2019-09-04 21:01:54 +05:30
---
type: tutorial
---
2018-03-17 18:26:18 +05:30
# Running Composer and NPM scripts with deployment via SCP in GitLab CI/CD
2017-08-17 22:00:37 +05:30
2019-09-04 21:01:54 +05:30
This guide covers the building of dependencies of a PHP project while compiling assets via an NPM script using [GitLab CI/CD ](../../README.md ).
2017-08-17 22:00:37 +05:30
2020-03-13 15:44:24 +05:30
While it is possible to create your own image with custom PHP and Node.js versions, for brevity, we will use an existing [Docker image ](https://hub.docker.com/r/tetraweb/php/ ) that contains both PHP and Node.js installed.
2017-08-17 22:00:37 +05:30
```yaml
image: tetraweb/php
```
The next step is to install zip/unzip packages and make composer available. We will place these in the `before_script` section:
```yaml
before_script:
- apt-get update
- apt-get install zip unzip
- php -r "copy('https://getcomposer.org/installer', 'composer-setup.php');"
- php composer-setup.php
- php -r "unlink('composer-setup.php');"
```
2020-04-08 14:13:33 +05:30
This will make sure we have all requirements ready. Next, we want to run `composer install` to fetch all PHP dependencies and `npm install` to load Node.js packages, then run the `npm` script. We need to append them into `before_script` section:
2017-08-17 22:00:37 +05:30
```yaml
before_script:
# ...
2017-09-10 17:25:29 +05:30
- php composer.phar install
2017-08-17 22:00:37 +05:30
- npm install
- npm run deploy
```
In this particular case, the `npm deploy` script is a Gulp script that does the following:
1. Compile CSS & JS
2019-02-15 15:39:39 +05:30
1. Create sprites
1. Copy various assets (images, fonts) around
1. Replace some strings
2017-08-17 22:00:37 +05:30
All these operations will put all files into a `build` folder, which is ready to be deployed to a live server.
2018-03-17 18:26:18 +05:30
## How to transfer files to a live server
2017-08-17 22:00:37 +05:30
2020-04-08 14:13:33 +05:30
You have multiple options: rsync, scp, sftp, and so on. For now, we will use scp.
2017-08-17 22:00:37 +05:30
2019-12-21 20:55:43 +05:30
To make this work, you need to add a GitLab CI/CD Variable (accessible on `gitlab.example/your-project-name/variables` ). That variable will be called `STAGING_PRIVATE_KEY` and it's the **private** SSH key of your server.
2017-08-17 22:00:37 +05:30
2018-03-17 18:26:18 +05:30
### Security tip
2017-08-17 22:00:37 +05:30
2019-09-04 21:01:54 +05:30
Create a user that has access **only** to the folder that needs to be updated.
2017-08-17 22:00:37 +05:30
2019-09-04 21:01:54 +05:30
After you create that variable, you need to make sure that key will be added to the Docker container on run:
2017-08-17 22:00:37 +05:30
```yaml
before_script:
# - ....
- 'which ssh-agent || ( apt-get update -y && apt-get install openssh-client -y )'
- mkdir -p ~/.ssh
- eval $(ssh-agent -s)
- '[[ -f /.dockerenv ]] && echo -e "Host *\n\tStrictHostKeyChecking no\n\n" > ~/.ssh/config'
```
In order, this means that:
2019-02-15 15:39:39 +05:30
1. We check if the `ssh-agent` is available and we install it if it's not.
1. We create the `~/.ssh` folder.
1. We make sure we're running bash.
1. We disable host checking (we don't ask for user accept when we first connect to a server and since every job will equal a first connect, we kind of need this).
2017-08-17 22:00:37 +05:30
And this is basically all you need in the `before_script` section.
2019-09-04 21:01:54 +05:30
## How to deploy
2017-08-17 22:00:37 +05:30
As we stated above, we need to deploy the `build` folder from the docker image to our server. To do so, we create a new job:
```yaml
stage_deploy:
artifacts:
paths:
- build/
only:
- dev
script:
- ssh-add < (echo "$STAGING_PRIVATE_KEY")
- ssh -p22 server_user@server_host "mkdir htdocs/wp-content/themes/_tmp"
- scp -P22 -r build/* server_user@server_host:htdocs/wp-content/themes/_tmp
- ssh -p22 server_user@server_host "mv htdocs/wp-content/themes/live htdocs/wp-content/themes/_old && mv htdocs/wp-content/themes/_tmp htdocs/wp-content/themes/live"
- ssh -p22 server_user@server_host "rm -rf htdocs/wp-content/themes/_old"
```
2018-03-17 18:26:18 +05:30
Here's the breakdown:
2017-08-17 22:00:37 +05:30
1. `only:dev` means that this build will run only when something is pushed to the `dev` branch. You can remove this block completely and have everything be ran on every push (but probably this is something you don't want)
2019-02-15 15:39:39 +05:30
1. `ssh-add ...` we will add that private key you added on the web UI to the docker container
1. We will connect via `ssh` and create a new `_tmp` folder
1. We will connect via `scp` and upload the `build` folder (which was generated by a `npm` script) to our previously created `_tmp` folder
2019-09-04 21:01:54 +05:30
1. We will connect again via `ssh` and move the `live` folder to an `_old` folder, then move `_tmp` to `live` .
2019-12-21 20:55:43 +05:30
1. We connect to SSH and remove the `_old` folder
2017-08-17 22:00:37 +05:30
What's the deal with the artifacts? We just tell GitLab CI to keep the `build` directory (later on, you can download that as needed).
2018-03-17 18:26:18 +05:30
### Why we do it this way
2017-08-17 22:00:37 +05:30
If you're using this only for stage server, you could do this in two steps:
```yaml
- ssh -p22 server_user@server_host "rm -rf htdocs/wp-content/themes/live/*"
- scp -P22 -r build/* server_user@server_host:htdocs/wp-content/themes/live
```
The problem is that there will be a small period of time when you won't have the app on your server.
2019-09-04 21:01:54 +05:30
Therefore, for a production environment we use additional steps to ensure that at any given time, a functional app is in place.
2017-08-17 22:00:37 +05:30
2018-03-17 18:26:18 +05:30
## Where to go next
2017-08-17 22:00:37 +05:30
2019-09-04 21:01:54 +05:30
Since this was a WordPress project, I gave real life code snippets. Some further ideas you can pursue:
2017-08-17 22:00:37 +05:30
2019-09-04 21:01:54 +05:30
- Having a slightly different script for `master` branch will allow you to deploy to a production server from that branch and to a stage server from any other branches.
- Instead of pushing it live, you can push it to WordPress official repo (with creating a SVN commit, etc.).
2017-08-17 22:00:37 +05:30
- You could generate i18n text domains on the fly.
---
Our final `.gitlab-ci.yml` will look like this:
```yaml
image: tetraweb/php
before_script:
- apt-get update
- apt-get install zip unzip
- php -r "copy('https://getcomposer.org/installer', 'composer-setup.php');"
- php composer-setup.php
- php -r "unlink('composer-setup.php');"
2017-09-10 17:25:29 +05:30
- php composer.phar install
2017-08-17 22:00:37 +05:30
- npm install
- npm run deploy
- 'which ssh-agent || ( apt-get update -y && apt-get install openssh-client -y )'
- mkdir -p ~/.ssh
- eval $(ssh-agent -s)
- '[[ -f /.dockerenv ]] && echo -e "Host *\n\tStrictHostKeyChecking no\n\n" > ~/.ssh/config'
stage_deploy:
artifacts:
paths:
- build/
only:
- dev
script:
- ssh-add < (echo "$STAGING_PRIVATE_KEY")
- ssh -p22 server_user@server_host "mkdir htdocs/wp-content/themes/_tmp"
- scp -P22 -r build/* server_user@server_host:htdocs/wp-content/themes/_tmp
- ssh -p22 server_user@server_host "mv htdocs/wp-content/themes/live htdocs/wp-content/themes/_old && mv htdocs/wp-content/themes/_tmp htdocs/wp-content/themes/live"
- ssh -p22 server_user@server_host "rm -rf htdocs/wp-content/themes/_old"
```