name: Build docker image and publish to ECR

on:
  workflow_dispatch:
    inputs:
      enroll_secret:
        description: 'Enroll Secret'
        required: true
      url:
        description: 'Fleet server URL'
        required: true
      host_count:
        description: 'Amount of hosts to emulate'
        required: true
        default: 20
      tag:
        description: 'docker image tag'
        required: true
        default: latest

permissions:
  contents: read

jobs:
  build-docker:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout Code
        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v2
        
      - name: Configure AWS credentials
        uses: aws-actions/configure-aws-credentials@05b148adc31e091bafbaf404f745055d4d3bc9d2 # v1
        with:
          aws-access-key-id: ${{ secrets.LOADTEST_AWS_ACCESS_KEY_ID }}
          aws-secret-access-key: ${{ secrets.LOADTEST_AWS_SECRET_ACCESS_KEY }}
          aws-region: us-east-2

      - name: Login to Amazon ECR
        id: login-ecr
        uses: aws-actions/amazon-ecr-login@b874a33292cc9887d2e80bc63f6f1a11fccb4a7b # v1

      - name: Build, tag, and push image to Amazon ECR
        env:
          ECR_REGISTRY: ${{ steps.login-ecr.outputs.registry }}
          ECR_REPOSITORY: osquery-perf
          IMAGE_TAG: ${{ github.event.inputs.tag }}
        run: |
          docker build -t $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG --build-arg ENROLL_SECRET=${{ github.event.inputs.enroll_secret }} --build-arg HOST_COUNT=${{ github.event.inputs.host_count }} --build-arg SERVER_URL=${{ github.event.inputs.url }} -f Dockerfile.osquery-perf .
          docker push $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG