stack
/
guacamole
1
0
Fork 0
Code Issues Pull Requests 1 Releases Wiki Activity

ci: jsonnet deploy function
continuous-integration/drone/push Build is passing Details

This commit is contained in:
Giles Bradshaw 2020-08-14 13:03:03 +01:00
parent 42e78cc0dc
commit 1f3371ca47
6 changed files with 118 additions and 99 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

100
.drone/drone-home.jsonnet
View File

@ -5,97 +5,15 @@ local compose = import 'node_modules/@sigyl/jsonnet-compose/compose.libsonnet';
local secretSecrets = import 'lib/secret-secrets.libsonnet'; local secretSecrets = import 'lib/secret-secrets.libsonnet';
local publicSecrets = import 'lib/public-secrets.libsonnet'; local publicSecrets = import 'lib/public-secrets.libsonnet';
local util = import 'lib/util.libsonnet'; local util = import 'lib/util.libsonnet';
local deploy = import 'lib/deploy.libsonnet';
[ [
{ deploy(
kind: 'pipeline', 'guacamole',
type: 'docker', [
name: 'build', 'LOCAL_DOCKER_REGISTRY',
clone: { 'REGISTRY_PASSWORD',
disable: false,
depth: 0,
},
/*trigger: {
event: [
'tag',
],
},*/
services: [
images.docker {
privileged: true,
volumes: [
{
name: 'dockersock',
path: '/var/run',
},
{
name: 'ca',
path: '/etc/docker/certs.d',
},
],
},
], ],
volumes: [ publicSecrets,
{ secretSecrets
name: 'dockersock', ),
temp: {},
},
{
name: 'ca',
host: {
path: '/etc/docker/certs.d',
},
},
],
steps:[
compose(
std.map(
function(secret) util.printEnv('env-guacamole', secret),
publicSecrets,
)
)
(
images.ssh {
settings +: {
script: [
'rm -f env-guacamole',
],
},
},
) {
name: 'print env',
},
images.scp(
'/stack/guacamole'
),
images.wait(15),
build,
compose(
std.map(
function(secret) environment.envSet(secret),
publicSecrets + secretSecrets,
),
)(
images.ssh {
name: 'deploy stack',
settings +: {
script +:
std.map(
function(secret)
'export %(env)s=$${%(env)s}' % {
env: environment.environment(secret)
},
secretSecrets + publicSecrets,
) +
[
'set -e',
"cd /stack/guacamole",
'docker login $${LOCAL_DOCKER_REGISTRY} --username client --password "$${REGISTRY_PASSWORD}"',
'sh pull.sh',
'sh deploy.sh',
]
}
},
),
],
}
] ]

4
.drone/drone-home.yml
View File

@ -66,10 +66,10 @@ steps:
image: docker:dind image: docker:dind
commands: commands:
- set -e - set -e
- docker login $${LOCAL_DOCKER_REGISTRY} --username client --password "$${REGISTRY_PASSWORD}" - sh login.sh
- sh build.sh - sh build.sh
- sh push.sh - sh push.sh
- docker logout $${LOCAL_DOCKER_REGISTRY} - sh logout.sh
environment: environment:
LOCAL_DOCKER_REGISTRY: LOCAL_DOCKER_REGISTRY:
from_secret: local-docker-registry from_secret: local-docker-registry

10
.drone/lib/build.libsonnet
View File

@ -1,12 +1,10 @@
local images = import 'images.libsonnet'; local images = import 'images.libsonnet';
local environment = import '../node_modules/@sigyl/jsonnet-drone-environment/environment.libsonnet'; local environment = import '../node_modules/@sigyl/jsonnet-drone-environment/environment.libsonnet';
function(secrets)
images.docker { images.docker {
name +: 'build:', name +: 'build:',
environment +: environment.environmentSecrets([ environment +: environment.environmentSecrets(secrets),
'LOCAL_DOCKER_REGISTRY',
'REGISTRY_PASSWORD',
]),
volumes: [ volumes: [
{ {
name: 'dockersock', name: 'dockersock',
@ -15,9 +13,9 @@ local environment = import '../node_modules/@sigyl/jsonnet-drone-environment/env
], ],
commands: [ commands: [
'set -e', 'set -e',
'docker login $${LOCAL_DOCKER_REGISTRY} --username client --password "$${REGISTRY_PASSWORD}"', 'sh login.sh',
'sh build.sh', 'sh build.sh',
'sh push.sh', 'sh push.sh',
'docker logout $${LOCAL_DOCKER_REGISTRY}', 'sh logout.sh',
], ],
} }

101
.drone/lib/deploy.libsonnet Normal file
View File

@ -0,0 +1,101 @@
local build = import 'build.libsonnet';
local images = import 'images.libsonnet';
local environment = import '../node_modules/@sigyl/jsonnet-drone-environment/environment.libsonnet';
local compose = import '../node_modules/@sigyl/jsonnet-compose/compose.libsonnet';
local util = import 'util.libsonnet';
function(
name,
buildSecrets,
publicSecrets,
secretSecrets
)
{
kind: 'pipeline',
type: 'docker',
name: 'deploy',
clone: {
disable: false,
depth: 0,
},
services: [
images.docker {
privileged: true,
volumes: [
{
name: 'dockersock',
path: '/var/run',
},
{
name: 'ca',
path: '/etc/docker/certs.d',
},
],
},
],
volumes: [
{
name: 'dockersock',
temp: {},
},
{
name: 'ca',
host: {
path: '/etc/docker/certs.d',
},
},
],
steps:[
compose(
std.map(
function(secret) util.printEnv('env-guacamole', secret),
publicSecrets,
)
)
(
images.ssh {
settings +: {
script: [
'rm -f env-guacamole',
],
},
},
) {
name: 'print env',
},
images.scp(
'/stack/guacamole'
),
images.wait(15),
build(buildSecrets),
compose(
std.map(
function(secret) environment.envSet(secret),
publicSecrets + secretSecrets,
),
)(
images.ssh {
name: 'deploy stack',
settings +: {
script +:
std.map(
function(secret)
'export %(env)s=$${%(env)s}' % {
env: environment.environment(secret)
},
secretSecrets + publicSecrets,
) +
[
'set -e',
"cd /stack/guacamole",
'docker login $${LOCAL_DOCKER_REGISTRY} --username client --password "$${REGISTRY_PASSWORD}"',
'sh pull.sh',
'sh deploy.sh',
]
}
},
),
],
}

1
login.sh Normal file
View File

@ -0,0 +1 @@
docker login ${LOCAL_DOCKER_REGISTRY} --username client --password "${REGISTRY_PASSWORD}"

1
logout.sh Normal file
View File

@ -0,0 +1 @@
docker logout ${LOCAL_DOCKER_REGISTRY}