jenkinsfile
Some checks failed
eCommerce-backend/pipeline/head There was a failure building this commit
Some checks failed
eCommerce-backend/pipeline/head There was a failure building this commit
This commit is contained in:
70
Jenkinsfile
vendored
70
Jenkinsfile
vendored
@@ -1,90 +1,49 @@
|
|||||||
pipeline {
|
pipeline {
|
||||||
agent any
|
agent any
|
||||||
|
|
||||||
environment {
|
environment {
|
||||||
// Harbor LoadBalancer IP and Port
|
REGISTRY = "192.168.108.200:80"
|
||||||
REGISTRY = "192.168.108.200:80"
|
APP_NAME = "ecommerce-app"
|
||||||
APP_NAME = "ecommerce-app"
|
|
||||||
IMAGE_NAME = "ecommerce-backend"
|
IMAGE_NAME = "ecommerce-backend"
|
||||||
IMAGE_TAG = "${REGISTRY}/library/${IMAGE_NAME}:${env.BRANCH_NAME}-${env.BUILD_NUMBER}"
|
IMAGE_TAG = "${REGISTRY}/library/${IMAGE_NAME}:${env.BRANCH_NAME}-${env.BUILD_NUMBER}"
|
||||||
NAMESPACE = "ecommerce"
|
NAMESPACE = "ecommerce"
|
||||||
|
|
||||||
// Containerd and BuildKit configurations
|
|
||||||
CONTAINERD_ADDR = "/run/containerd-pod/containerd.sock"
|
CONTAINERD_ADDR = "/run/containerd-pod/containerd.sock"
|
||||||
BK_SOCK = "/tmp/buildkitd.sock"
|
BK_SOCK = "/tmp/buildkitd.sock"
|
||||||
}
|
}
|
||||||
|
|
||||||
stages {
|
stages {
|
||||||
stage('Initialize & Build') {
|
stage('Build & Push') {
|
||||||
steps {
|
steps {
|
||||||
script {
|
script {
|
||||||
sh """
|
sh """
|
||||||
# 1. Install missing tools (Self-Healing)
|
# Install tools if pod is fresh
|
||||||
if ! command -v buildkitd >/dev/null; then
|
if ! command -v buildkitd >/dev/null; then
|
||||||
curl -L https://github.com/moby/buildkit/releases/download/v0.12.5/buildkit-v0.12.5.linux-amd64.tar.gz | tar -xz -C /usr/local/bin/ --strip-components=1
|
curl -L https://github.com/moby/buildkit/releases/download/v0.12.5/buildkit-v0.12.5.linux-amd64.tar.gz | tar -xz -C /usr/local/bin/ --strip-components=1
|
||||||
ln -sf /usr/local/bin/buildctl /usr/bin/buildctl
|
ln -sf /usr/local/bin/buildctl /usr/bin/buildctl
|
||||||
fi
|
fi
|
||||||
|
|
||||||
if ! command -v kubectl >/dev/null; then
|
|
||||||
curl -LO "https://dl.k8s.io/release/\$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl"
|
|
||||||
chmod +x kubectl && mv kubectl /usr/local/bin/
|
|
||||||
fi
|
|
||||||
|
|
||||||
# 2. Reset and Start BuildKit
|
|
||||||
pkill buildkitd || true
|
pkill buildkitd || true
|
||||||
rm -f ${BK_SOCK}
|
|
||||||
export JENKINS_NODE_COOKIE=dontKillMe
|
export JENKINS_NODE_COOKIE=dontKillMe
|
||||||
nohup buildkitd --addr unix://${BK_SOCK} > /tmp/buildkitd.log 2>&1 &
|
nohup buildkitd --addr unix://${BK_SOCK} > /tmp/buildkitd.log 2>&1 &
|
||||||
|
for i in \$(seq 1 20); do [ -S ${BK_SOCK} ] && break; sleep 1; done
|
||||||
# 3. Wait for BuildKit Socket
|
|
||||||
echo "Waiting for BuildKit..."
|
|
||||||
for i in \$(seq 1 20); do
|
|
||||||
if [ -S ${BK_SOCK} ]; then
|
|
||||||
echo "BuildKit is READY."
|
|
||||||
break
|
|
||||||
fi
|
|
||||||
[ \$i -eq 20 ] && { echo "BuildKit failed to start. Logs:"; cat /tmp/buildkitd.log; exit 1; }
|
|
||||||
sleep 1
|
|
||||||
done
|
|
||||||
|
|
||||||
# 4. Build Image
|
|
||||||
export BUILDKIT_HOST=unix://${BK_SOCK}
|
export BUILDKIT_HOST=unix://${BK_SOCK}
|
||||||
nerdctl --address ${CONTAINERD_ADDR} build --insecure-registry -t ${IMAGE_TAG} .
|
nerdctl --address ${CONTAINERD_ADDR} build --insecure-registry -t ${IMAGE_TAG} .
|
||||||
"""
|
"""
|
||||||
}
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
stage('Push to Harbor') {
|
|
||||||
steps {
|
|
||||||
script {
|
|
||||||
withCredentials([usernamePassword(credentialsId: 'harbor-creds', passwordVariable: 'PASS', usernameVariable: 'USER')]) {
|
withCredentials([usernamePassword(credentialsId: 'harbor-creds', passwordVariable: 'PASS', usernameVariable: 'USER')]) {
|
||||||
sh """
|
sh "echo '${PASS}' | nerdctl --address ${CONTAINERD_ADDR} login ${REGISTRY} -u ${USER} --password-stdin --insecure-registry"
|
||||||
echo '${PASS}' | nerdctl --address ${CONTAINERD_ADDR} login ${REGISTRY} -u ${USER} --password-stdin --insecure-registry
|
sh "nerdctl --address ${CONTAINERD_ADDR} push ${IMAGE_TAG} --insecure-registry"
|
||||||
nerdctl --address ${CONTAINERD_ADDR} push ${IMAGE_TAG} --insecure-registry
|
|
||||||
"""
|
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
stage('Deploy') {
|
||||||
stage('Deploy to Kubernetes') {
|
|
||||||
steps {
|
steps {
|
||||||
script {
|
script {
|
||||||
withCredentials([file(credentialsId: 'k8s-config', variable: 'KUBECONFIG')]) {
|
withCredentials([file(credentialsId: 'k8s-config', variable: 'KUBECONFIG')]) {
|
||||||
// This patch forces K8s to pull from Harbor and uses the pull secret you created
|
|
||||||
sh """
|
sh """
|
||||||
kubectl --kubeconfig=${KUBECONFIG} patch deployment ${APP_NAME} -n ${NAMESPACE} --patch \
|
kubectl --kubeconfig=${KUBECONFIG} patch deployment ${APP_NAME} -n ${NAMESPACE} --patch \
|
||||||
'{"spec": {"template": {"spec": {
|
'{"spec": {"template": {"spec": {
|
||||||
"imagePullSecrets": [{"name": "harbor-pull-secret"}],
|
"imagePullSecrets": [{"name": "harbor-pull-secret"}],
|
||||||
"containers": [{
|
"containers": [{"name": "${APP_NAME}", "image": "${IMAGE_TAG}", "imagePullPolicy": "Always"}]
|
||||||
"name": "${APP_NAME}",
|
|
||||||
"image": "${IMAGE_TAG}",
|
|
||||||
"imagePullPolicy": "Always"
|
|
||||||
}]
|
|
||||||
}}}}'
|
}}}}'
|
||||||
|
|
||||||
echo "Verifying Rollout..."
|
|
||||||
kubectl --kubeconfig=${KUBECONFIG} rollout status deployment/${APP_NAME} -n ${NAMESPACE} --timeout=90s
|
kubectl --kubeconfig=${KUBECONFIG} rollout status deployment/${APP_NAME} -n ${NAMESPACE} --timeout=90s
|
||||||
"""
|
"""
|
||||||
}
|
}
|
||||||
@@ -92,13 +51,4 @@ pipeline {
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
post {
|
|
||||||
success {
|
|
||||||
echo "Successfully deployed ${IMAGE_TAG}"
|
|
||||||
}
|
|
||||||
failure {
|
|
||||||
echo "Pipeline failed. Check BuildKit logs or K8s events."
|
|
||||||
}
|
|
||||||
}
|
|
||||||
}
|
}
|
||||||
Reference in New Issue
Block a user