https://github.com/base2services/ciinabox-jenkins

ciinabox Jenkins Job Automation
https://github.com/base2services/ciinabox-jenkins

Last synced: 11 months ago
JSON representation

ciinabox Jenkins Job Automation

Host: GitHub
URL: https://github.com/base2services/ciinabox-jenkins
Owner: base2Services
License: mit
Created: 2016-02-16T06:49:51.000Z (over 10 years ago)
Default Branch: master
Last Pushed: 2022-01-13T08:42:38.000Z (over 4 years ago)
Last Synced: 2023-03-22T19:33:00.304Z (about 3 years ago)
Language: Groovy
Size: 196 KB
Stars: 4
Watchers: 5
Forks: 20
Open Issues: 4
Metadata Files:
- Readme: README.md
- License: LICENSE.txt

Awesome Lists containing this project

README

# ciinabox Jenkins

# Testing

## Requirements
- Install the Docker Toolbox https://www.docker.com/docker-toolbox
- Java 8 SDK

## Docker run ciinabox jenkins server
create a ciinabox docker machine

```sh
$ docker-machine create -d virtualbox --virtualbox-memory=2048 --virtualbox-cpu-count=2 ciinabox
```

configure docker to use the ciinabox machine

```sh
$ eval "$(/usr/local/bin/docker-machine env ciinabox)"
```

Run ciinabox Jenkins test

```sh
$ docker-compose up -d
Creating ciinaboxjenkins_jenkins-docker-slave_1
Creating ciinaboxjenkins_jenkins_1
```

## Running the example ciinabox Jenkins configuration

Create a symlink to your ciinaboxes directory for example

```sh
$ ln -s ciinaboxes.example ciinaboxes
```

Ensure the example ciinabox jenkins url matches you

```sh
$ docker-machine ip ciinabox
192.168.99.100
$ cat ciinaboxes/example/jenkins/jobs.yml
```
```yaml
#ciinabox jenkins config

jenkins_url: http://192.168.99.100:8080/
....
```

From the ciinabox-jenkins directory run.

```sh
$ ./gradlew jenkins -Dciinabox=example -Dusername=ciinabox -Dpassword=ciinabox

:compileJava UP-TO-DATE
:compileGroovy UP-TO-DATE
:processResources UP-TO-DATE
:classes UP-TO-DATE
:jenkins

processing job: Example-Pull-Request
Processing provided DSL script
example - created
example/Example-Pull-Request - created

processing job: Example-Branch-With-Artifact-Archive
Processing provided DSL script
example - updated
example/Example-Branch-With-Artifact-Archive - created

processing job: Example-Branch-With-Copy-Artifact-No-SCM
Processing provided DSL script
example - updated
example/Example-Branch-With-Copy-Artifact-No-SCM - created

BUILD SUCCESSFUL

Total time: 53.205 secs

This build could be faster, please consider using the Gradle Daemon: http://gradle.org/docs/2.4/userguide/gradle_daemon.html
```

open http://192.168.99.100:8080/ in a browser and confirm the example job have been loaded correctly

# Command line options and CLI behaviour

## Specify job file or job to be published

By default all jobs are published.

If you want to specify single job, or multiple jobs matching pattern, use `-Djob=$jobname`
E.g. `-Djob=Deploy-*` will provision all with name starting with `Deploy-`

If you want to specify single job file, use `-Djobfile=$jobfile[.yml]`

## Lock manually updated jobs, and override them forcibly

If you want ciinabox-jenkins utility to skip some of the jobs you may have manually
updated on remote Jenkins server (but haven't updated DSL), you can mark this job as "dirty"
by setting any of following scripts as job description

- DONT UPDATE WITH CIINABOX
- DON'T UPDATE WITH CIINABOX
- DO NOT UPDATE WITH CIINABOX
- SKIP CIINABOX UPDATE
- CIINABOX SKIP
- CIINABOX SKIP UPDATE

Dirty check is performed in case-insensitive style meaning that e.g. 'ciinabox skip' will
mark job as dirty just as good as 'CIINABOX SKIP'

However, if you want to override this behaviour of `ciinabox-jenkins` utility, you may do so
by passing system property `-DoverrideDirtyJobs=true` to gradle task

**example 1 - With dirty job skipped**

```text

$ ./gradlew jenkins -Dusername=ciinabox -Dciinabox=example -Dciinaboxes=ciinaboxes.example -Durl=http://localhost:8080 -Djob=MultipleBitbucketSCMJob -Dpassword=ciinabox
:compileJava UP-TO-DATE
:compileGroovy UP-TO-DATE
:processResources UP-TO-DATE
:classes UP-TO-DATE
:jenkins

Loading jobs from file: /Users/username/ciinabox-jenkins/ciinaboxes.example/example/jenkins/dsl-reference-jobs.yml
using jenkins url: http://localhost:8080/
Validating plugin slack version 2.2 against constraint >= 2.2 ...
[SUCCESS]
Validating plugin ghprb version 1.37.0 against constraint >= 1.33.2 ...
[SUCCESS]
using jenkins url: http://localhost:8080/

processing job: dsl-doc/MultipleBitbucketSCMJob
Processing provided DSL script
dsl-doc - updated
dsl-doc/MultipleBitbucketSCMJob - skipped due dirty marker don't update with ciinabox (as job description)
CIINABOX HINT: use -DoverrideDirtyJobs=true property to override job dsl-doc/MultipleBitbucketSCMJob

BUILD SUCCESSFUL

Total time: 7.347 secs
```

**example 2 - With dirty job overwritten**

```text

$ ./gradlew jenkins -Dusername=ciinabox -Dciinabox=example -Dciinaboxes=ciinaboxes.example -Durl=http://localhost:8080 -Djob=MultipleBitbucketSCMJob -Dpassword=ciinabox -DoverrideDirtyJobs=true
:compileJava UP-TO-DATE
:compileGroovy UP-TO-DATE
:processResources UP-TO-DATE
:classes UP-TO-DATE
:jenkins

processing job: dsl-doc/MultipleBitbucketSCMJob
Processing provided DSL script
dsl-doc - updated
dsl-doc/MultipleBitbucketSCMJob - updated

BUILD SUCCESSFUL

Total time: 7.742 secs

```

## Jenkins plugin constraints

Any features of these CLI depending on Jenkins plugin, or plugin version
should be defined in `src/main/resources/plugin_limits.yml`

`./gradlew jenkins` task will fail by default if constraints are not
satisfied. To ignore failed cnstraint checks
use `-Dignore-version-constraints=true` option when running gradle task

## Comparing local scripts with remote ones

` ./gradlew jobsScriptCompare ` task will download all scripts specified
as execute script step on configured jenkins jobs. Report on script diff is printed to standard output.
`jobsScriptCompare` task accepts same switches as `jenkins` task

`-Dusername=jenkinsuser`

`-Djob=jobToPublishOrCompare`

`-Djobfile=jobFileToPublishOrCompare`

`-Durl=http://override.jenkins.url`

`-Dignore-version-constraints=true`

output example:

```

processing job: Backup-EBS-Production
Processing provided DSL script
Script #0 identical on remote and local dsl
Script #1 identical on remote and local dsl

processing job: Backup-RDS-Production
Processing provided DSL script
Difference in script #0 in DSL and on remote.

------
Local L# 36:|
# TODO: check whatever we are in backup window for DB instance. If so, automated backup to copy from may not be available and user should be notified
Remote L# 36:|

------

```

# Job DSL Reference

Ciinabox Jenkins jobs are defined in yaml files. To specify yaml being used, use `-Djobfile=` switch. By default all jobs matching following path are used:

`$CIINABOXES/$CIINABOX/jenkins/*.jobs.yml`

Alternatively you can specify single job from yaml file using
``-Djob=$jobname` switch. All examples from this reference file can be found in `ciinaboxes.example/example/jenkins/dsl-reference-jobs.yml` file.

## Job Definition

### Job name & Job Folder
Only property required to define job is `name` property. E.G:

```
jenkins_url: http://localhost:8080/

jobs:
- name: MyJobName

- name: MyJobName2
folder: MyFolder
```

Configuration above will create two jobs, respectively named MyJobName and MyJobName2 within 'MyFolder'

### Description
If you want to add description to job, you can do so via 'description' property. If not, job name is used as job description.

```
jenkins_url: http://localhost:8080/

jobs:
- name: MyJobWithDescription
folder: MyFolder
description: My Job Description
```

### Build Parameters

To specify build parameters use `parameters` property. Parameters element is map of parameter definitions. Map key is used as parameter name, upper cased,
while for map values there are two options
- Default value. If true or false are specified, parameter shall be provisioned as boolean parameter, presented as checkbox on Jenkins UI
- List of values.
- Map defining parameter. `default`, `options`, `description` are available keys for the map. If dropdown select is desired as parameter input,
`options` key should be used, providing list of available options. `default` defines default value, while `description` will give pretty info
on parameter role and usage to Jenkins end user

```
jenkins_url: http://localhost:8080/

jobs:
- name: MyJobWithParameters
folder: dsl-doc
parameters:
param1: value1 # default value is 'value1'
param2: '' # no default value
deployment: true # Boolean parameters have true / false value
deploymentEnvironment: # Choice parameter
- dev
- stage
- prod

- name: MyJobWithParametersDefinedAsMap
folder: dsl-doc
parameters: # Define parameters as map of maps
param1: # Parameter name will be uppercased
default: true # Default value
description: 'Deploy artifact?' # Parameter description

param2:
description: 'If no default value provided, empty string shall be used'

choice_param:
options: # Define options for choice parameter
- option1
- option2
- option3
description: 'Use dropdown form to select value for CHOICE_PARAM'
```

### Labels

To restrict on which node specific job can be executed, use `labels` job property

```
jenkins_url: http://localhost:8080/

jobs:
- name: MyLabeledJob
labels:
- MavenBuild
```

### Discarding old builds

You can define rotation of job data, either by giving number of days to keep builds (artifacts) or number of builds (artifacts) to keep

```
jenkins_url: http://localhost:8080/

jobs:
- name: JobWith10BuildsKept
folder: RotationExample
discardBuilds:
buildsToKeep: 10 # Store latest 10 builds

- name: JobWith10ArtifactsKept
folder: RotationExample
discardBuilds:
artifactBuildsToKeep: 10 #Store latest 10 artifacts

- name: JobWithBuildsKept10Days
folder: RotationExample
discardBuilds:
daysToKeep: 10 # Store builds for 10 days

- name: JobWithArtifactsKept10Days
folder: RotationExample
discardBuilds:
artifactDaysToKeep: 10 # Store artifacts for 10 days
```

### Parallel builds

To allow multiple builds of your job running in parallel, use `concurrentBuild` job property

```
jenkins_url: http://localhost:8080/

jobs:
- name: ParallelJob
concurrentBuild: true
```

## Copy artifacts from other jobs

```yaml

```

## Source Code Repository

### Git SCM

In order to use any Git repository accessible via Jenkins as code repo, `git` property is available

```
jenkins_url: http://localhost:8080/

jobs:
- name: GenericGitBuild
git:
credentials: myGitCreds # Credentials with 'myGitCreds' are required in Jenkins credentials store
url: git@github.com:myOrg/myApp.git # Github is used only as an example, can by any git repo
branch: feature/new-hot-feature # Branch name
repo_target_dir: appcode # Checkout in workspace sub-directory

- name: GenericGitBuildWithRefspec
git:
url: https://github.com/nodejs/readable-stream # Public repo - credentials property is not required
branch: tags/v2.0.4 # Build specific tag
```

### Github Repository

Ciinabox Jenkins utility makes it easy to work with Github, and assumes github as default code repository

```yaml
jenkins_url: http://localhost:8080/

# Defaults section applies to all jobs being provisioned in single run
defaults:
github:
protocol: ssh # ssh or https
credentials: my-gh-creds # Not required for public repos, this should
# be ID of Jenkins credentials
# https://wiki.jenkins-ci.org/display/JENKINS/Credentials+Plugin
jobs:
- name: CiinaboxGithub
folder: dsl-doc
repo: base2Services/ciinabox # GitHub repo, with owner
branch: master # Branch to build

```

Depending on type of protocol being used, you may want to specify
either a private key or username/password key when creating credentials (`my-gh-creds`) in example above
Also, if checkout and subdirectory of workspaces is required, you can achieve this using `repo_target_dir`
element (as in example below for multiple github repositories)

### Multiple GitHub repositories (MultiSCM plugin)

```yaml
jenkins_url: http://localhost:8080
# Defaults section applies to all jobs being provisioned in single run
defaults:
github:
protocol: http # ssh or https
# be ID of Jenkins credentials
# https://wiki.jenkins-ci.org/display/JENKINS/Credentials+Plugin
- name: Ciinabox-MultipleGithub
folder: dsl-doc
github: # Multiple GitHub repos defined as list
-
repo: base2Services/ciinabox-jenkins # GitHub repo, with owner
branch: master # Branch to build
repo_target_dir: jenkins # Sub-folder to checkout
-
repo: base2Services/ciinabox-pipelines
branch: master
repo_target_dir: pipelines
```

### Github Pull Request Builder

If you want your project build on opened PR on Github, just omit `branch` part in above's configuration
and your job will be triggered upon pull request with Github Pull Request Builder plugin
All of regular commands(comments) on PR should work if your Jenkins installation is setup properly for GitHub
web hooks. More info can be found on [plugin's page](https://github.com/jenkinsci/ghprb-plugin)

```
jenkins_url: http://localhost:8080/

jobs:
- name: CiinaboxGithub-PullRequest
folder: dsl-doc
repo: base2Services/ciinabox # GitHub repo, with owner
```

### Bitbucket Repository

For triggering bitbucket builds, you can either poll the SCM, or
start the build via webhook. Both approaches can be seen in example
below

```
jenkins_url: http://localhost:8080/

- name: BitbucketJob
folder: dsl-doc
bitbucket:
push: true # Trigger build upon BB push
cron: "* * * * *" # Poll SCM for changes
repo: nlstevenen/java-experimenting-with-java-8-features # BB repo to pull sources from
branch: master # Which branch to build if omitted pull request builder is configured
repo_target_dir: app_code # Checkout in workspace sub-folder
credentials: my-bb-creds # Credentials to use for authorization with BitBucket
pr_cron : "* * * * *" # Pull request builder, defaults to every minute
commentTrigger : "test this please" # Pull request builder re-test comment, defaults to 'retest this please'
ciKey : "jenkins" # CI Key for pull request builder, defaults to 'jenkins'
ciName : "Jenkins" # CI name for pull request builder, defaults to 'Jenkins'
approveIfSuccess: true # for pull request builder, defaults to true
cancelOutdatedJobs: false # for pull request builder, defaults to false
checkDestinationCommit: false # for pull request builder, defaults to false

```

#### Bitbucket pull request builder

If you want job to triggered via bitbucket pull requests, just configure `bitbucket` block
without `branch` key

#### Multi-SCM for bitbucket

With BitBucket SCM provider and Multiple SCM plugin for Jenkins (https://wiki.jenkins-ci.org/display/JENKINS/Multiple+SCMs+Plugin)
you can use multiple SCMs, just define `bitbucket` element as list. Multi-SCM does not support pull rquest builder
or push web hooks as trigger, as it is non-deterministic which repo should be observed

```yaml
- name: MultipleBitbucketSCMJob
folder: dsl-doc
bitbucket: # You can define multiple SCMs for bitbucket, each checked in
# in it's own repository
-
repo: atlassian/asap-java
branch: master
repo_target_dir: app_code
-
repo: atlassian/docker-atlassian-bitbucket-server
branch: master
repo_target_dir: containers
shell:
- script: "mkdir -p $HOME/.m2/repository && cd app_code && docker run --rm -v $PWD:/app -v $HOME/.m2:/var/maven/.m2 base2/maven install" # Use docker to build application
- script: "cd containers && docker build -t atlassian/bitbucket . " # Build docker image
```

### Storing and retrieving artifacts

For storing artifacts use `archive` key, which aceepts wildcards. For retrieving artifacts stored in other jobs use
`artifacts` key. You can specify jobs either with wildcard filter, or by specifying every one of them. In case of using
wildcard, `-Djob=$jobName` switch won't work as expected, as all dependant jobs need to be published in same batch.

```yaml

- name: JobToCopyArtifactFrom1
folder: dsl-doc
shell: # Execute shell script as build step
- script: "echo 'test' > resultsjob1.txt" # Add some text to txt file
archive:
- resultsjob1.txt # Archive text file as result

- name: JobToCopyArtifactFrom2
folder: dsl-doc
shell: # Execute shell script as build step
- script: "echo 'test' > resultsjob2.txt" # Add some text to txt file
archive:
- resultsjob2.txt # Archive text file as result

- name: JobToCopyArtifactFrom3
folder: dsl-doc
shell: # Execute shell script as build step
- script: "echo 'test' > resultsjob3.txt" # Add some text to txt file
- script: "echo 'test' > resultsjob3extended.txt" # Add some text to txt file
archive:
# - resultsjob3.txt # Archive text file as result
- resultsjob3extended.txt

- name: JobToCopyArtifactsToWildstar
folder: dsl-doc
artifacts:
- job: JobToCopyArtifactFrom* # You can use wildcard '*' when specifying job,
# though you'll need to publish all jobs in single Jenkins Run when using wildcard
# as wildcard matching is done on client side, and is not part of Jenkins plugin
file_pattern: "results*.txt" # files to include, filter is applied to stored artifacts from matched jobs
exclude_file_pattern: resultsjob1.txt # files to exclude, filter is applied to stored artifacts from matched jobs
optional: true # job won't fail if artifacts is nowhere to be found
shell:
- script: "ls -la results*"

- name: JobToCopyArtifactsToArray # This job will fail, as we have excluded results1.txt, and there are no artifacts
# to copy from. This can be overriden by specifying optional: true
folder: dsl-doc
artifacts:
- job: JobToCopyArtifactFrom1 # You can specify multiple jobs as an array in artifacts key
file_pattern: "results*.txt" # files to include, filter is applied to stored artifacts from job key
exclude_file_pattern: resultsjob1.txt # files to exclude, filter is applied to stored artifacts from job key

- job: JobToCopyArtifactFrom2
file_pattern: "results*.txt"

shell:
- script: "ls -la results*"

```

### Build Triggers

### Cron

To trigger builds using cron expression, use `cron` property

```
job: MyFolder/MyCronJob
cronTrigger: */5 * * * * ## Runs every 5 minutes
```

### Build Environment

### Shell scripts

#### Inline

```yaml
...
shell:
- script: 'mvn clean install'
...
```

#### From file

```yaml
...
shell:
- file: 'scripts/application/build.sh'
...
```

#### From multiple files

End user should use `multifile` key. In example below application secrets are being delete by first logging into secret stash store, and then deleting keys themselves.

```yaml
- name: Delete-Application-Secrets
parameters:
account:
options:
- alpha
- dev
- prod
description: 'Secret stash account'

environment_name:
default: microservices-project
description: 'Name of project for which secrets are being altered'

key_name:
default: ''
description: 'Name of secret key to remove'

shell:
- multifile:
- scripts/common/secrets_storage_login.sh
- scripts/secretmgmt/delete.sh

```

### Pipeline jobs

To publish job using pipeline groovy file, just point to file within `pipeline` configuraiton key.
Also, file is relative to `defaults/scripts_dir` directory

```yaml
- name: PipelineJob
folder: dsl-doc
parameters:
key1:
description: 'Demo params in a pipeline'
default: 'default key1 value'
pipeline:
file: pipelines/helloworld.groovy
```

### Publishing Junit results

Use `junit` element to set path to published junit xml results

```yaml
## Publishing JUnit results

- name: TestJavaLib
folder: dsl-doc
repo: workshopforci/DemoJUnit
branch: master
shell:
# Execute maven tests in docker maven container
- script: "docker run --rm -w /src -v $PWD:/src -v $HOME/.m2:/root/.m2 maven:3.5.0-alpine mvn test"
junit: "target/surefire-reports/**/*.xml"

```

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Awesome

https://github.com/base2services/ciinabox-jenkins

Awesome Lists containing this project

README