Add a command to push to OCI registries #362
Conversation
| for i in $(seq 1 $tries) ; do | ||
| echo "====> Attempt $i: Running: helm push ../build/*.tgz $app_catalog_name" | ||
| set +e | ||
| helm push ../build/*.tgz $app_catalog_name |
There was a problem hiding this comment.
Maybe a stupid question: Where does helm actually come from here? Is it just installed by default? And should we verify that the version is recent enough?
There was a problem hiding this comment.
architect-orb uses architect's Dockerfile as a base image. We install a bunch of binaries in that Dockerfile, including helm. I've recently updated architect (https://github.com/giantswarm/architect/pull/728/files), and architect-orb is already using the latest release.
Co-authored-by: Ross Fairbanks <[email protected]>
|
Sorry to chime in ininvited, please ignore me if my concerns don't make any sense.. Why introduce a new command? Couldn't this also work with the existing commands/jobs by specifying the catalog as |
|
@ubergesundheit: Existing commands "push" to catalogs by making a Git commit in a specified repository. This command on the other hand will use helm to publish a chart to an OCI registry. That feels different enough to me to warrant a separate command. There is another command used to push with ABS enabled: https://github.com/giantswarm/architect-orb/blob/master/src/commands/package-and-push-with-abs.yaml. I'll add an OCI + ABS version as well as an OCI registry login to this PR before re-requesting reviews. |
Thats good! TBH a solution where the git based pushing would be moved into a separate command and then making the pushing command/mechanism configurable in the existing jobs would be less confusing, but this is also fine for me. |
Bundling the two sounds like a solid idea. I'll add it to the proposed PR as well. |
|
@MarcelMue This PR adds a new command set for pushing charts to OCI registries (two new commands). It also adds two switches to the If we merge this and craft a release, everything will remain the same due to the defaults. If we flip the switches we can change behavior to push to OCI as well or push to it exclusively. Do we want |
|
I think it makes sense to release first with the switch disabled and then try it in select repositories. WDYT? |
|
I agree 👨🔬 |
|
It works! |
|
@ubergesundheit PTAL. I think this covers all your requests. Push to the catalogs hosted on GitHub happens by default. All one has to do to push to the OCI registries is add a workflows:
version: 2
build-and-push:
jobs:
- architect/push-to-app-catalog:
context: "architect"
executor: "app-build-suite"
name: "package and push chart to app catalog"
app_catalog: "giantswarm-catalog"
app_catalog_test: "giantswarm-test-catalog"
chart: "hello-world-app"
# Trigger job on git tag.
filters:
tags:
only: /^v.*/
push_to_oci_registry: true |
|
Thanks :) Some addition to the docs would have been nice |
|
Sure, on it. |
Towards giantswarm/roadmap#391
Checklist