Skip to content

willroden/buf-push-action

 
 

Repository files navigation

buf-push-action

This Action enables you to push Buf modules to the Buf Schema Registry (BSR) Pushed modules are created with the Git commit SHA as the module tag.

buf-push-action is frequently used alongside other Buf Actions, such as buf-breaking-action and buf-lint-action.

Usage

Here's an example usage of buf-push-action:

on: 
  - push
  - delete
jobs:
  push-module:
    runs-on: ubuntu-latest
    # only allow one concurrent push job per git branch to prevent race conditions
    concurrency: ${{ github.workflow }}-${{ github.ref_name }}
    steps:
      # Run `git checkout`
      - uses: actions/checkout@v2
      # Push module to the BSR
      - uses: bufbuild/buf-push-action@v2
        id: push
        with:
          buf_token: ${{ secrets.BUF_TOKEN }}
          track: ${{ github.ref_name }}

With this configuration, the buf CLI pushes the configured module to the BSR upon merge using a Buf API token to authenticate with the Buf Schema Registry (BSR).

For instructions on creating a BSR API token, see our official docs. Once you've created an API token, you need to create an encrypted Github Secret for it. In this example, the API token is set to the BUF_TOKEN secret.

Configuration

Parameter Description Required Default
buf_token The Buf authentication token used for private Buf inputs
default_branch The git branch that should be pushed to the main track on BSR main
input The path of the input you want to push to BSR as a module .
track The track to push to ${{github.ref_name}}
github_token The GitHub token to use when making API requests. Must have content:read permission on the repository. ${{github.token}}

These parameters are derived from action.yml.

Outputs

Name Description
commit The name of the commit that was pushed to BSR
commit_url A URL linking to the newly pushed commit on BSR

Common tasks

Run against input in subdirectory

Some repositories are structured so that their buf.yaml configuration file is defined in a subdirectory alongside their Protobuf sources, such as a proto directory. Here's an example:

$ tree
.
└── proto
    ├── acme
    │   └── weather
    │       └── v1
    │           └── weather.proto
    └── buf.yaml

In that case, you can target the proto subdirectory by setting input to proto:

steps:
  # Run `git checkout`
  - uses: actions/checkout@v2
  # Push only the Input in `proto` to the BSR
  - uses: bufbuild/buf-push-action@v2
    with:
      input: proto
      buf_token: ${{ secrets.BUF_TOKEN }}

Validate before push

buf-push-action is typically used alongside other buf Actions, such as buf-breaking-action and buf-lint-action. A common use case is to "validate" a Buf module before pushing it to the BSR by ensuring that it passes both lint and breaking change checks, as in this example:

on: # Apply to all pushes to `main`
  push:
    branches:
      - main
jobs:
  validate-and-push-protos:
    runs-on: ubuntu-latest
    steps:
      # Run `git checkout`
      - uses: actions/checkout@v2
      # Install the `buf` CLI
      - uses: bufbuild/buf-setup-action@v0.6.0
      # Run a lint check on Protobuf sources
      - uses: bufbuild/buf-lint-action@v1
      # Run breaking change detection for Protobuf sources against the current `main` branch
      - uses: bufbuild/buf-breaking-action@v1
        with:
          against: https://github.com/acme/weather.git#branch=main,ref=HEAD~1,subdir=proto
      # Push the validated module to the BSR
      - uses: bufbuild/buf-push-action@v2
        with:
          buf_token: ${{ secrets.BUF_TOKEN }}

About

No description, website, or topics provided.

Resources

License

Stars

Watchers

Forks

Packages

 
 
 

Languages

  • Go 67.0%
  • Makefile 29.9%
  • Shell 2.6%
  • Dockerfile 0.5%