Giter Site home page Giter Site logo

ph-circleci-helper's Introduction

CircleCI helper orb

Orbs are reusable snippets of code for CircleCI pipeline definition. This orb is destined to simplify common CICD operations in the landing zone (e.g. authenticating to the artifact registry, pushing and pulling images from it, bumping image tags in ph-releaser).

For a more visual documentation see private orb registry

Getting started

Adding following snippets in your repo's .circleci/config.yml will get you up and going faster with implementing your CICD pipelines. First the orb must be included with:

version: 2.1

orbs:
  # "ph" here is the namespace of the functions imported. To call commands (like a function but for circleci pipelines),
  # you'd then need to use `ph/<command_name>`

  # You can specify the patch version 
  ph: pricehubble/[email protected]

  # or ideally just pin it to a minor version to get all the patch updates
  ph: pricehubble/[email protected]

From then on, you can call any commands that are included in the orb. The full list of commands are visible in src/commands.

Bump

The bump step allows the CircleCI step to change the image tag in the ph-releaser repository. This change will then be picked up by Argocd and deployed (see linking circleci with argocd for a more detailed view of the interaction).

version: 2.1

orbs:
  ph: pricehubble/[email protected]

jobs:
  build:
    steps:
    # Installs yq which is required by the step
    - ph/install-yq

    # Bump can be called in many ways
    #
    # 1. With all defaults. 
    # The following step will change in ph-releaser the "apps/<< parameters.app >>/<< parameters.env >>/values.yaml" file
    # In that yaml file, the ".image.tag" value will be set to the '${CIRCLE_WORKFLOW_ID}.${CIRCLE_SHA1}' value.
    - ph/bump:
        team: geoinsights
        app: neighbourhood
        env: predev

    # 2. Specify value files and yaml path inside the file
    # The following step will change in ph-releaser the "apps/<< parameters.app >>/<< parameters.env >>/values.lz.yaml" file
    # In that yaml file, the ".neighbourhood.image.tag" value will be set to the '${CIRCLE_WORKFLOW_ID}.${CIRCLE_SHA1}' value.
    - ph/bump:
        team: geoinsights
        app: neighbourhood
        env: predev
        value-file: apps/<< parameters.app >>/<< parameters.env >>/values.lz.yaml
        value-tag-referenc: .neighbourhood.image.tag

    # 3. Specify the image tag to be changed
    # The following step will change in ph-releaser the "apps/<< parameters.app >>/<< parameters.env >>/values.yaml" file
    # In that yaml file, the ".image.tag" value will be set to the ${CIRCLE_SHA1} (commit sha) value.
    - ph/bump:
        team: geoinsights
        app: neighbourhood
        env: predev 
        tag: << pipeline.git.revision >>

workflows:
  build_deploy:
    jobs:
    - build:
        # required as it contains the SSH key with which circleci authenticates to bitbucket
        context: landing-zone-root

Authenticate

The orbs contains the following set of authentication functions:

Command Target
auth-gcp GCP project
auth-docker docker artifact registry
auth-helm helm artifact registry
auth-python pip artifact registry

These will however require some secrets, which are only accessible in the landing-zone-root context. For example, to authenticate to the docker registry:

version: 2.1

orbs:
  ph: pricehubble/[email protected]

jobs:
  build:
    steps:
    - ph/auth-docker

workflows:
  build_deploy:
    jobs:
    - build:
        context: landing-zone-root

All commands come with a set of reasonable defaults that are extracted from appropriate circleci context but all parameters are customizable which can be found in the parameters section of each command's definition (see src/commands/auth-docker).

Install prerequisites

To simplify some operations, the orb also comes with some installation helpers:

Command Target
install-yq https://github.com/mikefarah/yq
install-docker-compose https://github.com/docker/compose/releases
install-helm https://github.com/helm/helm/releases

Build and publish docker images

version: 2.1

orbs:
  ph: pricehubble/[email protected]

jobs:
  build:
    executor: ph/cloud-sdk
    parameters:
      app:
        type: string
      team:
        type: string
    steps:
    - checkout
    - ph/auth-docker
    - setup_remote_docker:
        version: 20.10.7
        docker_layer_caching: true
    - run:
        name: Build docker Image
        command: docker build --progress=plain -t launchpad .
    - ph/push-docker:
        team: << parameters.team >>
        app: << parameters.app >>
        source-tag: launchpad:latest

workflows:
  build_deploy:
    jobs:
    - build:
        context: landing-zone-root
        team: growth
        app: launchpad

Build and publish pip packages

version: 2.1

orbs:
  ph: pricehubble/[email protected]

jobs:
  publish_pip:
    executor: ph/cloud-sdk
    steps:
    - checkout
    - ph/auth-python
    - run:
        name: Build package
        command: |
          git config --global user.email "[email protected]"
          git config --global user.name "Anonymous"
          apt-get install -y python3-venv

          pip install \
            build \
            coverage \
            twine
          python3 setup.py install
          python3 -m build
    - ph/push-python:
        path: /root/project/dist

workflows:
  build_deploy:
    jobs:
    - publish_pip:
        context: landing-zone-root

Publish open-api spec

Pricehubble developer portal supports publishing open-api v3 specification in yaml or json format.

It supports uploading to predev, dev, preprod, prod environment

After uploading your specification you can easily get direct link to it based on your environment. For file from example /workdir/some-spec.yaml link will be https://dev-portal.pricehubble.net/swagger?openApiUrl=/open-api-specs/some-spec.yaml

version: 2.1

orbs:
  ph: pricehubble/[email protected]

jobs:
  publish_spec:
    executor: ph/cloud-sdk
    steps:
    - checkout
    - ph/auth-gcp:
    - ph/upload-open-api-spec:
        open-api-spec-path: /workdir/some-spec.yaml

workflows:
  build_deploy:
    jobs:
      - publish_spec:
          matrix:
            parameters:
              env: [predev, dev]
          name: publish_spec_<< matrix.env >>
          context:
            - landing-zone-root
            - dev-portal-open-api-spec-<< matrix.env >>
          filters:
            branches:
              only:
                - << matrix.env >>
      - publish_spec:
          name: publish_spec_preprod
          context:
            - landing-zone-root
            - dev-portal-open-api-spec-preprod
          filters:
            branches:
              only:
                - /rc-.*/
      - publish_spec:
          name: publish_spec_prod
          context:
            - landing-zone-root
            - dev-portal-open-api-spec-prod
          filters:
            branches:
              only:
                - master

Publish compass spec

Pricehubble supports automatically updating information about application/services/library and any other sources in compass via configuration file in prod env.

Create ph-compass.yaml in root of your project. See instruction how to do it here.

Add compass job before pushing and bumping your image. See example below:

version: 2.1

orbs:
  ph: pricehubble/[email protected]

jobs:
  test:
    {TEST JOB}
  compass:
    executor: ph/compass
    steps:
    - checkout
    - ph/compass  
  build_push_deploy:
    executor: ph/cloud-sdk
    steps:
    - checkout
    - ph/auth-docker
    - {BUILD STEP}
    - ph/push-docker
        {PARAMS}
    - ph/install-yq
    - ph/bump
        {PARAMS}

workflows:
  build_deploy:
    jobs:
      - test
      - compass:
          context:
            - landing-zone-root
            - mission-control
          requires:
            - test
          filters:
            branches:
              only:
                - master
      - build_push_deploy:
          context:
            - landing-zone-root
          requires:
            - test
            - compass
          filters:
            branches:
              only:
                - predev
                - dev
                - /rc-.*/
                - master

ph-circleci-helper's People

Contributors

david-tenczar-pricehubble avatar ichbinfrog avatar marapper avatar mpitt avatar

Watchers

avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.