daviestechlabs/kuberay-images
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: Use internal HTTP endpoint with buildx config and direct auth
Some checks failed
Build and Push Images / determine-version (push) Successful in 1m24s
Details
Build and Push Images / build-rdna2 (push) Failing after 3h11m33s
Details
Build and Push Images / build-nvidia (push) Failing after 3h11m35s
Details
Build and Push Images / build-intel (push) Failing after 17m53s
Details
Build and Push Images / build-strixhalo (push) Failing after 3h11m34s
Details
Build and Push Images / Release (push) Has been cancelled
Details
Build and Push Images / Notify (push) Has been cancelled
Details

Browse Source 
- Back to internal endpoint (avoids Cloudflare 100MB limit)
- buildkitd-config-inline: http=true, insecure=true for HTTP registry
- Create ~/.docker/config.json directly with base64 auth
- No docker login command (it defaults to HTTPS)
- Buildx reads config.json for push authentication
This commit is contained in:
Billy Davies
2026-02-04 18:08:28 -05:00
parent dd6c400581
commit bc3c115b90
1 changed files with 83 additions and 31 deletions
Download Patch File Download Diff File Expand all files Collapse all files

114
.gitea/workflows/build-push.yaml
View File

@@ -23,9 +23,9 @@ on:
default: 'all' default: 'all'
env: env:
# Use external HTTPS endpoint with valid Let's Encrypt cert # Use internal HTTP endpoint (avoids Cloudflare 100MB limit and HTTPS issues)
REGISTRY: git.daviestechlabs.io/daviestechlabs REGISTRY: gitea-http.gitea.svc.cluster.local:3000/daviestechlabs
REGISTRY_HOST: git.daviestechlabs.io REGISTRY_HOST: gitea-http.gitea.svc.cluster.local:3000
NTFY_URL: http://ntfy.observability.svc.cluster.local:80 NTFY_URL: http://ntfy.observability.svc.cluster.local:80
jobs: jobs:
@@ -100,6 +100,11 @@ jobs:
- name: Set up Docker Buildx - name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3 uses: docker/setup-buildx-action@v3
with:
buildkitd-config-inline: |
[registry."gitea-http.gitea.svc.cluster.local:3000"]
http = true
insecure = true
# Login to Docker Hub to avoid pull rate limits # Login to Docker Hub to avoid pull rate limits
- name: Login to Docker Hub - name: Login to Docker Hub
@@ -109,14 +114,22 @@ jobs:
username: ${{ vars.DOCKERHUB_USERNAME }} username: ${{ vars.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }} password: ${{ secrets.DOCKERHUB_TOKEN }}
# Login to Gitea registry (external HTTPS with valid cert) # Configure Gitea registry auth (create config.json directly for HTTP registry)
- name: Login to Gitea Registry - name: Configure Gitea Registry Auth
if: github.event_name != 'pull_request' if: github.event_name != 'pull_request'
uses: docker/login-action@v3 run: |
with: AUTH=$(echo -n "${{ secrets.REGISTRY_USER }}:${{ secrets.REGISTRY_TOKEN }}" | base64 -w0)
registry: ${{ env.REGISTRY_HOST }} mkdir -p ~/.docker
username: ${{ secrets.REGISTRY_USER }} cat > ~/.docker/config.json << EOF
password: ${{ secrets.REGISTRY_TOKEN }} {
"auths": {
"${{ env.REGISTRY_HOST }}": {
"auth": "$AUTH"
}
}
}
EOF
echo "Auth configured for ${{ env.REGISTRY_HOST }}"
- name: Extract metadata - name: Extract metadata
id: meta id: meta
@@ -151,6 +164,11 @@ jobs:
- name: Set up Docker Buildx - name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3 uses: docker/setup-buildx-action@v3
with:
buildkitd-config-inline: |
[registry."gitea-http.gitea.svc.cluster.local:3000"]
http = true
insecure = true
- name: Login to Docker Hub - name: Login to Docker Hub
if: vars.DOCKERHUB_USERNAME != '' if: vars.DOCKERHUB_USERNAME != ''
@@ -159,14 +177,22 @@ jobs:
username: ${{ vars.DOCKERHUB_USERNAME }} username: ${{ vars.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }} password: ${{ secrets.DOCKERHUB_TOKEN }}
# Login to Gitea registry (external HTTPS with valid cert) # Configure Gitea registry auth (create config.json directly for HTTP registry)
- name: Login to Gitea Registry - name: Configure Gitea Registry Auth
if: github.event_name != 'pull_request' if: github.event_name != 'pull_request'
uses: docker/login-action@v3 run: |
with: AUTH=$(echo -n "${{ secrets.REGISTRY_USER }}:${{ secrets.REGISTRY_TOKEN }}" | base64 -w0)
registry: ${{ env.REGISTRY_HOST }} mkdir -p ~/.docker
username: ${{ secrets.REGISTRY_USER }} cat > ~/.docker/config.json << EOF
password: ${{ secrets.REGISTRY_TOKEN }} {
"auths": {
"${{ env.REGISTRY_HOST }}": {
"auth": "$AUTH"
}
}
}
EOF
echo "Auth configured for ${{ env.REGISTRY_HOST }}"
- name: Extract metadata - name: Extract metadata
id: meta id: meta
@@ -201,6 +227,11 @@ jobs:
- name: Set up Docker Buildx - name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3 uses: docker/setup-buildx-action@v3
with:
buildkitd-config-inline: |
[registry."gitea-http.gitea.svc.cluster.local:3000"]
http = true
insecure = true
- name: Login to Docker Hub - name: Login to Docker Hub
if: vars.DOCKERHUB_USERNAME != '' if: vars.DOCKERHUB_USERNAME != ''
@@ -209,14 +240,22 @@ jobs:
username: ${{ vars.DOCKERHUB_USERNAME }} username: ${{ vars.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }} password: ${{ secrets.DOCKERHUB_TOKEN }}
# Login to Gitea registry (external HTTPS with valid cert) # Configure Gitea registry auth (create config.json directly for HTTP registry)
- name: Login to Gitea Registry - name: Configure Gitea Registry Auth
if: github.event_name != 'pull_request' if: github.event_name != 'pull_request'
uses: docker/login-action@v3 run: |
with: AUTH=$(echo -n "${{ secrets.REGISTRY_USER }}:${{ secrets.REGISTRY_TOKEN }}" | base64 -w0)
registry: ${{ env.REGISTRY_HOST }} mkdir -p ~/.docker
username: ${{ secrets.REGISTRY_USER }} cat > ~/.docker/config.json << EOF
password: ${{ secrets.REGISTRY_TOKEN }} {
"auths": {
"${{ env.REGISTRY_HOST }}": {
"auth": "$AUTH"
}
}
}
EOF
echo "Auth configured for ${{ env.REGISTRY_HOST }}"
- name: Extract metadata - name: Extract metadata
id: meta id: meta
@@ -251,6 +290,11 @@ jobs:
- name: Set up Docker Buildx - name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3 uses: docker/setup-buildx-action@v3
with:
buildkitd-config-inline: |
[registry."gitea-http.gitea.svc.cluster.local:3000"]
http = true
insecure = true
- name: Login to Docker Hub - name: Login to Docker Hub
if: vars.DOCKERHUB_USERNAME != '' if: vars.DOCKERHUB_USERNAME != ''
@@ -259,14 +303,22 @@ jobs:
username: ${{ vars.DOCKERHUB_USERNAME }} username: ${{ vars.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }} password: ${{ secrets.DOCKERHUB_TOKEN }}
# Login to Gitea registry (external HTTPS with valid cert) # Configure Gitea registry auth (create config.json directly for HTTP registry)
- name: Login to Gitea Registry - name: Configure Gitea Registry Auth
if: github.event_name != 'pull_request' if: github.event_name != 'pull_request'
uses: docker/login-action@v3 run: |
with: AUTH=$(echo -n "${{ secrets.REGISTRY_USER }}:${{ secrets.REGISTRY_TOKEN }}" | base64 -w0)
registry: ${{ env.REGISTRY_HOST }} mkdir -p ~/.docker
username: ${{ secrets.REGISTRY_USER }} cat > ~/.docker/config.json << EOF
password: ${{ secrets.REGISTRY_TOKEN }} {
"auths": {
"${{ env.REGISTRY_HOST }}": {
"auth": "$AUTH"
}
}
}
EOF
echo "Auth configured for ${{ env.REGISTRY_HOST }}"
- name: Extract metadata - name: Extract metadata
id: meta id: meta