From aba30ac4f45b031e637b899f66af2dabda933e92 Mon Sep 17 00:00:00 2001 From: Nugraha Date: Tue, 6 Dec 2022 18:15:25 +0700 Subject: [PATCH] ci: initial files --- .github/workflows/ci.yml | 27 +++++++++++++++++++++++++++ .goreleaser.yml | 7 +++++++ Dockerfile | 2 +- Makefile | 7 +------ README.md | 5 ++--- 5 files changed, 38 insertions(+), 10 deletions(-) create mode 100644 .github/workflows/ci.yml create mode 100644 .goreleaser.yml diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml new file mode 100644 index 0000000..6c4df72 --- /dev/null +++ b/.github/workflows/ci.yml @@ -0,0 +1,27 @@ +name: CI +env: + DOCKER_BUILDKIT: 1 +on: + push: + workflow_dispatch: + +jobs: + release: + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v2 + with: + fetch-depth: 0 + - name: Docker Login + env: + DOCKER_USERNAME: ${{ secrets.DOCKERHUB_USERNAME }} + DOCKER_PASSWORD: ${{ secrets.DOCKERHUB_PASSWORD }} + run: | + echo "${DOCKER_PASSWORD}" | docker login --username "${DOCKER_USERNAME}" --password-stdin + - name: Run GoReleaser + uses: goreleaser/goreleaser-action@v2 + with: + version: latest + args: release --rm-dist + env: + GITHUB_TOKEN: ${{ secrets.GORELEASER_GITHUB_TOKEN }} \ No newline at end of file diff --git a/.goreleaser.yml b/.goreleaser.yml new file mode 100644 index 0000000..fbb95bc --- /dev/null +++ b/.goreleaser.yml @@ -0,0 +1,7 @@ +dockers: + - goos: linux + goarch: amd64 + image_templates: + - "ii64/obs-access-signer:latest" + - "ii64/obs-access-signer:v{{ .Version }}" + skip_push: auto \ No newline at end of file diff --git a/Dockerfile b/Dockerfile index 18a1029..cb350c7 100644 --- a/Dockerfile +++ b/Dockerfile @@ -6,7 +6,7 @@ COPY . /build RUN apk add --no-cache \ make -RUN --mount=type=cache,mode=0755,target=/go/pkg/mod make dep +RUN make dep RUN make build diff --git a/Makefile b/Makefile index d27b0d5..0ae510d 100644 --- a/Makefile +++ b/Makefile @@ -2,8 +2,6 @@ all: build export DOCKER_BUILDKIT=1 -IMAGE := obs-access-signer:dev - # use zig cc/c++ to statically link deps TARGET_TRIPLE := x86_64-linux @@ -18,7 +16,4 @@ dep: go mod download build: - CGO_ENABLED=0 CC="zig cc $(CFLAGS)" CXX="zig c++ $(CXXFLAGS)" go build $(GOFLAGS) . - -build.docker: - "docker" build --progress=plain -t $(IMAGE) . \ No newline at end of file + CGO_ENABLED=0 CC="zig cc $(CFLAGS)" CXX="zig c++ $(CXXFLAGS)" go build $(GOFLAGS) . \ No newline at end of file diff --git a/README.md b/README.md index c8571f3..aa28994 100644 --- a/README.md +++ b/README.md @@ -4,12 +4,11 @@ S3 Object Storage access signer. Run `obs-access-signer` behind a gateway/cache proxy is preferred as the response is static. -There's an example of using it with Varnish Cache, you can see [here](docker/docker-compose.yaml). +There's an example of using it with Varnish Cache, which you can see [here](docker/docker-compose.yaml). ## Why? -Some S3-compatible gateway might not support ACL endpoints but they are support presigned access. Currently, the behavior of `obs-access-signer` is similar to `public-read` ACL where clients can access objects anonymously and redirect them (permanently) to presigned url with `Expires` set to the max signed value of `int64` which has roughly 250yrs lifetime since unix time started. - +Some S3-compatible gateways might not support ACL endpoints but they support presigned access. Currently, the behavior of `obs-access-signer` is similar to `public-read` ACL where clients can access objects anonymously and redirect them (permanently) to presigned URL with `Expires` set to the max signed value of `int64` which has roughly 250yrs lifetime since UNIX time started. ## License