Add support for docker_registry and kms_key_name

sethvargo · sethvargo · commit fa555a084e54 · 2021-12-08T16:08:43.000-05:00
diff --git a/README.md b/README.md
@@ -102,6 +102,18 @@ steps:
 - `build_environment_variables_file`: (Optional) Path to a local YAML file
   containing variables. See 'env_vars_file' for syntax.
 
+- `docker_repository`: (Optional) User managed repository created in Artifact
+  Registry optionally with a customer managed encryption key. If specified,
+  deployments will use Artifact Registry. If unspecified and the deployment is
+  eligible to use Artifact Registry, GCF will create and use a repository named
+  'gcf-artifacts' for every deployed region. This is the repository to which the
+  function docker image will be pushed after it is built by Cloud Build.
+
+- `kms_key_name`: (Optional) Resource name of a Google Cloud KMS crypto key used
+  to encrypt/decrypt function resources. If specified, you must also provide an
+  artifact registry repository using the `docker_repository` field that was
+  created with the same key.
+
 - `credentials`: (**Deprecated**) This input is deprecated. See [auth section](https://github.com/google-github-actions/deploy-cloud-functions#via-google-github-actionsauth) for more details.
   Service account key to use for authentication. This should be
   the JSON formatted private key which can be exported from the Cloud Console. The
diff --git a/action.yaml b/action.yaml
@@ -145,6 +145,19 @@ inputs:
     description: |-
       Path to a local YAML file containing variables. See 'env_vars_file' for
       syntax.
+  required: false
+
+  docker_repository:
+    description: |-
+      User managed repository created in Artifact Registry.
+    required: false
+
+  kms_key_name:
+    description: |-
+      Resource name of a Google Cloud KMS crypto key used to encrypt/decrypt
+      function resources. If specified, you must also provide an artifact
+      registry repository using the 'docker_repository' field that was created
+      with the same key.
     required: false
 
 outputs:
diff --git a/dist/index.js b/dist/index.js
diff --git a/src/main.ts b/src/main.ts
@@ -67,6 +67,9 @@ async function run(): Promise<void> {
       getInput('build_environment_variables_file'),
     );
 
+    const dockerRepository = presence(getInput('docker_repository'));
+    const kmsKeyName = presence(getInput('kms_key_name'));
+
     // Add warning if using credentials
     let credentialsJSON:
       | ServiceAccountKey
@@ -121,11 +124,11 @@ async function run(): Promise<void> {
       availableMemoryMb: availableMemoryMb ? +availableMemoryMb : undefined,
       buildEnvironmentVariables: buildEnvironmentVariables,
       // buildWorkerPool: buildWorkerPool, // TODO: add support
-      // dockerRepository: dockerRepository, // TODO: add support
+      dockerRepository: dockerRepository,
       entryPoint: entryPoint,
       environmentVariables: environmentVariables,
       ingressSettings: ingressSettings,
-      // kmsKeyName: kmsKeyName, // TODO: add support
+      kmsKeyName: kmsKeyName,
       labels: labels,
       maxInstances: maxInstances ? +maxInstances : undefined,
       // minInstances: minInstances ? + minInstances : undefined, // TODO: add support
