update docker build & push #260
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Build and Push API & Web | |
| on: | |
| push: | |
| branches: | |
| - "main" | |
| - "deploy/**" | |
| - "build/**" | |
| - "release/e-*" | |
| - "hotfix/**" | |
| - "feat/hitl-backend" | |
| tags: | |
| - "*" | |
| concurrency: | |
| group: build-push-${{ github.head_ref || github.run_id }} | |
| cancel-in-progress: true | |
| env: | |
| DOCKERHUB_USER: ${{ secrets.DOCKERHUB_USER }} | |
| DOCKERHUB_TOKEN: ${{ secrets.DOCKERHUB_TOKEN }} | |
| DIFY_WEB_IMAGE_NAME: ${{ vars.DIFY_WEB_IMAGE_NAME || 'langgenius/dify-web' }} | |
| DIFY_API_IMAGE_NAME: ${{ vars.DIFY_API_IMAGE_NAME || 'langgenius/dify-api' }} | |
| jobs: | |
| build: | |
| runs-on: ${{ matrix.runs_on }} | |
| if: github.repository == 'henrybit/dify' | |
| strategy: | |
| matrix: | |
| include: | |
| - service_name: "build-api-amd64" | |
| image_name_env: "DIFY_API_IMAGE_NAME" | |
| artifact_context: "api" | |
| build_context: "{{defaultContext}}:api" | |
| file: "Dockerfile" | |
| platform: linux/amd64 | |
| runs_on: ubuntu-latest | |
| - service_name: "build-api-arm64" | |
| image_name_env: "DIFY_API_IMAGE_NAME" | |
| artifact_context: "api" | |
| build_context: "{{defaultContext}}:api" | |
| file: "Dockerfile" | |
| platform: linux/arm64 | |
| runs_on: ubuntu-24.04-arm | |
| - service_name: "build-web-amd64" | |
| image_name_env: "DIFY_WEB_IMAGE_NAME" | |
| artifact_context: "web" | |
| build_context: "{{defaultContext}}" | |
| file: "web/Dockerfile" | |
| platform: linux/amd64 | |
| runs_on: ubuntu-latest | |
| - service_name: "build-web-arm64" | |
| image_name_env: "DIFY_WEB_IMAGE_NAME" | |
| artifact_context: "web" | |
| build_context: "{{defaultContext}}" | |
| file: "web/Dockerfile" | |
| platform: linux/arm64 | |
| runs_on: ubuntu-24.04-arm | |
| steps: | |
| - name: Prepare | |
| run: | | |
| platform=${{ matrix.platform }} | |
| echo "PLATFORM_PAIR=${platform//\//-}" >> $GITHUB_ENV | |
| - name: Login to Docker Hub | |
| uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0 | |
| with: | |
| username: ${{ env.DOCKERHUB_USER }} | |
| password: ${{ env.DOCKERHUB_TOKEN }} | |
| - name: Set up Docker Buildx | |
| uses: docker/setup-buildx-action@4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd # v4.0.0 | |
| - name: Extract metadata for Docker | |
| id: meta | |
| uses: docker/metadata-action@030e881283bb7a6894de51c315a6bfe6a94e05cf # v6.0.0 | |
| with: | |
| images: ${{ env[matrix.image_name_env] }} | |
| - name: Build Docker image | |
| id: build | |
| uses: docker/build-push-action@bcafcacb16a39f128d818304e6c9c0c18556b85f # v7.1.0 | |
| with: | |
| context: ${{ matrix.build_context }} | |
| file: ${{ matrix.file }} | |
| platforms: ${{ matrix.platform }} | |
| build-args: COMMIT_SHA=${{ fromJSON(steps.meta.outputs.json).labels['org.opencontainers.image.revision'] }} | |
| labels: ${{ steps.meta.outputs.labels }} | |
| outputs: type=image,name=${{ env[matrix.image_name_env] }},push-by-digest=true,name-canonical=true,push=true | |
| cache-from: type=gha,scope=${{ matrix.service_name }} | |
| cache-to: type=gha,mode=max,scope=${{ matrix.service_name }} | |
| - name: Export digest | |
| env: | |
| DIGEST: ${{ steps.build.outputs.digest }} | |
| run: | | |
| mkdir -p /tmp/digests | |
| sanitized_digest=${DIGEST#sha256:} | |
| touch "/tmp/digests/${sanitized_digest}" | |
| - name: Upload digest | |
| uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 | |
| with: | |
| name: digests-${{ matrix.artifact_context }}-${{ env.PLATFORM_PAIR }} | |
| path: /tmp/digests/* | |
| if-no-files-found: error | |
| retention-days: 1 | |
| create-manifest: | |
| needs: build | |
| runs-on: ubuntu-latest | |
| if: github.repository == 'henrybit/dify' | |
| strategy: | |
| matrix: | |
| include: | |
| - service_name: "merge-api-images" | |
| image_name_env: "DIFY_API_IMAGE_NAME" | |
| context: "api" | |
| - service_name: "merge-web-images" | |
| image_name_env: "DIFY_WEB_IMAGE_NAME" | |
| context: "web" | |
| steps: | |
| - name: Download digests | |
| uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1 | |
| with: | |
| path: /tmp/digests | |
| pattern: digests-${{ matrix.context }}-* | |
| merge-multiple: true | |
| - name: Login to Docker Hub | |
| uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0 | |
| with: | |
| username: ${{ env.DOCKERHUB_USER }} | |
| password: ${{ env.DOCKERHUB_TOKEN }} | |
| - name: Extract metadata for Docker | |
| id: meta | |
| uses: docker/metadata-action@030e881283bb7a6894de51c315a6bfe6a94e05cf # v6.0.0 | |
| with: | |
| images: ${{ env[matrix.image_name_env] }} | |
| tags: | | |
| type=raw,value=latest,enable=${{ startsWith(github.ref, 'refs/tags/') && !contains(github.ref, '-') }} | |
| type=ref,event=branch | |
| type=sha,enable=true,priority=100,prefix=,suffix=,format=long | |
| type=raw,value=${{ github.ref_name }},enable=${{ startsWith(github.ref, 'refs/tags/') }} | |
| - name: Create manifest list and push | |
| working-directory: /tmp/digests | |
| env: | |
| IMAGE_NAME: ${{ env[matrix.image_name_env] }} | |
| run: | | |
| docker buildx imagetools create $(jq -cr '.tags | map("-t " + .) | join(" ")' <<< "$DOCKER_METADATA_OUTPUT_JSON") \ | |
| $(printf "$IMAGE_NAME@sha256:%s " *) | |
| - name: Inspect image | |
| env: | |
| IMAGE_NAME: ${{ env[matrix.image_name_env] }} | |
| IMAGE_VERSION: ${{ steps.meta.outputs.version }} | |
| run: | | |
| docker buildx imagetools inspect "$IMAGE_NAME:$IMAGE_VERSION" |