kind: pipeline
type: docker
name: default

steps:
  - name: build docker image
    image: "nixos/nix"
    environment:
      USER: root
    commands:
      - nix-channel --update
      - nix-build docker.nix
      - cp $(readlink result) /image/docker.tgz
    volumes:
      - name: image
        path: /image

  - name: push docker image
    image: docker:dind
    volumes:
      - name: image
        path: /image
      - name: dockersock
        path: /var/run/
    commands:
      - docker load -i /image/docker.tgz
      - echo $DOCKER_PASSWORD | docker login -u $DOCKER_USERNAME --password-stdin
      - docker push garionion/gitea-attachements-proxy
    environment:
      DOCKER_USERNAME:
        from_secret: docker_username
      DOCKER_PASSWORD:
        from_secret: docker_password

services:
  - name: docker
    image: docker:dind
    privileged: true
    volumes:
      - name: dockersock
        path: /var/run

volumes:
  - name: image
    temp: {}
  - name: dockersock
    temp: {}