[Buildkite] Re-order pipeline to improve security (#598)

This commit is contained in:
Amir Zarrinkafsh 2020-01-31 15:16:46 +11:00 committed by GitHub
parent 49e739d009
commit 275af90137
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 21 additions and 27 deletions

20
.buildkite/deployment.yml Normal file
View File

@ -0,0 +1,20 @@
steps:
- label: ":docker: Image Deployments"
command: ".buildkite/steps/deployimages.sh | buildkite-agent pipeline upload"
concurrency: 1
concurrency_group: "deployments"
- wait
- label: ":docker: Deploy Manifests"
command: "authelia-scripts docker push-manifest"
concurrency: 1
concurrency_group: "deployments"
env:
DOCKER_CLI_EXPERIMENTAL: "enabled"
- label: ":github: Deploy Artifacts"
command: ".buildkite/steps/ghartifacts.sh"
agents:
upload: "fast"
if: build.tag != null

View File

@ -16,29 +16,3 @@ steps:
command: ".buildkite/steps/e2etests.sh | buildkite-agent pipeline upload" command: ".buildkite/steps/e2etests.sh | buildkite-agent pipeline upload"
depends_on: depends_on:
- "build-docker-amd64" - "build-docker-amd64"
- wait
- label: ":docker: Image Deployments"
command: ".buildkite/steps/deployimages.sh | buildkite-agent pipeline upload"
concurrency: 1
concurrency_group: "deployments"
- wait
- label: ":docker: Deploy Manifests"
command: "authelia-scripts docker push-manifest"
concurrency: 1
concurrency_group: "deployments"
env:
DOCKER_CLI_EXPERIMENTAL: "enabled"
- label: ":github: Deploy Artifacts"
command: ".buildkite/steps/ghartifacts.sh"
agents:
upload: "fast"
depends_on:
- "build-docker-amd64"
- "build-docker-arm32v7"
- "build-docker-arm64v8"
if: build.tag != null