Add Docker Hub auth to rate-limited CI workflows

[daveqnet]

Closes OPS-772

Description Of Changes

• Add Docker Hub auth to Cypress E2E Tests workflow
• Add Docker Hub auth to Backend Code Checks workflow
• Removes hardcoded Docker username in Publish Docker Images workflow and upgrades action to latest (v3)

Code Changes

• Adding Docker Hub auth for a premium user will increase the rate limit to 5000/day instead of the 100/6 hours for unauth'd Docker users.

Steps to Confirm

• Run currently failing CI jobs for modified workflows and ensure they pass.

Pre-Merge Checklist

• All CI Pipelines Succeeded
• Documentation:
  • documentation complete, PR opened in fidesdocs
  • documentation issue created in fidesdocs
  • if there are any new client scopes created as part of the pull request, remember to update public-facing documentation that references our scope registry
• Issue Requirements are Met
• Relevant Follow-Up Issues Created
• Update CHANGELOG.md
• For API changes, the Postman collection has been updated
• If there are any database migrations:
  • Ensure that your downrev is up to date with the latest revision on main
  • Ensure that your downgrade() migration is correct and works
    • If a downgrade migration is not possible for this change, please call this out in the PR description!

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

1 Skipped Deployment

Name	Status	Preview	Comments	Updated (UTC)
fides-plus-nightly	⬜️ Ignored (Inspect)	Visit Preview		Oct 14, 2024 6:19pm

[RobertKeyser]

Looks good to me!

[RobertKeyser]

I did notice in other workflows, we define them as environment variables with the following pattern under the env key

  DOCKER_USER: ethycaci
  DOCKER_RO_TOKEN: ${{ secrets.DOCKER_RO_TOKEN }}

And then use those envs instead of the secrets directly.

I think this should work, but if it doesn't, we'll go that route. Either way, approved.

[cypress]

fides    Run #10407

Run Properties:   Passed #10407  •  697c534d94 ℹ️: Merge 21119d9a8be410f3c6abc3d834dd85446dbefb95 into 33ef06491f14f763578eec44fbac...

Project	fides
Run status	Passed #10407
Run duration	00m 40s
Commit	697c534d94 ℹ️: Merge 21119d9a8be410f3c6abc3d834dd85446dbefb95 into 33ef06491f14f763578eec44fbac...
Committer	Dave Quinlan
View all properties for this run ↗︎

---

Test results
Failures	0
Flaky	0
Pending	0
Skipped	0
Passing	4
⚠️ You've recorded test results over your free plan limit. Upgrade your plan to view test results.

[daveqnet]

Adding Do Not Merge label. The Backend Code Checks workflow needs to be rethought as the actions step logs into Docker Hub... and then logs out before the next job where auth is needed 🥹

[RobertKeyser]

Good catch! Looks good to me.

[daveqnet]

Thanks Rob! Assuming CI passes, I'll merge this in the morning.

[cypress]

fides    Run #10417

Run Properties:   Passed #10417  •  d30bf76852: Add Docker Hub auth to rate-limited CI workflows (#5373)

Project	fides
Run status	Passed #10417
Run duration	00m 38s
Commit	d30bf76852: Add Docker Hub auth to rate-limited CI workflows (#5373)
Committer	Dave Quinlan
View all properties for this run ↗︎

---

Test results
Failures	0
Flaky	0
Pending	0
Skipped	0
Passing	4
⚠️ You've recorded test results over your free plan limit. Upgrade your plan to view test results.