2022-03-07 11:49:45 +01:00
|
|
|
stages: # List of stages for jobs, and their order of execution
|
|
|
|
- build
|
|
|
|
- test
|
|
|
|
- deploy
|
|
|
|
|
2022-03-06 12:02:30 +01:00
|
|
|
docker-build-push:
|
2022-03-07 11:49:45 +01:00
|
|
|
# Use the official docker image.
|
2022-03-06 05:08:40 +01:00
|
|
|
image: docker:latest
|
|
|
|
stage: build
|
|
|
|
services:
|
2022-03-07 11:49:45 +01:00
|
|
|
- docker:dind
|
2022-03-06 05:08:40 +01:00
|
|
|
before_script:
|
2022-03-07 11:49:45 +01:00
|
|
|
- docker login -u "$CI_REGISTRY_USER" -p "$CI_REGISTRY_PASSWORD" $CI_REGISTRY
|
2022-03-06 05:08:40 +01:00
|
|
|
script:
|
2022-05-19 01:18:04 +02:00
|
|
|
- docker build --pull -t "$CI_REGISTRY_IMAGE" .
|
|
|
|
- docker push "$CI_REGISTRY_IMAGE"
|
2022-03-09 08:16:27 +01:00
|
|
|
allow_failure: false
|
2022-03-06 11:36:37 +01:00
|
|
|
only:
|
2022-03-07 11:49:45 +01:00
|
|
|
- master
|
2022-05-19 01:18:04 +02:00
|
|
|
|
|
|
|
docker-build-push-dev:
|
|
|
|
# Use the official docker image.
|
|
|
|
image: docker:latest
|
|
|
|
stage: build
|
|
|
|
services:
|
|
|
|
- docker:dind
|
|
|
|
before_script:
|
|
|
|
- docker login -u "$CI_REGISTRY_USER" -p "$CI_REGISTRY_PASSWORD" $CI_REGISTRY
|
|
|
|
script:
|
|
|
|
- docker build --pull -t "$CI_REGISTRY_IMAGE:dev" .
|
|
|
|
- docker push "$CI_REGISTRY_IMAGE:dev"
|
|
|
|
allow_failure: false
|
|
|
|
only:
|
2022-03-07 11:49:45 +01:00
|
|
|
- dev
|
2022-05-19 01:18:04 +02:00
|
|
|
- merge_requests
|
2022-03-07 11:49:45 +01:00
|
|
|
|
2022-03-06 12:02:30 +01:00
|
|
|
docker-build:
|
|
|
|
image: docker:latest
|
|
|
|
stage: build
|
|
|
|
services:
|
2022-03-07 11:49:45 +01:00
|
|
|
- docker:dind
|
2022-03-06 12:02:30 +01:00
|
|
|
before_script:
|
2022-03-07 11:49:45 +01:00
|
|
|
- docker login -u "$CI_REGISTRY_USER" -p "$CI_REGISTRY_PASSWORD" $CI_REGISTRY
|
2022-03-06 12:02:30 +01:00
|
|
|
script:
|
2022-03-07 11:49:45 +01:00
|
|
|
- docker build --pull -t "$CI_REGISTRY_IMAGE" .
|
2022-03-09 08:16:27 +01:00
|
|
|
allow_failure: false
|
2022-03-06 12:02:30 +01:00
|
|
|
except:
|
2022-03-07 11:49:45 +01:00
|
|
|
- master
|
|
|
|
- dev
|
2022-05-19 01:18:04 +02:00
|
|
|
- merge_requests
|
2022-03-07 11:49:45 +01:00
|
|
|
|
2022-03-09 07:22:14 +01:00
|
|
|
include:
|
|
|
|
- template: Security/Container-Scanning.gitlab-ci.yml
|
2022-03-09 09:38:32 +01:00
|
|
|
- template: Security/SAST.gitlab-ci.yml
|
2022-03-09 06:20:26 +01:00
|
|
|
container_scanning:
|
|
|
|
variables:
|
|
|
|
DOCKER_IMAGE: "$CI_REGISTRY_IMAGE${tag}"
|
|
|
|
stage: test
|
2022-03-09 08:16:27 +01:00
|
|
|
allow_failure: false
|
2022-03-07 11:49:45 +01:00
|
|
|
|
2022-06-21 20:40:27 +02:00
|
|
|
#deploy_dev:
|
|
|
|
# stage: deploy
|
|
|
|
# image: debian
|
|
|
|
# before_script:
|
|
|
|
# - apt-get update -qq
|
|
|
|
# - 'which ssh-agent || ( apt-get install -qq openssh-client )'
|
|
|
|
# - eval $(ssh-agent -s)
|
|
|
|
# - ssh-add <(echo "$SSH_PRIVATE_KEY")
|
|
|
|
# - mkdir -p ~/.ssh
|
|
|
|
# - '[[ -f /.dockerenv ]] && echo -e "Host *\n\tStrictHostKeyChecking no\n\n" > ~/.ssh/config'
|
|
|
|
# script:
|
|
|
|
# - ssh $SSH_SERVER "cd /root && docker-compose -f shbot-dev.yaml pull shbot-dev && docker-compose -f shbot-dev.yaml up -d shbot-dev && exit"
|
|
|
|
# only:
|
|
|
|
# - dev
|
|
|
|
# - merge_requests
|
|
|
|
#
|
|
|
|
#deploy_staging:
|
|
|
|
# stage: deploy
|
|
|
|
# image: debian
|
|
|
|
# before_script:
|
|
|
|
# - apt-get update -qq
|
|
|
|
# - 'which ssh-agent || ( apt-get install -qq openssh-client )'
|
|
|
|
# - eval $(ssh-agent -s)
|
|
|
|
# - ssh-add <(echo "$SSH_PRIVATE_KEY")
|
|
|
|
# - mkdir -p ~/.ssh
|
|
|
|
# - '[[ -f /.dockerenv ]] && echo -e "Host *\n\tStrictHostKeyChecking no\n\n" > ~/.ssh/config'
|
|
|
|
# script:
|
|
|
|
# - ssh $SSH_SERVER "cd /root && docker-compose pull shbot && docker-compose up -d shbot && exit"
|
|
|
|
# only:
|
|
|
|
# - master
|
2022-03-07 11:49:45 +01:00
|
|
|
|