执行 shell 脚本的权限被拒绝 - GitHub Actions

Question

执行 shell 脚本的权限被拒绝 - GitHub Actions

chl*_*ska 7 github sh docker dockerfile github-actions

我正在尝试使用 GitHub Actions 部署我的 Elastic Beanstalk 应用程序（用于 CD 目的）。在运行负责部署的作业之前，我正在构建并推送应用程序在 DockerHub 上运行所需的 docker 映像。

我面临的问题是，在从 GitHub（GitHub Actions YAML 文件）构建和运行图像后遇到Permission Denied错误，而在本地构建和运行图像时却没有遇到错误。

我的 GitHub Actions yml 文件、Dockerfile 和 sh 文件如下所示：

# .github/workflows/deploy-to-staging.yml
name: Deploy to Staging

on:
  push:
    branches: [ master ]

jobs:
  deploy-to-staging:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v2
      # Login to DockerHub
      - name: Docker Login
        uses: docker/login-action@v1.8.0
        with:
          username: ${{secrets.DOCKERHUB_USERNAME}}
          password: ${{secrets.DOCKERHUB_TOKEN}}
          logout: true
      # build, tag and push Nginx image to DockerHub
      - name: Build nginx image
        run: docker build -t repo/nginx-staging -f docker/nginx/staging/Dockerfile .
      - name: Tag Image
        run: docker tag repo/nginx-staging repo/nginx-staging:latest
      - name: Push to dockerhub
        run: docker push repo/nginx-staging:latest
      # build, tag and push Backend image to DockerHub
      - name: grant permissions to shell script
        run: chmod +x ./docker/backend/staging/wsgi-entrypoint.sh
      - name: Build Backend image
        run: docker build -t repo/backend-staging -f docker/backend/staging/Dockerfile .
      - name: Tag Image
        run: docker tag repo/backend-staging repo/backend-staging:latest
      - name: Push to dockerhub
        run: docker push repo/backend-staging:latest
      # Move staging Dockerrun.aws.json at root location
      - name: Move Dockerrun file to root
        run: mv aws/staging/Dockerrun.aws.json Dockerrun.aws.json
      - name: Generate deployment package
        run: zip deploy-staging.zip Dockerrun.aws.json
      # Deploy to EB
      - name: Deploy to EB
        uses: einaregilsson/beanstalk-deploy@v10
        with:
          aws_access_key: ${{ secrets.AWS_ACCESS_KEY }}
          aws_secret_key: ${{ secrets.AWS_ACCESS_SECRET_KEY }}
          application_name: rrw-webapp
          environment_name: staging-env
          region: eu-west-3
          version_label: ${{ github.run_number }}
          version_description: ${{ github.run_number }}
          deployment_package: deploy-staging.zip
      - name: Move Dockerrun file back to its original location
        run: mv Dockerrun.aws.json aws/staging/

Run Code Online (Sandbox Code Playgroud)

这是我的 Dockerfile：

FROM python:3.7.7

WORKDIR /app
ADD ./backend/requirements.txt /app/backend/


RUN pip install --upgrade pip
RUN pip install gunicorn
RUN pip install -r backend/requirements.txt

ADD ./docker /app/docker
ADD ./backend /app/backend

CMD ["/bin/bash","-c","chmod +x /app/docker/backend/staging/wsgi-entrypoint.sh && /app/docker/backend/staging/wsgi-entrypoint.sh"]

Run Code Online (Sandbox Code Playgroud)

最后是我的 sh 文件 wsgi-entrypoint.sh ：

#!/bin/bash

until cd /app/backend
do
    echo "Waiting for server volume..."
done

until ./manage.py migrate
do
    echo "Waiting for db to be ready..."
    sleep 2
done

./manage.py collectstatic --noinput

gunicorn RRWProject.wsgi --bind 0.0.0.0:8000 --workers 4 --threads 4

Run Code Online (Sandbox Code Playgroud)

Permission Denied当 docker 尝试执行 .manage.py migrate 命令时，会发生该错误。

到目前为止我已经尝试过：

在推送到 github 之前在本地 chmod 我的文件：
```
> chmod +x docker/backend/staging/wsgi-entrypoint.sh
```
Run Code Online (Sandbox Code Playgroud)
从 github actions 文件中 chmod 我的文件，如上所示
在提交我的文件之前运行 git update-index ：
```
git update-index --chmod=+x docker/backend/staging/wsgi-entrypoint.sh
```
Run Code Online (Sandbox Code Playgroud)
只需从我的 dockerfile 运行以下命令：
```
CMD ["sh","docker/backend/staging/wsgi-entrypoint.sh"]
```
Run Code Online (Sandbox Code Playgroud)

我是否错过了什么才能使其发挥作用？

Answer 1

jes*_*ing 1

确保在.py 文件上设置可执行位：

在您的 docker 文件或entrypoint.sh 中：

chmod +x ./manage.py

Run Code Online (Sandbox Code Playgroud)

归档时间：	5 年，2 月前
查看次数：	6680 次
最近记录：	3 年，2 月前