f5devcentral
diff --git a/‎.github/workflows/README.md‎
Lines changed: 104 additions & 0 deletions b/‎.github/workflows/README.md‎
Lines changed: 104 additions & 0 deletions
diff --git a/‎.github/workflows/build-containers.yml‎
Lines changed: 106 additions & 0 deletions b/‎.github/workflows/build-containers.yml‎
Lines changed: 106 additions & 0 deletions
diff --git a/‎.github/workflows/build-pr.yml‎
Lines changed: 65 additions & 0 deletions b/‎.github/workflows/build-pr.yml‎
Lines changed: 65 additions & 0 deletions
diff --git a/‎.github/workflows/build-release.yml‎
Lines changed: 113 additions & 0 deletions b/‎.github/workflows/build-release.yml‎
Lines changed: 113 additions & 0 deletions
@@ -0,0 +1,104 @@
+# GitHub Actions Workflows
+
+This directory contains GitHub Actions workflows for building and publishing container images to GitHub Container Registry (ghcr.io).
+
+## Workflows
+
+### build-containers.yml
+
+**Trigger:** Push to `main` branch  
+**Purpose:** Builds and publishes all container images with `latest` and SHA tags  
+**Images:**
+
+- `ghcr.io/<owner>/<repo>:latest` - Main API container
+- `ghcr.io/<owner>/<repo>-webui:latest` - Web UI container
+- `ghcr.io/<owner>/<repo>-devportal:latest` - DevPortal container
+
+### build-pr.yml
+
+**Trigger:** Pull requests to `main` branch  
+**Purpose:** Builds all container images (without publishing) to verify they build correctly  
+**Images:** Same as above but not pushed to registry
+
+### build-release.yml
+
+**Trigger:** Git tags matching `v*.*.*` pattern (e.g., `v1.0.0`)  
+**Purpose:** Builds and publishes release versions with semantic versioning tags  
+**Images:** Same containers as above but tagged with:
+
+- Full version (e.g., `v1.2.3`)
+- Major.minor version (e.g., `v1.2`)
+- Major version (e.g., `v1`)
+- SHA commit hash
+
+## Container Images
+
+### Main API (`Dockerfile`)
+
+The core NGINX Declarative API service built with Python and Alpine Linux.
+
+### Web UI (`webui/Dockerfile`)
+
+The web interface for managing the NGINX Declarative API, built with Node.js and served by NGINX.
+
+### DevPortal (`contrib/devportal/redocly/Dockerfile`)
+
+The Redocly-based developer portal for API documentation.
+
+## Usage
+
+### Pushing to Main Branch
+
+```bash
+git push origin main
+```
+
+This triggers `build-containers.yml` and publishes images with the `latest` tag.
+
+### Creating a Release
+
+```bash
+git tag v1.0.0
+git push origin v1.0.0
+```
+
+This triggers `build-release.yml` and publishes versioned images.
+
+### Pull Requests
+
+When creating a pull request to `main`, the `build-pr.yml` workflow automatically runs to verify all containers build successfully.
+
+## Permissions
+
+The workflows require the following GitHub token permissions:
+
+- `contents: read` - To checkout the repository
+- `packages: write` - To publish to GitHub Container Registry
+
+These are automatically provided by the `GITHUB_TOKEN` secret.
+
+## Registry Access
+
+Published images are available at:
+
+```
+ghcr.io/<owner>/<repo>
+ghcr.io/<owner>/<repo>-webui
+ghcr.io/<owner>/<repo>-devportal
+```
+
+To pull images:
+
+```bash
+docker pull ghcr.io/<owner>/<repo>:latest
+docker pull ghcr.io/<owner>/<repo>-webui:latest
+docker pull ghcr.io/<owner>/<repo>-devportal:latest
+```
+
+For versioned releases:
+
+```bash
+docker pull ghcr.io/<owner>/<repo>:v1.0.0
+docker pull ghcr.io/<owner>/<repo>-webui:v1.0.0
+docker pull ghcr.io/<owner>/<repo>-devportal:v1.0.0
+```
@@ -0,0 +1,106 @@
+name: Create and publish container images
+
+on:
+  push:
+    branches: ["main"]
+
+env:
+  REGISTRY: ghcr.io
+  IMAGE_NAME: ${{ github.repository }}
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Set up Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: 'lts/*'
+          cache: 'npm'
+          cache-dependency-path: webui/package-lock.json
+
+      - name: Install WebUI dependencies
+        working-directory: webui
+        run: npm ci
+
+      - name: Run WebUI tests
+        working-directory: webui
+        run: npm test -- --run
+
+  build-and-push-images:
+    runs-on: ubuntu-latest
+    needs: test
+    permissions:
+      contents: read
+      packages: write
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Log in to the Container registry
+        uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567
+        with:
+          registry: ${{ env.REGISTRY }}
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      # Build and push dapi container (main Dockerfile)
+      - name: Extract metadata (tags, labels) for dapi container
+        id: meta-dapi
+        uses: docker/metadata-action@8e5442c4ef9f78752691e2d8f8d19755c6f78e81
+        with:
+          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
+          tags: |
+            type=sha
+            type=raw,value=latest
+
+      - name: Build and push dapi image
+        uses: docker/build-push-action@5cd11c3a4ced054e52742c5fd54dca954e0edd85
+        with:
+          context: .
+          push: true
+          tags: ${{ steps.meta-dapi.outputs.tags }}
+          labels: ${{ steps.meta-dapi.outputs.labels }}
+
+      # Build and push WebUI container
+      - name: Extract metadata (tags, labels) for WebUI container
+        id: meta-webui
+        uses: docker/metadata-action@8e5442c4ef9f78752691e2d8f8d19755c6f78e81
+        with:
+          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}-webui
+          tags: |
+            type=sha
+            type=raw,value=latest
+
+      - name: Build and push WebUI image
+        uses: docker/build-push-action@5cd11c3a4ced054e52742c5fd54dca954e0edd85
+        with:
+          context: webui/.
+          push: true
+          tags: ${{ steps.meta-webui.outputs.tags }}
+          labels: ${{ steps.meta-webui.outputs.labels }}
+
+      # Build and push DevPortal container
+      - name: Extract metadata (tags, labels) for DevPortal container
+        id: meta-devportal
+        uses: docker/metadata-action@8e5442c4ef9f78752691e2d8f8d19755c6f78e81
+        with:
+          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}-devportal
+          tags: |
+            type=sha
+            type=raw,value=latest
+
+      - name: Build and push DevPortal image
+        uses: docker/build-push-action@5cd11c3a4ced054e52742c5fd54dca954e0edd85
+        with:
+          context: contrib/devportal/redocly/.
+          push: true
+          tags: ${{ steps.meta-devportal.outputs.tags }}
+          labels: ${{ steps.meta-devportal.outputs.labels }}
@@ -0,0 +1,65 @@
+name: Build container images (PR)
+
+on:
+  pull_request:
+    branches: ["main"]
+
+env:
+  REGISTRY: ghcr.io
+  IMAGE_NAME: ${{ github.repository }}
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Set up Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: 'lts/*'
+          cache: 'npm'
+          cache-dependency-path: webui/package-lock.json
+
+      - name: Install WebUI dependencies
+        working-directory: webui
+        run: npm ci
+
+      - name: Run WebUI tests
+        working-directory: webui
+        run: npm test -- --run
+
+  build-images:
+    runs-on: ubuntu-latest
+    needs: test
+    permissions:
+      contents: read
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      # Build dapi container (main Dockerfile)
+      - name: Build dapi image
+        uses: docker/build-push-action@5cd11c3a4ced054e52742c5fd54dca954e0edd85
+        with:
+          context: .
+          push: false
+
+      # Build WebUI container
+      - name: Build WebUI image
+        uses: docker/build-push-action@5cd11c3a4ced054e52742c5fd54dca954e0edd85
+        with:
+          context: webui/.
+          push: false
+
+      # Build DevPortal container
+      - name: Build DevPortal image
+        uses: docker/build-push-action@5cd11c3a4ced054e52742c5fd54dca954e0edd85
+        with:
+          context: contrib/devportal/redocly/.
+          push: false
@@ -0,0 +1,113 @@
+name: Create and publish release container images
+
+on:
+  push:
+    tags:
+      - 'v*.*.*'
+
+env:
+  REGISTRY: ghcr.io
+  IMAGE_NAME: ${{ github.repository }}
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Set up Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: 'lts/*'
+          cache: 'npm'
+          cache-dependency-path: webui/package-lock.json
+
+      - name: Install WebUI dependencies
+        working-directory: webui
+        run: npm ci
+
+      - name: Run WebUI tests
+        working-directory: webui
+        run: npm test -- --run
+
+  build-and-push-images:
+    runs-on: ubuntu-latest
+    needs: test
+    permissions:
+      contents: read
+      packages: write
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Log in to the Container registry
+        uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567
+        with:
+          registry: ${{ env.REGISTRY }}
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      # Build and push dapi container (main Dockerfile)
+      - name: Extract metadata (tags, labels) for dapi container
+        id: meta-dapi
+        uses: docker/metadata-action@8e5442c4ef9f78752691e2d8f8d19755c6f78e81
+        with:
+          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
+          tags: |
+            type=semver,pattern={{version}}
+            type=semver,pattern={{major}}.{{minor}}
+            type=semver,pattern={{major}}
+            type=sha
+
+      - name: Build and push dapi image
+        uses: docker/build-push-action@5cd11c3a4ced054e52742c5fd54dca954e0edd85
+        with:
+          context: .
+          push: true
+          tags: ${{ steps.meta-dapi.outputs.tags }}
+          labels: ${{ steps.meta-dapi.outputs.labels }}
+
+      # Build and push WebUI container
+      - name: Extract metadata (tags, labels) for WebUI container
+        id: meta-webui
+        uses: docker/metadata-action@8e5442c4ef9f78752691e2d8f8d19755c6f78e81
+        with:
+          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}-webui
+          tags: |
+            type=semver,pattern={{version}}
+            type=semver,pattern={{major}}.{{minor}}
+            type=semver,pattern={{major}}
+            type=sha
+
+      - name: Build and push WebUI image
+        uses: docker/build-push-action@5cd11c3a4ced054e52742c5fd54dca954e0edd85
+        with:
+          context: webui/.
+          push: true
+          tags: ${{ steps.meta-webui.outputs.tags }}
+          labels: ${{ steps.meta-webui.outputs.labels }}
+
+      # Build and push DevPortal container
+      - name: Extract metadata (tags, labels) for DevPortal container
+        id: meta-devportal
+        uses: docker/metadata-action@8e5442c4ef9f78752691e2d8f8d19755c6f78e81
+        with:
+          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}-devportal
+          tags: |
+            type=semver,pattern={{version}}
+            type=semver,pattern={{major}}.{{minor}}
+            type=semver,pattern={{major}}
+            type=sha
+
+      - name: Build and push DevPortal image
+        uses: docker/build-push-action@5cd11c3a4ced054e52742c5fd54dca954e0edd85
+        with:
+          context: contrib/devportal/redocly/.
+          push: true
+          tags: ${{ steps.meta-devportal.outputs.tags }}
+          labels: ${{ steps.meta-devportal.outputs.labels }}