ci(uat): runner-native Docker build + fix deploy infra token (CAR-1237)

- Change A: replace build-and-push with runner-native Docker (no DinD service container) - Change B: deploy-dev/deploy-uat use secrets.GITEA_TOKEN for infra checkout Co-Authored-By: Paperclip <noreply@paperclip.ing>
Merge dev into uat: use direct docker login for Gitea registry (CAR-994)
2026-06-04 20:33:08 +00:00 · 2026-06-04 18:52:32 +00:00 · 2026-06-04 11:46:31 +00:00 · 2026-06-02 14:16:15 +00:00 · 2026-06-02 10:07:31 +00:00 · 2026-05-30 08:56:47 +00:00
4 changed files with 16 additions and 2 deletions
@@ -0,0 +1 @@
+# CI trigger 20260525231507 - post-DinD verification (CAR-1042)
@@ -47,7 +47,7 @@ jobs:
        with:
          registry: ${{ env.REGISTRY }}
          username: ${{ github.actor }}
-          password: ${{ secrets.GITEA_TOKEN }}
+          password: ${{ secrets.REGISTRY_TOKEN }}

      - name: Extract metadata
        id: meta
@@ -0,0 +1,11 @@
+{
+  "mcpServers": {
+    "gitea": {
+      "type": "http",
+      "url": "https://git-mcp.farh.net/mcp",
+      "headers": {
+        "Authorization": "Bearer ${GITEA_TOKEN}"
+      }
+    }
+  }
+}
@@ -115,9 +115,11 @@ export const auth = betterAuth({
  trustedOrigins: [
    "http://localhost:3000",
    "http://localhost:5173",
-    "https://cartsnitch.com",
    "https://cartsnitch.farh.net",
    "https://cartsnitch.dev.farh.net",
    "https://cartsnitch.uat.farh.net",
+    "https://cartsnitch.com",
+    "https://dev.cartsnitch.com",
+    "https://uat.cartsnitch.com",
  ],
 });
Author	SHA1	Message	Date
Barcode Betty	91ab376f38	ci(uat): runner-native Docker build + fix deploy infra token (CAR-1237) - Change A: replace build-and-push with runner-native Docker (no DinD service container) - Change B: deploy-dev/deploy-uat use secrets.GITEA_TOKEN for infra checkout Co-Authored-By: Paperclip <noreply@paperclip.ing>	2026-06-04 20:33:08 +00:00
Savannah Savings	3496653d33	Merge dev into uat: use direct docker login for Gitea registry (CAR-994)	2026-06-04 18:52:32 +00:00
Barcode Betty	02b732e24c	chore(ci): re-trigger auth UAT build after act-runner DinD fix (CAR-973) Co-Authored-By: Paperclip <noreply@paperclip.ing>	2026-06-04 11:46:31 +00:00
Barcode Betty	b4420b3f87	fix(ci): use direct docker login for Gitea registry (CAR-994) docker/login-action@v3 exits 1 against git.farh.net. Replace with a direct docker login shell command using secrets.REGISTRY_TOKEN via --password-stdin. cc @cpfarhood	2026-06-02 14:16:15 +00:00
Flea Flicker	1099037db1	fix(ci): use REGISTRY_TOKEN for cross-repo infra checkout Replaces CI_GITEA_TOKEN (which lacks cross-repo access) with REGISTRY_TOKEN for checkout of cartsnitch/infra in deploy-uat/deploy-dev jobs. Fixes CAR-1147	2026-06-02 10:07:31 +00:00
Flea Flicker	8c37c764e9	fix(ci): add DinD service to enable image builds (CAR-1042)	2026-05-30 08:56:47 +00:00
Savannah Savings	6c71a2a1f8	Merge pull request 'ci(CAR-1041): remove invalid deploy-dev/deploy-uat jobs' (#28 ) from betty/remove-deploy-jobs into dev	2026-05-28 19:56:05 +00:00
Flea Flicker	e308b15255	ci(CAR-1041): remove invalid deploy-dev/deploy-uat jobs Remove deploy-dev and deploy-uat CI jobs. CartSnitch uses Flux GitOps — CI builds images, Flux deploys. These Actions-based deployment jobs were added incorrectly in CAR-987. Co-Authored-By: Barcode Betty <betty@cartsnitch>	2026-05-28 19:47:39 +00:00
Flea Flicker	6f392bbbed	test(ci): trigger CI after DinD fix (CAR-1042)	2026-05-25 23:15:07 +00:00
Barcode Betty	4a63bc1da8	fix(ci): apply CAR-985 and CAR-986 fixes to uat	2026-05-25 22:53:44 +00:00
Chris Farhood	eca23fe515	Add .mcp.json	2026-05-25 21:45:18 +00:00
Savannah Savings	ca423073f1	Merge pull request 'Promote dev to uat (CAR-1034 - auth *.farh.net trustedOrigins fix)' (#27 ) from dev into uat	2026-05-25 21:28:19 +00:00
Savannah Savings	d066c14d4b	Merge pull request 'Add *.farh.net origins to trustedOrigins (CAR-1034)' (#26 ) from betty/car-1034-trustedorigins-fix into dev	2026-05-25 21:27:53 +00:00
Barcode Betty	23ab939d2f	Add .farh.net origins back to trustedOrigins Fixes 403 errors on UAT auth endpoints (cartsnitch.uat.farh.net). The previous change removed .farh.net origins causing Better Auth to reject requests from UAT environment. Co-Authored-By: Paperclip <noreply@paperclip.ing>	2026-05-25 09:43:43 +00:00
Savannah Savings	8bf80a9890	fix(ci): use REGISTRY_TOKEN for container registry auth (CAR-973) The REGISTRY_TOKEN secret has write:package scope for git.farh.net. This fixes the unauthorized error at docker login. Related: CAR-1023 (REGISTRY_TOKEN setup), CAR-1009 (CI registry token standardization) Co-Authored-By: Paperclip <noreply@paperclip.ing>	2026-05-25 00:04:25 +00:00
Savannah Savings	359d108fee	Merge pull request 'ci: use REGISTRY_TOKEN for docker login (CAR-1024)' (#24 ) from car-1023-use-registry-token into dev	2026-05-24 20:52:35 +00:00
Barcode Betty	f0291e8827	ci: use REGISTRY_TOKEN instead of GITEA_TOKEN for docker login (CAR-1024) Co-Authored-By: Paperclip <noreply@paperclip.ing>	2026-05-24 20:46:48 +00:00
Savannah Savings	a520a65f1b	fix(ci): use GITEA_TOKEN secret for docker login The github.token (automatic workflow token) in Gitea Actions doesn't inherit packages:write permission for container registry. Use the GITEA_TOKEN secret instead with direct docker login. Ref: CAR-973, CAR-1009	2026-05-24 20:38:35 +00:00
Savannah Savings	bb8d7f159c	fix(ci): use direct docker login with github.token for registry auth (CAR-973) docker/login-action@v3 fails with Gitea's automatic token. Use direct docker login with github.token instead, which has the necessary write:package scope for the container registry. Related: CAR-1009 (CI registry token standardization)	2026-05-24 20:37:22 +00:00
Barcode Betty	a92f578dcf	chore: re-trigger CI after DNS fix (CAR-968)	2026-05-24 20:34:39 +00:00
Savannah Savings	720a5f131c	Merge pull request 'Promote to Production: CAR-894 Gitea workflows migration' (#23 ) from uat into main	2026-05-24 18:51:45 +00:00
Savannah Savings	e36eaec97b	Merge pull request 'promote: dev → uat (CAR-992 trustedOrigins fix)' (#19 ) from dev into uat promote: dev → uat (CAR-992 trustedOrigins fix) (#19)	2026-05-23 20:55:58 +00:00
Savannah Savings	9e6dfe1f9c	Merge pull request 'fix: update trustedOrigins to match current domains' (#18 ) from cs_betty/auth:car992-fix into dev fix: update trustedOrigins to match current domains (#18) Refs: CAR-992	2026-05-23 20:55:32 +00:00
Barcode Betty	9ae3161860	fix: update trustedOrigins to match current domains Replace stale .farh.net subdomains with correct *.cartsnitch.com domains to fix CORS Origin validation blocking UAT auth (403 on sign-up/sign-in). Refs: CAR-992 Co-Authored-By: Paperclip <noreply@paperclip.ing>	2026-05-23 20:43:31 +00:00
Checkout Charlie	5d2701ef52	chore: re-trigger CI for UAT registry verification (CAR-983)	2026-05-23 18:37:10 +00:00
Savannah Savings	c06f7cf5a1	Merge pull request 'ci: promote dev to uat — Gitea container registry CI changes' (#13 ) from dev into uat ci: promote dev to uat — Gitea container registry CI changes (#13)	2026-05-23 15:26:07 +00:00
Savannah Savings	34c5a85d49	Merge pull request 'chore: promote dev to uat (move workflows to .gitea)' (#10 ) from dev into uat chore: promote dev to uat — move workflows to .gitea (#10)	2026-05-21 13:46:13 +00:00
Savannah Savings	6b8939fd7f	Merge pull request 'chore: promote Gitea Actions fix to uat (CAR-892)' (#8 ) from dev into uat chore: promote Gitea Actions fix to uat (CAR-892) Dev→UAT promotion. GHCR login fix. cc @cpfarhood	2026-05-21 11:55:50 +00:00
coupon-carl-ceo[bot]	8e405d2cdb	chore: promote uat to main — auth repo migration (CAR-722) chore: promote uat to main — auth repo migration (CAR-722)	2026-04-21 02:28:02 +00:00
				`@@ -0,0 +1 @@`
				`# CI trigger 20260525231507 - post-DinD verification (CAR-1042)`