Merge pull request #39 from keptn/release-0.3.0

#341 Release 0.3.0

Author: agrimmer

.snyk

@@ -0,0 +1,99 @@
+sudo: true
+dist: xenial
+language: node_js
+node_js:
+- '10'
+services:
+- docker
+before_install:
+- export TZ=Europe/Vienna
+- SERVICE_IMAGE=keptn/jenkins-service
+- JENKINS_IMAGE=keptn/jenkins
+- REGISTRY_USER=jbraeuer
+- SERVICE_VERSION="$(cat version | tr -d '[:space:]')"
+- JENKINS_VERSION="$(cat ./docker-jenkins/version | tr -d '[:space:]')"
+- JENKINS_FOLDER="docker-jenkins"
+- DATE="$(date +'%Y%m%d.%H%M')"
+- GIT_SHA="$(git rev-parse --short HEAD)"
+- echo "$REGISTRY_PASSWORD" | docker login --username $REGISTRY_USER --password-stdin
+- REPO_URL="$(git remote get-url --all origin)"
+- LAST_COMMIT="$(git log -1 --oneline)"
+- CHANGED_FILES=($(git diff --name-only $TRAVIS_COMMIT_RANGE | paste -sd "," ) )
+- echo "Changed files>$CHANGED_FILES"
+- ./writeManifest.sh
+- cp MANIFEST ./docker-jenkins/MANIFEST
+- cat MANIFEST
+- cat ./docker-jenkins/MANIFEST
+- npm install
+jobs:
+  include:
+  - stage: feature/bug
+    if: branch =~ ^feature.*$ OR branch =~ ^bug.*$ OR branch =~ ^hotfix.*$
+    script:
+    - echo $TRAVIS_BUILD_STAGE_NAME
+    - echo "Build jenkins-service"
+    - TYPE="$(echo $TRAVIS_BRANCH | cut -d'/' -f1)"
+    - NUMBER="$(echo $TRAVIS_BRANCH | cut -d'/' -f2)"
+    - docker build . -t "${SERVICE_IMAGE}:${GIT_SHA}"
+    - docker tag "${SERVICE_IMAGE}:${GIT_SHA}" "${SERVICE_IMAGE}:${TYPE}.${NUMBER}.${DATE}"
+    - docker push "${SERVICE_IMAGE}:${GIT_SHA}"
+    - docker push "${SERVICE_IMAGE}:${TYPE}.${NUMBER}.${DATE}"
+    - | 
+      if [[ $CHANGED_FILES == *"${JENKINS_FOLDER}"*  ]]; then
+        echo "Build Jenkins image"
+        cd docker-jenkins
+        docker build . -t "${JENKINS_IMAGE}:${GIT_SHA}"
+        docker tag "${JENKINS_IMAGE}:${GIT_SHA}" "${JENKINS_IMAGE}:${TYPE}.${NUMBER}.${DATE}"
+        docker push "${JENKINS_IMAGE}:${GIT_SHA}"
+        docker push "${JENKINS_IMAGE}:${TYPE}.${NUMBER}.${DATE}"
+      fi
+  - stage: develop
+    if: branch = develop AND NOT type = pull_request
+    script:
+    - echo $TRAVIS_BUILD_STAGE_NAME
+    - echo "Build jenkins-service"
+    - docker build . -t "${SERVICE_IMAGE}:${GIT_SHA}"
+    - docker tag "${SERVICE_IMAGE}:${GIT_SHA}" "${SERVICE_IMAGE}:${DATE}"
+    - docker tag "${SERVICE_IMAGE}:${GIT_SHA}" "${SERVICE_IMAGE}:latest"
+    - docker push "${SERVICE_IMAGE}:${GIT_SHA}"
+    - docker push "${SERVICE_IMAGE}:${DATE}"
+    - docker push "${SERVICE_IMAGE}:latest"
+    - | 
+      if [[ $CHANGED_FILES == *"${JENKINS_FOLDER}"*  ]]; then
+        echo "Build Jenkins image"
+        cd docker-jenkins
+        docker build . -t "${JENKINS_IMAGE}:${GIT_SHA}"
+        docker tag "${JENKINS_IMAGE}:${GIT_SHA}" "${JENKINS_IMAGE}:${DATE}"
+        docker tag "${JENKINS_IMAGE}:${GIT_SHA}" "${JENKINS_IMAGE}:latest"
+        docker push "${JENKINS_IMAGE}:${GIT_SHA}"
+        docker push "${JENKINS_IMAGE}:${DATE}"
+        docker push "${JENKINS_IMAGE}:latest"
+      fi
+  - stage: release-branch
+    if: branch =~ ^release.*$ AND NOT type = pull_request
+    script:
+    - echo $TRAVIS_BUILD_STAGE_NAME
+    - docker build . -t "${SERVICE_IMAGE}:${GIT_SHA}"
+    - docker tag "${SERVICE_IMAGE}:${GIT_SHA}" "${SERVICE_IMAGE}:${SERVICE_VERSION}.${DATE}"
+    - docker tag "${SERVICE_IMAGE}:${GIT_SHA}" "${SERVICE_IMAGE}:${SERVICE_VERSION}.latest"
+    - docker push "${SERVICE_IMAGE}:${GIT_SHA}"
+    - docker push "${SERVICE_IMAGE}:${SERVICE_VERSION}.${DATE}"
+    - docker push "${SERVICE_IMAGE}:${SERVICE_VERSION}.latest"
+    - echo "Build Jenkins image"
+    - cd docker-jenkins
+    - docker build . -t "${JENKINS_IMAGE}:${GIT_SHA}"
+    - docker tag "${JENKINS_IMAGE}:${GIT_SHA}" "${JENKINS_IMAGE}:${JENKINS_VERSION}.${DATE}"
+    - docker tag "${JENKINS_IMAGE}:${GIT_SHA}" "${JENKINS_IMAGE}:${JENKINS_VERSION}.latest"
+    - docker push "${JENKINS_IMAGE}:${GIT_SHA}"
+    - docker push "${JENKINS_IMAGE}:${JENKINS_VERSION}.${DATE}"
+    - docker push "${JENKINS_IMAGE}:${JENKINS_VERSION}.latest"
+  - stage: master
+    if: branch = master AND NOT type = pull_request
+    script:
+    - echo $TRAVIS_BUILD_STAGE_NAME
+    - docker build . -t "${SERVICE_IMAGE}:${SERVICE_VERSION}"
+    - docker push "${SERVICE_IMAGE}:${SERVICE_VERSION}"
+    - echo "Build Jenkins image"
+    - cd docker-jenkins
+    - docker build . -t "${JENKINS_IMAGE}:${JENKINS_VERSION}"
+    - docker push "${JENKINS_IMAGE}:${JENKINS_VERSION}"

.travis.yml

@@ -24,4 +24,4 @@ RUN npm run build-ts
 USER myuser
 
 # Start the app
-CMD ["/usr/local/bin/npm", "start"]
+CMD ["sh", "-c", "cat MANIFEST && /usr/local/bin/npm start"]

Dockerfile

@@ -0,0 +1,8 @@
+##########
+branch: MANIFEST_BRANCH
+repository: MANIFEST_REPOSITORY
+commitlink: MANIFEST_REPOSITORY/commit/MANIFEST_COMMIT
+repolink: MANIFEST_REPOSITORY/tree/MANIFEST_COMMIT
+travisbuild: MANIFEST_TRAVIS_JOB_URL
+timestamp: MANIFEST_DATE
+##########

MANIFEST

@@ -1,3 +1,5 @@
+[![Build Status](https://travis-ci.org/keptn/jenkins-service.svg?branch=master)](https://travis-ci.org/keptn/jenkins-service)
+
 # Keptn Jenkins Service
 
 This service is designed to use Jenkins for executing various continuous delivery tasks. Thus, this service can make use of Jenkins jobs to:
@@ -18,6 +20,7 @@ During the setup of the Jenkins, a secret is created that contains key-value pai
 
 ## Docker Jenkins
 The `docker-jenkins` folder contains a `Dockerfile` and all artifacts for building the Jenkins container image. Characteristics of this Jenkins image are:
+* **Performance Signature Plugin 3.1.1**
 * **Jenkins jobs**:
   * deploy
   * run_test
@@ -26,19 +29,17 @@ The `docker-jenkins` folder contains a `Dockerfile` and all artifacts for buildi
 ## Install service <a id="install"></a>
 
 1. To install the service, specify values for the following parameters:
-    * REGISTRY_URI - URI of the container registry
+    * REGISTRY_URL - URL of the container registry
     * JENKINS_USER - Jenkins user
     * JENKINS_PASSWORD - Password of Jenkins user
     * GITHUB_USER_EMAIL - Email of GitHub user
     * GITHUB_ORGANIZATION - GitHub organization used by keptn
     * GITHUB_PERSONAL_ACCESS_TOKEN - Personal access token from GitHub user
-    * DT_API_TOKEN (optional) - Dynatrace API token
-    * DT_TENANT_URL (optional) - Dynatrace tenant URL
 
 1. Run the `deploy.sh` script as shown below: 
 
     ```console
-    $ ./deploy.sh REGISTRY_URI JENKINS_USER JENKINS_PASSWORD GITHUB_USER_EMAIL GITHUB_ORGANIZATION GITHUB_PERSONAL_ACCESS_TOKEN DT_API_TOKEN DT_TENANT_URL
+    $ ./deploy.sh $REGISTRY_URL $JENKINS_USER $JENKINS_PASSWORD $GITHUB_USER_NAME $GITHUB_USER_EMAIL $GITHUB_ORGANIZATION $GITHUB_PERSONAL_ACCESS_TOKEN 
     ```
 
 1. To verify the installation, execute the following `kubectl` commands: 
@@ -73,4 +74,4 @@ The `docker-jenkins` folder contains a `Dockerfile` and all artifacts for buildi
 
     ```console
     $ kubectl delete -f ./config/gen/service.yml
-    ```
+    ```

README.md

@@ -69,7 +69,7 @@ spec:
     spec:
       containers:
       - name: jenkins
-        image: keptn/jenkins:0.4.1
+        image: keptn/jenkins:0.6.0
         imagePullPolicy: Always
         env:
           - name: GITHUB_USER_EMAIL
@@ -78,10 +78,6 @@ spec:
             value: GITHUB_ORGANIZATION_PLACEHOLDER
           - name: DOCKER_REGISTRY_IP
             value: DOCKER_REGISTRY_IP_PLACEHOLDER
-          - name: DT_TENANT_URL
-            value: DT_TENANT_URL_PLACEHOLDER
-          - name: DT_API_TOKEN
-            value: DT_API_TOKEN_PLACEHOLDER
         ports:
         - containerPort: 8080
         - containerPort: 50000

config/jenkins/k8s-jenkins-deployment.yml

@@ -5,6 +5,8 @@ kind: Service
 metadata:
   name: jenkins-service
   namespace: keptn
+  labels:
+    serving.knative.dev/visibility: cluster-local
 spec:
   runLatest:
     configuration:
@@ -15,7 +17,7 @@ spec:
             autoscaling.knative.dev/minScale: "1"
         spec:
           container:
-            image: keptn/jenkins-service:0.1.0
+            image: keptn/jenkins-service:0.3.0
             env: 
             - name: JENKINS_URL
               valueFrom:

config/service/service.yaml

@@ -1,81 +1,93 @@
-#!/bin/sh
+#!/bin/bash
+
 REGISTRY_URL=$1
 JENKINS_USER=$2
 JENKINS_PASSWORD=$3
 GITHUB_USER_NAME=$4
 GITHUB_USER_EMAIL=$5
 GITHUB_ORGANIZATION=$6
 GITHUB_PERSONAL_ACCESS_TOKEN=$7
-DT_API_TOKEN=$8
-DT_TENANT_URL=$9
 
-# Deploy Jenkins - see keptn/install/setupInfrastructure.sh:
+source ./deploy_utils.sh
+
+# Deploy Jenkins
 rm -f config/jenkins/gen/k8s-jenkins-deployment.yml
 
-export GATEWAY=$(kubectl describe svc istio-ingressgateway -n istio-system | grep "LoadBalancer Ingress:" | sed 's~LoadBalancer Ingress:[ \t]*~~')
+GATEWAY=$(kubectl describe svc istio-ingressgateway -n istio-system | grep "LoadBalancer Ingress:" | sed 's~LoadBalancer Ingress:[ \t]*~~')
+verify_variable "$GATEWAY" "GATEWAY is empty and could not be derived from the Istio ingress gateway."
 
 cat config/jenkins/k8s-jenkins-deployment.yml | \
   sed 's~GATEWAY_PLACEHOLDER~'"$GATEWAY"'~' | \
   sed 's~GITHUB_USER_EMAIL_PLACEHOLDER~'"$GITHUB_USER_EMAIL"'~' | \
   sed 's~GITHUB_ORGANIZATION_PLACEHOLDER~'"$GITHUB_ORGANIZATION"'~' | \
-  sed 's~DOCKER_REGISTRY_IP_PLACEHOLDER~'"$REGISTRY_URL"'~' | \
-  sed 's~DT_TENANT_URL_PLACEHOLDER~'"$DT_TENANT_URL"'~' | \
-  sed 's~DT_API_TOKEN_PLACEHOLDER~'"$DT_API_TOKEN"'~' >> config/jenkins/gen/k8s-jenkins-deployment.yml
-
-kubectl create -f config/jenkins/k8s-jenkins-pvcs.yml 
-kubectl create -f config/jenkins/gen/k8s-jenkins-deployment.yml
-kubectl create -f config/jenkins/k8s-jenkins-rbac.yml
-kubectl create -f config/jenkins/k8s-jenkins-service-entry.yml
-
-echo "Wait 200s for Jenkins..."
-sleep 200
-
-# Setup credentials in Jenkins
-echo "--------------------------"
-echo "Setup Credentials in Jenkins "
-echo "--------------------------"
-
-# Export Jenkins route in a variable
-export JENKINS_URL="jenkins.keptn.$GATEWAY.xip.io"
-
-curl -X POST http://$JENKINS_URL/credentials/store/system/domain/_/createCredentials \
---user $JENKINS_USER:$JENKINS_PASSWORD \
---data-urlencode 'json={
-  "": "0",
-  "credentials": {
-    "scope": "GLOBAL",
-    "id": "git-credentials-acm",
-    "username": "'$GITHUB_USER_NAME'",
-    "password": "'$GITHUB_PERSONAL_ACCESS_TOKEN'",
-    "description": "Token used by Jenkins to access the GitHub repositories",
-    "$class": "com.cloudbees.plugins.credentials.impl.UsernamePasswordCredentialsImpl"
-  }
-}'
-
-curl -X POST http://$JENKINS_URL/credentials/store/system/domain/_/createCredentials \
---user $JENKINS_USER:$JENKINS_PASSWORD \
---data-urlencode 'json={
-  "": "0",
-  "credentials": {
-    "scope": "GLOBAL",
-    "id": "perfsig-api-token",
-    "apiToken": "'$DT_API_TOKEN'",
-    "description": "Dynatrace API Token used by the Performance Signature plugin",
-    "$class": "de.tsystems.mms.apm.performancesignature.dynatracesaas.model.DynatraceApiTokenImpl"
-  }
-}'
-
-echo "--------------------------"
-echo "End setup credentials in Jenkins "
-echo "--------------------------"
+  sed 's~DOCKER_REGISTRY_IP_PLACEHOLDER~'"$REGISTRY_URL"'~' >> config/jenkins/gen/k8s-jenkins-deployment.yml
+
+kubectl apply -f config/jenkins/k8s-jenkins-pvcs.yml 
+verify_kubectl $? "Creating persistent volume claim for jenkins failed."
+
+kubectl apply -f config/jenkins/gen/k8s-jenkins-deployment.yml
+verify_kubectl $? "Creating deployment for jenkins failed."
+
+kubectl apply -f config/jenkins/k8s-jenkins-rbac.yml
+verify_kubectl $? "Creating cluster role binding for jenkins failed."
+
+kubectl apply -f config/jenkins/k8s-jenkins-service-entry.yml
+verify_kubectl $? "Creating service entries for jenkins failed."
+
+wait_for_deployment_in_namespace "jenkins" "keptn" 
+
+echo "Wait 100s for Jenkins..."
+sleep 100
+
+JENKINS_URL="jenkins.keptn.$GATEWAY.xip.io"
+
+# Configure Jenkins with GitHub credentials
+RETRY=0; RETRY_MAX=12; 
+
+while [[ $RETRY -lt $RETRY_MAX ]]; do
+  curl -X POST http://$JENKINS_URL/credentials/store/system/domain/_/createCredentials \
+    --user $JENKINS_USER:$JENKINS_PASSWORD \
+    --data-urlencode 'json={
+      "": "0",
+      "credentials": {
+        "scope": "GLOBAL",
+        "id": "git-credentials-acm",
+        "username": "'$GITHUB_USER_NAME'",
+        "password": "'$GITHUB_PERSONAL_ACCESS_TOKEN'",
+        "description": "Token used by Jenkins to access the GitHub repositories",
+        "$class": "com.cloudbees.plugins.credentials.impl.UsernamePasswordCredentialsImpl"
+      }
+    }'
+
+  if [[ $? == '0' ]]
+  then
+    print_debug "Git credentials in Jenkins created."
+    break
+  fi
+  RETRY=$[$RETRY+1]
+  print_debug "Retry: ${RETRY}/${RETRY_MAX} - Wait 10s for creating git credentials in Jenkins ..."
+  sleep 10
+done
+
+if [[ $RETRY == $RETRY_MAX ]]; then
+  print_error "Git credentials could not be created in Jenkins."
+  exit 1
+fi
 
 # Create secret and deploy jenkins-service
 kubectl create secret generic -n keptn jenkins-secret --from-literal=jenkinsurl="jenkins.keptn.svc.cluster.local" --from-literal=user="$JENKINS_USER" --from-literal=password="$JENKINS_PASSWORD"
+verify_kubectl $? "Creating secret for jenkins-service failed."
 
 kubectl delete -f config/service/service.yaml --ignore-not-found
 kubectl apply -f config/service/service.yaml
+verify_kubectl $? "Deploying jenkins-service failed."
 
 # Deploy Tiller for Helm
-kubectl -n kube-system create serviceaccount tiller
+kubectl create serviceaccount tiller -n kube-system
+verify_kubectl $? "Creating service account for tiller in namespace kube-system failed."
+
 kubectl create clusterrolebinding tiller --clusterrole=cluster-admin --serviceaccount=kube-system:tiller
+verify_kubectl $? "Creating cluster role binding for tiller failed."
+
 helm init --service-account tiller
+verify_install_step $? "Helm init failed."