2018-03-17 18:26:18 +05:30
|
|
|
# Auto DevOps
|
|
|
|
# This CI/CD configuration provides a standard pipeline for
|
|
|
|
# * building a Docker image (using a buildpack if necessary),
|
|
|
|
# * storing the image in the container registry,
|
|
|
|
# * running tests from a buildpack,
|
|
|
|
# * running code quality analysis,
|
|
|
|
# * creating a review app for each topic branch,
|
|
|
|
# * and continuous deployment to production
|
|
|
|
#
|
2018-11-08 19:23:39 +05:30
|
|
|
# Test jobs may be disabled by setting environment variables:
|
|
|
|
# * test: TEST_DISABLED
|
|
|
|
# * code_quality: CODE_QUALITY_DISABLED
|
|
|
|
# * license_management: LICENSE_MANAGEMENT_DISABLED
|
|
|
|
# * performance: PERFORMANCE_DISABLED
|
2020-07-28 23:09:34 +05:30
|
|
|
# * load_performance: LOAD_PERFORMANCE_DISABLED
|
2018-11-08 19:23:39 +05:30
|
|
|
# * sast: SAST_DISABLED
|
2020-06-23 00:09:42 +05:30
|
|
|
# * secret_detection: SECRET_DETECTION_DISABLED
|
2018-11-08 19:23:39 +05:30
|
|
|
# * dependency_scanning: DEPENDENCY_SCANNING_DISABLED
|
|
|
|
# * container_scanning: CONTAINER_SCANNING_DISABLED
|
|
|
|
# * dast: DAST_DISABLED
|
|
|
|
# * review: REVIEW_DISABLED
|
|
|
|
# * stop_review: REVIEW_DISABLED
|
|
|
|
#
|
2018-03-17 18:26:18 +05:30
|
|
|
# In order to deploy, you must have a Kubernetes cluster configured either
|
|
|
|
# via a project integration, or via group/project variables.
|
2019-03-02 22:35:43 +05:30
|
|
|
# KUBE_INGRESS_BASE_DOMAIN must also be set on the cluster settings,
|
|
|
|
# as a variable at the group or project level, or manually added below.
|
2018-03-17 18:26:18 +05:30
|
|
|
#
|
2018-10-15 14:42:47 +05:30
|
|
|
# Continuous deployment to production is enabled by default.
|
2018-12-05 23:21:45 +05:30
|
|
|
# If you want to deploy to staging first, set STAGING_ENABLED environment variable.
|
|
|
|
# If you want to enable incremental rollout, either manual or time based,
|
2019-02-15 15:39:39 +05:30
|
|
|
# set INCREMENTAL_ROLLOUT_MODE environment variable to "manual" or "timed".
|
2018-11-08 19:23:39 +05:30
|
|
|
# If you want to use canary deployments, set CANARY_ENABLED environment variable.
|
2018-03-17 18:26:18 +05:30
|
|
|
#
|
|
|
|
# If Auto DevOps fails to detect the proper buildpack, or if you want to
|
|
|
|
# specify a custom buildpack, set a project variable `BUILDPACK_URL` to the
|
|
|
|
# repository URL of the buildpack.
|
|
|
|
# e.g. BUILDPACK_URL=https://github.com/heroku/heroku-buildpack-ruby.git#v142
|
|
|
|
# If you need multiple buildpacks, add a file to your project called
|
|
|
|
# `.buildpacks` that contains the URLs, one on each line, in order.
|
|
|
|
# Note: Auto CI does not work with multiple buildpacks yet
|
|
|
|
|
|
|
|
image: alpine:latest
|
|
|
|
|
|
|
|
variables:
|
2019-03-02 22:35:43 +05:30
|
|
|
# KUBE_INGRESS_BASE_DOMAIN is the application deployment domain and should be set as a variable at the group or project level.
|
|
|
|
# KUBE_INGRESS_BASE_DOMAIN: domain.example.com
|
2018-03-17 18:26:18 +05:30
|
|
|
|
|
|
|
POSTGRES_USER: user
|
|
|
|
POSTGRES_PASSWORD: testing-password
|
|
|
|
POSTGRES_ENABLED: "true"
|
|
|
|
POSTGRES_DB: $CI_ENVIRONMENT_SLUG
|
|
|
|
|
2018-11-20 20:47:30 +05:30
|
|
|
DOCKER_DRIVER: overlay2
|
|
|
|
|
2019-07-07 11:18:12 +05:30
|
|
|
ROLLOUT_RESOURCE_TYPE: deployment
|
|
|
|
|
2019-12-04 20:38:33 +05:30
|
|
|
DOCKER_TLS_CERTDIR: "" # https://gitlab.com/gitlab-org/gitlab-runner/issues/4501
|
2019-09-30 21:07:59 +05:30
|
|
|
|
2018-03-17 18:26:18 +05:30
|
|
|
stages:
|
|
|
|
- build
|
|
|
|
- test
|
2019-09-04 21:01:54 +05:30
|
|
|
- deploy # dummy stage to follow the template guidelines
|
2018-03-17 18:26:18 +05:30
|
|
|
- review
|
|
|
|
- dast
|
|
|
|
- staging
|
|
|
|
- canary
|
|
|
|
- production
|
2018-12-05 23:21:45 +05:30
|
|
|
- incremental rollout 10%
|
|
|
|
- incremental rollout 25%
|
|
|
|
- incremental rollout 50%
|
|
|
|
- incremental rollout 100%
|
2018-03-17 18:26:18 +05:30
|
|
|
- performance
|
|
|
|
- cleanup
|
|
|
|
|
2020-04-22 19:07:51 +05:30
|
|
|
workflow:
|
|
|
|
rules:
|
2020-07-28 23:09:34 +05:30
|
|
|
- if: '$BUILDPACK_URL || $AUTO_DEVOPS_EXPLICITLY_ENABLED == "1" || $DOCKERFILE_PATH'
|
2020-04-22 19:07:51 +05:30
|
|
|
|
|
|
|
- exists:
|
|
|
|
- Dockerfile
|
|
|
|
|
|
|
|
# https://github.com/heroku/heroku-buildpack-clojure
|
|
|
|
- exists:
|
|
|
|
- project.clj
|
|
|
|
|
|
|
|
# https://github.com/heroku/heroku-buildpack-go
|
|
|
|
- exists:
|
|
|
|
- go.mod
|
|
|
|
- Gopkg.mod
|
|
|
|
- Godeps/Godeps.json
|
|
|
|
- vendor/vendor.json
|
|
|
|
- glide.yaml
|
|
|
|
- src/**/*.go
|
|
|
|
|
|
|
|
# https://github.com/heroku/heroku-buildpack-gradle
|
|
|
|
- exists:
|
|
|
|
- gradlew
|
|
|
|
- build.gradle
|
|
|
|
- settings.gradle
|
|
|
|
|
|
|
|
# https://github.com/heroku/heroku-buildpack-java
|
|
|
|
- exists:
|
|
|
|
- pom.xml
|
|
|
|
- pom.atom
|
|
|
|
- pom.clj
|
|
|
|
- pom.groovy
|
|
|
|
- pom.rb
|
|
|
|
- pom.scala
|
|
|
|
- pom.yaml
|
|
|
|
- pom.yml
|
|
|
|
|
|
|
|
# https://github.com/heroku/heroku-buildpack-multi
|
|
|
|
- exists:
|
|
|
|
- .buildpacks
|
|
|
|
|
|
|
|
# https://github.com/heroku/heroku-buildpack-nodejs
|
|
|
|
- exists:
|
|
|
|
- package.json
|
|
|
|
|
|
|
|
# https://github.com/heroku/heroku-buildpack-php
|
|
|
|
- exists:
|
|
|
|
- composer.json
|
|
|
|
- index.php
|
|
|
|
|
|
|
|
# https://github.com/heroku/heroku-buildpack-play
|
|
|
|
# TODO: detect script excludes some scala files
|
|
|
|
- exists:
|
|
|
|
- '**/conf/application.conf'
|
|
|
|
|
|
|
|
# https://github.com/heroku/heroku-buildpack-python
|
|
|
|
# TODO: detect script checks that all of these exist, not any
|
|
|
|
- exists:
|
|
|
|
- requirements.txt
|
|
|
|
- setup.py
|
|
|
|
- Pipfile
|
|
|
|
|
|
|
|
# https://github.com/heroku/heroku-buildpack-ruby
|
|
|
|
- exists:
|
|
|
|
- Gemfile
|
|
|
|
|
|
|
|
# https://github.com/heroku/heroku-buildpack-scala
|
|
|
|
- exists:
|
|
|
|
- '*.sbt'
|
|
|
|
- project/*.scala
|
|
|
|
- .sbt/*.scala
|
|
|
|
- project/build.properties
|
|
|
|
|
|
|
|
# https://github.com/dokku/buildpack-nginx
|
|
|
|
- exists:
|
|
|
|
- .static
|
|
|
|
|
2019-07-07 11:18:12 +05:30
|
|
|
include:
|
2019-12-04 20:38:33 +05:30
|
|
|
- template: Jobs/Build.gitlab-ci.yml # https://gitlab.com/gitlab-org/gitlab-foss/blob/master/lib/gitlab/ci/templates/Jobs/Build.gitlab-ci.yml
|
|
|
|
- template: Jobs/Test.gitlab-ci.yml # https://gitlab.com/gitlab-org/gitlab-foss/blob/master/lib/gitlab/ci/templates/Jobs/Test.gitlab-ci.yml
|
|
|
|
- template: Jobs/Code-Quality.gitlab-ci.yml # https://gitlab.com/gitlab-org/gitlab-foss/blob/master/lib/gitlab/ci/templates/Jobs/Code-Quality.gitlab-ci.yml
|
|
|
|
- template: Jobs/Deploy.gitlab-ci.yml # https://gitlab.com/gitlab-org/gitlab-foss/blob/master/lib/gitlab/ci/templates/Jobs/Deploy.gitlab-ci.yml
|
2019-12-21 20:55:43 +05:30
|
|
|
- template: Jobs/DAST-Default-Branch-Deploy.gitlab-ci.yml # https://gitlab.com/gitlab-org/gitlab-foss/blob/master/lib/gitlab/ci/templates/Jobs/DAST-Default-Branch-Deploy.gitlab-ci.yml
|
2019-12-04 20:38:33 +05:30
|
|
|
- template: Jobs/Browser-Performance-Testing.gitlab-ci.yml # https://gitlab.com/gitlab-org/gitlab-foss/blob/master/lib/gitlab/ci/templates/Jobs/Browser-Performance-Testing.gitlab-ci.yml
|
|
|
|
- template: Security/DAST.gitlab-ci.yml # https://gitlab.com/gitlab-org/gitlab-foss/blob/master/lib/gitlab/ci/templates/Security/DAST.gitlab-ci.yml
|
|
|
|
- template: Security/Container-Scanning.gitlab-ci.yml # https://gitlab.com/gitlab-org/gitlab-foss/blob/master/lib/gitlab/ci/templates/Security/Container-Scanning.gitlab-ci.yml
|
|
|
|
- template: Security/Dependency-Scanning.gitlab-ci.yml # https://gitlab.com/gitlab-org/gitlab-foss/blob/master/lib/gitlab/ci/templates/Security/Dependency-Scanning.gitlab-ci.yml
|
2020-05-24 23:13:21 +05:30
|
|
|
- template: Security/License-Scanning.gitlab-ci.yml # https://gitlab.com/gitlab-org/gitlab-foss/blob/master/lib/gitlab/ci/templates/Security/License-Scanning.gitlab-ci.yml
|
2019-12-04 20:38:33 +05:30
|
|
|
- template: Security/SAST.gitlab-ci.yml # https://gitlab.com/gitlab-org/gitlab-foss/blob/master/lib/gitlab/ci/templates/Security/SAST.gitlab-ci.yml
|
2020-10-24 23:57:45 +05:30
|
|
|
- template: Security/Secret-Detection.gitlab-ci.yml # https://gitlab.com/gitlab-org/gitlab-foss/blob/master/lib/gitlab/ci/templates/Security/Secret-Detection.gitlab-ci.yml
|