ci: add Dockerfile and GitHub actions (#90)

* ci: add Dockerfile and GitHub actions

* added Makefile and test CI

* fix: ci

* fix: ci

* chmod +x cbsurge.sh

* fix: ci

* fixed CI cache path

* fix: ci

* change arch to lowercase

* fix: mkdir -p

* fix: mkdir TAR_PATH

* fix: mkdir cache folder

Author: JinIgarashi

.dockerignore

@@ -0,0 +1,9 @@
+./.devcontainer/
+./.github/
+./.venv
+./venv
+.gitignore
+docker-compose.yaml
+Dockerfile
+Pipfile
+Pipfile.lock

.github/workflows/ci.yml

@@ -0,0 +1,132 @@
+name: Build docker image
+
+on:
+  push:
+    branches:
+      - "main"
+    tags:
+      - "v*"
+  pull_request:
+
+jobs:
+  build:
+    name: Build & test docker image
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+      - name: Create image tag
+        id: image_tag
+        run: |
+          # Define cache dir
+          ARCH=${{ runner.arch }}
+          CACHE_PATH="/tmp/docker_cache_${ARCH,,}"
+          # Get Dockerfile hash for image cache
+          IMAGE_HASH="${{ hashFiles('./Dockerfile') }}"
+          # Create image tag
+          VARIANT="$(TZ=UTC-9 date +%Y%m%d)_${IMAGE_HASH:0:7}"
+          IMAGE_NAME="geo_cb_surge_${ARCH,,}"
+          TAG="${IMAGE_NAME}:${VARIANT}"
+          # Cache dir setting
+          TAR_NAME="${IMAGE_NAME}_${VARIANT}.tar"
+          TAR_PATH="${CACHE_PATH}/${TAR_NAME}"
+          echo "TAG=${TAG}" >> $GITHUB_OUTPUT
+          echo "IMAGE_NAME=${IMAGE_NAME}" >> $GITHUB_OUTPUT
+          echo "TAR_PATH=${TAR_PATH}" >> $GITHUB_OUTPUT
+          echo "CACHE_PATH=${CACHE_PATH}" >> $GITHUB_OUTPUT
+          echo "CACHE_KEY=${IMAGE_NAME}_${VARIANT}" >> $GITHUB_OUTPUT
+      - name: Enable cache
+        id: cache
+        uses: actions/cache@v4
+        with:
+          path: ${{ steps.image_tag.outputs.CACHE_PATH }}
+          key: ${{ steps.image_tag.outputs.CACHE_KEY }}
+
+      - name: Load image from cache if exists
+        if: steps.cache.outputs.cache-hit == 'true'
+        run: |
+          docker load -i ${{ steps.image_tag.outputs.TAR_PATH }}
+
+      - name: Build image if cache does not exist
+        if: steps.cache.outputs.cache-hit != 'true'
+        run: |
+          docker build -t ${{ steps.image_tag.outputs.TAG }} .
+          CACHE_DIR=$(dirname "${{ steps.image_tag.outputs.TAR_PATH }}")
+          mkdir -p "$CACHE_DIR"
+          docker save ${{ steps.image_tag.outputs.TAG }} > ${{ steps.image_tag.outputs.TAR_PATH }}
+
+      - name: Run tests in container
+        run: |
+          # Change owner of workspace to ubuntu user
+          sudo chown -R 1000:1000 ${{ github.workspace }}
+          docker run --rm -v ${{ github.workspace }}:/app -w /app  ${{ steps.image_tag.outputs.TAG }} make test
+
+  deploy-acr:
+    name: Build and deploy to Azure Container Registry
+    runs-on: ubuntu-latest
+    environment:
+      name: azure container registry
+    env:
+      IMAGE_NAME: ${{ github.repository}}
+    permissions:
+      contents: read
+      packages: write
+    steps:
+    - name: Extract Docker metadata
+      id: meta
+      uses: docker/metadata-action@v4
+      with:
+        images: ${{ secrets.ACR_ENDPOINT }}/${{ env.IMAGE_NAME }}
+    - name: Checkout repository
+      uses: actions/checkout@v4
+    - name: Log into ACR
+      uses: docker/login-action@v3
+      with:
+        registry: ${{ secrets.ACR_ENDPOINT }}
+        username: ${{ secrets.ACR_USERNAME }}
+        password: ${{ secrets.ACR_PASSWORD }}
+    - name: Build and push
+      uses: docker/build-push-action@v5
+      with:
+        push: ${{ github.ref == 'refs/heads/main' || startsWith(github.ref, 'refs/tags/v')}}
+        context: .
+        file: Dockerfile
+        tags: ${{ steps.meta.outputs.tags }}
+        labels: ${{ steps.meta.outputs.labels }}
+
+  deploy-github:
+    name: Build and deploy to GitHub container registry
+    runs-on: ubuntu-latest
+    environment:
+      name: github container registry
+    env:
+      REGISTRY: ghcr.io
+      IMAGE_NAME: ${{ github.repository}}
+    permissions:
+      contents: write
+      packages: write
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Log in to the Container registry
+        uses: docker/login-action@v3
+        with:
+          registry: ${{ env.REGISTRY }}
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Extract metadata (tags, labels) for Docker
+        id: meta
+        uses: docker/metadata-action@v5
+        with:
+          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
+
+      - name: Build and push Docker image
+        uses: docker/build-push-action@v6
+        with:
+          context: .
+          file: Dockerfile
+          push: ${{ github.ref == 'refs/heads/main' || startsWith(github.ref, 'refs/tags/v')}}
+          tags: ${{ steps.meta.outputs.tags }}
+          labels: ${{ steps.meta.outputs.labels }}

Dockerfile

@@ -0,0 +1,19 @@
+# Use the GDAL image as the base
+FROM ghcr.io/osgeo/gdal:ubuntu-full-3.10.0
+
+# Install necessary tools and Python packages
+RUN apt-get update && \
+    apt-get install -y python3-pip pipenv gcc cmake libgeos-dev && \
+    apt-get clean && \
+    rm -rf /var/lib/apt/lists/*
+
+WORKDIR /app
+
+COPY requirements.txt .
+RUN pipenv --python 3 && pipenv install -r requirements.txt
+
+COPY . .
+
+RUN chmod +x cbsurge.sh
+
+CMD [ "./cbsurge.sh", "--help"]

Makefile

@@ -0,0 +1,40 @@
+.PHONY: help test build down shell
+
+help:
+	@echo "Please use \`make <target>' where <target> is one of"
+	@echo "  shell            to shell in dev mode"
+	@echo "  test             to execute test cases"
+	@echo "  build            to build docker image"
+	@echo "  down             to destroy docker containers"
+
+
+shell:
+	@echo
+	@echo "------------------------------------------------------------------"
+	@echo "Shelling in dev mode"
+	@echo "------------------------------------------------------------------"
+	docker compose -f docker-compose.yaml run cbsurge /bin/bash
+
+
+test:
+	@echo
+	@echo "------------------------------------------------------------------"
+	@echo "Execute test cases"
+	@echo "------------------------------------------------------------------"
+	pipenv run python -m pytest cbsurge/stats
+
+build:
+	@echo
+	@echo "------------------------------------------------------------------"
+	@echo "Building Docker image"
+	@echo "------------------------------------------------------------------"
+	docker compose -f docker-compose.yaml build
+
+down:
+	@echo
+	@echo "------------------------------------------------------------------"
+	@echo "Destroy docker containers"
+	@echo "------------------------------------------------------------------"
+	docker compose -f docker-compose.yaml down
+
+

README.md

@@ -36,6 +36,26 @@ pipenv run python -m cbsurge.cli admin ocha --help
 Each `cbsurge`'s modules has its own test suite which can be ran independently
 
 ```shell
-# cbsurge.stats
-python -m pytest cbsurge/stats
+make test
+```
+
+## Using docker
+
+- build docker-image
+
+```shell
+make build
+```
+
+- run CLI
+
+```shell
+ ./cbsurge.sh --help
+```
+
+- enter to Docker container
+
+```shell
+make shell
+./cbsurge.sh --help
 ```

cbsurge.sh

@@ -0,0 +1,3 @@
+#!/bin/bash
+
+pipenv run python -m cbsurge.cli $@

docker-compose.yaml

@@ -0,0 +1,11 @@
+version: '3'
+services:
+  cbsurge:
+    build:
+      context: .
+      dockerfile: ./Dockerfile
+    # default command to show help menu
+    command: "pipenv run python -m cbsurge.cli --help"
+    volumes:
+      - ./Makefile:/app/Makefile
+      - ./cbsurge:/app/cbsurge # mount app folder to container