レジストリとCI/CD

Docker

イメージのビルド・プッシュ・デプロイ

レジストリへのpush

Docker Hub・GitHub Container Registry・ECR

# === Docker Hub ===
docker login
docker tag myapp:latest username/myapp:latest
docker push username/myapp:latest

# === GitHub Container Registry (ghcr.io) ===
echo $GITHUB_TOKEN | docker login ghcr.io -u USERNAME --password-stdin
docker tag myapp:latest ghcr.io/username/myapp:latest
docker push ghcr.io/username/myapp:latest

# === AWS ECR ===
aws ecr get-login-password --region ap-northeast-1 \
  | docker login --username AWS \
    --password-stdin 123456789.dkr.ecr.ap-northeast-1.amazonaws.com

docker tag myapp:latest 123456789.dkr.ecr.ap-northeast-1.amazonaws.com/myapp:latest
docker push 123456789.dkr.ecr.ap-northeast-1.amazonaws.com/myapp:latest

# マルチプラットフォームビルド（arm64 + amd64）
docker buildx create --use
docker buildx build \
  --platform linux/amd64,linux/arm64 \
  -t username/myapp:latest \
  --push .

CI/CD での自動ビルド

GitHub Actions でイメージをビルド・プッシュ

name: Build and Push Docker Image

on:
  push:
    branches: [main]
    tags: ['v*']

jobs:
  build:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4

      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v3

      - name: Login to GitHub Container Registry
        uses: docker/login-action@v3
        with:
          registry: ghcr.io
          username: ${{ github.actor }}
          password: ${{ secrets.GITHUB_TOKEN }}

      - name: Extract metadata
        id: meta
        uses: docker/metadata-action@v5
        with:
          images: ghcr.io/${{ github.repository }}
          tags: |
            type=semver,pattern={{version}}
            type=ref,event=branch
            type=sha

      - name: Build and push
        uses: docker/build-push-action@v5
        with:
          context: .
          push: true
          tags: ${{ steps.meta.outputs.tags }}
          labels: ${{ steps.meta.outputs.labels }}
          cache-from: type=gha
          cache-to: type=gha,mode=max

Docker Compose

本番運用