KnockOutWhist/KnockOutWhist-Web
4
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 72 Wiki Activity

feat: Enhance Dockerfile with secret management for GitHub credentials

Browse Source
This commit is contained in:
Janis
2026-01-07 11:40:10 +01:00
parent ccf993bff2
commit 5f9ef2beb0
1 changed files with 14 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
Dockerfile
View File

@@ -1,6 +1,10 @@
# === Stage 1: Build the Play application === # === Stage 1: Build the Play application ===
FROM --platform=$BUILDPLATFORM sbtscala/scala-sbt:eclipse-temurin-alpine-22_36_1.10.3_3.5.1 AS builder FROM --platform=$BUILDPLATFORM sbtscala/scala-sbt:eclipse-temurin-alpine-22_36_1.10.3_3.5.1 AS builder
ARG GITHUB_USER
ARG GITHUB_TOKEN
WORKDIR /app WORKDIR /app
# Install Node.js and Less CSS preprocessor # Install Node.js and Less CSS preprocessor
@@ -11,14 +15,21 @@ RUN apk add --no-cache nodejs npm && \
# Cache dependencies first # Cache dependencies first
COPY project ./project COPY project ./project
COPY build.sbt ./ COPY build.sbt ./
RUN sbt -Dscoverage.skip=true update RUN --mount=type=secret,id=github_user \
--mount=type=secret,id=github_token \
export GITHUB_USER=$(cat /run/secrets/github_user) && \
export GITHUB_TOKEN=$(cat /run/secrets/github_token) && \
sbt -Dscoverage.skip=true update
# Copy the rest of the code # Copy the rest of the code
COPY . . COPY . .
# Build the app and stage it # Build the app and stage it
RUN sbt -Dscoverage.skip=true clean stage RUN --mount=type=secret,id=github_user \
--mount=type=secret,id=github_token \
export GITHUB_USER=$(cat /run/secrets/github_user) && \
export GITHUB_TOKEN=$(cat /run/secrets/github_token) && \
sbt -Dscoverage.skip=true clean stage
# === Stage 2: Runtime image === # === Stage 2: Runtime image ===
FROM --platform=$TARGETPLATFORM eclipse-temurin:22-jre-alpine FROM --platform=$TARGETPLATFORM eclipse-temurin:22-jre-alpine