Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
G
gitlab-ce
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
1
Merge Requests
1
Analytics
Analytics
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Commits
Issue Boards
Open sidebar
nexedi
gitlab-ce
Commits
930c58f7
Commit
930c58f7
authored
Jul 17, 2018
by
Rémy Coutable
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
Improve the 'review' job and make it manual
Signed-off-by:
Rémy Coutable
<
remy@rymai.me
>
parent
be010aab
Changes
2
Hide whitespace changes
Inline
Side-by-side
Showing
2 changed files
with
194 additions
and
183 deletions
+194
-183
.gitlab-ci.yml
.gitlab-ci.yml
+27
-183
scripts/review-apps.sh
scripts/review-apps.sh
+167
-0
No files found.
.gitlab-ci.yml
View file @
930c58f7
...
@@ -160,7 +160,6 @@ stages:
...
@@ -160,7 +160,6 @@ stages:
.single-script-job
:
&single-script-job
.single-script-job
:
&single-script-job
image
:
ruby:2.4-alpine
image
:
ruby:2.4-alpine
before_script
:
[]
stage
:
build
stage
:
build
cache
:
{}
cache
:
{}
dependencies
:
[]
dependencies
:
[]
...
@@ -426,16 +425,15 @@ review-docs-cleanup:
...
@@ -426,16 +425,15 @@ review-docs-cleanup:
# Trigger a docker image build in CNG (Cloud Native GitLab) repository
# Trigger a docker image build in CNG (Cloud Native GitLab) repository
#
#
cloud-native-image
:
cloud-native-image
:
image
:
ruby:2.4-alpine
<<
:
*single-script-job
before_script
:
[]
stage
:
build
stage
:
build
allow_failure
:
true
allow_failure
:
true
variables
:
variables
:
GIT_DEPTH
:
"
1"
<<
:
*single-script-job-variables
cache
:
{}
SCRIPT_NAME
:
trigger-build
script
:
script
:
-
gem install gitlab --no-
ri --no-rdoc
-
gem install gitlab --no-
document
-
BUILD_TRIGGER_TOKEN=$CI_JOB_TOKEN
scripts/trigger-build
cng
-
BUILD_TRIGGER_TOKEN=$CI_JOB_TOKEN
./$SCRIPT_NAME
cng
only
:
only
:
-
tags@gitlab-org/gitlab-ce
-
tags@gitlab-org/gitlab-ce
-
tags@gitlab-org/gitlab-ee
-
tags@gitlab-org/gitlab-ee
...
@@ -1087,13 +1085,15 @@ no_ee_check:
...
@@ -1087,13 +1085,15 @@ no_ee_check:
# GitLab EE Review apps
# GitLab EE Review apps
review-app-image
:
review-app-image
:
<<
:
*dedicated-no-docs-no-db-pull-cache-job
<<
:
*single-script-job
image
:
ruby:2.4-alpine
stage
:
test
before_script
:
[]
allow_failure
:
true
allow_failure
:
true
cache
:
{}
variables
:
<<
:
*single-script-job-variables
SCRIPT_NAME
:
trigger-build
script
:
script
:
-
BUILD_TRIGGER_TOKEN=$REVIEW_APPS_BUILD_TRIGGER_TOKEN scripts/trigger-build cng
-
BUILD_TRIGGER_TOKEN=$REVIEW_APPS_BUILD_TRIGGER_TOKEN ./$SCRIPT_NAME cng
when
:
manual
only
:
only
:
refs
:
refs
:
-
branches
-
branches
...
@@ -1102,172 +1102,19 @@ review-app-image:
...
@@ -1102,172 +1102,19 @@ review-app-image:
-
master
-
master
-
/(^docs[\/-].*|.*-docs$)/
-
/(^docs[\/-].*|.*-docs$)/
.reviewapps_deploy
:
&reviewapps_deploy
|
[[ "$TRACE" ]] && set -x
export TILLER_NAMESPACE=$KUBE_NAMESPACE
function check_kube_domain() {
if [ -z ${REVIEW_APPS_DOMAIN+x} ]; then
echo "In order to deploy or use Review Apps, REVIEW_APPS_DOMAIN variable must be set"
echo "You can do it in Auto DevOps project settings or defining a variable at group or project level"
echo "You can also manually add it in .gitlab-ci.yml"
false
else
true
fi
}
function download_gitlab_chart() {
curl -o gitlab.tar.bz2 https://gitlab.com/charts/gitlab/-/archive/$GITLAB_HELM_CHART_REF/gitlab-$GITLAB_HELM_CHART_REF.tar.bz2
tar -xjf gitlab.tar.bz2
cd gitlab-$GITLAB_HELM_CHART_REF
helm init --client-only
helm repo add gitlab https://charts.gitlab.io
helm dependency update
helm dependency build
}
function ensure_namespace() {
kubectl describe namespace "$KUBE_NAMESPACE" || kubectl create namespace "$KUBE_NAMESPACE"
}
function install_tiller() {
echo "Checking Tiller..."
helm init --upgrade
kubectl rollout status -n "$TILLER_NAMESPACE" -w "deployment/tiller-deploy"
if ! helm version --debug; then
echo "Failed to init Tiller."
return 1
fi
echo ""
}
function create_secret() {
echo "Create secret..."
kubectl create secret generic -n "$KUBE_NAMESPACE" \
$CI_ENVIRONMENT_SLUG-gitlab-initial-root-password \
--from-literal=password=$REVIEW_APPS_ROOT_PASSWORD \
--dry-run -o json | kubectl apply -f -
}
function previousDeployFailed() {
set +e
echo "Checking for previous deployment of $CI_ENVIRONMENT_SLUG"
deployment_status=$(helm status $CI_ENVIRONMENT_SLUG >/dev/null 2>&1)
status=$?
# if `status` is `0`, deployment exists, has a status
if [ $status -eq 0 ]; then
echo "Previous deployment found, checking status"
deployment_status=$(helm status $CI_ENVIRONMENT_SLUG | grep ^STATUS | cut -d' ' -f2)
echo "Previous deployment state: $deployment_status"
if [[ "$deployment_status" == "FAILED" || "$deployment_status" == "PENDING_UPGRADE" || "$deployment_status" == "PENDING_INSTALL" ]]; then
status=0;
else
status=1;
fi
else
echo "Previous deployment NOT found."
fi
set -e
return $status
}
function deploy() {
track="${1-stable}"
name="$CI_ENVIRONMENT_SLUG"
if [[ "$track" != "stable" ]]; then
name="$name-$track"
fi
replicas="1"
service_enabled="false"
postgres_enabled="$POSTGRES_ENABLED"
# canary uses stable db
[[ "$track" == "canary" ]] && postgres_enabled="false"
env_track=$( echo $track | tr -s '[:lower:]' '[:upper:]' )
env_slug=$( echo ${CI_ENVIRONMENT_SLUG//-/_} | tr -s '[:lower:]' '[:upper:]' )
if [[ "$track" == "stable" ]]; then
# for stable track get number of replicas from `PRODUCTION_REPLICAS`
eval new_replicas=\$${env_slug}_REPLICAS
service_enabled="true"
else
# for all tracks get number of replicas from `CANARY_PRODUCTION_REPLICAS`
eval new_replicas=\$${env_track}_${env_slug}_REPLICAS
fi
if [[ -n "$new_replicas" ]]; then
replicas="$new_replicas"
fi
# Cleanup and previous installs, as FAILED and PENDING_UPGRADE will cause errors with `upgrade`
if [ "$CI_ENVIRONMENT_SLUG" != "production" ] && previousDeployFailed ; then
echo "Deployment in bad state, cleaning up $CI_ENVIRONMENT_SLUG"
delete
cleanup
fi
helm repo add gitlab https://charts.gitlab.io/
helm dep update .
helm upgrade --install \
--wait \
--timeout 600 \
--set releaseOverride="$CI_ENVIRONMENT_SLUG" \
--set global.hosts.hostSuffix="$HOST_SUFFIX" \
--set global.hosts.domain="$REVIEW_APPS_DOMAIN" \
--set global.hosts.externalIP="$REVIEW_APPS_DOMAIN_IP" \
--set certmanager.install=false \
--set global.ingress.configureCertmanager=false \
--set global.ingress.tls.secretName=tls-cert \
--set gitlab.unicorn.resources.requests.cpu=200m \
--set gitlab.sidekiq.resources.requests.cpu=100m \
--set gitlab.gitlab-shell.resources.requests.cpu=100m \
--set redis.resources.requests.cpu=100m \
--set minio.resources.requests.cpu=100m \
--set gitlab.migrations.image.repository=registry.gitlab.com/gitlab-org/build/cng/gitlab-rails-ee \
--set gitlab.migrations.image.tag=$CI_COMMIT_REF_NAME \
--set gitlab.sidekiq.image.repository=registry.gitlab.com/gitlab-org/build/cng/gitlab-sidekiq-ee \
--set gitlab.sidekiq.image.tag=$CI_COMMIT_REF_NAME \
--set gitlab.unicorn.image.repository=registry.gitlab.com/gitlab-org/build/cng/gitlab-unicorn-ee \
--set gitlab.unicorn.image.tag=$CI_COMMIT_REF_NAME \
--set gitlab.gitaly.image.repository=registry.gitlab.com/gitlab-org/build/cng/gitaly \
--set gitlab.gitaly.image.tag=v$GITALY_VERSION \
--set gitlab.gitlab-shell.image.repository=registry.gitlab.com/gitlab-org/build/cng/gitlab-shell \
--set gitlab.gitlab-shell.image.tag=v$GITLAB_SHELL_VERSION \
--namespace="$KUBE_NAMESPACE" \
--version="$CI_PIPELINE_ID-$CI_JOB_ID" \
"$name" \
.
}
function delete() {
track="${1-stable}"
name="$CI_ENVIRONMENT_SLUG"
if [[ "$track" != "stable" ]]; then
name="$name-$track"
fi
helm delete --purge "$name" || true
}
function cleanup() {
kubectl get ingress,configmap,all -n "$KUBE_NAMESPACE" \
-o jsonpath='{range .items[*]}{.kind}{" "}{.metadata.name}{"\n"}{end}' \
| grep "CI_ENVIRONMENT_SLUG" \
| xargs -n2 kubectl delete -n "$KUBE_NAMESPACE" \
|| true
}
review
:
review
:
<<
:
*
dedicated-no-docs-no-db-pull-cache
-job
<<
:
*
single-script
-job
image
:
registry.gitlab.com/charts/gitlab:latest
image
:
registry.gitlab.com/charts/gitlab:latest
stage
:
post-test
stage
:
post-test
before_script
:
allow_failure
:
true
-
*reviewapps_deploy
variables
:
<<
:
*single-script-job-variables
SCRIPT_NAME
:
review-apps.sh
HOST_SUFFIX
:
"
$CI_ENVIRONMENT_SLUG"
DOMAIN
:
"
-$CI_ENVIRONMENT_SLUG.$REVIEW_APPS_DOMAIN"
GITLAB_HELM_CHART_REF
:
"
master"
script
:
script
:
-
source ./$SCRIPT_NAME
-
export GITLAB_SHELL_VERSION=$(< GITLAB_SHELL_VERSION)
-
export GITLAB_SHELL_VERSION=$(< GITLAB_SHELL_VERSION)
-
export GITALY_VERSION=$(< GITALY_SERVER_VERSION)
-
export GITALY_VERSION=$(< GITALY_SERVER_VERSION)
-
check_kube_domain
-
check_kube_domain
...
@@ -1280,35 +1127,32 @@ review:
...
@@ -1280,35 +1127,32 @@ review:
name
:
review/$CI_COMMIT_REF_NAME
name
:
review/$CI_COMMIT_REF_NAME
url
:
https://gitlab-$CI_ENVIRONMENT_SLUG.$REVIEW_APPS_DOMAIN
url
:
https://gitlab-$CI_ENVIRONMENT_SLUG.$REVIEW_APPS_DOMAIN
on_stop
:
stop_review
on_stop
:
stop_review
variables
:
when
:
manual
HOST_SUFFIX
:
"
$CI_ENVIRONMENT_SLUG"
DOMAIN
:
"
-$CI_ENVIRONMENT_SLUG.$REVIEW_APPS_DOMAIN"
GITLAB_HELM_CHART_REF
:
"
master"
only
:
only
:
refs
:
refs
:
-
branches
-
branches
kubernetes
:
active
kubernetes
:
active
allow_failure
:
true
except
:
except
:
refs
:
refs
:
-
master
-
master
-
/(^docs[\/-].*|.*-docs$)/
-
/(^docs[\/-].*|.*-docs$)/
stop_review
:
stop_review
:
<<
:
*single-script-job
image
:
registry.gitlab.com/charts/gitlab:latest
image
:
registry.gitlab.com/charts/gitlab:latest
stage
:
post-cleanup
stage
:
post-cleanup
before_script
:
allow_failure
:
true
-
*reviewapps_deploy
variables
:
variables
:
GIT_STRATEGY
:
none
<<
:
*single-script-job-variables
SCRIPT_NAME
:
review-apps.sh
script
:
script
:
-
source ./$SCRIPT_NAME
-
delete
-
delete
-
cleanup
-
cleanup
environment
:
environment
:
name
:
review/$CI_COMMIT_REF_NAME
name
:
review/$CI_COMMIT_REF_NAME
action
:
stop
action
:
stop
when
:
manual
when
:
manual
allow_failure
:
true
only
:
only
:
refs
:
refs
:
-
branches
-
branches
...
...
scripts/review-apps.sh
0 → 100755
View file @
930c58f7
[[
"
$TRACE
"
]]
&&
set
-x
export
TILLER_NAMESPACE
=
"
$KUBE_NAMESPACE
"
function
check_kube_domain
()
{
if
[
-z
${
REVIEW_APPS_DOMAIN
+x
}
]
;
then
echo
"In order to deploy or use Review Apps, REVIEW_APPS_DOMAIN variable must be set"
echo
"You can do it in Auto DevOps project settings or defining a variable at group or project level"
echo
"You can also manually add it in .gitlab-ci.yml"
false
else
true
fi
}
function
download_gitlab_chart
()
{
curl
-o
gitlab.tar.bz2 https://gitlab.com/charts/gitlab/-/archive/
$GITLAB_HELM_CHART_REF
/gitlab-
$GITLAB_HELM_CHART_REF
.tar.bz2
tar
-xjf
gitlab.tar.bz2
cd
gitlab-
$GITLAB_HELM_CHART_REF
helm init
--client-only
helm repo add gitlab https://charts.gitlab.io
helm dependency update
helm dependency build
}
function
ensure_namespace
()
{
kubectl describe namespace
"
$KUBE_NAMESPACE
"
||
kubectl create namespace
"
$KUBE_NAMESPACE
"
}
function
install_tiller
()
{
echo
"Checking Tiller..."
helm init
--upgrade
kubectl rollout status
-n
"
$TILLER_NAMESPACE
"
-w
"deployment/tiller-deploy"
if
!
helm version
--debug
;
then
echo
"Failed to init Tiller."
return
1
fi
echo
""
}
function
create_secret
()
{
echo
"Create secret..."
kubectl create secret generic
-n
"
$KUBE_NAMESPACE
"
\
$CI_ENVIRONMENT_SLUG
-gitlab-initial-root-password
\
--from-literal
=
password
=
$REVIEW_APPS_ROOT_PASSWORD
\
--dry-run
-o
json | kubectl apply
-f
-
}
function
previousDeployFailed
()
{
set
+e
echo
"Checking for previous deployment of
$CI_ENVIRONMENT_SLUG
"
deployment_status
=
$(
helm status
$CI_ENVIRONMENT_SLUG
>
/dev/null 2>&1
)
status
=
$?
# if `status` is `0`, deployment exists, has a status
if
[
$status
-eq
0
]
;
then
echo
"Previous deployment found, checking status"
deployment_status
=
$(
helm status
$CI_ENVIRONMENT_SLUG
|
grep
^STATUS |
cut
-d
' '
-f2
)
echo
"Previous deployment state:
$deployment_status
"
if
[[
"
$deployment_status
"
==
"FAILED"
||
"
$deployment_status
"
==
"PENDING_UPGRADE"
||
"
$deployment_status
"
==
"PENDING_INSTALL"
]]
;
then
status
=
0
;
else
status
=
1
;
fi
else
echo
"Previous deployment NOT found."
fi
set
-e
return
$status
}
function
deploy
()
{
track
=
"
${
1
-stable
}
"
name
=
"
$CI_ENVIRONMENT_SLUG
"
if
[[
"
$track
"
!=
"stable"
]]
;
then
name
=
"
$name
-
$track
"
fi
replicas
=
"1"
service_enabled
=
"false"
postgres_enabled
=
"
$POSTGRES_ENABLED
"
gitlab_migrations_image_repository
=
"registry.gitlab.com/gitlab-org/build/cng/gitlab-rails-ce"
gitlab_sidekiq_image_repository
=
"registry.gitlab.com/gitlab-org/build/cng/gitlab-sidekiq-ce"
gitlab_unicorn_image_repository
=
"registry.gitlab.com/gitlab-org/build/cng/gitlab-unicorn-ce"
if
[[
"
$CI_PROJECT_NAME
"
==
"gitlab-ee"
]]
;
then
gitlab_migrations_image_repository
=
"registry.gitlab.com/gitlab-org/build/cng/gitlab-rails-ee"
gitlab_sidekiq_image_repository
=
"registry.gitlab.com/gitlab-org/build/cng/gitlab-sidekiq-ee"
gitlab_unicorn_image_repository
=
"registry.gitlab.com/gitlab-org/build/cng/gitlab-unicorn-ee"
fi
# canary uses stable db
[[
"
$track
"
==
"canary"
]]
&&
postgres_enabled
=
"false"
env_track
=
$(
echo
$track
|
tr
-s
'[:lower:]'
'[:upper:]'
)
env_slug
=
$(
echo
${
CI_ENVIRONMENT_SLUG
//-/_
}
|
tr
-s
'[:lower:]'
'[:upper:]'
)
if
[[
"
$track
"
==
"stable"
]]
;
then
# for stable track get number of replicas from `PRODUCTION_REPLICAS`
eval
new_replicas
=
\$
${
env_slug
}
_REPLICAS
service_enabled
=
"true"
else
# for all tracks get number of replicas from `CANARY_PRODUCTION_REPLICAS`
eval
new_replicas
=
\$
${
env_track
}
_
${
env_slug
}
_REPLICAS
fi
if
[[
-n
"
$new_replicas
"
]]
;
then
replicas
=
"
$new_replicas
"
fi
# Cleanup and previous installs, as FAILED and PENDING_UPGRADE will cause errors with `upgrade`
if
[
"
$CI_ENVIRONMENT_SLUG
"
!=
"production"
]
&&
previousDeployFailed
;
then
echo
"Deployment in bad state, cleaning up
$CI_ENVIRONMENT_SLUG
"
delete
cleanup
fi
helm repo add gitlab https://charts.gitlab.io/
helm dep update
.
helm upgrade
--install
\
--wait
\
--timeout
600
\
--set
releaseOverride
=
"
$CI_ENVIRONMENT_SLUG
"
\
--set
global.hosts.hostSuffix
=
"
$HOST_SUFFIX
"
\
--set
global.hosts.domain
=
"
$REVIEW_APPS_DOMAIN
"
\
--set
global.hosts.externalIP
=
"
$REVIEW_APPS_DOMAIN_IP
"
\
--set
certmanager.install
=
false
\
--set
global.ingress.configureCertmanager
=
false
\
--set
global.ingress.tls.secretName
=
tls-cert
\
--set
gitlab.unicorn.resources.requests.cpu
=
200m
\
--set
gitlab.sidekiq.resources.requests.cpu
=
100m
\
--set
gitlab.gitlab-shell.resources.requests.cpu
=
100m
\
--set
redis.resources.requests.cpu
=
100m
\
--set
minio.resources.requests.cpu
=
100m
\
--set
gitlab.migrations.image.repository
=
"
$gitlab_migrations_image_repository
"
\
--set
gitlab.migrations.image.tag
=
"
$CI_COMMIT_REF_NAME
"
\
--set
gitlab.sidekiq.image.repository
=
"
$gitlab_sidekiq_image_repository
"
\
--set
gitlab.sidekiq.image.tag
=
"
$CI_COMMIT_REF_NAME
"
\
--set
gitlab.unicorn.image.repository
=
"
$gitlab_unicorn_image_repository
"
\
--set
gitlab.unicorn.image.tag
=
"
$CI_COMMIT_REF_NAME
"
\
--set
gitlab.gitaly.image.repository
=
"registry.gitlab.com/gitlab-org/build/cng/gitaly"
\
--set
gitlab.gitaly.image.tag
=
"v
$GITALY_VERSION
"
\
--set
gitlab.gitlab-shell.image.repository
=
"registry.gitlab.com/gitlab-org/build/cng/gitlab-shell"
\
--set
gitlab.gitlab-shell.image.tag
=
"v
$GITLAB_SHELL_VERSION
"
\
--namespace
=
"
$KUBE_NAMESPACE
"
\
--version
=
"
$CI_PIPELINE_ID
-
$CI_JOB_ID
"
\
"
$name
"
\
.
}
function
delete
()
{
track
=
"
${
1
-stable
}
"
name
=
"
$CI_ENVIRONMENT_SLUG
"
if
[[
"
$track
"
!=
"stable"
]]
;
then
name
=
"
$name
-
$track
"
fi
helm delete
--purge
"
$name
"
||
true
}
function
cleanup
()
{
kubectl get ingress,configmap,all
-n
"
$KUBE_NAMESPACE
"
\
-o
jsonpath
=
'{range .items[*]}{.kind}{" "}{.metadata.name}{"\n"}{end}'
\
|
grep
"CI_ENVIRONMENT_SLUG"
\
| xargs
-n2
kubectl delete
-n
"
$KUBE_NAMESPACE
"
\
||
true
}
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment