chore(ci): overhaul Docker workflow with multi-service builds, ARM64 optimizations, and improved Gradle caching strategies
This commit is contained in:
@@ -1,65 +1,136 @@
|
|||||||
name: Docker Build & Publish (ARM64 Optimized)
|
name: Build and Publish Docker Images
|
||||||
run-name: Build & Publish by @${{ github.actor }}
|
run-name: Build & Publish by @${{ github.actor }}
|
||||||
|
|
||||||
on:
|
on:
|
||||||
push:
|
push:
|
||||||
branches: [ main ]
|
branches: [ "main" ]
|
||||||
tags: [ 'v*' ]
|
paths:
|
||||||
|
- 'backend/**'
|
||||||
|
- 'platform/**'
|
||||||
|
- 'core/**'
|
||||||
|
- 'frontend/**'
|
||||||
|
- 'config/docker/**'
|
||||||
|
- 'build.gradle.kts'
|
||||||
|
- 'settings.gradle.kts'
|
||||||
|
- 'gradle.properties'
|
||||||
|
- 'docker-compose.yaml'
|
||||||
|
- '.gitea/workflows/docker-publish.yaml'
|
||||||
|
|
||||||
|
env:
|
||||||
|
REGISTRY: git.mo-code.at
|
||||||
|
# WICHTIG: Kleingeschrieben für Docker-Konformität
|
||||||
|
IMAGE_PREFIX: mocode-software/meldestelle
|
||||||
|
# Build Arguments für Zora (ARM64 Power)
|
||||||
|
JAVA_VERSION: "25"
|
||||||
|
GRADLE_VERSION: "9.3.1"
|
||||||
|
# OPTIMIERUNG: Gradle Parameter für mehr Speed
|
||||||
|
GRADLE_OPTS: "-Dorg.gradle.parallel=true -Dorg.gradle.workers.max=8"
|
||||||
|
# Deine neuen JVM Power-Flags für ARM64 (Cortex-A720)
|
||||||
|
JVM_OPTS_ARM64: "-XX:ActiveProcessorCount=12 -XX:+UseG1GC -XX:+UseTransparentHugePages -XX:+UseSVE=1"
|
||||||
|
|
||||||
jobs:
|
jobs:
|
||||||
build:
|
build-and-push:
|
||||||
# Nutze ein Label, das deinen ARM64-Runner anspricht (z.B. ubuntu-latest oder arm64)
|
|
||||||
runs-on: ubuntu-latest
|
runs-on: ubuntu-latest
|
||||||
|
strategy:
|
||||||
|
fail-fast: false
|
||||||
|
matrix:
|
||||||
|
include:
|
||||||
|
# NEU: Keycloak wird jetzt auch automatisch gebaut und gepusht
|
||||||
|
- service: keycloak
|
||||||
|
context: .
|
||||||
|
dockerfile: config/docker/keycloak/Dockerfile
|
||||||
|
image: keycloak
|
||||||
|
- service: api-gateway
|
||||||
|
context: .
|
||||||
|
dockerfile: backend/infrastructure/gateway/Dockerfile
|
||||||
|
image: gateway
|
||||||
|
- service: ping-service
|
||||||
|
context: .
|
||||||
|
dockerfile: backend/services/ping/Dockerfile
|
||||||
|
image: ping-service
|
||||||
|
- service: web-app
|
||||||
|
context: .
|
||||||
|
dockerfile: config/docker/caddy/web-app/Dockerfile
|
||||||
|
image: web-app
|
||||||
|
|
||||||
steps:
|
steps:
|
||||||
- name: Checkout code
|
- name: Checkout repository
|
||||||
uses: actions/checkout@v4
|
uses: actions/checkout@v3
|
||||||
|
|
||||||
- name: Set up JDK 21 (Temurin)
|
# Java Setup (Wichtig für Gradle-Builds im Runner)
|
||||||
|
- name: Set up JDK 25
|
||||||
uses: actions/setup-java@v4
|
uses: actions/setup-java@v4
|
||||||
with:
|
with:
|
||||||
java-version: '21'
|
java-version: '25'
|
||||||
distribution: 'temurin'
|
distribution: 'temurin'
|
||||||
# Aktiviert automatisches Caching für Maven oder Gradle
|
cache: gradle
|
||||||
cache: 'gradle'
|
|
||||||
|
|
||||||
- name: Grant execute permission for gradlew
|
# Cache für Gradle (Beschleunigt Folgebauvorgänge massiv)
|
||||||
run: chmod +x gradlew
|
- name: Setup Gradle Cache
|
||||||
|
uses: actions/cache@v3
|
||||||
|
with:
|
||||||
|
path: |
|
||||||
|
~/.gradle/caches
|
||||||
|
~/.gradle/wrapper
|
||||||
|
key: ${{ runner.os }}-gradle-${{ hashFiles('**/*.gradle*', '**/gradle-wrapper.properties') }}
|
||||||
|
restore-keys: |
|
||||||
|
${{ runner.os }}-gradle-
|
||||||
|
|
||||||
- name: Build with Gradle
|
# Frontend Build (Nur für web-app notwendig)
|
||||||
# --no-daemon ist in CI-Umgebungen stabiler
|
- name: Build Frontend (Kotlin JS)
|
||||||
run: ./gradlew build --no-daemon
|
if: matrix.service == 'web-app'
|
||||||
|
run: |
|
||||||
|
chmod +x gradlew
|
||||||
|
# Wir nutzen --no-daemon im Runner, geben aber mehr Memory
|
||||||
|
./gradlew :frontend:shells:meldestelle-portal:jsBrowserDistribution \
|
||||||
|
-Pproduction=true \
|
||||||
|
--max-workers=8 \
|
||||||
|
-Dkotlin.daemon.jvm.options="-Xmx4g"
|
||||||
|
|
||||||
- name: Set up Docker Buildx
|
- name: Set up Docker Buildx
|
||||||
uses: docker/setup-buildx-action@v3
|
uses: docker/setup-buildx-action@v3
|
||||||
|
with:
|
||||||
|
# Wir erzwingen die Nutzung des Host-Drivers,
|
||||||
|
# um gRPC-Abstürze im Container-Builder zu vermeiden
|
||||||
|
driver: docker
|
||||||
|
|
||||||
- name: Login to Gitea Container Registry
|
# Login bei deiner Gitea Registry
|
||||||
|
- name: Log in to the Container registry
|
||||||
uses: docker/login-action@v3
|
uses: docker/login-action@v3
|
||||||
with:
|
with:
|
||||||
registry: ${{ gitea.repository_url }} # Oder deine spezifische URL
|
registry: ${{ env.REGISTRY }}
|
||||||
username: ${{ gitea.actor }}
|
username: ${{ secrets.REGISTRY_USER }}
|
||||||
password: ${{ secrets.GITEA_TOKEN }}
|
password: ${{ secrets.REGISTRY_TOKEN }}
|
||||||
|
|
||||||
- name: Extract Metadata (Tags, Labels)
|
# Metadaten extrahieren (Tags, Labels)
|
||||||
|
- name: Extract metadata
|
||||||
id: meta
|
id: meta
|
||||||
uses: docker/metadata-action@v5
|
uses: docker/metadata-action@v5
|
||||||
with:
|
with:
|
||||||
images: |
|
images: ${{ env.REGISTRY }}/${{ env.IMAGE_PREFIX }}/${{ matrix.image }}
|
||||||
${{ gitea.repository_url }}/${{ gitea.repository }}
|
|
||||||
tags: |
|
tags: |
|
||||||
type=ref,event=branch
|
type=raw,value=latest,enable=${{ github.ref == 'refs/heads/main' }}
|
||||||
type=semver,pattern={{version}}
|
type=sha,format=long
|
||||||
type=sha,format=short
|
|
||||||
|
|
||||||
- name: Build and Push Docker Image
|
# Build und Push (Nativ ARM64 für maximale Geschwindigkeit)
|
||||||
uses: docker/build-push-action@v6
|
- name: Build and push Docker image
|
||||||
|
uses: docker/build-push-action@v5
|
||||||
with:
|
with:
|
||||||
context: .
|
context: ${{ matrix.context }}
|
||||||
# Nutze natives ARM64-Build, da der Runner bereits auf ARM64 läuft
|
file: ${{ matrix.dockerfile }}
|
||||||
platforms: linux/arm64
|
|
||||||
push: true
|
push: true
|
||||||
|
# Fokus auf ARM64 für Zora, AMD64 bleibt für Kompatibilität (optional)
|
||||||
|
platforms: linux/arm64
|
||||||
tags: ${{ steps.meta.outputs.tags }}
|
tags: ${{ steps.meta.outputs.tags }}
|
||||||
labels: ${{ steps.meta.outputs.labels }}
|
labels: ${{ steps.meta.outputs.labels }}
|
||||||
# Nutze das Gitea-interne Caching für Docker-Layer
|
build-args: |
|
||||||
|
DOCKER_BUILD_DATE=$(date -u +'%Y-%m-%dT%H:%M:%SZ')
|
||||||
|
VERSION=${{ github.sha }}
|
||||||
|
GRADLE_VERSION=${{ env.GRADLE_VERSION }}
|
||||||
|
JAVA_VERSION=${{ env.JAVA_VERSION }}
|
||||||
|
KEYCLOAK_IMAGE_TAG=26.4
|
||||||
|
JVM_OPTS_APPEND=${{ env.JVM_OPTS_ARM64 }}
|
||||||
|
# cache-from: type=local,src=/tmp/.buildx-cache
|
||||||
|
# cache-to: type=local,dest=/tmp/.buildx-cache-new,mode=max
|
||||||
cache-from: type=gha
|
cache-from: type=gha
|
||||||
cache-to: type=gha,mode=max
|
cache-to: type=gha,mode=max
|
||||||
|
|||||||
Reference in New Issue
Block a user