Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore: workflow to enable auto merge #3526

Merged
merged 7 commits into from
Sep 16, 2024
Merged

chore: workflow to enable auto merge #3526

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
7 commits
Select commit Hold shift + click to select a range
93a7d75
chore: workflow to enable auto merge
RRanath Sep 3, 2024
3933e2a
chore: extract details from Jira
RRanath Sep 4, 2024
9cd7c3f
chore: enable Github trigger listener
RRanath Sep 5, 2024
f58f047
Merge branch 'main' into NDT-464-Automate-release-to-Test
RRanath Sep 13, 2024
4878890
Merge branch 'main' into NDT-464-Automate-release-to-Test
RRanath Sep 16, 2024
2bfd088
Merge branch 'main' into NDT-464-Automate-release-to-Test
RRanath Sep 16, 2024
2406c58
Merge branch 'main' into NDT-464-Automate-release-to-Test
RRanath Sep 16, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion .github/workflows/deploy_tools_chart.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -21,4 +21,4 @@ jobs:
openshift_token: ${{ secrets.OPENSHIFT_TOKEN }}
insecure_skip_tls_verify: true
- run: |
helm upgrade ccbc-tools helm/ccbc-tools --install --atomic -n ${{ secrets.NAMESPACE_PREFIX }}-tools --set namespacePrefix=${{ secrets.NAMESPACE_PREFIX }}
helm upgrade ccbc-tools helm/ccbc-tools --install --atomic -n ${{ secrets.NAMESPACE_PREFIX }}-tools --set namespacePrefix=${{ secrets.NAMESPACE_PREFIX }} --set deployer.githubToken=${{ secrets.TEKTON_GITHUB}} --set deployer.headerSecret=${{ secrets.JIRA_SECRET }}
28 changes: 28 additions & 0 deletions helm/ccbc-tools/templates/ci-cd/buildconfig.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,28 @@
kind: BuildConfig
apiVersion: build.openshift.io/v1
metadata:
name: python-3-11-with-requests
spec:
output:
to:
kind: ImageStreamTag
name: 'python-3-11-with-requests:latest'
resources:
limits:
cpu: 1
memory: 2Gi
requests:
cpu: 500m
memory: 1Gi
successfulBuildsHistoryLimit: 5
failedBuildsHistoryLimit: 5
strategy:
type: Docker
dockerStrategy: {}
postCommit: {}
source:
type: Dockerfile
dockerfile: |-
FROM python:3.11
RUN pip install requests
runPolicy: Serial
23 changes: 23 additions & 0 deletions helm/ccbc-tools/templates/ci-cd/eventlistener.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,23 @@
apiVersion: triggers.tekton.dev/v1alpha1
kind: EventListener
metadata:
name: jira-sprint-done-event-listener
spec:
triggers:
- bindings:
- kind: TriggerBinding
name: key
value: $(body.key)
- kind: TriggerBinding
name: signature
value: '$(header[''Ccbc-Jira-Header''])'
interceptors:
- params:
- name: filter
value: 'header[''Ccbc-Jira-Header''] != null'
ref:
kind: ClusterInterceptor
name: cel
name: trigger-github
template:
ref: trigger-github-merge-and-release
14 changes: 14 additions & 0 deletions helm/ccbc-tools/templates/ci-cd/imagestream.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,14 @@
kind: ImageStream
apiVersion: image.openshift.io/v1
metadata:
name: python-3-11-with-requests
spec:
lookupPolicy:
local: false
tags:
- name: latest
annotations: null
importPolicy:
importMode: Legacy
referencePolicy:
type: Source
16 changes: 16 additions & 0 deletions helm/ccbc-tools/templates/ci-cd/route.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,16 @@
kind: Route
apiVersion: route.openshift.io/v1
metadata:
name: ccbc-jira-sprint-done-el
spec:
host: ccbc-jira-sprint-done-el.apps.silver.devops.gov.bc.ca
to:
kind: Service
name: el-jira-sprint-done-event-listener
weight: 100
port:
targetPort: http-listener
tls:
termination: edge
insecureEdgeTerminationPolicy: Redirect
wildcardPolicy: None
8 changes: 8 additions & 0 deletions helm/ccbc-tools/templates/ci-cd/secret.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,8 @@
kind: Secret
apiVersion: v1
metadata:
name: trigger-deploy-secret
data:
headerSecret: {{ .Values.deployer.headerSecret | b64enc | quote }}
githubToken: {{ .Values.deployer.githubToken | b64enc | quote }}
type: Opaque
59 changes: 59 additions & 0 deletions helm/ccbc-tools/templates/ci-cd/task.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,59 @@
apiVersion: tekton.dev/v1beta1
kind: Task
metadata:
name: trigger-github-merge-and-release
spec:
params:
- default: bcgov
description: Repo owner argument
name: arg1
type: string
- default: CONN-CCBC-portal
description: Repo name argument
name: arg2
type: string
- description: Branch name prefix (JIRA Key)
name: arg3
type: string
- description: Received header signature key passed from EL
name: arg4
type: string
steps:
- image: alpine/git
name: clone-repo
resources: {}
script: >
git clone --single-branch -b
main https://github.com/bcgov/CONN-CCBC-portal /workspace/source
volumeMounts:
- mountPath: /workspace/source
name: workspace
- args:
- /workspace/source/lib/ci_cd/merge_process.py
- $(params.arg1)
- $(params.arg2)
- $(params.arg3)
- $(params.arg4)
command:
- python
env:
- name: GITHUB_TOKEN
valueFrom:
secretKeyRef:
key: githubToken
name: trigger-deploy-secret
- name: HEADER_SECRET
valueFrom:
secretKeyRef:
key: headerSecret
name: trigger-deploy-secret
image: >-
image-registry.openshift-image-registry.svc:5000/ff61fb-tools/python-3-11-with-requests
name: run-python
resources: {}
volumeMounts:
- mountPath: /workspace/source
name: workspace
volumes:
- emptyDir: {}
name: workspace
23 changes: 23 additions & 0 deletions helm/ccbc-tools/templates/ci-cd/triggertemplate.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,23 @@
apiVersion: triggers.tekton.dev/v1alpha1
kind: TriggerTemplate
metadata:
name: trigger-github-merge-and-release
spec:
params:
- description: The issue key
name: key
- description: The header key
name: signature
resourcetemplates:
- apiVersion: tekton.dev/v1beta1
kind: TaskRun
metadata:
generateName: run-trigger-github-merge-and-release-
spec:
params:
- name: arg3
value: $(tt.params.key)
- name: arg4
value: $(tt.params.signature)
taskRef:
name: trigger-github-merge-and-release
53 changes: 53 additions & 0 deletions helm/ccbc-tools/templates/deployer/deployerRole.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -214,5 +214,58 @@ rules:
- update
- patch
- delete
- apiGroups:
- build.openshift.io
resources:
- buildconfigs
verbs:
- get
- list
- create
- update
- delete
- patch
- apiGroups:
- image.openshift.io
resources:
- imagestreams
verbs:
- get
- list
- create
- update
- delete
- patch
- apiGroups:
- tekton.dev
resources:
- tasks
- taskruns
verbs:
- create
- delete
- deletecollection
- get
- list
- patch
- update
- watch
- apiGroups:
- triggers.tekton.dev
resources:
- eventlisteners
- interceptors
- triggers
- triggerbindings
- triggertemplates
verbs:
- create
- delete
- deletecollection
- get
- list
- patch
- update
- watch

{{ end }}
2 changes: 2 additions & 0 deletions helm/ccbc-tools/values.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,8 @@ namespacePrefix: ~
deployer:
serviceAccount:
enabled: true
githubToken: '' # The GitHub token must be passed in via the deploy script
headerSecret: '' # The header secret must be passed in via the deploy script

linter:
serviceAccount:
Expand Down
Loading
Loading