Skip to content
Snippets Groups Projects
Normal view Permalink
.gitlab-ci.yml 2.94 KiB
Newer Older
Nico Vermaas's avatar
ci/cd and docker
Nico Vermaas committed
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 
stages:
  - build
  - deploy_to_test
  - deploy_to_production

docker-build-master:
  # Official docker image.
  image: docker:latest
  stage: build
  services:
    - docker:dind
  before_script:
    - docker login -u "$CI_REGISTRY_USER" -p "$CI_REGISTRY_PASSWORD" $CI_REGISTRY
  script:
    - docker build --pull -t "$CI_REGISTRY_IMAGE" ldvspec
    - docker push "$CI_REGISTRY_IMAGE"
  only:
    - main


# deploy test/dev version on 'sdc-dev.astron.nl'
docker-deploy-master-test:
  image: docker:latest
  stage: deploy_to_test
  before_script:
Nico Vermaas's avatar
ci/cd and docker  
Nico Vermaas committed
26 27 28 29 30 
    - docker login -u "$CI_REGISTRY_USER" -p "$CI_REGISTRY_PASSWORD" $CI_REGISTRY
    ##
    ## Install ssh-agent if not already installed, it is required by Docker.
    ## (change apt-get to yum if you use an RPM-based image)
    ##
Nico Vermaas's avatar
ci/cd and docker
Nico Vermaas committed
31 
    - 'command -v ssh-agent >/dev/null || ( apt-get update -y && apt-get install openssh-client -y )'
Nico Vermaas's avatar
ci/cd and docker  
Nico Vermaas committed
32 33 34 
    ##
    ## Run ssh-agent (inside the build environment)
    ##
Nico Vermaas's avatar
ci/cd and docker
Nico Vermaas committed
35 
    - eval $(ssh-agent -s)
Nico Vermaas's avatar
ci/cd and docker  
Nico Vermaas committed
36 37 38 39 40 41 42 43 44 
    ##
    ## Add the SSH key stored in SSH_PRIVATE_KEY variable to the agent store
    ## We're using tr to fix line endings which makes ed25519 keys work
    ## without extra base64 encoding.
    ## https://gitlab.com/gitlab-examples/ssh-private-key/issues/1#note_48526556
    ##
    ##
    ## Create the SSH directory and give it the right permissions
    ##
Nico Vermaas's avatar
ci/cd and docker
Nico Vermaas committed
45 46 47 48 49 50 51 
    - echo "$SSH_PRIVATE_KEY_USER_SDC" | tr -d '\r' | ssh-add -
    - mkdir -p ~/.ssh
    - chmod 700 ~/.ssh
    - ssh-keyscan dop814.astron.nl >> ~/.ssh/known_hosts
    - ssh-keyscan sdc-dev.astron.nl >> ~/.ssh/known_hosts
    - chmod 644 ~/.ssh/known_hosts
  script:
Nico Vermaas's avatar
ci/cd and docker - deploy in sdc-dev  
Nico Vermaas committed
52 
    ## deploy the docker-compose file and use it to spin up the containers
Nico Vermaas's avatar
ci/cd and docker - deploy in sdc-dev  
Nico Vermaas committed
53 
    #- scp docker/docker-compose-dev-cd.yml sdc@sdc-dev.astron.nl:/docker_compose/ldvspec/docker-compose-dev-cd.yml
Nico Vermaas's avatar
ci/cd and docker - deploy in sdc-dev  
Nico Vermaas committed
54 
    - echo "do docker!"
Nico Vermaas's avatar
ci/cd and docker
Nico Vermaas committed
55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 
    - ssh -o StrictHostKeyChecking=no sdc@dop814.astron.nl "docker pull "$CI_REGISTRY_IMAGE""
    - ssh -o StrictHostKeyChecking=no sdc@dop814.astron.nl "docker-compose -p ldvspec -f /docker_compose/ldvspec/docker-compose-dev-cd.yml up -d"
  when: manual
  only:
    - main

# deploy release version on 'sdc.astron.nl'
docker-deploy-master-production:
  image: docker:latest
  stage: deploy_to_production
  before_script:
    - 'command -v ssh-agent >/dev/null || ( apt-get update -y && apt-get install openssh-client -y )'
    - eval $(ssh-agent -s)
    - echo "$SSH_PRIVATE_KEY" | tr -d '\r' | ssh-add -
    - mkdir -p ~/.ssh
    - chmod 700 ~/.ssh
    - ssh-keyscan dop821.astron.nl >> ~/.ssh/known_hosts
    - chmod 644 ~/.ssh/known_hosts
  script:
    - ssh -o StrictHostKeyChecking=no sdco@dop821.astron.nl "echo $CI_REGISTRY_PASSWORD | docker login -u $CI_REGISTRY_USER --password-stdin $CI_REGISTRY"
    - ssh -o StrictHostKeyChecking=no sdco@dop821.astron.nl "docker pull "$CI_REGISTRY_IMAGE""
    - ssh -o StrictHostKeyChecking=no sdco@dop821.astron.nl "docker-compose -p ldvspec -f /opt/dockercompose/ldvspec/docker-compose-production-cd.yml up -d"
  when: manual
  only:
    - main