Jenkins Automation

JENKINS AUTOMATION TONI VAN DE VOORDE

ABOUT ME Toni Van de Voorde tonivdv [email protected] @tonivdv ▸
CTO @ Adsdaq ▸ +10 years experience building web applications ▸ Love clean stuff and automations ▸ “Relax” with family

BACKGROUND ▸ Written in Java ▸ First released in 2005
▸ Formerly known as the “Hudson Project” ▸ The name “Jenkins” was born in 2011

WHY ▸ Free ▸ OSS ▸ Customisation ▸ Plugin System
▸ Full Control

BUT “ JENKINS & JOBS CAN BE TIME- CONSUMING”

USE CASES

USE CASES ▸ Traditional: Freestyle Job 

USE CASES ▸ Traditional: Freestyle Job  ▸ Jenkins Pipeline 

USE CASES ▸ Traditional: Freestyle Job  ▸ Jenkins Pipeline  ▸
Intro to JCasC 

USE CASES ▸ Traditional: Freestyle Job  ▸ Jenkins Pipeline  ▸
Intro to JCasC  ▸ Extra: Demo

USE CASES Freestyle Job

FREESTYLE JOB

FREESTYLE JOB Job DSL Job DSL plugin

Groovy-based Domain Speciﬁc Language FREESTYLE JOB Job DSL

FREESTYLE JOB Job DSL job(‘jobs-name’) {    scm {  git('[email protected]:adlogix/zf-symfony-container.git') 
} triggers {  scm('H/15 * * * *')  } steps {  shell('composer install && vendor/bin/phpunit')  }    }

FREESTYLE JOB Job DSL Installation Dockerfile FROM jenkins/jenkins:lts-alpine  RUN /usr/local/bin/install-plugins.sh
job-dsl

FREESTYLE JOB Job DSL Seed Job

FREESTYLE JOB Job DSL Oops

FREESTYLE JOB Job DSL Security 1. Script Approval  2. Sandboxing 
3. Disable

FREESTYLE JOB Job DSL Example: Folders folder(‘components’)    job(‘components/component1’) { 
...  } Plugin ID: cloudbees-folder

FREESTYLE JOB Job DSL def gitUrl = 'git://github.com/jenkinsci/job-dsl-plugin.git’ def branches
= ['master','dev','hotfix'] branches.each { branch ->   job(“demo-${branch}") {   scm {   git(gitUrl, branch)   }   }  } Example: Static Branches

FREESTYLE JOB Job DSL def project = 'Netflix/asgard’  def branchApi
= new URL("https://api.github.com/repos/${project}/branches")  def branches = new groovy.json.JsonSlurper().parse(branchApi.newReader()) branches.each { def branchName = it.name   def jobName = "${project}-${branchName}".replaceAll('/','-') job(jobName) {   scm {   git("https://github.com/${project}.git", branchName)   }   }  } Example: Dynamic Branches

FREESTYLE JOB Job DSL def project = 'automate-jenkins-job-creation’  def repo
= "https://[email protected]/tonivdv/${project}.git" Process proc1 = "git ls-remote -h ${repo}".execute()  Process proc2 = 'sed s/.*refs\\/heads\\///g'.execute()  Process all = proc1 | proc2  all.waitFor() def branches = "${all.in.text}".split('\\n') branches.each {  …  } Example: Dynamic Branches

FREESTYLE JOB Job DSL # ./scripts/utilities/GitUtils.groovy    package utilities   
public class GitUtils {   public static String[] getRemoteBranches(def repoUrl, def out) {     Process proc1 = "git ls-remote -h ${repoUrl}".execute()   Process proc2 = 'sed s/.*refs\\/heads\\///g'.execute()   Process all = proc1 | proc2 all.waitFor()     def branches = "${all.in.text}".split('\\n')   return branches }  } Example: Functions

FREESTYLE JOB Job DSL # ./scripts/demo.groovy import utilities.GitUtils    def
project = 'automate-jenkins-job-creation’  def repo = https://[email protected]/tonivdv/${project}.git    def branches = GitUtils.getRemoteBranches(repo, out) Example: Functions

FREESTYLE JOB Job DSL ‣ Don’t store passwords in your
DSL scripts! DON’T !   ‣ Use the Credentials   Plugin Example: Credentials Plugin ID: credentials

FREESTYLE JOB Job DSL job(‘jobs-name') {  scm {  git { 
remote {  github('account/repo', 'ssh')  credentials('github-ci-key')  }  }  }  } Example: Credentials

FREESTYLE JOB Job DSL // assign the my-userpassword credentials to
the PASSWORD build variable    job(‘jobs-name') {  wrappers {  credentialsBinding {   usernamePassword('PASSWORD', ‘my-userpassword’)  }  }  } Example: Credentials

FREESTYLE JOB Job DSL Api Viewer https://jenkinsci.github.io/job-dsl-plugin/

Help !!!   My Plugin is not Supported FREESTYLE JOB
Job DSL

FREESTYLE JOB Job DSL 1. Dynamic DSL  2. Conﬁgure Block

FREESTYLE JOB Job DSL ‣ Powerful & Easy ‣ Looks
like a generic DSL ‣ Available in API Viewer ‣ But plugin must use following annotations: ‣ @DataBoundConstructor ‣ @DataBoundSetter  Dynamic DSL

FREESTYLE JOB Job DSL Dynamic DSL https://{base_url}/plugin/job-dsl/api-viewer/index.html

FREESTYLE JOB Job DSL Dynamic DSL job(‘jobs-name’) {    scm
{  git(‘[email protected]:...’)  bitbucketWeb {  repoUrl(‘https://...’)  }  }    }

FREESTYLE JOB Job DSL ‣ Gives access to underlying XML
conﬁguration ‣ Harder & Ugly ‣ Not fun ‣ BUT it works Conﬁgure Block

FREESTYLE JOB Job DSL Conﬁgure Block job('example-1') {    configure
{ node -> // node represents <project> }    }

FREESTYLE JOB Job DSL Conﬁgure Block https://{base_url}/job/demo2/conﬁg.xml

USE CASES Jenkins Pipeline

PIPELINE Jenkins Pipeline (or simply "Pipeline" with a capital "P")
is a suite of plugins which supports implementing and integrating continuous delivery pipelines into Jenkins. © https://jenkins.io/doc/book/pipeline/

Why? PIPELINE ‣ “as-code” paradigm (DSL) ‣ Durable ‣ Pausable
‣ Parallel executions ‣ …

PIPELINE © https://jenkins.io/doc/book/pipeline/

How? PIPELINE Jenkinsﬁle

Example PIPELINE Jenkinsﬁle pipeline {  agent any   stages { 
stage('Checkout') {   steps {  Checkout scm  }  }  stage('Build') {   steps {  sh 'make it-build’  }  }  stage('Test') {   steps {  sh 'make test’  }  }    }  }

2 Flavours … PIPELINE Jenkinsﬁle ‣ Declarative Pipeline ‣ Easier
to use ‣ Limited ‣ Targets easy CD ‣ Scripted Pipeline ‣ Power Users ‣ Groovy is the limit

Declarative Pipeline PIPELINE Jenkinsﬁle pipeline {  agent any   stages
{  ...  stage('Deploy') {   when {  branch 'master'  }  steps {  make deploy  }  }  }  }

PIPELINE Jenkinsﬁle node {   stage('Deploy') {   if (env.BRANCH_NAME
== 'master') {   make deploy   }  }  } Scripted Pipeline

PIPELINE Jenkinsﬁle pipeline {  agent none  stages {  stage('php 7.3')
{  agent {  docker { image 'php:7.3-alpine' }  }  steps {  sh 'php --version'  }  } stage('php 7.2') {  agent {  docker { image 'php:7.2-alpine' }  }  steps {  sh 'php --version'  }  }  }  } Using Docker Blue Ocean Plugin

PIPELINE Jenkinsﬁle pipeline {  agent none  stages {  stage(‘php') { 
parallel {  stage('php 7.3') {  agent {  docker { image 'php:7.3-alpine' }  }  steps {  sh 'php --version'  }  } stage('php 7.2') {  agent {  docker { image 'php:7.2-alpine' }  }  steps {  sh 'php --version'  }  }  }  }  }  } Parallel Blue Ocean Plugin

PIPELINE Jenkinsﬁle Discovering ‣ Pipeline Job ‣ Multi-Branch Pipeline ‣
Organisation Folder ‣ Github ‣ Bitbucket

PIPELINE Jenkinsﬁle Discovering

PIPELINE Jenkinsﬁle Multi-Branch Pipeline

PIPELINE Jenkinsﬁle Bitbucket Organisation

PIPELINE Job DSL plugin

PIPELINE multibranchPipelineJob('mypipelinejob') {  branchSources {  branchSource {  source {  bitbucket
{  id('bitbucket')  serverUrl('https://bitbucket.org')  repoOwner(‘my-user')  repository('my-repository')  credentialsId(‘bitbucket-ssh’)  }  }  }  }    ...  }    Job DSL Multi-Branch Pipeline

PIPELINE multibranchPipelineJob('mypipelinejob') {  ...    // discover Branches (workaround due
to JENKINS-46202)  configure { def traits = it / sources / data / 'jenkins.branch.BranchSource' / source / traits // Exclude branches that are also filed as PRs   traits << 'com.cloudbees.jenkins.plugins.bitbucket.BranchDiscoveryTrait' {  strategyId(1)  }    // Discover each pull request once ... without merging  traits << 'com.cloudbees.jenkins.plugins.bitbucket.OriginPullRequestDiscoveryTrait' {  strategyId(2)  }  }  }    Job DSL Multi-Branch Pipeline

PIPELINE organizationFolder('example') {    description(‘Some description')  displayName(‘Other name')  organizations { 
bitbucket {   serverUrl('https://bitbucket.org')   repoOwner('adqphpbenl19')  credentialsId('bitbucket-tonivdv')   }  }    ...  } Job DSL Organisation Folder

PIPELINE organizationFolder('example') {    ...    configure {  def traits
= it / navigators / 'com.cloudbees.jenkins.plugins.bitbucket.BitbucketSCMNavigator' / traits  traits << 'com.cloudbees.jenkins.plugins.bitbucket.BranchDiscoveryTrait' {  strategyId(1)  }  traits << 'com.cloudbees.jenkins.plugins.bitbucket.OriginPullRequestDiscoveryTrait' {  strategyId(2)  }  }    } Job DSL Organisation Folder

USE CASES Intro to JCasC

JCASC JCasC or Jenkins Configuration as Code allows to define
the “configuration” of plugins and parameters as a simple, human friendly, plain text Yaml syntax.    © https://jenkins.io/projects/jcasc/

JCASC Installation

JCASC Installation ‣ Define location of the casc configurations ‣
Path to a folder containing a set of configs  e.g. /var/jenkins_home/casc_configs ‣ Full path to single file  e.g. /var/jenkins_home/casc_configs/jenkins.yaml ‣ A URL pointing to a file served on the web  e.g. https://acme.org/jenkins.yaml ‣ Default: $JENKINS_ROOT/jenkins.yaml

JCASC # casc_configs/core.yaml    jenkins: systemMessage: | Hello JCasC,   
This is exciting! numExecutors: 1 Examples

JCASC # casc_configs/realm.yaml    jenkins:  securityRealm:  bitbucket:  clientID: ${b_id}  clientSecret:
${b_secret} Examples # casc_configs/authorization.yaml    jenkins:  authorizationStrategy:  globalMatrix:  grantedPermissions:  - "Overall/Read:anonymous"  - "Overall/Administer:authenticated"

JCASC Api Viewer

JCASC Docker

QUESTIONS

THANK YOU joind.in:   https://joind.in/talk/446a8

REFERENCES ‣ Doc ‣ https://jenkins.io/ ‣ https://github.com/jenkinsci/job-dsl-plugin/wiki ‣ https://jenkins.io/doc/book/pipeline/ ‣
https://www.phparch.com/article/jenkins-automation/ ‣ Code Examples ‣ https://github.com/tonivdv/rnd-jenkins-as-code ‣ https://github.com/tonivdv/automate-jenkins-job-creation ‣ Various ‣ https://jenkins.io/artwork/ ‣ https://www.cloudbees.com/

Jenkins Automation

Jenkins Automation

More Decks by Toni Van de Voorde

Other Decks in Technology

Featured

Transcript