Skip to content

gdbc/CII

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

149 Commits
cii
cii
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

A Poor Man's Guide to Continuous Infrastructure Integration(CII) using Jenkins, Foreman, Puppet and Pulp

===================================================================================================

Introduction

This is a poor man's guide to building an Automated Continuous Infrastructure Integration(CII) on RPM based Linux distributions using Puppet(foreman support for 3.8 at this time), Pulp, Foreman and GIT.

This is called the "poor man’s guide” as we leverage most of the FOSS upstream tools bundled into Red Hat’s Satellite Server(Foreman, Pulp, Puppet) and combine them into Jenkins jobs that produce automated patch, configuration and environment tests on OS builds. So if you don't have Red Hat Satellite in your environment but need automated testing of configuration code and packages on your builds, pre-release, this guide can be useful to you.

Use it if you want to test RPM based packages before they're synced to stable client facing repos, as well as test new or edited puppet code automatically. After the package installs and Puppet runs we run standard compliant environment validation tests in the form of BAT(TAP compliant) scripts which are used to verify and graph build environment integrity and application tests. This all adds extra verification and validation to builds before they hit client facing environments. Catching issues before they cause issues or outages is what we're after.

For a good CII template based on Red Hat’s Satellite server, please look at Dr Nick Strugnell's excellent guide here: https://github.com/RedHatSatellite/soe-ci.

This guide will show you how to to setup and configure an CII engine that can be initialized from 3 execution points.

These three points:

  • Automate testing of new packages synced into environment repositories
  • Automate testing of added/edited puppet configuration in GIT
  • Automate execution and graphing of Bash Automated Testing(BAT: https://github.com/sstephenson/bats) which is Test Anything Protocol (TAP: https://testanything.org/producers.html) compliant, when tests are added or edited in GIT. These tests are run post build and used for verification of build integrity to justify functionality in a designated environment.

Below you can see these points represented graphically in the below flow diagram. CII Flow Diagram

This enables infrastructure teams to release patches and configuration and automatically test the results of those changes and those patches and configuration will work in the target environments, be it DEV, UAT or PRD, reducing or negating manual effort to achieve and document the same results.

Even if you have a staggered release cycle, it still pays to use CII to do the work up until you release.

Environment Configuration

We’re going to work with 3 environments 7_dev, 7_uat and 7_prd. These three environments coincide with Pulp repo groups with the same name, Foreman Puppet environments with the same name, similarly named Foreman Host Groups(hg-7_dev...) and Foreman Operating Systems (cent-7_dev...). The OS used in this guide is CentOS 7, though any RPM based distro should work.

A diagramatic representation of the above mentioned 3 environments showing how Jenkins will control the flow of packages from upstream repositories and sync through each environment.

Pulp Flow Diagram

System Requirements

  • 1 x Libvirtd host
  • 1 x Yum repo server KVM VM
  • 1 x Pulp server KVM VM
  • 1 x Foreman server KVM VM
  • 1 x Jenkins server KVM VM

Note: All systems used here are on a libvirtd host, upon which they are guests. This libvirtd servers name is core.ci.com and will be used as a compute resource provider.

Note: Usernames and passwords have been left in scripts as examples, they're easy and only used for display purposes

Libvirt Host

This server hosts the CII systems and needs to be enabled for Foreman to access and rebuild VM’s.

SPECS:

  • Name: core.ci.com
  • Storage: Mount: /var/lib/libvirt/images Size: 1TB
  • Memory: 32GB

We dont have too much to do here except open up a port for foreman to use and to do this we need to edit /etc/libvirt/libvirtd.conf

listen_tls = 0
listen_tcp = 1
listen_addr = “0.0.0.0”
auth_tcp = "none"

And lastly change /etc/sysconfig/libvirtd and uncomment/add the following:

 LIBVIRTD_ARGS=”--listen”

Restart the server or libvirtd

=============

Yum Repo Server

This server probably exists in your environment already as a provider of yum repositories to your clients. Here we're using it merely as a proof of concept for completion purposes.

This server is connected to external, upstream yum repository providers as well as being able to host local company specific repos with custom rpms, it's the upstream source of where the Pulp server will source its content for our CII engine, serving primarily the 7_master Pulp repo group.

Edit [yum-server-repo-srv-config.sh](https://github.com/gdbc/CII/blob/master/cii/yum-repo/yum-server-repo-srv-config.sh) to change, and create your repos. Again, if you have a yum repository server already ignore this script.

Here we setup a cron job cron-yum-repo-sync.sh to continually sync from our upstream repositories. We will create a sync between Pulp and the repository server so we can determine diffs in repositories within each Pulp repo groups repositories. This will be one of our build triggers and configured later.

SPECS:

  • Name: cii-repo.ci.com
  • Storage: Mount: /var/www/html Size: 100GB
  • Memory: 4GB

Scripts:

To Do:

  • Edit yum-server-repo-srv-config.sh to include or exclude the yum repositories required
  • Run the yum-server-repo-srv-config.sh which will configure upstream yum repos to sync.
  • Add cron-yum-repo-sync.sh to run in a cron which periodically syncs the configured repositories. I’ve set this up to run hourly by cp’ing it into /etc/cron.hourly. There will be a Pulp script that pulls these repo’s into a “master” repo and diffs it against ongoing environments which initialize Jenkins jobs to test the new packages.
  • Copy the.treeinfo, .discinfo files and the images and LiveOS folders from the “base” upstream repository to /var/www/html/pub/centos7/base/ This will ensure that you get the yum groups needed for installation and the pxe files needed to install systems that require yum groups.

========================

Pulp Repository Server

The Pulp server syncs and formalizes the repositories from the yum repo server in Repo groups which are bound to environments. Pulp has an API and some smart ways of de-dupping packages in repositories saving space making traditional Yum repositories easier to manage. We’ll be leveraging this API to check for and sync packages between environments.

Installing the Pulp server is out of scope as there's sufficient documentation on the project's site. FYI: I’ve included a very basic install script (install-pulp.sh) which you may want to use if you fancy, however your distance may vary.

SPECS:

  • Name: cii-pulp.ci.com
  • Storage: Mount: /var/lib/pulp Size: 100GB
  • Storage 1: Mount: /var/lib/mongodb Size: 50GB
  • Memory: 8GB

Scripts:

Note: The create-cii-server-repos.sh should be run to setup each server to point to the yum repo server repositories to get their requisite packages.

To Do:

  • Edit the server entry in create-cii-server-repos.sh and run it to setup the yum repos we will use as our upstream source.
  • Configure mount point /var/lib/pulp and /var/lib/mongodb
  • Change REPO_SERVER and MASTER_GROUP_ID in create-sync-master-repos.sh and execute. This will create the master pulp repo group and repos that syncs directly from the repo server. This repo will be used to determine diffs against the eng environment, then eng against dev and so on to determine a difference and kickoff a jenkins jobs.
  • Change USER/PASS SERVER_URL in clone-create-repo-group.sh and create your other environments.
    • Syntax: ./clone-create-repo-group.sh SRC_GRP DST_GRP FEED_GRP … where FEED_GRP is the repo group you’ll be syncing from ie: dev -> uat -> prd eg:
    ./clone-create-repo-group.sh 7_master 7_dev 7_master
./clone-create-repo-group.sh 7_dev 7_uat 7_dev
./clone-create-repo-group.sh 7_uat 7_prd 7_uat
  • Change SERVER, DST_ENV and USER/PASS in sync-master-repo-group.py and copy it to /etc/cron.daily
  • Create three or however many copies of pulp-env-diff-check.py, one for each repo group or environment, this involves changing SERVER, SRC_ENV, DST_ENV and the JENKINS_SERVER_URI. This script compares a repository group against one that it syncs from(source). This enables us to determine if new packages are found upstream and if there are, a jenkins job is triggered to test these new packages.
    • Example: For the DEV environment, SRC_ENV would be “7_master” and DST_ENV would be “7_dev”. What this means is a diff between the “7_master” and “7_dev” repo group is run periodically and if a diff exists (more packages in the 7_master repo), a jenkins job will be started.
    • Put these script in cron.daily or whatever suites or in line with business requirements.

NB: Many of the scripts following rely on the environment matching this MASTER_GROUP_ID in particular the pulp repo names: puppetlabs-deps-7_master. They end in 7_master, split on an “-” which demarcates the environment. We’re going to use this elsewhere in Jenkins and Foreman.

===========

Foreman Server

The Foreman will be used by Jenkins to provision systems including setting up host groups, operating systems, puppet environments, compute profiles and kickstarts.

What we’re doing here is setting up the first environment(7_dev) and from there we can us a script to clone that environment to others.

SPECS:

  • Name: cii-foreman.ci.com
  • Storage: n/a
  • Memory: 4GB

Scripts:

To Do:

  • Edit the server entry in create-cii-server-repos.sh and run it to setup the yum repos to get our install and upstream packages.

  • If this server was configured as a puppet client, remove /var/lib/puppet/ssl which contains the client certs or the installation will fail.

  • Install Foreman:

yum install foreman-installer git python-requests -y 
foreman-installer  --enable-foreman-proxy --foreman-proxy-dns=true --enable-foreman-compute-libvirt --foreman-configure-epel-repo false --foreman-configure-scl-repo false (epel and scl are disabled here as they sync’d and added via create-cii-server-repos.sh)
  • Lets setup foreman, connect to foreman url as stated in output of install command, change the admin password to “admin”(if changed to something else be sure to change it in scripts used above) and lets get to work.
    • Infrastructure -> Compute Resources -> New Compute Resource
    • Name: “libvirtd” Provider: “Libvirtd” URL: qemu+tcp://:16509/system (check which ip the port 16509 is running on on the libvirtd host)
    • Create and cp your root public ssh key to the libvirtd server from ci-foreman for the root user
    • "Test Connection" and close
    • If the connection fails you may have to add some iptables rules etc
  • Next, setup the first environment, “7_dev”, after that we’ll clone it to uat and prd with clone-os-hg.py that will fill in the blanks in templates etc.
    • First scp your puppet modules and environments over to the Foreman server, make the path: /etc/puppet/environments/7_dev, verify ownership is puppet.root
    • NB: You will need to add your modules to /etc/puppet/modules to facilitate importing into respective environments

cp -r /etc/puppet/environments/7_dev/modules/* /etc/puppet/modules/

* Configure Compute Profile:
* Infrastructure -> Compute Profiles -> New Compute Profile
* Name: “profile-7” CPUs: 4 Memory: 2GB  Network type: Virtual (NAT)-> Submit
* Import 7_dev environment
* Configure -> Classes -> Import from <foreman server>
* Select 7_dev -> Update
* Setup autosign for puppet client certs
* Add “*.domain.name” to /etc/puppet/autosign.conf
* Make sure permissions are foreman-proxy.puppet on this file
* Create two global parameters that we will override in our templates 
* Configure -> Global parameters
   * pulp-server: cii-pulp.ci.com
   * foreman-server: cii-foreman.ci.com
* Add the kickstart template
* Hosts -> Provisioning Templates -> New Template -> Name: ks-7
* Add [ks-7](https://github.com/gdbc/CII/blob/master/cii/foreman/ks-7) FILE
 * Note this a custom kickstart for descriptive purposes. You will probably need to configure your own.
 * CII Repos are kept out of my Puppet code so it doesn’t contaminate the CII project runs.
 * Type: Provision
* Add the 7_dev repositories:
* Hosts -> Installation Media -> New medium

| Name                      | Path	                                                           | OS Family |    
| ------------------------- | --------------------------------------------------------------- | --------- |
| base-7_dev	               | `http://cii-pulp.ci.com/pulp/repos/base-7_dev/` 	               | Red Hat   |
| epel-7_dev	               | `http://cii-pulp.ci.com/pulp/repos/epel-7_dev/`                 | Red Hat   |
| extras-7_dev	             | `http://cii-pulp.ci.com/pulp/repos/extras-7_dev/`	              | Red Hat	  |
| foreman-7_dev             | `http://cii-pulp.ci.com/pulp/repos/foreman-7_dev/`	             | Red Hat	  |
| foreman-plugins-7_dev     | `http://cii-pulp.ci.com/pulp/repos/foreman-plugins-7_dev/`	     | Red Hat	  |
| jenkins-7_dev	            | `http://cii-pulp.ci.com/pulp/repos/jenkins-7_dev/`	             | Red Hat	  |
| pulp-2-stable-7_dev	      | `http://cii-pulp.ci.com/pulp/repos/pulp-2-stable-7_dev/`        | Red Hat   |
| puppetlabs-deps-7_dev     | `http://cii-pulp.ci.com/pulp/repos/puppetlabs-deps-7_dev/`	     | Red Hat	  |
| puppetlabs-products-7_dev | `http://cii-pulp.ci.com/pulp/repos/puppetlabs-products-7_dev/`  | Red Hat	  |
| updates-7_dev             | `http://cii-pulp.ci.com/pulp/repos/updates-7_dev/`	             | Red Hat   |
| centos-sclo-rh-7_dev      | `http://cii-pulp.ci.com/pulp/repos/centos-sclo-rh-7_dev/`       | Red Hat   |
| centos-sclo-sclo-7_dev    | `http://cii-pulp.ci.com/pulp/repos/centos-sclo-sclo-7_dev/`     | Red Hat   |

* Add the required repositories(if necessary) to the [ks-7](https://github.com/gdbc/CII/blob/master/cii/foreman/ks-7) kickstart profile to use to install from(see current kickstart as a guide)

Add Repos

repo --name=base --baseurl=http://<%= @host.params['pulp-server'] %>/pulp/repos/base-<%[email protected] %> --install repo --name=extras --baseurl=http://<%= @host.params['pulp-server'] %>/pulp/repos/extras-<%[email protected] %> --install repo --name=updates --baseurl=http://<%= @host.params['pulp-server'] %>/pulp/repos/updates-<%[email protected] %> --install repo --name=epel --baseurl=http://<%= @host.params['pulp-server'] %>/pulp/repos/epel-<%[email protected] %> --install repo --name=pulp --baseurl=http://<%= @host.params['pulp-server'] %>/pulp/repos/pulp-2-stable-<%[email protected] %> --install repo --name=puppet-deps --baseurl=http://<%= @host.params['pulp-server'] %>/pulp/repos/puppetlabs-deps-<%[email protected] %> --install
repo --name=puppet-products --baseurl=http://<%= @host.params['pulp-server'] %>/pulp/repos/puppetlabs-products-<%[email protected] %> --install repo --name=centos-sclo-sclo --baseurl=http://<%= @host.params['pulp-server'] %>/pulp/repos/centos-sclo-sclo-<%[email protected] %> --install repo --name=centos-sclo-rh --baseurl=http://<%= @host.params['pulp-server'] %>/pulp/repos/centos-sclo-rh-<%[email protected] %> -install repo --name=foreman --baseurl=http://<%= @host.params['pulp-server'] %>/pulp/repos/foreman-<%[email protected] %> --install repo --name=foreman-plugins --baseurl=http://<%= @host.params['pulp-server'] %>/pulp/repos/foreman-plugins<%[email protected] %> --install repo --name=jenkins --baseurl=http://<%= @host.params['pulp-server'] %>/pulp/repos/jenkins<%[email protected] %> --install


* Configure Subnets
     * Infrastructure -> Subnets -> New Subnet
     * Name: base-network
     * Network address: `<your network address>`
     * Network mask: `<your netmask>`
     * Gateway address: `<your gateway>`
     * Primary DNS: `<ip of foreman server>`
     * Boot Mode: DHCP
     * Domain: ci.com
     * TFTP Proxy: ci-foreman.ci.com
     * DNS/Reverse Proxy: leave blank else you may find yourself editing zone files
     * NB: Because this is on a host that runs libvirt and serves dhcp we need to edit that config to point pxe boots to this foreman server
     * On the libvirtd host server run:
     * virsh net-edit default
     * Add: `“<bootp file='/pxelinux.0' server='<ip of foreman server>'/>”` between the `<dhcp>` tag
* Configure Operating systems
     * Hosts -> Operating systems -> New Operating system
     * Name: cent-7_dev 
     * Major version: 7 
     * OS Family: Red Hat
     * Arch: x86_64
     * Partition table: Kickstart default
     * Installation media: `<select all *-7_dev repositories>`
     * Submit
* Associate template with Operating System
     * Hosts -> Provisioning Templates
     * Find ks-7 -> Association, select `“cent-7_dev 7”` 
     * Submit
     * Find “Kickstart default PXELinux” -> Association, select `“cent-7_dev 7”`
     * Submit
* Back to cent-7_dev 7,  HOST -> OS -> cent-7_dev 7 -> Templates
     * provision: ks-7
     * PXELinux: Kickstart default PXELinux
     * Submit
* Configure Dev Host Groups
     * Configure -> Host Groups -> New Host Group
     * Name: hg-7_dev
     * Environment: 7_dev
     * Compute profile: profile-7
     * Puppet CA: ci-foreman.ci.com
     * Puppet Master: ci-foreman.ci.com	
     * Puppet Classes: Select your classes
     * Network:
       * Domain: ci.com
       * Subnet: base-network
     * Architecture: x86_64
     * Operating System: cent-7_dev 7
     * Media: base-7_dev
     * Partition Table: Kickstart default
     * Root password: <enter password>
     * Submit
* Clone this environment to create the remaining environments if required...
   * <b>NB:</b> When creating new environments you must create the puppet directory structure first before running the script eg: if you want a “tst” environment, on the foreman server run:
     * `mkdir -p /etc/puppet/environments/7_tst/{modules, manifests}`
* For the purposes of this how to we’re creating a “dev”, “uat” and “prd” environment, so lets create the two extra environments.
   * `mkdir -p /etc/puppet/environments/{7_uat,7_prd}/{modules,manifests}`
* <b>NB:</b> You should go back and use [clone-create-repo-group.sh](https://github.com/gdbc/CII/blob/master/cii/pulp/clone-create-repo-group.sh) to create the Pulp repo group if the environment is newer than the ones created. See Pulp Server section. <- this should be done first
* Now that we're finished the 7_dev or dev environment we can clone this to the 7_uat and 7_prd. Change the SERVER, USER and PASS variables in [clone-os-hg.py](https://github.com/gdbc/CII/blob/master/cii/foreman/clone-os-hg.py)
	Make sure the part of the name matches the environment:
            
	* Create the uat env from dev:
	```	
	./clone-os-hg.py hg-7_dev hg-7_uat
	```
	* Create the prd env from dev:
	```
	./clone-os-hg.py hg-7_dev hg-7_prd
	```
* Build some test hosts bound to each host group so jenkins can find available hosts to use to reinstall and run the CII jobs on, this will also test that your host provisioning works. 
Hosts need to be powered off for Jenkins to determine them as being available. 
* Make sure you can resolve or get to these hosts from the foreman, jenkins and core servers.
* To build a host:
   * HOSTS -> New Host
   * Name: test
   * Host Group: hg-7_dev
   * Deploy on: libvirtd
   * Operating Systems -> Provisioning Templates -> Resolve
   * Submit
   * The rest should be filled in automatically, you may need to insert a temporarily static ip when you select “submit”. 

======
##Jenkins Server

The Jenkins server is the orchestrator of all of our jobs and the backbone to the CII engine. It listens for the Pulp cron jobs and git hooks to execute the jobs you are going to setup below which includes using foreman to rebuild a system and then run a set of configured post build jobs ie: Puppet, Pulp repository syncs and BAT tests and collates and graphs the results.

<b><u>SPECS:</u></b>
* Name: cii-jenkins.ci.com
* Storage: N/A
* Memory: 4GB

<u><b>Scripts:</u></b>
* Configure yum repos: [create-cii-server-repos.sh](https://github.com/gdbc/CII/blob/master/cii/yum-repo/create-cii-server-repos.sh)
* User pass library: [userpass.py](https://github.com/gdbc/CII/blob/master/cii/jenkins/libs/userpass.py)
* Jenkins Configs: [cii-run-config.xml](https://github.com/gdbc/CII/blob/master/cii/jenkins/configs/cii-run-config.xml), [post_cii_promotion_config.xml](https://github.com/gdbc/CII/blob/master/cii/jenkins/configs/post_cii_promotion_config.xml)
* GIT post-receive hook: [post-receive](https://github.com/gdbc/CII/blob/master/cii/jenkins/git_hooks/post-receive)

<b><u>To Do:</u></b> 
* Install Jenkins and support packages:

yum install java jenkins python-requests python-paramiko git -y systemctl enable jenkins systemctl start jenkins

You may need to edit /etc/sysconfig/jenkins and set the following if you dont see java running on port 8080:
`JENKINS_AJP_PORT="-1"`
* Connect to Jenkins Server: `http://cii-jenkins.ci.com:8080/`
* Set the admin password to “admin” 
* Install the following plugins from: Jenkins -> Manage Jenkins -> Manage Plugins
  * <b><u>Note:</u></b> These plugins must be installed before coying the jenkins jobs `config` files into place
  * TAP
  * Python Plugin
  * Parameterized Remote Trigger Plugin
  * Parameterized Trigger Plugin
  * Build Authorization Token Root Plugin
  * Workspace Cleanup Plugin
* Enable security to run jobs via script remotely
  * Jenkins -> Manage Jenkins -> Configure Global Security 
  * Select Enable Security
  * Select Delegate to servlet container
  * Disable “Prevent Cross Site Request Forgery exploits”
  * Select “Apply” then “Save”
  * I’ve had to, for some reason edit /var/lib/jenkins/config.xml and set useSecurity to false, restart jenkins and perform this `"Enable Security"` section again.
* Copy [userpass.py](https://github.com/gdbc/CII/blob/master/cii/jenkins/libs/userpass.py) to /usr/lib64/python.2.7/
  * Edit the file and fill in the usernames and passwords for the pulp, foreman, git and root ssh user of the clients that will be used for testing.
* Create the two jobs for the actual CII testing run and the post CII package promotion:

mkdir -p /var/lib/jenkins/jobs/{cii-run,post-cii-promotion} cp /tmp/cii-run-config.xml /var/lib/jenkins/jobs/cii-run/config.xml cp /tmp/post_cii_repo_sync.xml /var/lib/jenkins/jobs/post-cii-promotion/config.xml

* <b><u>Note:</u></b> The post-cii-promotion is just an example script that can promote a repo to another Eg: from a staging repo group and environment where the tests were carried out to an official dev repo group and dev environment, there may be change control restrictions here etc, though consider this a place holder of something to do after a successful run(recommendations welcome) ie: send a notification. You may also not want to sync to live repos in case of failure.

chown jenkins.jenkins -R /var/lib/jenkins/jobs/ systemctl restart jenkins

* Create an ssh key for the jenkins user and add it to the foreman kickstart templates([ks-7](https://github.com/gdbc/CII/blob/master/cii/foreman/ks-7)) for so we can use remote commands later in the CI process to run remove commands, puppet etc

usermod jenkins -s /bin/bash su - jenkins ssh-keygen -t dsa (hit enter on everything asked)

* Capture contents of /var/lib/jenkins/.ssh/id_dsa.pub and insert it into the [ks-7](https://github.com/gdbc/CII/blob/master/cii/foreman/ks-7) kickstart template in the %post section:

mkdir -p /root/.ssh/ cat << EOF >> /root/.ssh/authorized_keys ssh-dss AAAAB3N….(ssh pub key) EOF

* This should ensure we can connect to clients during the build process to run puppet, install packages, and run BAT tests.
* Configure rudimentary git server for puppet code and bat test code <skip this test if you already have one, but be mindful of the git repo path structure as its used in the CI process>:
  * On the GIT server:
    ```
    yum install git -y 
    useradd git
    su - git
    mkdir -p .ssh/
    chmod 700 .ssh/
    touch .ssh/authorized_keys
    chmod 600 .ssh/authorized_keys
    cat id_dsa.pub(from jenkins user on jenkins server) >> .ssh/authorized_keys #ssh connections from jenkins user on jenkins server should be passwordless
    ```
  * NB: You must cp the public key from root on the foreman server created earlier and append it to the .ssh/authorized_keys as well. This is for pulling down new puppet code to foreman from the git server. 
  * Test the login from root on the foreman server and “jenkins” on the jenkins server to the git user on the git server and type “yes” to accept the key.
  * As the git user on the git server setup the environment:
    ```
    cd;mkdir project
    cd project
    git init --bare
    git config --global user.email "[email protected]"
    git config --global user.name "git"
    mkdir -p {bats,puppet/environments/{7_dev,7_uat,7_prd}}
    ```
  * The following is ultimately the tree of what the git repo should look like once you’ve added modules, this should be the same or the code in jenkins needs to be changed to suite:

├── bats
└── puppet
  └── environments
    ├── 7_dev
    │   ├── manifests
    │   └── modules
    ├── 7_prd
    │   ├── manifests
    │   └── modules
    └── 7_uat
        ├── manifests
        └── modules

* Populate your repo with your puppet modules and bats code to resemble the above
* Add the git [post-receive](https://github.com/gdbc/CII/blob/master/cii/jenkins/git_hooks/post-receive) hook on the server in project/hooks and make it executable. 
* This hook will kick off jenkins jobs for each environment 7_dev,7_uat or 7_prd environments when a “git post” is run. It will do the same for bat test updates for 7_dev, though each jenkins run will pull a fresh copy of bats and run it. The bats tests are not segmented between environments like the puppet environments.
* The variable `“JENKINS_SERVER"` and possibly `"JENKINS_PROJECT"` and `"JENKINS_PROJECT_TOKEN"` will need to be edited to coincide with the parameters set in the jenkins job

=====

That's it, you're done and ready to initialize jobs via adding/editing BAT tests to the git repo or by adding modules to puppets git repo. This will trigger the post-commit script which in turn will trigger the cii-run job on the jenkins server.

The cron job on the repo server[cron-yum-repo-sync.sh](https://github.com/gdbc/CII/blob/master/cii/yum-repo/cron-yum-repo-sync.sh) will sync from upstream yum repos. 

The cron jobs on the pulp server (pulp-env-diff-check-dev.py, pulp-env-diff-check-uat.py, pulp-env-diff-check-prd.py… or one for each environment) you can create by a cp and minor edits to [pulp-env-diff-check.py](https://github.com/gdbc/CII/blob/master/cii/pulp/pulp-env-diff-check.py) will sync from the repo server and diff against the pulp repositories where if it finds a diff for dev(between 7_master and 7_dev), diff to uat(between 7_dev and 7_uat) and lastly diff to prd(between 7_uat to 7_prd).

If a Jenkins job fails the test system used to run the job will stay up for troubleshooting purposes. Bare in mind if a system is up and there are no more test systems in the pool the “cii-run” job will fail.

Happy to chat!

Cheers,

gdbc

About

A Poor Man's guide to Continuous Infrastructure Integration using Jenkins, Foreman and Pulp

Resources

Readme

License

GPL-3.0 license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages