fleet/.github/workflows/goreleaser-snapshot-fleet.yaml

name: Docker publish

on: push

jobs:
  publish:
    # Only run it when the push is to the fleetdm/fleet repo. Otherwise the secrets for pushing to
    # Docker will not be available.
    if: github.repository_owner == 'fleetdm' 
    runs-on: ubuntu-latest
    environment: Docker Hub
    steps:
      - name: Checkout
        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2

      - name: Login to Docker Hub
        uses: docker/login-action@f054a8b539a109f9f41c372932f1ae047eff08c9 # v1.10.0
        with:
          username: ${{ secrets.DOCKERHUB_USERNAME }}
          password: ${{ secrets.DOCKERHUB_ACCESS_TOKEN }}

      - name: Set up Go
        uses: actions/setup-go@bfdd3570ce990073878bf10f6b2d79082de49492 # v2
        with:
          go-version: 1.17.8

      - name: Install Dependencies
        run: make deps

      - name: Run GoReleaser
        uses: goreleaser/goreleaser-action@ac067437f516133269923265894e77920c3dce18 # v2.6.1
        with:
          distribution: goreleaser-pro
          version: latest
          args: release --snapshot --rm-dist -f .goreleaser-snapshot.yml
        env:
          GORELEASER_KEY: ${{ secrets.GORELEASER_KEY }}
      
      - name: Tag image with branch name
        run: docker tag fleetdm/fleet:$(git rev-parse --short HEAD) fleetdm/fleet:$(git rev-parse --abbrev-ref HEAD)

      # Explicitly push the docker images as GoReleaser will not do so in snapshot mode
      - name: Publish Docker images
        run: docker push fleetdm/fleet --all-tags