update terraform scripts

Author: github4demo

.dockerignore

@@ -0,0 +1,33 @@
+# Git
+.git
+.gitignore
+.github
+
+# Documentation
+README.md
+README.rst
+*.md
+*.rst
+
+# Terraform
+terraform/
+
+# Build artifacts
+.DS_Store
+*.log
+*.tmp
+
+# IDE
+.vscode/
+.idea/
+
+# Assets (images not needed for Docker builds)
+assets/
+
+# Helm charts (unless specifically needed)
+helm/
+
+# Other configs not needed in container
+Makefile
+LICENSE
+ves_ha-services-ce_aws-ha-vk8s.yaml

.github/workflows/docker-build-push.yml

@@ -0,0 +1,106 @@
+name: Build and Push Docker Images
+
+on:
+  push:
+    branches: [ main ]
+    paths:
+      - 'docker/**'
+      - 'nginx/**'
+      - '.github/workflows/docker-build-push.yml'
+    tags:
+      - 'v*'
+  workflow_dispatch:
+
+env:
+  REGISTRY: ghcr.io
+  IMAGE_NAME: ${{ github.repository }}
+
+jobs:
+  build-and-push:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      packages: write
+
+    strategy:
+      matrix:
+        include:
+          - dockerfile: docker/Dockerfile.migrate.nonroot
+            image-name: migrate-nonroot
+            context: .
+          - dockerfile: docker/Dockerfile.openrestry
+            image-name: openresty-base
+            context: .
+          - dockerfile: docker/Dockerfile.openresty.nonroot
+            image-name: openresty-nonroot
+            context: .
+
+    steps:
+    - name: Maximize build space
+      uses: easimon/maximize-build-space@master
+      with:
+        root-reserve-mb: 1024
+        swap-size-mb: 2048
+        remove-dotnet: 'true'
+        remove-android: 'true'
+        remove-haskell: 'true'
+        remove-codeql: 'true'
+        remove-docker-images: 'true'
+
+    - name: Checkout repository
+      uses: actions/checkout@v4
+
+    - name: Set up Docker Buildx
+      id: buildx
+      uses: docker/setup-buildx-action@v3
+      with:
+        driver-opts: |
+          image=moby/buildkit:buildx-stable-1
+          network=host
+
+    - name: Log in to Container Registry
+      uses: docker/login-action@v3
+      with:
+        registry: ${{ env.REGISTRY }}
+        username: ${{ github.actor }}
+        password: ${{ secrets.GITHUB_TOKEN }}
+
+    - name: Extract metadata
+      id: meta
+      uses: docker/metadata-action@v5
+      with:
+        images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}/${{ matrix.image-name }}
+        tags: |
+          type=ref,event=tag
+          type=raw,value=latest,enable={{is_default_branch}}
+
+    - name: Build and push Docker image
+      uses: docker/build-push-action@v5
+      with:
+        context: ${{ matrix.context }}
+        file: ${{ matrix.dockerfile }}
+        push: true
+        tags: ${{ steps.meta.outputs.tags }}
+        labels: ${{ steps.meta.outputs.labels }}
+        platforms: linux/amd64
+        cache-from: type=gha
+        cache-to: type=gha,mode=max
+        build-args: |
+          BUILDKIT_INLINE_CACHE=1
+        builder: ${{ steps.buildx.outputs.name }}
+        shm-size: 2g
+
+  build-summary:
+    needs: build-and-push
+    runs-on: ubuntu-latest
+    if: always()
+    steps:
+    - name: Build Summary
+      run: |
+        echo "## Docker Build Summary" >> $GITHUB_STEP_SUMMARY
+        echo "Built and pushed the following images:" >> $GITHUB_STEP_SUMMARY
+        echo "- migrate-nonroot" >> $GITHUB_STEP_SUMMARY
+        echo "- openresty-base" >> $GITHUB_STEP_SUMMARY
+        echo "- openresty-nonroot" >> $GITHUB_STEP_SUMMARY
+        echo "" >> $GITHUB_STEP_SUMMARY
+        echo "Images are available at: ghcr.io/${{ github.repository }}" >> $GITHUB_STEP_SUMMARY

Makefile

@@ -1,18 +1,9 @@
 .PHONY: default, secrets, docker-migrate, docker-nginx, docker, xc-deploy-bd, xc-deploy-nginx, deploy, delete
 
-DOCKER_SECRET		   ?= interestingstorage-secret
-DOCKER_REGISTRY 	   ?= interestingstorage
+DOCKER_REGISTRY 	   ?= ghcr.io/f5devcentral/xchaawsdemoguide/
 DOCKER_REPOSITORY_URI  ?= $(DOCKER_REGISTRY)/
 
 
-secrets:
-	KUBECONFIG=./ves_ha-services-ce_aws-ha-vk8s.yaml kubectl delete secret $(DOCKER_SECRET) --ignore-not-found
-	KUBECONFIG=./ves_ha-services-ce_aws-ha-vk8s.yaml kubectl create secret docker-registry $(DOCKER_SECRET) \
-		--docker-server=$(DOCKER_REGISTRY_SERVER) \
-		--docker-username=$(DOCKER_USER) \
-		--docker-password=$(DOCKER_PASS)
-
-
 docker-migrate:	
 	docker buildx build --no-cache \
 		--platform=linux/amd64 \
@@ -21,8 +12,8 @@ docker-migrate:
 		-t migrate \
 		-f ./docker/Dockerfile.migrate.nonroot \
 		.
-	docker tag migrate $(DOCKER_REPOSITORY_URI)migrate:latest
-	docker push $(DOCKER_REPOSITORY_URI)migrate:latest
+	docker tag migrate $(DOCKER_REPOSITORY_URI)migrate-nonroot:latest
+	docker push $(DOCKER_REPOSITORY_URI)migrate-nonroot:latest
 
 
 docker-nginx:	
@@ -40,10 +31,10 @@ docker-nginx:
 		-t openrestypg-nonroot \
 		-f ./docker/Dockerfile.openresty.nonroot \
 		.
-	docker tag openrestypg $(DOCKER_REPOSITORY_URI)openrestypg:latest
-	docker push $(DOCKER_REPOSITORY_URI)openrestypg:latest
-	docker tag openrestypg-nonroot $(DOCKER_REPOSITORY_URI)openrestypg-nonroot:latest
-	docker push $(DOCKER_REPOSITORY_URI)openrestypg-nonroot:latest
+	docker tag openrestypg $(DOCKER_REPOSITORY_URI)openresty-base:latest
+	docker push $(DOCKER_REPOSITORY_URI)openresty-base:latest
+	docker tag openrestypg-nonroot $(DOCKER_REPOSITORY_URI)openresty-nonroot:latest
+	docker push $(DOCKER_REPOSITORY_URI)openresty-nonroot:latest
 
 
 docker: docker-migrate, docker-nginx