-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy path.gitlab-ci.yml
104 lines (100 loc) · 3.31 KB
/
.gitlab-ci.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
stages:
- build
- verify_build
- publish
build image:
stage: build
tags:
- kubernetes
image:
name: gcr.io/kaniko-project/executor:debug
entrypoint: [""]
rules:
- if: '$CI_COMMIT_BRANCH == "main"'
variables:
DESTINATION: $CI_REGISTRY_IMAGE:latest
- if: '$CI_COMMIT_TAG =~ /^[0-9]+\.[0-9]+\.[0-9]+$/'
variables:
DESTINATION: $CI_REGISTRY_IMAGE:$CI_COMMIT_TAG
- if: '$CI_PIPELINE_SOURCE == "push"'
variables:
DESTINATION: $CI_REGISTRY_IMAGE/review:$CI_COMMIT_REF_SLUG
script:
- echo "Building image to" $DESTINATION
- echo "{\"auths\":{\"$CI_REGISTRY\":{\"username\":\"$CI_REGISTRY_USER\",\"password\":\"$CI_REGISTRY_PASSWORD\"}}}" > /kaniko/.docker/config.json
- /kaniko/executor --context $CI_PROJECT_DIR --dockerfile $CI_PROJECT_DIR/Dockerfile --destination $DESTINATION
verify image:
stage: verify_build
rules:
- if: '$CI_COMMIT_BRANCH == "main"'
variables:
DOCKER_IMAGE: $CI_REGISTRY_IMAGE:latest
- if: '$CI_COMMIT_TAG =~ /^[0-9]+\.[0-9]+\.[0-9]+$/'
variables:
DOCKER_IMAGE: $CI_REGISTRY_IMAGE:$CI_COMMIT_TAG
- if: '$CI_PIPELINE_SOURCE == "push"'
variables:
DOCKER_IMAGE: $CI_REGISTRY_IMAGE/review:$CI_COMMIT_REF_SLUG
image: $DOCKER_IMAGE
tags:
- kubernetes
script:
- echo "Using Docker image" $DOCKER_IMAGE
- pg_dump --version
- tar --version
- gsutil version
publish_to_docker:
stage: publish
image: docker:latest
rules:
- if: '$CI_COMMIT_BRANCH == "main"'
variables:
DOCKER_TAG: latest
- if: '$CI_COMMIT_TAG =~ /^[0-9]+\.[0-9]+\.[0-9]+$/'
variables:
DOCKER_TAG: $CI_COMMIT_TAG
services:
- docker:dind
tags:
- docker
allow_failure: true
before_script:
- echo "$DOCKER_TOKEN" | docker login --username $DOCKER_USER --password-stdin
- echo "$CI_REGISTRY_PASSWORD" | docker login $CI_REGISTRY --username $CI_REGISTRY_USER --password-stdin
script:
- docker pull $CI_REGISTRY_IMAGE:$DOCKER_TAG
- docker tag $CI_REGISTRY_IMAGE:$DOCKER_TAG askanna/backup-helper:$DOCKER_TAG
- docker push askanna/backup-helper:$DOCKER_TAG
after_script:
- docker logout
publish_to_public_repos:
stage: publish
tags:
- kubernetes
allow_failure: true
rules:
- if: ($CI_PIPELINE_SOURCE == "schedule" || $CI_PIPELINE_SOURCE == "trigger")
when: never
- if: '$CI_COMMIT_BRANCH == "main"'
variables:
TARGET: HEAD:main
- if: '$CI_COMMIT_TAG =~ /^[0-9]+\.[0-9]+\.[0-9]+$/'
variables:
TARGET: refs/tags/$CI_COMMIT_TAG
before_script:
- apt-get update -y && apt-get install openssh-client git curl -y
- eval $(ssh-agent -s)
- echo "$SSH_PRIVATE_KEY_GITLAB_COM" | tr -d '\r' | ssh-add - > /dev/null
- echo "${SSH_PRIVATE_KEY_GITHUB_COM}" | tr -d '\r' | ssh-add - > /dev/null
- mkdir -p ~/.ssh
- chmod 700 ~/.ssh
- ssh-keyscan gitlab.com >> ~/.ssh/known_hosts
- ssh-keyscan github.com >> ~/.ssh/known_hosts
- chmod 644 ~/.ssh/known_hosts
- git config --global user.email "[email protected]"
- git config --global user.name "AskAnna Robot"
script:
- git remote add gitlab [email protected]:askanna/backup-helper.git
- git remote add github [email protected]:askanna-io/backup-helper.git
- git push gitlab $TARGET
- git push github $TARGET