Add docker hub login to avoid hub IP limits

[Firefishy]

Workaround anonymous limits of Docker Hub registry by having the GHA login.

[tomhughes]

What login is that using though?

[Firefishy]

What login is that using though?

It is using a dedicated Docker Hub personal access token from my Docker Hub account with only "Public Repo Read-only" permission.

[Firefishy]

Looks like this isn't going to work, pull requests do not get access to GitHub Action secrets. https://securitylab.github.com/research/github-actions-preventing-pwn-requests/ has some workarounds but they do not seem suitable.

[Firefishy]

I've now changed this PR to not run the login step when running from a PR: if: github.repository == 'openstreetmap/chef' && github.event_name != 'pull_request'

The PR is still useful because it will still trigger on non-forked branch pushes eg: master.