fix(actions): Use lowercase workaround in verify, correct its usage

EyeCantCU · Dec 18, 2023 · d4f66ed · d4f66ed
1 parent 9bbbe91
commit d4f66ed
Show file tree

Hide file tree

Showing 3 changed files with 18 additions and 4 deletions.
diff --git a/.github/workflows/test-actions.yml b/.github/workflows/test-actions.yml
@@ -120,7 +120,7 @@ jobs:
       - name: Sign image
         uses: ./sign
         with:
-          container: ${{ steps.registry_case.outputs.lowercase }}/${{ matrix.image_name }}
+          container: ghcr.io/${{ github.repository_owner }}/${{ matrix.image_name }}
           registry: ghcr.io
           registry-token: ${{ secrets.GITHUB_TOKEN }}
           signing-secret: ${{ secrets.SIGNING_SECRET }}
@@ -129,7 +129,7 @@ jobs:
       - name: Verify image
         uses: ./verify
         with:
-          container: ${{ steps.registry_case.outputs.lowercase }}/${{ matrix.image_name }}
+          container: ghcr.io/${{ github.repository_owner }}/${{ matrix.image_name }}
           pubkey: ./cosign.pub
 
       - name: Echo outputs

diff --git a/sign/action.yml b/sign/action.yml
@@ -30,10 +30,17 @@ runs:
     - name: Install cosign
       uses: sigstore/cosign-installer@v3.3.0
 
+    # https://github.com/macbre/push-to-ghcr/issues/12
+    - name: Lowercase container path
+      id: container_case
+      uses: ASzc/change-string-case-action@v5
+      with:
+        string: ${{ inputs.container }}
+
     - name: Sign container image
       shell: bash
       run: |
-        cosign sign -y --key env://COSIGN_PRIVATE_KEY ${{ inputs.container }}@${TAGS}
+        cosign sign -y --key env://COSIGN_PRIVATE_KEY ${{ steps.container_case.outputs.lowercase }}@${TAGS}
       env:
         COSIGN_EXPERIMENTAL: false
         COSIGN_PRIVATE_KEY: ${{ inputs.signing-secret }}

diff --git a/verify/action.yml b/verify/action.yml
@@ -14,8 +14,15 @@ runs:
     - name: Install cosign
       uses: sigstore/cosign-installer@v3.3.0
 
+    # https://github.com/macbre/push-to-ghcr/issues/12
+    - name: Lowercase container path
+      id: container_case
+      uses: ASzc/change-string-case-action@v5
+      with:
+        string: ${{ inputs.container }}
+
     - name: Verify container
       shell: bash
-      run: cosign verify --key ${{ inputs.pubkey }} ${{ inputs.container }}
+      run: cosign verify --key ${{ inputs.pubkey }} ${{ steps.container_case.outputs.lowercase }}
       env:
         COSIGN_EXPERIMENTAL: false