTS == 'true' && steps.confirm_config_file.outputs.files_exists == 'true'
+        if: steps.deploy-files.outputs.files_exists == 'true'
         uses: nais/deploy/actions/deploy@v2
         env:
           CLUSTER: ${{ matrix.cluster }}
-          IMAGE: ${{ env.DOCKER_REGISTRY }}/${{ env.DOCKER_IMAGE_PREFIX }}${{ matrix.project }}:${{ needs.generate_vars.outputs.short_sha }}
+          IMAGE: ${{ env.docker_image }}
           RESOURCE: config/nais.yml
-          VAR: app=${{ matrix.project }}
+          VAR: team=helsearbeidsgiver,app=${{ matrix.project }}
