Coder Social home page Coder Social logo

appleboy / docker-ecr-action Goto Github PK

View Code? Open in Web Editor NEW
22.0 4.0 6.0 253 KB

Publish Docker Images to the Amazon Elastic Container Registry (ECR)

Home Page: https://github.com/marketplace/actions/docker-ecr

License: MIT License

Dockerfile 61.10% Shell 7.96% Go 30.94%
github-actions docker aws-ecr

docker-ecr-action's Introduction

๐Ÿš€ Docker ECR for GitHub Actions

GitHub Action for uploading Docker Image to Amazon Elastic Container Registry (ECR).

Docker ECR

Amazon ECR

What is ECR

Amazon Elastic Container Registry (ECR) is a fully-managed Docker container registry that makes it easy for developers to store, manage, and deploy Docker container images. Amazon ECR is integrated with Amazon Elastic Container Service (ECS), simplifying your development to production workflow. Amazon ECR eliminates the need to operate your own container repositories or worry about scaling the underlying infrastructure. Amazon ECR hosts your images in a highly available and scalable architecture, allowing you to reliably deploy containers for your applications. Integration with AWS Identity and Access Management (IAM) provides resource-level control of each repository. With Amazon ECR, there are no upfront fees or commitments. You pay only for the amount of data you store in your repositories and data transferred to the Internet. See the more detail information.

Permissions

The following minimum permissions are required for loggin, pushing and pulling images in an ECR repository:

{
   "Version":"2012-10-17",
   "Statement":[
      {
         "Sid":"AllowPush",
         "Effect":"Allow",
         "Action":[
            "ecr:GetDownloadUrlForLayer",
            "ecr:BatchGetImage",
            "ecr:BatchCheckLayerAvailability",
            "ecr:PutImage",
            "ecr:InitiateLayerUpload",
            "ecr:UploadLayerPart",
            "ecr:CompleteLayerUpload"
         ],
         "Resource":"arn:aws:ecr:us-east-1:123456789012:repository/my-repo"
      },
      {
         "Sid":"GetAuthorizationToken",
         "Effect":"Allow",
         "Action":[
            "ecr:GetAuthorizationToken"
         ],
         "Resource":"*"
      }
   ]
}

Usage

Upload docker image to Amazon Elastic Container Registry (ECR)

- name: upload image to ECR
  uses: appleboy/docker-ecr-action@master
  with:
    access_key: ${{ secrets.aws_access_key_id }}
    secret_key: ${{ secrets.aws_secret_access_key }}
    registry: ${{ secrets.registry }}
    cache_from: ${{ secrets.cache }}
    repo: api-sample
    region: ap-northeast-1
    auto_tag: true
    daemon_off: false
    dockerfile: example/Dockerfile
    context: example

Input variables

  • access_key - amazon access key
  • secret_key - amazon secret access key
  • registry - amazone docker registry url
  • region - amazon region, defaults to us-east-1
  • repo - repository name for the image
  • lifecycle_policy - filename of ecr lifecycle json policy
  • repository_policy - filename of ecr repository json policy
  • tags - repository tag for the image, defaults to latest
  • dockerfile - dockerfile to be used, defaults to Dockerfile
  • auth - auth token for the registry
  • context - the context path to use, defaults to root of the git repo
  • force_tag - replace existing matched image tags
  • insecure - enable insecure communication to this registry
  • mirror - use a mirror registry instead of pulling images directly from the central Hub
  • bip - use for pass bridge ip
  • custom_dns - set custom dns servers for the container
  • storage_driver - supports aufs, overlay or vfs drivers
  • build_args - custom arguments passed to docker build
  • cache_from - images to consider as cache sources
  • auto_tag: default build tags
  • daemon_off: don't start the docker daemon

Example

The ECR plugin can be used to build and publish images to the Amazon ECR registry. The below pipeline configuration demonstrates simple usage:

- name: upload image to ECR
  uses: appleboy/docker-ecr-action@master
  with:
    access_key: a50d28f4dd477bc184fbd10b376de753
    secret_key: bc5785d3ece6a9cdefa42eb99b58986f9095ff1c
    repo: bar
    registry: <account_id>.dkr.ecr.us-east-1.amazonaws.com

Example configuration using multiple tags:

- name: upload image to ECR
  uses: appleboy/docker-ecr-action@master
  with:
    repo: bar
    registry: <account_id>.dkr.ecr.us-east-1.amazonaws.com
    tags: "latest,1.0.1,1.0"

Override the default region:

- name: upload image to ECR
  uses: appleboy/docker-ecr-action@master
  with:
    repo: bar
    registry: <account_id>.dkr.ecr.us-east-1.amazonaws.com
    region: us-east-1

Override the default Dockerfile path:

- name: upload image to ECR
  uses: appleboy/docker-ecr-action@master
  with:
    repo: bar
    registry: <account_id>.dkr.ecr.us-east-1.amazonaws.com
    dockerfile: path/to/Dockerfile

Example configuration using build arguments:

- name: upload image to ECR
  uses: appleboy/docker-ecr-action@master
  with:
    repo: bar
    registry: <account_id>.dkr.ecr.us-east-1.amazonaws.com
    build_args: "HTTP_PROXY=http://yourproxy.com"

Example configuration using docker cache:

- name: upload image to ECR
  uses: appleboy/docker-ecr-action@master
  with:
    repo: bar
    registry: <account_id>.dkr.ecr.us-east-1.amazonaws.com
    cache_from: <account_id>.dkr.ecr.us-east-1.amazonaws.com/bar

docker-ecr-action's People

Contributors

appleboy avatar dependabot[bot] avatar

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar avatar

Forkers

patrickatliiingo yavinenana edgelabstech ivyostosh sakshi9111 harrykao1020

docker-ecr-action's Issues

Warning: Unexpected input(s) 'registry'

Unable to deploy, registry isn't supported, error thrown in action:

Warning: Unexpected input(s) 'registry', valid inputs are ['entryPoint', 'args', 'access_key', 'secret_key', 'region', 'repo', 'lifecycle_policy', 'repository_policy', 'tags', 'dockerfile', 'auth', 'context', 'force_tag', 'insecure', 'mirror', 'bip', 'custom_dns', 'storage_driver', 'cache_from', 'auto_tag', 'daemon_off']

Multiple Tags Not Working

I'm using this workflow:

name: Publish Docker image
on:
  release:
    types: [published]
jobs:
  push_to_registry:
    name: Build Docker image and push it to the registry
    runs-on: ubuntu-latest
    steps:
      - name: Check out the repo
        uses: actions/checkout@v2
      - name: Set env
        run: echo "RELEASE_VERSION=${GITHUB_REF#refs/*/}" >> $GITHUB_ENV
      - name: Upload image to ECR
        uses: appleboy/docker-ecr-action@master
        with:
          access_key: ${{ secrets.ACCESS_KEY_ID }}
          secret_key: ${{ secrets.SECRET_ACCESS_KEY }}
          cache_from: ${{ secrets.CACHE }}
          repo: mongo-backups
          region: eu-west-1
          tags: 'latest,${{ env.RELEASE_VERSION }}'
          dockerfile: Dockerfile

I verified that the tags value is: "latest,1.13.0"

But it adds no tag but latest:

image

Warning: Unexpected input(s) 'build_args'

When performing the following operation from a Rails app:

      - name: Build and push image to ECR
        id: build_push_docker_image
        uses: appleboy/docker-ecr-action@master
        env:
          REPOSITORY_REGISTRY: XXXX
          REPOSITORY_NAME: application
          MASTER_KEY: ${{ secrets.RAILS_MASTER_KEY }}
        with:
          access_key: ${{ secrets.AWS_ACCESS_KEY_ID }}
          secret_key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
          region: YYYY
          cache_from: ${{ env.REPOSITORY_REGISTRY }}/${{ env.REPOSITORY_NAME }}
          registry: ${{ env.REPOSITORY_REGISTRY }}
          repo: ${{ env.REPOSITORY_NAME }}
          dockerfile: Dockerfile
          tags: stage-${{ github.sha }}
          force_tag: true
          build_args: |
            "--secret id=master_key,env=MASTER_KEY"

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.