savagedb_bot/.gitea/workflows/docker-build-local.yml

name: Build and Push Docker Image (Local Registry)

on:
  push:
    branches:
      - main
      - develop
    tags:
      - 'v*'
  pull_request:
    branches:
      - main
      - develop
  workflow_dispatch:
    inputs:
      tag:
        description: 'Tag for the Docker image'
        required: false
        default: 'latest'

env:
  IMAGE_NAME: salvagedb-bot

jobs:
  build:
    runs-on: ubuntu-latest
    
    steps:
      - name: Checkout repository
        uses: actions/checkout@v4

      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v3

      - name: Log in to Local Registry
        if: github.event_name != 'pull_request' && secrets.DOCKER_REGISTRY_USERNAME != '' && secrets.DOCKER_REGISTRY_PASSWORD != ''
        uses: docker/login-action@v3
        with:
          registry: ${{ secrets.DOCKER_REGISTRY_URL }}
          username: ${{ secrets.DOCKER_REGISTRY_USERNAME }}
          password: ${{ secrets.DOCKER_REGISTRY_PASSWORD }}

      - name: Generate tags
        id: tags
        run: |
          # Harbor формат: registry_url/project/repository:tag
          REGISTRY_URL="${{ secrets.DOCKER_REGISTRY_URL }}"
          PROJECT_NAME="${{ secrets.DOCKER_REGISTRY_PROJECT || 'salvage_bot' }}"
          IMAGE_NAME="${{ env.IMAGE_NAME }}"
          
          # Убираем протокол из registry URL если есть
          REGISTRY_URL=$(echo "$REGISTRY_URL" | sed 's|^https\?://||')
          
          if [[ "${{ github.event_name }}" == "workflow_dispatch" ]]; then
            echo "tags=${REGISTRY_URL}/${PROJECT_NAME}/${IMAGE_NAME}:${{ github.event.inputs.tag }}" >> $GITHUB_OUTPUT
          elif [[ "${{ github.event_name }}" == "pull_request" ]]; then
            pr_number=${{ github.event.number }}
            echo "tags=${REGISTRY_URL}/${PROJECT_NAME}/${IMAGE_NAME}:pr-${pr_number}" >> $GITHUB_OUTPUT
          elif [[ "${{ github.ref_type }}" == "tag" ]]; then
            tag=${GITHUB_REF#refs/tags/}
            echo "tags=${REGISTRY_URL}/${PROJECT_NAME}/${IMAGE_NAME}:${tag},${REGISTRY_URL}/${PROJECT_NAME}/${IMAGE_NAME}:latest" >> $GITHUB_OUTPUT
          elif [[ "${{ github.ref_name }}" == "main" ]]; then
            echo "tags=${REGISTRY_URL}/${PROJECT_NAME}/${IMAGE_NAME}:latest,${REGISTRY_URL}/${PROJECT_NAME}/${IMAGE_NAME}:main" >> $GITHUB_OUTPUT
          else
            branch_name=$(echo "${{ github.ref_name }}" | sed 's/[^a-zA-Z0-9]/-/g')
            echo "tags=${REGISTRY_URL}/${PROJECT_NAME}/${IMAGE_NAME}:${branch_name}" >> $GITHUB_OUTPUT
          fi

      - name: Build and push Docker image
        uses: docker/build-push-action@v5
        with:
          context: .
          file: ./Dockerfile
          platforms: linux/amd64
          push: ${{ github.event_name != 'pull_request' && secrets.DOCKER_REGISTRY_USERNAME != '' && secrets.DOCKER_REGISTRY_PASSWORD != '' }}
          tags: ${{ steps.tags.outputs.tags }}
          cache-from: type=gha
          cache-to: type=gha,mode=max
          labels: |
            org.opencontainers.image.source=${{ github.server_url }}/${{ github.repository }}
            org.opencontainers.image.revision=${{ github.sha }}
            org.opencontainers.image.created=${{ github.event.head_commit.timestamp }}

      - name: Summary
        run: |
          echo "## Docker Build Summary" >> $GITHUB_STEP_SUMMARY
          echo "- **Event:** ${{ github.event_name }}" >> $GITHUB_STEP_SUMMARY
          echo "- **Registry:** ${{ secrets.DOCKER_REGISTRY_URL }}" >> $GITHUB_STEP_SUMMARY
          echo "- **Project:** ${{ secrets.DOCKER_REGISTRY_PROJECT || 'salvage_bot' }}" >> $GITHUB_STEP_SUMMARY
          echo "- **Repository:** ${{ env.IMAGE_NAME }}" >> $GITHUB_STEP_SUMMARY
          echo "- **Tags:** ${{ steps.tags.outputs.tags }}" >> $GITHUB_STEP_SUMMARY
          echo "- **Commit:** ${{ github.sha }}" >> $GITHUB_STEP_SUMMARY
          echo "" >> $GITHUB_STEP_SUMMARY
          echo "### 📦 Harbor Format:" >> $GITHUB_STEP_SUMMARY
          echo "\`\`\`" >> $GITHUB_STEP_SUMMARY
          echo "docker pull ${{ steps.tags.outputs.tags }}" >> $GITHUB_STEP_SUMMARY
          echo "\`\`\`" >> $GITHUB_STEP_SUMMARY
          
          # Проверяем наличие credentials
          if [[ "${{ secrets.DOCKER_REGISTRY_USERNAME }}" == "" || "${{ secrets.DOCKER_REGISTRY_PASSWORD }}" == "" || "${{ secrets.DOCKER_REGISTRY_URL }}" == "" ]]; then
            echo "- **🔐 Registry Login:** ❌ Missing credentials" >> $GITHUB_STEP_SUMMARY
            echo "- **Action:** Build only (no push to registry)" >> $GITHUB_STEP_SUMMARY
            echo "" >> $GITHUB_STEP_SUMMARY
            echo "### ⚠️ Configuration Required:" >> $GITHUB_STEP_SUMMARY
            echo "To push images to registry, configure these secrets:" >> $GITHUB_STEP_SUMMARY
            echo "- \`DOCKER_REGISTRY_URL\` - registry URL (e.g., reg.ddl.su)" >> $GITHUB_STEP_SUMMARY
            echo "- \`DOCKER_REGISTRY_PROJECT\` - Harbor project name (e.g., salvage_bot)" >> $GITHUB_STEP_SUMMARY
            echo "- \`DOCKER_REGISTRY_USERNAME\` - Harbor username (preferably robot account)" >> $GITHUB_STEP_SUMMARY
            echo "- \`DOCKER_REGISTRY_PASSWORD\` - Harbor password/token" >> $GITHUB_STEP_SUMMARY
          elif [[ "${{ github.event_name }}" == "pull_request" ]]; then
            echo "- **PR Number:** #${{ github.event.number }}" >> $GITHUB_STEP_SUMMARY
            echo "- **Action:** Build only (no push for PR)" >> $GITHUB_STEP_SUMMARY
          else
            echo "- **🔐 Registry Login:** ✅ Authenticated" >> $GITHUB_STEP_SUMMARY
            echo "- **Action:** Build and push to registry" >> $GITHUB_STEP_SUMMARY
          fi