This repository has been archived by the owner on Nov 5, 2024. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 24
/
build_deploy.sh
executable file
·67 lines (55 loc) · 2.5 KB
/
build_deploy.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
#!/bin/bash
set -exv
IMAGE_NAME="quay.io/cloudservices/system-baseline-backend"
IMAGE_TAG=$(git rev-parse --short=7 HEAD)
SECURITY_COMPLIANCE_TAG="sc-$(date +%Y%m%d)-$(git rev-parse --short=7 HEAD)"
if [[ -z "$QUAY_USER" || -z "$QUAY_TOKEN" ]]; then
echo "QUAY_USER and QUAY_TOKEN must be set"
exit 1
fi
# Create tmp dir to store data in during job run (do NOT store in $WORKSPACE)
TMP_JOB_DIR=$(mktemp -d -p "$HOME" -t "jenkins-${JOB_NAME}-${BUILD_NUMBER}-XXXXXX")
export TMP_JOB_DIR
echo "job tmp dir location: $TMP_JOB_DIR"
job_cleanup() {
echo "cleaning up job tmp dir: $TMP_JOB_DIR"
rm -fr "$TMP_JOB_DIR"
}
trap job_cleanup EXIT ERR SIGINT SIGTERM
PUSH_TAG=("latest" "qa")
if test -f /etc/redhat-release && grep -q -i "release 7" /etc/redhat-release; then
# on RHEL7, use docker
DOCKER_CONF="${TMP_JOB_DIR}/.docker"
mkdir -p "$DOCKER_CONF"
docker --config="$DOCKER_CONF" login -u="$QUAY_USER" -p="$QUAY_TOKEN" quay.io
docker --config="$DOCKER_CONF" login -u="$RH_REGISTRY_USER" -p="$RH_REGISTRY_TOKEN" registry.redhat.io
docker --config="$DOCKER_CONF" build -t "${IMAGE_NAME}:${IMAGE_TAG}" .
if [[ "$GIT_BRANCH" == "origin/security-compliance" ]]; then
docker --config="$DOCKER_CONF" tag "${IMAGE_NAME}:${IMAGE_TAG}" "${IMAGE_NAME}:${SECURITY_COMPLIANCE_TAG}"
docker --config="$DOCKER_CONF" push "${IMAGE_NAME}:${SECURITY_COMPLIANCE_TAG}"
else
docker --config="$DOCKER_CONF" push "${IMAGE_NAME}:${IMAGE_TAG}"
for TAG in "${PUSH_TAG[@]}"; do
docker --config="$DOCKER_CONF" tag "${IMAGE_NAME}:${IMAGE_TAG}" "${IMAGE_NAME}:${TAG}"
docker --config="$DOCKER_CONF" push "${IMAGE_NAME}:${TAG}"
done
fi
else
# on RHEL8 or anything else, use podman
AUTH_CONF_DIR="${TMP_JOB_DIR}/.podman"
mkdir -p "$AUTH_CONF_DIR"
export REGISTRY_AUTH_FILE="$AUTH_CONF_DIR/auth.json"
podman login -u="$QUAY_USER" -p="$QUAY_TOKEN" quay.io
podman login -u="$RH_REGISTRY_USER" -p="$RH_REGISTRY_TOKEN" registry.redhat.io
podman build -t "${IMAGE_NAME}:${IMAGE_TAG}" .
if [[ "$GIT_BRANCH" == "origin/security-compliance" ]]; then
podman tag "${IMAGE_NAME}:${IMAGE_TAG}" "${IMAGE_NAME}:${SECURITY_COMPLIANCE_TAG}"
podman push "${IMAGE_NAME}:${SECURITY_COMPLIANCE_TAG}"
else
podman push "${IMAGE_NAME}:${IMAGE_TAG}"
for TAG in "${PUSH_TAG[@]}"; do
podman tag "${IMAGE_NAME}:${IMAGE_TAG}" "${IMAGE_NAME}:${TAG}"
podman push "${IMAGE_NAME}:${TAG}"
done
fi
fi