Skip to content
Snippets Groups Projects
Normal view History Permalink
.gitlab-ci.yml 8.6 KiB
Newer Older
David Mendez's avatar
CI: Add building step and dockerfile
David Mendez committed
1 2 3 
variables:
  DOCKER_TLS_CERTDIR: ""
  GIT_STRATEGY: clone
David Mendez's avatar
Fix typo  
David Mendez committed
4 
  GIT_SUBMODULE_STRATEGY: recursive
David Mendez's avatar
CI: Add building step and dockerfile
David Mendez committed
5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 
  REGISTRY_USER: chembl/eubopen
  APPLICATION: eubopen-web
  SERVER_IMAGE_TAG: ${CI_REGISTRY}/${REGISTRY_USER}/${APPLICATION}:${CI_COMMIT_SHORT_SHA}
  DOCKER_DRIVER: overlay
  CONFIGS_FOLDER: run_config
  # Config staging
  ENV_STAGING_FILE_PATH: ${CONFIGS_FOLDER}/staging/.env
  # INGRESS_STAGING_FILE_PATH: ${CONFIGS_FOLDER}/staging/ingress.yml
  # Config prod hx
  ENV_PROD_HX_FILE_PATH: ${CONFIGS_FOLDER}/prod_hx/.env
  # Config prod hx
  ENV_PROD_HH_FILE_PATH: ${CONFIGS_FOLDER}/prod_hh/.env

stages:
  - build
David Mendez's avatar
Add step to prepare config for staging  
David Mendez committed
20 
  - test_and_qa
David Mendez's avatar
Fix typo  
David Mendez committed
21 
  - prepare_config
David Mendez's avatar
Add deployment to staging  
David Mendez committed
22 
  - deploy
David Mendez's avatar
Add step to prepare config for staging  
David Mendez committed
23
David Mendez's avatar
CI: Add building step and dockerfile
David Mendez committed
24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 

# ----------------------------------------------------------------------------------------------------------------------
# build
# ----------------------------------------------------------------------------------------------------------------------
build:
  image:
    name: docker:latest
    entrypoint: ["/bin/sh", "-c"]
  stage: build
  variables:
    DOCKER_HOST: tcp://docker:2375
  services:
    - docker:dind
  tags:
    - dind
  script:
    - set -x
    - echo 'building!'
David Mendez's avatar
CI: Debug docker auth  
David Mendez committed
42 
    - echo $CI_REGISTRY_PASSWORD | docker login -u $CI_REGISTRY_USER --password-stdin $CI_REGISTRY
David Mendez's avatar
CI: Debug docker auth  
David Mendez committed
43 
    - docker info
David Mendez's avatar
CI: Add building step and dockerfile
David Mendez committed
44 45 46 47 48 
    - docker version # verify docker cli is there. Also prints server info
    - echo building ${SERVER_IMAGE_TAG}
    - docker build --tag ${SERVER_IMAGE_TAG} .
    - docker push ${SERVER_IMAGE_TAG}
David Mendez's avatar
CI: add stage for unit tests  
David Mendez committed
49 50 51 52 53 54 55 56 57 58 59 60 61 62 
# ----------------------------------------------------------------------------------------------------------------------
# test
# ----------------------------------------------------------------------------------------------------------------------
unit_tests:
  stage: test_and_qa
  image:
    name: $SERVER_IMAGE_TAG
    entrypoint: [""]
  tags:
    - docker
  script:
    - set -x
    - echo 'Implement these tests!'
David Mendez's avatar
Add step to prepare config for staging  
David Mendez committed
63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 
# ----------------------------------------------------------------------------------------------------------------------
# Prepare Configuration
# ----------------------------------------------------------------------------------------------------------------------
prepare_config_staging:
  stage: prepare_config
  image:
    name: alpine/git
    entrypoint: ["/bin/sh", "-c"]
  only:
    - staging
  tags:
    - docker
  script:
    - set -x
    - rm -rf ${CONFIGS_FOLDER} || true
    - mkdir -p ${CONFIGS_FOLDER}
    - git clone https://${CONFIG_DEPLOY_GITLAB_USERNAME}:${CONFIG_DEPLOY_GITLAB_TOKEN}@${CONFIGURATIONS_REPO} ${CONFIGS_FOLDER}
  artifacts:
    paths:
      - ${ENV_STAGING_FILE_PATH}
David Mendez's avatar
Add deployment to staging  
David Mendez committed
83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 

# ----------------------------------------------------------------------------------------------------------------------
# Deploy to staging
# ----------------------------------------------------------------------------------------------------------------------
deploy_to_staging:
  stage: deploy
  image:
    name: lachlanevenson/k8s-kubectl:latest
    entrypoint: ["/bin/sh", "-c"]
  only:
    - staging
  tags:
    - docker
  script:
  - set -x
  - echo "$KUBE_CA_PEM_HX" > "$(pwd)/kube.ca.pem"
  - kubectl config set-cluster ${KUBE_CLUS_NAME_HX} --server="${KUBE_URL_HX}" --certificate-authority="$(pwd)/kube.ca.pem"
  - kubectl config set-credentials ${KUBE_USER_HX} --token="${KUBE_TOKEN_HX}"
  - kubectl config set-context ${CHEMBL_NS_STAGING} --cluster=${KUBE_CLUS_NAME_HX} --user=${KUBE_USER_HX}
  - kubectl config use-context ${CHEMBL_NS_STAGING}
  - echo ${CHEMBL_NS_STAGING} ${KUBE_URL_HX} ${KUBE_CLUS_NAME_HX} ${KUBE_USER_HX}
  - kubectl get pods -n ${CHEMBL_NS_STAGING}
David Mendez's avatar
USe replace instead of apply given that secret has been created  
David Mendez committed
105 
  - kubectl create secret generic ${ENV_SECRET_NAME_STAGING} --from-file=.env=${ENV_STAGING_FILE_PATH} -o yaml -n ${CHEMBL_NS_STAGING} --dry-run=client | kubectl replace -f -
David Mendez's avatar
Add deployment to staging  
David Mendez committed
106 107 108 109 110 111 112 113 114 115 116 
  - cat ${ENV_STAGING_FILE_PATH}
  - sed -i "s~<NAMESPACE>~${CHEMBL_NS_STAGING}~g" k8s-deployment.yaml
  - sed -i "s~<HTTP_PROXY>~${HTTP_PROXY_HX}~g" k8s-deployment.yaml
  - sed -i "s~<HTTPS_PROXY>~${HTTPS_PROXY_HX}~g" k8s-deployment.yaml
  - sed -i "s~<NO_PROXY>~${NO_PROXY_HX_DEFAULT}~g" k8s-deployment.yaml
  - sed -i "s~<SERVER_IMAGE_TAG>~${SERVER_IMAGE_TAG}~g" k8s-deployment.yaml
  - sed -i "s~<ENV_SECRET_NAME>~${ENV_SECRET_NAME_STAGING}~g" k8s-deployment.yaml
  - sed -i "s~<NODE_PORT>~${EUBOPEN_WEB_PORT_STAGING}~" k8s-deployment.yaml
  - cat k8s-deployment.yaml
  - kubectl apply -n ${CHEMBL_NS_STAGING} -f k8s-deployment.yaml
  - kubectl get pods -n ${CHEMBL_NS_STAGING}
David Mendez's avatar
Add deployment to prod hx  
David Mendez committed
117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 

# ----------------------------------------------------------------------------------------------------------------------
# Preprare configs for prod deployment
# ----------------------------------------------------------------------------------------------------------------------
prepare_config_hx_hh:
  stage: prepare_config
  image:
    name: alpine/git
    entrypoint: ["/bin/sh", "-c"]
  only:
    - master
  tags:
    - docker
  script:
    - set -x
    - rm -rf ${CONFIGS_FOLDER} || true
    - mkdir -p ${CONFIGS_FOLDER}
    - git clone https://${CONFIG_DEPLOY_GITLAB_USERNAME}:${CONFIG_DEPLOY_GITLAB_TOKEN}@${CONFIGURATIONS_REPO} ${CONFIGS_FOLDER}
  artifacts:
    paths:
      - ${ENV_PROD_HX_FILE_PATH}
      - ${ENV_PROD_HH_FILE_PATH}


# ----------------------------------------------------------------------------------------------------------------------
# Deploy to prod hx
# ----------------------------------------------------------------------------------------------------------------------
deploy_to_prod_hx:
  stage: deploy
  image:
    name: lachlanevenson/k8s-kubectl:latest
    entrypoint: ["/bin/sh", "-c"]
  only:
    - master
  tags:
    - docker
  script:
  - set -x
  - echo "$KUBE_CA_PEM_HX" > "$(pwd)/kube.ca.pem"
  - kubectl config set-cluster ${KUBE_CLUS_NAME_HX} --server="${KUBE_URL_HX}" --certificate-authority="$(pwd)/kube.ca.pem"
  - kubectl config set-credentials ${KUBE_USER_HX} --token="${KUBE_TOKEN_HX}"
  - kubectl config set-context ${CHEMBL_NS_PROD} --cluster=${KUBE_CLUS_NAME_HX} --user=${KUBE_USER_HX}
  - kubectl config use-context ${CHEMBL_NS_PROD}
  - echo ${CHEMBL_NS_PROD} ${KUBE_URL_HX} ${KUBE_CLUS_NAME_HX} ${KUBE_USER_HX}
  - kubectl get pods -n ${CHEMBL_NS_PROD}
David Mendez's avatar
Add deployment to prod hh  
David Mendez committed
162 
  - kubectl create secret generic ${ENV_SECRET_NAME_PROD_HX} --from-file=.env=${ENV_PROD_HX_FILE_PATH} -o yaml -n ${CHEMBL_NS_PROD} --dry-run=client | kubectl replace -f -
David Mendez's avatar
Add deployment to prod hx  
David Mendez committed
163 164 165 166 167 168 169 
  - cat ${ENV_PROD_HX_FILE_PATH}
  - sed -i "s~<NAMESPACE>~${CHEMBL_NS_PROD}~g" k8s-deployment.yaml
  - sed -i "s~<HTTP_PROXY>~${HTTP_PROXY_HX}~g" k8s-deployment.yaml
  - sed -i "s~<HTTPS_PROXY>~${HTTPS_PROXY_HX}~g" k8s-deployment.yaml
  - sed -i "s~<NO_PROXY>~${NO_PROXY_HX_DEFAULT}~g" k8s-deployment.yaml
  - sed -i "s~<SERVER_IMAGE_TAG>~${SERVER_IMAGE_TAG}~g" k8s-deployment.yaml
  - sed -i "s~<ENV_SECRET_NAME>~${ENV_SECRET_NAME_PROD_HX}~g" k8s-deployment.yaml
David Mendez's avatar
fix typo  
David Mendez committed
170 
  - sed -i "s~<NODE_PORT>~${EUBOPEN_WEB_PORT_PROD_HX}~" k8s-deployment.yaml
David Mendez's avatar
Add deployment to prod hx  
David Mendez committed
171 172 173 
  - cat k8s-deployment.yaml
  - kubectl apply -n ${CHEMBL_NS_PROD} -f k8s-deployment.yaml
  - kubectl get pods -n ${CHEMBL_NS_PROD}
David Mendez's avatar
Add deployment to prod hh  
David Mendez committed
174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 

# ----------------------------------------------------------------------------------------------------------------------
# Deploy to prod hh
# ----------------------------------------------------------------------------------------------------------------------
deploy_to_prod_hh:
  stage: deploy
  image:
    name: lachlanevenson/k8s-kubectl:latest
    entrypoint: ["/bin/sh", "-c"]
  only:
    - master
  tags:
    - docker
  script:
  - set -x
  - echo "$KUBE_CA_PEM_HH" > "$(pwd)/kube.ca.pem"
  - kubectl config set-cluster ${KUBE_CLUS_NAME_HH} --server="${KUBE_URL_HH}" --certificate-authority="$(pwd)/kube.ca.pem"
  - kubectl config set-credentials ${KUBE_USER_HH} --token="${KUBE_TOKEN_HH}"
  - kubectl config set-context ${CHEMBL_NS_PROD} --cluster=${KUBE_CLUS_NAME_HH} --user=${KUBE_USER_HH}
  - kubectl config use-context ${CHEMBL_NS_PROD}
  - echo ${CHEMBL_NS_PROD} ${KUBE_URL_HH} ${KUBE_CLUS_NAME_HH} ${KUBE_USER_HH}
  - kubectl get pods -n ${CHEMBL_NS_PROD}
  - kubectl create secret generic ${ENV_SECRET_NAME_PROD_HH} --from-file=.env=${ENV_PROD_HH_FILE_PATH} -o yaml -n ${CHEMBL_NS_PROD} --dry-run=client | kubectl apply -f -
  - cat ${ENV_PROD_HH_FILE_PATH}
  - sed -i "s~<NAMESPACE>~${CHEMBL_NS_PROD}~g" k8s-deployment.yaml
  - sed -i "s~<HTTP_PROXY>~${HTTP_PROXY_HH}~g" k8s-deployment.yaml
  - sed -i "s~<HTTPS_PROXY>~${HTTPS_PROXY_HH}~g" k8s-deployment.yaml
  - sed -i "s~<NO_PROXY>~${NO_PROXY_HH_DEFAULT}~g" k8s-deployment.yaml
  - sed -i "s~<SERVER_IMAGE_TAG>~${SERVER_IMAGE_TAG}~g" k8s-deployment.yaml
  - sed -i "s~<ENV_SECRET_NAME>~${ENV_SECRET_NAME_PROD_HH}~g" k8s-deployment.yaml
  - sed -i "s~<NODE_PORT>~${EUBOPEN_WEB_PORT_PROD_HH}~" k8s-deployment.yaml
  - cat k8s-deployment.yaml
  - kubectl apply -n ${CHEMBL_NS_PROD} -f k8s-deployment.yaml
  - kubectl get pods -n ${CHEMBL_NS_PROD}