from harness to gitea maybe less secrets

.gitea/workflows/builder.yaml

@@ -0,0 +1,23 @@
+name: builder
+on:
+  push:
+    branches:
+    - main
+    paths:
+    - 'Dockerfile.cicd'
+
+jobs:
+  builder:
+    name: builder
+    runs-on: dind
+    steps:
+    - name: checkout
+      uses: actions/checkout@v3
+    - name: builder
+      run: |
+        t=registry-app.inhome.blapointe.com:5001/portfolio/resume/builder:latest
+        until docker ps; do
+          sleep 5
+        done
+        docker build -t "$t" -f ./Dockerfile.cicd .
+        docker push "$t"

.gitea/workflows/cicd.yaml

@@ -0,0 +1,28 @@
+name: cicd
+on:
+  push:
+    branches:
+    - main
+    paths:
+    - 'src/**'
+
+jobs:
+  cicd:
+    name: cicd
+    runs-on: dind
+    steps:
+    - name: checkout
+      uses: actions/checkout@v3
+    - name: cicd
+      run: |
+        set -ueo pipefail
+
+        docker run \
+          --rm \
+          -it \
+          -v "$PWD":/mnt \
+          -w /mnt \
+          -e FIREBASE_CI_TOKEN="$FIREBASE_CI_TOKEN" \
+          -e GITLAB_PAT="$GITLAB_PAT" \
+          registry-app.inhome.blapointe.com:5001/portfolio/resume/builder:latest \
+            bash ./build/firebase.sh

.harness/firebase-deploy.yaml

@@ -1,86 +0,0 @@
-version: 1
-kind: pipeline
-spec:
-  stages:
-  - name: debug
-    type: ci
-    spec:
-      steps:
-      - name: debug
-        type: run
-        spec:
-          name: debug
-          container: alpine/git
-          shell: sh
-          script: |
-            export build_event=${{ build.event }}
-            export build_target=${{ build.target }}
-            export build_before=${{ build.before }}
-            export build_after=${{ build.after }}
-            env | grep ^build_
-            git --no-pager diff --name-only $build_before..$build_after
-  - name: dockers
-    type: ci
-    spec:
-      volumes:
-      - name: dockersock
-        spec: {}
-        type: temp
-      steps:
-      - name: dind
-        when: build.event == "push" && build.target == "main"
-        type: background
-        spec:
-          container:
-            image: registry-app.inhome.blapointe.com:5001/docker:latest
-            privileged: true
-          mount:
-          - name: dockersock
-            path: /var/run
-      - name: docker
-        type: run
-        when: build.event == "push" && build.target == "main"
-        spec:
-          name: docker
-          container: registry-app.inhome.blapointe.com:5001/docker:latest
-          mount:
-          - name: dockersock
-            path: /var/run
-          shell: sh
-          script: |
-            set -ueo pipefail
-
-            export build_before=${{ build.before }}
-            export build_after=${{ build.after }}
-
-            apk add --no-cache git
-            t=registry-app.inhome.blapointe.com:5001/portfolio/resume/builder:latest
-            if git diff --name-only $build_before..$build_after | grep Dockerfile.cicd; then
-              until docker ps; do
-                sleep 5
-              done
-              docker build -t "$t" -f ./Dockerfile.cicd .
-              docker push "$t"
-            fi
-  - name: build
-    type: ci
-    spec:
-      steps:
-      - name: build
-        type: run
-        when: build.event == "push" && build.target == "main"
-        spec:
-          name: build
-          container:
-            image: registry-app.inhome.blapointe.com:5001/portfolio/resume/builder:latest
-            user: root
-          envs:
-            FIREBASE_CI_TOKEN: ${{ secrets.get("resume-firebase-squeaky2x3-gmail-token") }}
-            GITLAB_PAT: ${{ secrets.get("resume-gitlab-gitlab-breel-dev-token") }}
-          shell: sh
-          script: |
-            export build_before=${{ build.before }}
-            export build_after=${{ build.after }}
-            if git --no-pager diff --name-only $build_before..$build_after | grep src.homebrew; then
-               bash ./deploy.firebase.sh
-            fi