auth before pushing to registry...

Author: dminnear-rh

.github/workflows/docker-publish.yml

@@ -123,13 +123,6 @@ jobs:
           docker load --input /tmp/image-amd64.tar
           docker load --input /tmp/image-arm64.tar
 
-      # Push individual architecture images to registry
-      - name: Push architecture-specific images
-        run: |
-          IMAGE_BASE="${{ env.REGISTRY }}/${{ env.QUAY_IMAGE_NAME }}"
-          docker push "${IMAGE_BASE}:build-${{ github.run_id }}-amd64"
-          docker push "${IMAGE_BASE}:build-${{ github.run_id }}-arm64"
-
       # Install the cosign tool
       # https://github.com/sigstore/cosign-installer
       - name: Install cosign
@@ -144,6 +137,13 @@ jobs:
           username: ${{ secrets.QUAY_USERNAME }}
           password: ${{ secrets.QUAY_PASSWORD }}
 
+      # Push individual architecture images to registry
+      - name: Push architecture-specific images
+        run: |
+          IMAGE_BASE="${{ env.REGISTRY }}/${{ env.QUAY_IMAGE_NAME }}"
+          docker push "${IMAGE_BASE}:build-${{ github.run_id }}-amd64"
+          docker push "${IMAGE_BASE}:build-${{ github.run_id }}-arm64"
+
       # Extract metadata for multi-arch manifest
       - name: Extract Docker metadata for manifest
         id: meta