forked from saltbox/states
Sean Johnson
3 years ago
6 changed files with 312 additions and 38 deletions
@ -1,7 +0,0 @@
|
||||
#!/usr/bin/env sh |
||||
|
||||
curl -sS --fail -X POST \ |
||||
-H "X-Salt-Project: ${CI_PROJECT_PATH_SLUG}" \ |
||||
-H "X-Salt-SHA: ${CI_COMMIT_SHA}" \ |
||||
-H "X-Salt-Secret: ${SALT_FILESYSTEM_SECRET}" \ |
||||
"${CI_ENVIRONMENT_URL}/hook/fileserver/update" |
||||
@ -0,0 +1,74 @@
|
||||
--- |
||||
|
||||
# TODO: Concourse's `git` resource type provides some additional commit |
||||
# information inside of the output's `.git` folder. Figure out how to |
||||
# read those files into variables / params we can pass to another build step. |
||||
|
||||
meta: |
||||
request: |
||||
form_data: |
||||
pillar: "{update_pillar}" |
||||
headers: |
||||
X-Salt-Secret: "((saltbox.webhook_secret))" |
||||
X-Salt-Project: "{project}" |
||||
X-Salt-Git-SHA: "-@{project}/.git/ref" |
||||
X-Salt-Git-Committer: "-@{project}/.git/committer" |
||||
X-Salt-Git-Commit-Message: "-@{project}/.git/commit_message" |
||||
X-Salt-Build-Pipeline-Name: "{BUILD_PIPELINE_NAME}" |
||||
X-Salt-Build-Job-Name: "{BUILD_JOB_NAME}" |
||||
X-Salt-Build-Name: "{BUILD_NAME}" |
||||
X-Salt-Build-Id: "{BUILD_ID}" |
||||
|
||||
|
||||
resource_types: |
||||
- name: http-api |
||||
type: registry-image |
||||
source: |
||||
repository: pirogoeth/concourse-http-api-resource |
||||
tag: latest |
||||
|
||||
resources: |
||||
- name: states |
||||
type: git |
||||
source: |
||||
uri: git@glow.dev.maio.me:saltbox/states.git |
||||
branch: master |
||||
private_key: ((saltbox.ci_repository_secret_key)) |
||||
|
||||
- name: pillars |
||||
type: git |
||||
source: |
||||
uri: git@glow.dev.maio.me:saltbox/pillars.git |
||||
branch: master |
||||
private_key: ((saltbox.ci_repository_secret_key)) |
||||
|
||||
- name: salt-update |
||||
type: http-api |
||||
source: |
||||
uri: "((saltbox.webhook_url))/hook/fileserver/update" |
||||
method: "POST" |
||||
headers: |
||||
.: (( inject meta.request.headers )) |
||||
form_data: |
||||
.: (( inject meta.request.form_data )) |
||||
|
||||
jobs: |
||||
- name: update-states |
||||
public: false |
||||
plan: |
||||
- get: states |
||||
trigger: true |
||||
- put: salt-update |
||||
params: |
||||
update_pillar: false |
||||
project: "states" |
||||
|
||||
- name: update-pillars |
||||
public: false |
||||
plan: |
||||
- get: pillars |
||||
trigger: true |
||||
- put: salt-update |
||||
params: |
||||
update_pillar: true |
||||
project: "pillars" |
||||
@ -0,0 +1,152 @@
|
||||
#!/bin/bash |
||||
# |
||||
# repipe.sh |
||||
# |
||||
# Script for merging together pipeline configuration files |
||||
# (via Spruce!) and configuring Concourse. |
||||
# |
||||
# author: James Hunt <james@niftylogic.com> |
||||
# Dennis Bell <dennis.j.bell@gmail.com> |
||||
# created: 2016-03-04 |
||||
|
||||
need_command() { |
||||
local cmd=${1:?need_command() - no command name given} |
||||
|
||||
if [[ ! -x "$(command -v $cmd)" ]]; then |
||||
echo >&2 "${cmd} is not installed." |
||||
if [[ "${cmd}" == "spruce" ]]; then |
||||
echo >&2 "Please download it from https://github.com/geofffranks/spruce/releases" |
||||
fi |
||||
exit 2 |
||||
fi |
||||
} |
||||
|
||||
NO_FLY= |
||||
SAVE_MANIFEST= |
||||
VALIDATE_PIPELINE= |
||||
NON_INTERACTIVE= |
||||
|
||||
cleanup() { |
||||
rm -f save-manifest.yml |
||||
if [[ -n ${SAVE_MANIFEST} && -e .deploy.yml ]]; then |
||||
mv .deploy.yml save-manifest.yml |
||||
fi |
||||
rm -f .deploy.yml |
||||
} |
||||
|
||||
usage() { |
||||
echo Command line arguments: |
||||
echo "no-fly Do not execute any fly commands" |
||||
echo "save-manifest Save manifest to file save-manifest" |
||||
echo "validate Validate pipeline instead of set pipeline" |
||||
echo "validate-strict Validate pipeline with strict mode" |
||||
echo "non-interactive Run set-pipeline in non-interactive mode" |
||||
echo "open Open pipeline dashboard to browser (if possible)" |
||||
} |
||||
|
||||
open_pipeline() { |
||||
url=$(show_pipeline_url) |
||||
cleanup |
||||
if [[ -x /usr/bin/open ]]; then |
||||
exec /usr/bin/open "$url" |
||||
else |
||||
echo "Sorry, but I was not able to automagically open" |
||||
echo "your Concourse Pipeline in the browser." |
||||
echo |
||||
echo "Here's a link you can click on, though:" |
||||
echo |
||||
echo " $url" |
||||
echo |
||||
exit 0; |
||||
fi |
||||
} |
||||
|
||||
show_pipeline_url() { |
||||
spruce merge --skip-eval pipeline.yml ${settings_file} > .deploy.yml |
||||
concourse_url=$(spruce json .deploy.yml | jq -r ".meta.url") |
||||
team=$(spruce json .deploy.yml | jq -r ".meta.team // \"main\"") |
||||
pipeline=$(spruce merge --skip-eval \ |
||||
--cherry-pick meta.pipeline \ |
||||
--cherry-pick meta.name \ |
||||
.deploy.yml | spruce merge - | spruce json | jq -r ".meta.pipeline") |
||||
|
||||
echo "$concourse_url/teams/$team/pipelines/$pipeline" |
||||
exit 0 |
||||
} |
||||
|
||||
for arg do |
||||
case "${arg}" in |
||||
no-fly|no_fly) NO_FLY="yes" ;; |
||||
save-manifest|save_manifest) SAVE_MANIFEST="yes" ;; |
||||
validate) VALIDATE_PIPELINE="normal" ;; |
||||
validate-strict|validate_strict) VALIDATE_PIPELINE="strict" ;; |
||||
non-interactive|non_interactive) NON_INTERACTIVE="--non-interactive" ;; |
||||
url) SHOW_PIPELINE_URL="yes" ;; |
||||
open) OPEN_PIPELINE="yes" ;; |
||||
help|-h|--help) usage; exit 0 ;; |
||||
*) echo Invalid argument |
||||
usage |
||||
exit 1 |
||||
esac |
||||
done |
||||
|
||||
cd $(dirname $BASH_SOURCE[0]) |
||||
echo >&2 "Working in $(pwd)" |
||||
need_command spruce |
||||
|
||||
# Allow for target-specific settings |
||||
settings_file="$(ls -1 settings.yml ${CONCOURSE_TARGET:+"settings-${CONCOURSE_TARGET}.yml"} 2>/dev/null | tail -n1)" |
||||
if [[ -z "$settings_file" ]] |
||||
then |
||||
echo >&2 "Missing local settings in ci/settings.yml${CONCOURSE_TARGET:+" or ci/settings-${CONCOURSE_TARGET}.yml"}!" |
||||
exit 1 |
||||
fi |
||||
|
||||
echo >&2 "Using settings found in ${settings_file}" |
||||
|
||||
set -e |
||||
trap "cleanup" QUIT TERM EXIT INT |
||||
|
||||
[[ -n ${SHOW_PIPELINE_URL} ]] && { show_pipeline_url; exit 0; } |
||||
[[ -n ${OPEN_PIPELINE} ]] && { open_pipeline; exit 0; } |
||||
|
||||
FRAGMENTS=$(find ../ -type f -name "pipeline.yml") |
||||
spruce merge --prune meta ${FRAGMENTS} ${settings_file} > .deploy.yml |
||||
PIPELINE=$(spruce json settings.yml | jq -r '.meta.pipeline // ""') |
||||
if [[ -z ${PIPELINE} ]]; then |
||||
echo >&2 "Missing pipeline name in ci/settings.yml!" |
||||
exit 1 |
||||
fi |
||||
|
||||
TARGET_FROM_SETTINGS=$(spruce json settings.yml | jq -r '.meta.target // ""') |
||||
if [[ -z ${CONCOURSE_TARGET} ]]; then |
||||
TARGET=${TARGET_FROM_SETTINGS} |
||||
elif [[ "$CONCOURSE_TARGET" != "$TARGET_FROM_SETTINGS" ]] |
||||
then |
||||
echo >&2 "Target in {$settings_file} differs from target in \$CONCOURSE_TARGET" |
||||
echo >&2 " \$CONCOURSE_TARGET: $CONCOURSE_TARGET" |
||||
echo >&2 " Target in file: $TARGET_FROM_SETTINGS" |
||||
exit 1 |
||||
else |
||||
TARGET=${CONCOURSE_TARGET} |
||||
fi |
||||
|
||||
if [[ -z ${TARGET} ]]; then |
||||
echo >&2 "Missing Concourse Target in ci/settings.yml!" |
||||
exit 1 |
||||
fi |
||||
|
||||
fly_cmd="${FLY_CMD:-fly}" |
||||
|
||||
[[ -n ${NO_FLY} ]] && { echo no fly execution requested ; exit 0; } |
||||
|
||||
case "${VALIDATE_PIPELINE}" in |
||||
normal) fly_opts="validate-pipeline" ;; |
||||
strict) fly_opts="validate-pipeline --strict" ;; |
||||
*) fly_opts="set-pipeline ${NON_INTERACTIVE} --pipeline ${PIPELINE}" ;; |
||||
esac |
||||
|
||||
set +x |
||||
$fly_cmd --target ${TARGET} ${fly_opts} --config .deploy.yml |
||||
[[ -n ${VALIDATE_PIPELINE} ]] && exit 0 |
||||
$fly_cmd --target ${TARGET} unpause-pipeline --pipeline ${PIPELINE} |
||||
@ -0,0 +1,15 @@
|
||||
meta: |
||||
name: saltbox-resources |
||||
target: glow |
||||
url: https://concourse.dev.maio.me |
||||
team: main |
||||
pipeline: saltbox-resources |
||||
|
||||
registry: |
||||
repository: containers.dev.maio.me/library |
||||
auth: |
||||
username: ((glow_registry_ci.username)) |
||||
password: ((glow_registry_ci.password)) |
||||
|
||||
saltbox: |
||||
secret: ((saltbox.webhook_secret)) |
||||
Loading…
Reference in new issue