wunker-bunker/wunker-os
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Have cosign login to registry

Browse Source
This commit is contained in:
Gerald Pinder
2023-07-23 15:53:27 -04:00
parent 15824f71f6
commit cbab75a41a
1 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
.gitlab-ci.yml
View File

@@ -41,7 +41,7 @@ default:
done done
echo "TAGS=${TAGS[*]}" echo "TAGS=${TAGS[*]}"
- buildah login -u $CI_REGISTRY_USER -p $CI_REGISTRY_PASSWORD $CI_REGISTRY - buildah login -u $CI_REGISTRY_USER -p $CI_REGISTRY_PASSWORD $CI_REGISTRY
- docker login -u $CI_REGISTRY_USER -p $CI_REGISTRY_PASSWORD $CI_REGISTRY - cosign login -u $CI_REGISTRY_USER -p $CI_REGISTRY_PASSWORD $CI_REGISTRY
build: build:
stage: build stage: build
@@ -54,8 +54,8 @@ build:
- buildah build --build-arg=RECIPE=$RECIPE --build-arg=FEDORA_MAJOR_VERSION=$FEDORA_MAJOR_VERSION --build-arg BASE_IMAGE_URL=$BASE_IMAGE_URL -t $FULL_IMAGE_NAME:${TAGS} . - buildah build --build-arg=RECIPE=$RECIPE --build-arg=FEDORA_MAJOR_VERSION=$FEDORA_MAJOR_VERSION --build-arg BASE_IMAGE_URL=$BASE_IMAGE_URL -t $FULL_IMAGE_NAME:${TAGS} .
- | - |
for TAG in "${TAGS[@]}"; do for TAG in "${TAGS[@]}"; do
buildah tag $FULL_IMAGE_NAME:${TAGS} $FULL_IMAGE_NAME:${TAG} buildah tag $FULL_IMAGE_NAME:${TAGS} $FULL_IMAGE_NAME:$TAG
buildah push $FULL_IMAGE_NAME:$TAG
done done
- buildah push --all $FULL_IMAGE_NAME
- DIGEST=($(buildah images --format '{{.Digest}}' $FULL_IMAGE_NAME:$TAGS)) - DIGEST=($(buildah images --format '{{.Digest}}' $FULL_IMAGE_NAME:$TAGS))
- cosign sign -y --key $SIGNING_SECRET $FULL_IMAGE_NAME@$DIGEST - cosign sign -y --key $SIGNING_SECRET $FULL_IMAGE_NAME@$DIGEST