kind: pipeline
type: docker
name: default

steps:
  - name: 打包 Docker 容器
    image: docker:latest
    privileged: true
    environment:
      DOCKER_TAG: ${DRONE_COMMIT_SHA:0:8}
      DOCKER_USERNAME:
        from_secret: DOCKER_USERNAME
      DOCKER_PASSWORD:
        from_secret: DOCKER_PASSWORD
      DOCKER_REGISTRY: gitea.service.jazzwhom.top
      DOCKER_ORGANIZATION: kagami-public
      DOCKER_APPLICATION: temp-20250607.0350-my-tiny-app
    volumes:
      - name: docker-socket
        path: /var/run/docker.sock

    commands:
      - echo "$DOCKER_PASSWORD" | docker login -u "$DOCKER_USERNAME" --password-stdin "$DOCKER_REGISTRY"
      - docker build -t "$DOCKER_REGISTRY/$DOCKER_ORGANIZATION/$DOCKER_APPLICATION:$DOCKER_TAG" .
      - docker build -t "$DOCKER_REGISTRY/$DOCKER_ORGANIZATION/$DOCKER_APPLICATION:latest" .
      - docker push "$DOCKER_REGISTRY/$DOCKER_ORGANIZATION/$DOCKER_APPLICATION:$DOCKER_TAG"
      - docker push "$DOCKER_REGISTRY/$DOCKER_ORGANIZATION/$DOCKER_APPLICATION:latest"

  - name: 清理累赘的 Docker 镜像
    image: docker:latest
    privileged: true
    environment:
      DOCKER_TAG: ${DRONE_COMMIT_SHA:0:8}
      DOCKER_USERNAME:
        from_secret: DOCKER_USERNAME
      DOCKER_PASSWORD:
        from_secret: DOCKER_PASSWORD
      DOCKER_REGISTRY: gitea.service.jazzwhom.top
      DOCKER_ORGANIZATION: kagami-public
      DOCKER_APPLICATION: temp-20250607.0350-my-tiny-app
    volumes:
      - name: docker-socket
        path: /var/run/docker.sock

    commands:
      - docker rmi "$DOCKER_REGISTRY/$DOCKER_ORGANIZATION/$DOCKER_APPLICATION:$DOCKER_TAG"
      - docker rmi "$DOCKER_REGISTRY/$DOCKER_ORGANIZATION/$DOCKER_APPLICATION:latest"
    when:
      status:
        - success
        - failure

trigger:
  event:
    - push

volumes:
  - name: docker-socket
    host:
      path: /var/run/docker.sock