name: Build containers

on:
  workflow_dispatch:
  pull_request:
    branches: ["main"]
  push:
    branches: ["main"]

jobs:
  build_push:
    name: Build and push image
    runs-on: coole-runner
    strategy:
      fail-fast: false
      matrix:
        image: [asahi-cosmic]
        version: [43] #Build current stable,next stable/rawhide (if not branched)
    container:
      image: "quay.io/fedora-ostree-desktops/buildroot:${{ matrix.version }}"
      options: "--security-opt=label=disable --privileged --user 0:0 --device=/dev/fuse --volume /:/run/host:rw"
    steps:

      - name: Install latest rpm-ostree package from testing repos
        run: |
          dnf upgrade -y --enablerepo=updates-testing --refresh rpm-ostree
          dnf install -y nodejs
          mkdir -p ~/.docker

        
      - name: Checkout
        uses: actions/checkout@v4

      - name: Log in
        uses: redhat-actions/podman-login@v1
        with:
          registry: git.plabble.org
          username: ${{ secrets.REGISTRY_USERNAME }}
          password: ${{ secrets.REGISTRY_TOKEN }}
          auth_file_path: /tmp/auth.json

      - name: Build rootfs
        run: |
          sudo ./builder.sh asahi-cosmic 43

      - name: Build container
        run: |
          buildah bud \
          --security-opt label=disable \
          --isolation=chroot \
          --cap-add=SYS_ADMIN \
          -t misthios/${{ matrix.image }}:${{ matrix.version }} \
          --build-arg IMAGE=${{ matrix.image }} \
          -f Containerfile .

      - name: Push
        uses: redhat-actions/push-to-registry@v2
        with:
          image: ${{ matrix.image }}
          tags: ${{ matrix.version }}
          registry: git.plabble.org
          username: ${{ secrets.REGISTRY_USERNAME }}
          password: ${{ secrets.REGISTRY_TOKEN }}
          extra-args: |
            --compression-format=zstd
            --compression-level=12