fix: use docker login CLI instead of login-action for Gitea compat

docker/login-action@v3 fails with 'Username and password required' on Gitea Actions — secrets not passed to action with: inputs. Switch to direct docker login CLI which reliably interpolates secrets in run: steps.
fix: switch Docker registry to HTTPS endpoint with login-action
2026-02-21 19:34:29 -05:00 · 2026-02-21 18:05:42 -05:00 · 2026-02-14 09:21:46 -05:00
1 changed files with 7 additions and 24 deletions
--- a/.gitea/workflows/build-push.yaml
+++ b/.gitea/workflows/build-push.yaml
@@ -8,8 +8,8 @@ on:
 env:
  NTFY_URL: http://ntfy.observability.svc.cluster.local:80
-  REGISTRY: gitea-http.gitea.svc.cluster.local:3000/daviestechlabs
+  REGISTRY: registry.lab.daviestechlabs.io/daviestechlabs
-  REGISTRY_HOST: gitea-http.gitea.svc.cluster.local:3000
+  REGISTRY_HOST: registry.lab.daviestechlabs.io
  IMAGE_NAME: ntfy-discord
 jobs:
@@ -116,29 +116,13 @@ jobs:
      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v3
-        with:
+
-          buildkitd-config-inline: |
+      - name: Login to Gitea Registry
-            [registry."gitea-http.gitea.svc.cluster.local:3000"]
+        run: echo "${{ secrets.REGISTRY_TOKEN }}" | docker login "${{ env.REGISTRY_HOST }}" -u "${{ secrets.REGISTRY_USER }}" --password-stdin
              http = true
              insecure = true
      - name: Login to Docker Hub
        if: vars.DOCKERHUB_USERNAME != ''
-        uses: docker/login-action@v3
+        run: echo "${{ secrets.DOCKERHUB_TOKEN }}" | docker login -u "${{ vars.DOCKERHUB_USERNAME }}" --password-stdin
        with:
          username: ${{ vars.DOCKERHUB_USERNAME }}
          password: ${{ secrets.DOCKERHUB_TOKEN }}
      - name: Configure Docker for insecure registry
        run: |
          sudo mkdir -p /etc/docker
          echo '{"insecure-registries": ["${{ env.REGISTRY_HOST }}"]}' | sudo tee /etc/docker/daemon.json
          sudo systemctl restart docker || sudo service docker restart || true
          sleep 2
      - name: Login to Gitea Registry
        run: |
          echo "${{ secrets.REGISTRY_TOKEN }}" | docker login ${{ env.REGISTRY_HOST }} -u ${{ secrets.REGISTRY_USER }} --password-stdin
      - name: Extract metadata
        id: meta
@@ -157,8 +141,7 @@ jobs:
          push: true
          tags: ${{ steps.meta.outputs.tags }}
          labels: ${{ steps.meta.outputs.labels }}
-          cache-from: type=gha
+
          cache-to: type=gha,mode=max
  notify:
    name: Notify
Author	SHA1	Message	Date
Billy D.	ea08181619	fix: use docker login CLI instead of login-action for Gitea compat Some checks failed CI / Test (push) Successful in 2m36s Details CI / Lint (push) Successful in 2m31s Details CI / Release (push) Successful in 1m18s Details CI / Docker Build & Push (push) Failing after 5m29s Details CI / Notify (push) Has been cancelled Details docker/login-action@v3 fails with 'Username and password required' on Gitea Actions — secrets not passed to action with: inputs. Switch to direct docker login CLI which reliably interpolates secrets in run: steps.	2026-02-21 19:34:29 -05:00
Billy D.	c4fd58c951	fix: switch Docker registry to HTTPS endpoint with login-action Some checks failed CI / Test (push) Successful in 3m12s Details CI / Release (push) Successful in 1m33s Details CI / Lint (push) Successful in 2m55s Details CI / Docker Build & Push (push) Failing after 8m26s Details CI / Notify (push) Successful in 2s Details - Replace gitea-http.gitea.svc.cluster.local:3000 with registry.lab.daviestechlabs.io - Use docker/login-action@v3 for Gitea registry auth (proper buildx integration) - Remove manual base64 auth to ~/.docker/config.json (not picked up by buildkit) - Remove insecure registry daemon.json config and Docker restart - Remove buildkitd insecure registry config - Remove cache-from/cache-to type=gha (not supported on Gitea Actions) Fixes 401 Unauthorized: reqPackageAccess on Docker push	2026-02-21 18:05:42 -05:00
Billy D.	0df7a8cdbb	fix: use config.json auth for Gitea registry login Some checks failed CI / Lint (push) Successful in 56s Details CI / Test (push) Successful in 53s Details CI / Release (push) Successful in 5s Details CI / Docker Build & Push (push) Failing after 2m2s Details CI / Notify (push) Successful in 2s Details docker login --password-stdin fails on act runner (non-TTY). Use base64 auth in ~/.docker/config.json instead, matching the kuberay-images pattern.	2026-02-14 09:21:46 -05:00