webhook-1 #28
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Docker pull push | |
| on: | |
| workflow_dispatch: | |
| repository_dispatch: | |
| types: | |
| - webhook-1 | |
| push: | |
| branches: [ main ] | |
| paths: | |
| - 'images.txt' | |
| jobs: | |
| build: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Check out the repo | |
| uses: actions/checkout@v4 | |
| - name: Build the Docker image | |
| run: | | |
| sudo systemctl stop docker | |
| sudo mkdir -p /mnt/lib/docker | |
| echo '{ "exec-opts": ["native.cgroupdriver=cgroupfs"], "cgroup-parent": "/actions_job","data-root": "/mnt/lib/docker"}' | sudo tee /etc/docker/daemon.json > /dev/null | |
| sudo systemctl daemon-reload | |
| sudo systemctl start docker | |
| # 钉钉机器人 Webhook 地址 | |
| dd_sign=${{secrets.DD_SIGN}} | |
| dd_token=${{secrets.DD_TOKEN}} | |
| webhook_url="https://oapi.dingtalk.com/robot/send?access_token=$dd_token" | |
| # 登录阿里云镜像仓库 | |
| docker login --username=${{secrets.ALIYUNCS_USERNAME}} --password=${{secrets.ALIYUNCS_PASSWORD}} registry.cn-hangzhou.aliyuncs.com | |
| echo "------------------------------------------------------------------------------------------" >> log.txt | |
| # 遍历 images.txt 进行pull push | |
| while IFS= read -r img; do | |
| OLD_IMAGE=$img | |
| NEW_IMAGE_VERSION=$(echo "$OLD_IMAGE" | sed 's/[/:]/-/g') | |
| NEW_IMAGE=registry.cn-hangzhou.aliyuncs.com/jiro-jlzhang/common:$NEW_IMAGE_VERSION | |
| docker pull $OLD_IMAGE | |
| docker tag $OLD_IMAGE $NEW_IMAGE | |
| docker push $NEW_IMAGE | |
| docker rmi $NEW_IMAGE $OLD_IMAGE | |
| # 计算签名 | |
| # timestamp=$(date +%s) | |
| # sign=$(echo -n "${timestamp}\n${dd_sign}" | openssl sha256 | awk '{print $2}') | |
| # 消息内容 | |
| message=$(printf '{"msgtype": "text", "text": {"content": "github:\n %s \n %s"}}' "$OLD_IMAGE" "$NEW_IMAGE") | |
| # curl -H "Content-Type: application/json" -X POST -d "$message" -H "Timestamp: $timestamp" -H "Sign: $sign" "$webhook_url" | |
| curl -H "Content-Type: application/json" -X POST -d "$message" "$webhook_url" | |
| # log | |
| image_log="${OLD_IMAGE} -> ${NEW_IMAGE}" | |
| echo "$image_log" >> log.txt | |
| done < images.txt | |
| cat log.txt |