update for release (#11)

* rename

* tidy

* update ci

* tidy source

* update devcontainer

* more updates

* ci

* addred helm & release job

* tidy comments

* docs update

* update lock file

* add arch & appname

Author: f2calv

.cargo/config.toml

@@ -51,6 +51,11 @@
 	"remoteUser": "vscode",
 	"features": {
 		"docker-in-docker": "latest",
+		"kubectl-helm-minikube": {
+			"version": "latest",
+			"helm": "3.9.2",
+			"minikube": "none"
+		},
 		"powershell": "latest"
 	}
 }

.devcontainer/devcontainer.json

@@ -11,6 +11,8 @@ on:
       # - .charts
       - LICENSE
       - README.md
+      - build.sh
+      - build.ps1
   pull_request:
     branches: [main]
     types: [opened, synchronize, reopened]
@@ -47,39 +49,7 @@ jobs:
       - name: cargo build
         run: cargo build --release
 
-      #TODO: could run cargo test here, etc...
-
-  build_image:
-    if: false #debug disable
-    runs-on: ubuntu-latest
-    needs: build_app
-
-    #https://github.blog/changelog/2021-04-20-github-actions-control-permissions-for-github_token/
-    #https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs
-    permissions:
-      packages: write #for pushing container image
-
-    env:
-      REGISTRY: ghcr.io
-      #REPOSITORY: Note: set dynamically, i.e. github.repository_owner+IMAGE_NAME
-      GIT_REPO: ${{ github.repository }}
-      GIT_TAG: ${{ needs.build_app.outputs.SemVer }}
-      GIT_BRANCH: ${{ github.ref }}
-      GIT_COMMIT: ${{ github.sha }}
-
-    steps:
-
-      - uses: actions/checkout@v3
-        with:
-          fetch-depth: 0
-
-      - name: set vars (1 of 2)
-        run: echo "REPOSITORY=${{ github.repository_owner }}/$IMAGE_NAME" >> $GITHUB_ENV
-
-      - name: set vars (2 of 2)
-        if: github.ref != 'refs/heads/main' #non-default branch has a more verbose SemVer which we overwrite
-        run: echo "GIT_TAG=dev" >> $GITHUB_ENV
-
+      #TODO: enable other ci processes here
       - name: image:base
         run: docker build --platform linux/amd64 -t image:base . --target base
         if: false #debug
@@ -118,10 +88,40 @@ jobs:
       #   run: docker run --rm --name clippy image:build cargo test
       #   if: always()
 
+  build_image:
+    runs-on: ubuntu-latest
+    needs: build_app
+
+    #https://github.blog/changelog/2021-04-20-github-actions-control-permissions-for-github_token/
+    #https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs
+    permissions:
+      packages: write #for pushing container image
+
+    env:
+      REGISTRY: ghcr.io
+      #REPOSITORY: Note: set dynamically, i.e. github.repository_owner+IMAGE_NAME
+      GIT_REPO: ${{ github.repository }}
+      GIT_TAG: ${{ needs.build_app.outputs.SemVer }}
+      GIT_BRANCH: ${{ github.ref }}
+      GIT_COMMIT: ${{ github.sha }}
+
+    steps:
+      - uses: actions/checkout@v3
+        with:
+          fetch-depth: 0
+
+      - name: set vars (1 of 2)
+        run: echo "REPOSITORY=${{ github.repository_owner }}/$IMAGE_NAME" >> $GITHUB_ENV
+
+      - name: set vars (2 of 2)
+        if: github.ref != 'refs/heads/main' #non-default branch use a simplistic SemVer
+        run: echo "GIT_TAG=dev" >> $GITHUB_ENV
+
       - name: docker login ${{ env.REGISTRY }}
         run: echo "${{ secrets.GITHUB_TOKEN }}" | docker login $REGISTRY -u ${{ github.actor }} --password-stdin
 
-      - name: docker buildx build
+      - name: docker buildx build/push
+        if: github.ref == 'refs/heads/main'
         run: |
           docker buildx create --name multiarchtest --use
           docker buildx build \
@@ -139,4 +139,103 @@ jobs:
             --platform linux/amd64,linux/arm64,linux/arm/v7 \
             --pull \
             --push \
-            .
+            .
+
+      - name: docker buildx build/push (dev)
+        if: github.ref != 'refs/heads/main'
+        run: |
+          docker buildx create --name multiarchtest --use
+          docker buildx build \
+            -t $REGISTRY/$REPOSITORY:$GIT_TAG \
+            --label "GITHUB_RUN_ID=${{ github.run_id }}" \
+            --label "IMAGE_NAME=$IMAGE_NAME" \
+            --build-arg GIT_REPO=$GIT_REPO \
+            --build-arg GIT_TAG=$GIT_TAG \
+            --build-arg GIT_BRANCH=$GIT_BRANCH \
+            --build-arg GIT_COMMIT=$GIT_COMMIT \
+            --build-arg GITHUB_WORKFLOW=${{ github.workflow }} \
+            --build-arg GITHUB_RUN_ID=${{ github.run_id }} \
+            --build-arg GITHUB_RUN_NUMBER=${{ github.run_number }} \
+            --platform linux/amd64,linux/arm64,linux/arm/v7 \
+            --pull \
+            --push \
+            .
+
+  push_chart:
+    runs-on: ubuntu-latest
+    needs: [build_app, build_image]
+    if: github.ref == 'refs/heads/main'
+
+    permissions:
+      packages: write #for pushing helm package
+      contents: write #for creating releases/tags
+
+    env:
+      REGISTRY: ghcr.io
+      #REPOSITORY: Note: set dynamically, i.e. github.repository_owner+IMAGE_NAME
+      GIT_TAG: ${{ needs.build_app.outputs.SemVer }}
+      HELM_EXPERIMENTAL_OCI: 1
+      HELM_VERSION_TO_INSTALL: 3.9.2 #Note: keep this version in sync inside the devcontainer
+
+    steps:
+      - uses: actions/checkout@v3
+        with:
+          fetch-depth: 0 #Note: shallow clone may break git tag & ct lint...
+
+      - name: set vars
+        run: echo "REPOSITORY=${{ github.repository_owner }}/charts/$IMAGE_NAME" >> $GITHUB_ENV
+
+      - name: install helm
+        uses: azure/setup-helm@v3
+        with:
+          version: ${{ env.HELM_VERSION_TO_INSTALL }}
+
+      - name: helm registry login
+        run: |
+          echo ${{ secrets.GITHUB_TOKEN }} | helm registry login ${REGISTRY}/${REPOSITORY} --username ${{ github.repository_owner }} --password-stdin
+
+      - uses: actions/setup-python@v4
+        with:
+          python-version: 3.7
+        if: false #not implemented/working yet
+
+      - name: chart-testing (setup)
+        uses: helm/chart-testing-action@v2
+        if: false #not implemented/working yet
+
+      - name: chart-testing (run list-changed)
+        id: list-changed
+        run: |
+          changed=$(ct list-changed --target-branch main)
+          if [[ -n "$changed" ]]; then
+            echo "::set-output name=changed::true"
+          fi
+        if: false #not implemented/working yet
+
+      - name: chart-testing (run lint)
+        run: ct lint
+        if: false #not implemented/working yet
+
+      - name: create kind cluster
+        uses: helm/kind-action@v1
+        #if: steps.list-changed.outputs.changed == 'true'
+        if: false #not implemented/working yet
+
+      - name: chart-testing (run install)
+        run: ct install
+        if: false #not implemented/working yet
+
+      - name: helm package
+        run: |
+          helm package ${{ github.workspace }}/charts/$IMAGE_NAME/ --destination ${{ github.workspace }}/artifacts/ --app-version ${{ env.GIT_TAG }}
+        if: false #not implemented/working yet
+
+      - name: helm push
+        run: |
+          helm push ${{ github.workspace }}/artifacts/$IMAGE_NAME-0.1.0.tgz oci://ghcr.io/${{ github.repository_owner }}
+        if: false #not implemented/working yet, need to change the chart version in filename
+
+  release:
+    needs: [build_app, build_image, push_chart]
+    if: github.ref == 'refs/heads/main'
+    uses: f2calv/gha-workflows/.github/workflows/gha-release-versioning.yml@v1