name: Build and Push docker image
on:
  workflow_dispatch:
  workflow_call:

jobs:
  buildAndPush:
    runs-on: [ nix ]
    steps:
    - uses: actions/checkout@v4
    - name: Nix build
      run: nix build --extra-experimental-features "flakes nix-command" .
    - name: Setup skopeo
      run: curl -o /etc/containers/policy.json --create-dirs https://raw.githubusercontent.com/containers/skopeo/refs/heads/main/default-policy.json
    - name: Push Image
      run: |
        nix shell --extra-experimental-features "flakes nix-command" nixpkgs#skopeo -c sh -c \
        'skopeo copy --dest-password "$UPLOAD_TOKEN" --dest-username "$USERNAME" docker-archive://$(realpath result) docker://git.tami.moe/tamipes/nix && \
        skopeo copy --dest-password "$UPLOAD_TOKEN" --dest-username "$USERNAME" docker-archive://$(realpath result) docker://git.tami.moe/tamipes/nix:$(date --iso-8601)'
      env: 
        USERNAME: tamipes
        UPLOAD_TOKEN: ${{ secrets.UPLOAD_TOKEN }}