The current folder (/ci) contains a separate playbook for setting up a Jenkins CI server. The server will have the following things:
- Jenkins (behind an nginx reverse proxy).
- MySQL database for running tests against.
Note: there is currently no support for running both this CI playbook and the base playbook against the same host(s).
To table of contents in README.md
The following section describes the steps required to deploy Jenkins on a remote server.
-
Make sure you are in the
cidirectory.$ cd ci -
Set your hosts in the
hostsfile and make sure you can connect to the servers via ssh. -
Copy the
variables.yml.distasvariables.yml. Change the variables to the appropriate values where needed. More info on these variables. -
Run playbook.
$ ansible-playbook site.yml
-
Open a browser and navigate to http://SERVER_ADDRESS to go to the Jenkins dashboard.
-
Configure jenkins and jobs individually where needed (e.g. setup webhooks).
Note for running tests:
To be able to run npm run test for end-to-end tests in the jiskefet-api, a .env should contain the credentials to connect to the test database that is created by this playbook.
.env and ormconfig.json need to be manually created on the server via ssh. The project is located in either /var/lib/jenkins/jobs/<project_name>/workspace (or /var/lib/jenkins/workspace/<project_name>).
You can copy the test env template for creating the .env:
$ cp PATH_TO_PROJECT/<project_name>/environments/test.env.template .envYou can copy the ormconfig.json.dist for creating the ormconfig.json:
$ cp PATH_TO_PROJECT/<project_name>/ormconfig.json.dist .ormconfig.jsonAnd then change the test db variables and the JWT secret in the .env, which are required for running tests against the db with authenticated API calls.
The following section describes the workflow for creating new jobs and integrating them into this playbook repo.
The Jenkins GUI makes it easy to configure jobs. When jobs are configured the way you want, you will want to incorporate your changes into this repository. In order to do so, you only need to copy the contents of the jobs directory from the environment where you configured the jobs at, into the ci/files/jobs directory in this repository.
The general workflow for creating jobs:
-
Create/edit/delete jobs via the Jenkins GUI.
-
Copy the contents of
<your_jenkins_path>/jobsinto this repo's dirci/files/jobs.Example
# When Jenkins runs remotely # scp -r <HOST_ALIAS>:<PATH_ON_HOST> <LOCAL_PATH_TO_PROJECT>/ci/files $ scp -r jiskefet-ci:/var/lib/jenkins/jobs ~/projects/jiskefet-deploy/ci/files # When Jenkins runs locally $ cp -r /Users/Bob/.jenkins/jobs ~/projects/jiskefet-deploy/ci/files
WARNING: Make sure to remove workspaces to ensure that .env variables are not being pushed by accident to GitHub. Workspaces exist in jobs/<jobname>/workspace.
The following section describes steps to ensure that Jenkins automatically builds a project when a change is pushed to GitHub and to make Jenkins push build status updates to GitHub.
Settings that need to be configured:
(more info on the GitHub plugin for Jenkins can be found here)
Create a webhook in GitHub with the following settings:
The payload URL is the address to your Jenkins web UI.
The following settings need to be set in your Jenkins project.
Projects are displayed in the root of your web UI and look like this:
Project settings for the Jenkins plugin named 'Git plugin'.
Project settings for the Jenkins plugin named 'GitHub plugin'.
These are the global settings in Manage Jenkins > Configure System. These 'GitHub Servers' are used to make authenticated HTTP requests between the Jenkins server and GitHub.
Both servers use the credential option 'Secret text' under the field 'Kind'.
The first server uses the same webhook secret as defined in your webhook in GitHub.
The second server uses a 'Personal access token' from GitHub as a secret. Such a token can be made at https://github.com/settings/tokens and in this case is bound to a GitHub user.
