我正在使用 github 操作实现 CICD 管道。我想将 docker 镜像发布到 jfrog artifactory。有人知道如何实现吗?
【问题讨论】:
标签: github-actions docker-push
包含登录、构建和推送到 jfrog 工件的完整示例。
此示例在存储库的根目录中需要一个 Dockerfile,并且秘密存储在 GitHub Secrets 中。
jobs:
build:
runs-on: ubuntu-latest
steps:
- name: Checkout ?️
uses: actions/checkout@v2
-
name: Set up QEMU ?️
uses: docker/setup-qemu-action@v1
-
name: Set up Docker Buildx ?
uses: docker/setup-buildx-action@v1
-
name: Login to JFrog ?
uses: docker/login-action@v1
with:
registry: <your artifactory>.jfrog.io
username: ${{ secrets.JFROG_USER_WRITER }}
password: ${{ secrets.JFROG_PASSWORD_WRITER }}
-
name: Build and push ?
id: docker_build
uses: docker/build-push-action@v2
with:
push: true
tags: <your artifactory>.jfrog.io/<your image name>:latest
【讨论】:
您应该能够在不使用 jfrog cli 和 docker login 的情况下登录注册表。 F.e:
- uses: actions/checkout@v2
- name: Login to DockerHub Registry
run: docker login -u ${{ secrets.REGISTRY_USERNAME }} -p ${{ secrets.REGISTRY_PASSWORD }} artifactory.<yourcompanyrepo>.com
【讨论】:
使用the docker-login github action,您可以指定注册表。
F.e.
【讨论】:
更简单的方法是使用 JFrog CLI 和 Setup JFrog CLI GitHub Action:
# Interactively, create a new server
jfrog c add
# Create a server token. This token can be used as a secret in your workflow named: "JF_ARTIFACTORY_SECRET".
jfrog c export
- uses: jfrog/setup-jfrog-cli@v1
env:
JF_ARTIFACTORY: ${{ secrets.JF_ARTIFACTORY_SECRET }}
- run: |
jfrog rt docker-push <image tag> <target repo>
# Optional - publish build info to Artifactory
jfrog rt bp
了解更多信息:
【讨论】: