-
Notifications
You must be signed in to change notification settings - Fork 0
/
.gitlab-ci.yml
81 lines (74 loc) · 1.83 KB
/
.gitlab-ci.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
.nix:
image: registry.gitlab.com/cynerd/gitlab-ci-nix
tags:
- docker
cache:
key: "nix"
paths:
- ".nix-cache"
before_script:
- gitlab-ci-nix-cache-before
after_script:
- gitlab-ci-nix-cache-after
stages:
- build
- release
backend-build:
extends: .nix
stage: build
script:
- nix build .#backend
frontend-build:
extends: .nix
stage: build
script:
- nix build .#frontend
docker-build:
extends: .nix
stage: build
needs:
- backend-build
- frontend-build
artifacts:
paths:
- blcc-image.tar.gz
script:
- nix build
- cp result blcc-image.tar.gz
variables:
IMAGE_TAG: $CI_REGISTRY_IMAGE:latest
release-image:
image: docker:27.2.1
stage: release
needs:
- docker-build
tags:
- dind
services:
- docker:27.2.1-dind
dependencies:
- docker-build
before_script:
- docker login -u $CI_REGISTRY_USER -p $CI_REGISTRY_PASSWORD $CI_REGISTRY
script:
- docker load < blcc-image.tar.gz
- docker tag blcc:latest $IMAGE_TAG
- docker push $IMAGE_TAG
portainer-deploy:
image: docker:27.2.1
stage: release
needs:
- release-image
tags:
- dind
services:
- docker:27.2.1-dind
before_script:
- apk add jq curl
- unset DOCKER_HOST
- export AUTH_BODY=$(jq -c -n --arg username "$PORTAINER_USERNAME" --arg password "$PORTAINER_PASSWORD" '{username:$username,password:$password}')
- "export DOCKER_CUSTOM_HEADERS=\"Authorization=Bearer $(curl -s --header \"Content-Type: application\\json\" --request POST --data \"$AUTH_BODY\" http://haproxy-p.el.nist.gov:9000/api/auth | jq -r .jwt)\""
- docker context create portainer --docker "host=tcp://haproxy-p.el.nist.gov:9000/api/endpoints/1/docker"
- docker context use portainer
script:
- docker stack deploy -c portainer-stack.yml --resolve-image always blcc