name: Build and push container image
run-name: ${{ gitea.actor }} is building and pushing container image
on: [push]

env:
  RESULT_IMAGE_NAME: tools/rsyncd

jobs:
  build-and-push-image:
    runs-on: docker
    steps:
      - name: Checkout
        uses: actions/checkout@v5
      
      - name: Log in to registry
        uses: docker/login-action@v3
        with:
          registry: ${{ env.PRIVATE_REGISTRY_DOMAIN }}
          username: ${{ env.PRIVATE_REGISTRY_USER }}
          password: ${{ secret.PRIVATE_REGISTRY_PASSWORD }}
          #password: LibgegWaltAtcogwecGaj@Knyajes4
      
      - name: Set up QEMU
        uses: docker/setup-qemu-action@v3

      - name: Prepare BuildKit config with custom CA
        run: |
          CONFIG_DIR_PATH="${{ runner.temp }}/buildx-config"
          mkdir -p "${CONFIG_DIR_PATH}"
          
          CERT_FILE_PATH="${CONFIG_DIR_PATH}/ca.crt"
          CONFIG_FILE_PATH="${CONFIG_DIR_PATH}/buildkitd.toml"

          echo "${{ env.PRIVATE_REGISTRY_CA_CERT }}" > "${CERT_FILE_PATH}"

          cat << EOF > "${CONFIG_FILE_PATH}"
          [registry."${{ env.PRIVATE_REGISTRY_DOMAIN }}"]
            ca = ["${CERT_FILE_PATH}"]
          EOF

          echo "BUILDKIT_CONFIG=${CONFIG_FILE_PATH}" >> $GITEA_ENV # Für Gitea

      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v3
        with:
          config: ${{ env.BUILDKIT_CONFIG }}     

      - name: Build and push image
        uses: docker/build-push-action@v6
        with:
          platforms: linux/amd64,linux/arm64
          push: true
          tags: ${{  env.PRIVATE_REGISTRY_DOMAIN }}/${{ env.RESULT_IMAGE_NAME }}:latest