video-iac/bitbucket-pipelines.yml

# Template docker-push

# This template allows you to build and push your docker image to a Docker Hub account.
# The workflow allows running tests, code linting and security scans on feature branches (as well as master).
# The docker image will be validated and pushed to the docker registry after the code is merged to master.

# Prerequisites: $DOCKERHUB_USERNAME, $DOCKERHUB_PASSWORD setup as deployment variables

image: atlassian/default-image:2


definitions:
  services:
    docker:
      memory: 3072
pipelines:
  default:
    - parallel:
        - step:
            name: Build and Test
            script:
              - docker build . --file k8s/Dockerfile-autoscaler --tag autoscaler-${BITBUCKET_REPO_SLUG}
              - docker build . --file k8s/Dockerfile-coturn-dns --tag coturn-dns-${BITBUCKET_REPO_SLUG}
            services:
              - docker
            caches:
              - docker
        - step:
            name: Lint the Dockerfile
            image: hadolint/hadolint:latest-debian
            script:
              - hadolint Dockerfile-autoscaler
              - hadolint Docuerfile-coturn-dns
  branches:
    main:
      - step:
          name: Build and Test
          script:
            - docker build . --file k8s/Dockerfile-autoscaler --tag autoscaler-${BITBUCKET_REPO_SLUG}
            - docker build . --file k8s/Dockerfile-coturn-dns --tag coturn-dns-${BITBUCKET_REPO_SLUG}
            - docker save autoscaler-${BITBUCKET_REPO_SLUG} --output "autoscaler-${BITBUCKET_REPO_SLUG}.tar"
            - docker save coturn-dns-${BITBUCKET_REPO_SLUG} --output "coturn-dns-${BITBUCKET_REPO_SLUG}.tar"
          services:
            - docker
          caches:
            - docker
          artifacts:
            - "*.tar"
      - step:
          name: Push docker images to GCR
          image: google/cloud-sdk:alpine
          script:
            # Authenticating with the service account key file
            - echo $GCLOUD_API_KEYFILE | base64 -d > ./gcloud-api-key.json
            - gcloud auth activate-service-account --key-file gcloud-api-key.json
            - gcloud config set project $GCLOUD_PROJECT
            - docker load --input "autoscaler-${BITBUCKET_REPO_SLUG}.tar"
            - docker load --input "coturn-dns-${BITBUCKET_REPO_SLUG}.tar"
            - VERSION="prod-0.1.${BITBUCKET_BUILD_NUMBER}"
            - docker tag "autoscaler-${BITBUCKET_REPO_SLUG}" "gcr.io/${GCLOUD_PROJECT}/autoscaler:${VERSION}"
            - docker tag "coturn-dns-${BITBUCKET_REPO_SLUG}" "gcr.io/${GCLOUD_PROJECT}/coturn-dns:${VERSION}"
            # Login to google docker hub
            - cat ./gcloud-api-key.json | docker login -u _json_key --password-stdin https://gcr.io
            - docker push "gcr.io/${GCLOUD_PROJECT}/autoscaler:${VERSION}"
            - docker push "gcr.io/${GCLOUD_PROJECT}/coturn-dns:${VERSION}"
          services:
            - docker


      # - step: Deploy haproxy ingress controller
      #     % helm install haproxy-ingress haproxy-ingress/haproxy-ingress\                 
      # --create-namespace --namespace ingress-controller\
      # --version 0.13.1\
      # -f k8s/haproxy/haproxy-ingress-values.yaml
      #  helm upgrade -n ingress-controller -f k8s/haproxy/haproxy-ingress-values.yaml haproxy-ingress haproxy-ingress/haproxy-ingress --version 0.13.1
      # kubectl --namespace ingress-controller patch deployment haproxy-ingress -p '{"spec":{"template":{"spec":{"containers":[{"name":"haproxy-ingress","ports":[{"name":"exporter","containerPort":9105},{"name":"ingress-stats","containerPort":10254}]}]}}}}'

      # - step: Deploy cert-manager
      #     helm install \
      # cert-manager jetstack/cert-manager \
      # --namespace cert-manager \
      # --create-namespace \
      # --version v1.5.0 \
      # --set installCRDs=true
      #   $ kubectl apply -f k8s/cert-manager/cluster-issuer-production.yaml       


      # - step: Deploy GCR credentials
# kubectl create secret docker-registry gcr-json-key \
#   --docker-server=gcr.io \
#   --docker-username=_json_key \
#   --docker-password="$(cat k8s/gcp.json)" \
#   --docker-email=any@valid.email
      # kubectl patch serviceaccount default \
      #  -p '{"imagePullSecrets": [{"name": "gcr-json-key"}]}'

# Deploy nginx ingress controller
# helm install nginx-ingress stable/nginx-ingress 

# Deploy monitoring clusterissuer
# kubectl apply -f k8s/monitoring/clusterissuer.yaml

# Deploy monitoring certificate
# kubectl apply -f k8s/monitoring/certificate.yaml

# Deploy monitoring helm
# helm install \
# monitoring stable/prometheus-operator \
# -f k8s/monitoring/helm-values.yaml \
# --namespace monitoring \
# --set grafana.adminPassword=jamkazamMonitoring


      - step:
          name: Deploy to K8s
          deployment: production
          script:
            - AUTOSCALER_IMAGE="gcr.io/$GCLOUD_PROJECT/autoscaler:prod-0.1.$BITBUCKET_BUILD_NUMBER"
            - COTURN_DNS_IMAGE="gcr.io/$GCLOUD_PROJECT/coturn-dns:prod-0.1.$BITBUCKET_BUILD_NUMBER"
            - sed -i "s|{{linode_autoscaler_image}}|$AUTOSCALER_IMAGE|g" k8s/linode-autoscaler/production-webrtc-be-autoscaler.yaml
            - sed -i "s|{{linode_autoscaler_image}}|$AUTOSCALER_IMAGE|g" k8s/linode-autoscaler/production-coturn-autoscaler.yaml
            - sed -i "s|{{coturn_dns_image}}|$COTURN_DNS_IMAGE|g" k8s/coturn-dns/production-coturn-dns.yaml
            # - pipe: atlassian/kubectl-run:1.1.2
            #   variables:
            #     KUBE_CONFIG: $KUBE_CONFIG_PRD
            #     KUBECTL_COMMAND: 'apply -f https://github.com/kubernetes-sigs/metrics-server/releases/latest/download/components.yaml'
            - pipe: atlassian/kubectl-run:1.1.2
              variables:
                KUBE_CONFIG: $KUBE_CONFIG_PRD
                KUBECTL_COMMAND: 'apply'
                RESOURCE_PATH: 'k8s/linode-autoscaler/linode-autoscaler-namespace-secrets.yaml'
            - pipe: atlassian/kubectl-run:1.1.2
              variables:
                KUBE_CONFIG: $KUBE_CONFIG_PRD
                KUBECTL_COMMAND: 'apply'
                RESOURCE_PATH: 'k8s/linode-autoscaler/production-coturn-autoscaler.yaml'
            - pipe: atlassian/kubectl-run:1.1.2
              variables:
                KUBE_CONFIG: $KUBE_CONFIG_PRD
                KUBECTL_COMMAND: 'apply'
                RESOURCE_PATH: 'k8s/coturn-dns/production-coturn-dns.yaml'
add k8s thirdparty services 2021-07-16 15:15:34 +00:00			`# Template docker-push`

			`# This template allows you to build and push your docker image to a Docker Hub account.`
			`# The workflow allows running tests, code linting and security scans on feature branches (as well as master).`
			`# The docker image will be validated and pushed to the docker registry after the code is merged to master.`

			`# Prerequisites: $DOCKERHUB_USERNAME, $DOCKERHUB_PASSWORD setup as deployment variables`

			`image: atlassian/default-image:2`


			`definitions:`
			`services:`
			`docker:`
			`memory: 3072`
			`pipelines:`
			`default:`
			`- parallel:`
			`- step:`
			`name: Build and Test`
			`script:`
set pipeline 2021-08-10 17:36:34 +00:00			`- docker build . --file k8s/Dockerfile-autoscaler --tag autoscaler-${BITBUCKET_REPO_SLUG}`
			`- docker build . --file k8s/Dockerfile-coturn-dns --tag coturn-dns-${BITBUCKET_REPO_SLUG}`
add k8s thirdparty services 2021-07-16 15:15:34 +00:00			`services:`
			`- docker`
			`caches:`
			`- docker`
			`- step:`
			`name: Lint the Dockerfile`
			`image: hadolint/hadolint:latest-debian`
			`script:`
set pipeline 2021-08-10 17:36:34 +00:00			`- hadolint Dockerfile-autoscaler`
			`- hadolint Docuerfile-coturn-dns`
add k8s thirdparty services 2021-07-16 15:15:34 +00:00			`branches:`
fix pipeline 2021-07-16 15:24:04 +00:00			`main:`
add k8s thirdparty services 2021-07-16 15:15:34 +00:00			`- step:`
			`name: Build and Test`
			`script:`
set pipeline 2021-08-10 17:36:34 +00:00			`- docker build . --file k8s/Dockerfile-autoscaler --tag autoscaler-${BITBUCKET_REPO_SLUG}`
			`- docker build . --file k8s/Dockerfile-coturn-dns --tag coturn-dns-${BITBUCKET_REPO_SLUG}`
			`- docker save autoscaler-${BITBUCKET_REPO_SLUG} --output "autoscaler-${BITBUCKET_REPO_SLUG}.tar"`
			`- docker save coturn-dns-${BITBUCKET_REPO_SLUG} --output "coturn-dns-${BITBUCKET_REPO_SLUG}.tar"`
add k8s thirdparty services 2021-07-16 15:15:34 +00:00			`services:`
			`- docker`
			`caches:`
			`- docker`
			`artifacts:`
			`- "*.tar"`
			`- step:`
add metrics server 2021-07-19 17:05:41 +00:00			`name: Push docker images to GCR`
add k8s thirdparty services 2021-07-16 15:15:34 +00:00			`image: google/cloud-sdk:alpine`
			`script:`
			`# Authenticating with the service account key file`
			`- echo $GCLOUD_API_KEYFILE \| base64 -d > ./gcloud-api-key.json`
			`- gcloud auth activate-service-account --key-file gcloud-api-key.json`
			`- gcloud config set project $GCLOUD_PROJECT`
set pipeline 2021-08-10 17:36:34 +00:00			`- docker load --input "autoscaler-${BITBUCKET_REPO_SLUG}.tar"`
			`- docker load --input "coturn-dns-${BITBUCKET_REPO_SLUG}.tar"`
add k8s thirdparty services 2021-07-16 15:15:34 +00:00			`- VERSION="prod-0.1.${BITBUCKET_BUILD_NUMBER}"`
set pipeline 2021-08-10 17:50:19 +00:00			`- docker tag "autoscaler-${BITBUCKET_REPO_SLUG}" "gcr.io/${GCLOUD_PROJECT}/autoscaler:${VERSION}"`
			`- docker tag "coturn-dns-${BITBUCKET_REPO_SLUG}" "gcr.io/${GCLOUD_PROJECT}/coturn-dns:${VERSION}"`
add k8s thirdparty services 2021-07-16 15:15:34 +00:00			`# Login to google docker hub`
			`- cat ./gcloud-api-key.json \| docker login -u _json_key --password-stdin https://gcr.io`
set pipeline 2021-08-10 17:36:34 +00:00			`- docker push "gcr.io/${GCLOUD_PROJECT}/autoscaler:${VERSION}"`
			`- docker push "gcr.io/${GCLOUD_PROJECT}/coturn-dns:${VERSION}"`
add k8s thirdparty services 2021-07-16 15:15:34 +00:00			`services:`
			`- docker`
setup production cluster 2021-08-30 18:21:19 +00:00

			`# - step: Deploy haproxy ingress controller`
			`# % helm install haproxy-ingress haproxy-ingress/haproxy-ingress\`
			`# --create-namespace --namespace ingress-controller\`
			`# --version 0.13.1\`
			`# -f k8s/haproxy/haproxy-ingress-values.yaml`
argocd 2021-10-28 18:15:01 +00:00			`# helm upgrade -n ingress-controller -f k8s/haproxy/haproxy-ingress-values.yaml haproxy-ingress haproxy-ingress/haproxy-ingress --version 0.13.1`
			`# kubectl --namespace ingress-controller patch deployment haproxy-ingress -p '{"spec":{"template":{"spec":{"containers":[{"name":"haproxy-ingress","ports":[{"name":"exporter","containerPort":9105},{"name":"ingress-stats","containerPort":10254}]}]}}}}'`
setup production cluster 2021-08-30 18:21:19 +00:00
			`# - step: Deploy cert-manager`
			`# helm install \`
			`# cert-manager jetstack/cert-manager \`
			`# --namespace cert-manager \`
			`# --create-namespace \`
			`# --version v1.5.0 \`
			`# --set installCRDs=true`
			`# $ kubectl apply -f k8s/cert-manager/cluster-issuer-production.yaml`



			`# - step: Deploy GCR credentials`
add webrtc be 2021-11-09 13:33:17 +00:00			`# kubectl create secret docker-registry gcr-json-key \`
			`# --docker-server=gcr.io \`
			`# --docker-username=_json_key \`
			`# --docker-password="$(cat k8s/gcp.json)" \`
			`# --docker-email=any@valid.email`
setup production cluster 2021-08-30 18:21:19 +00:00			`# kubectl patch serviceaccount default \`
			`# -p '{"imagePullSecrets": [{"name": "gcr-json-key"}]}'`

			`# Deploy nginx ingress controller`
			`# helm install nginx-ingress stable/nginx-ingress`

			`# Deploy monitoring clusterissuer`
			`# kubectl apply -f k8s/monitoring/clusterissuer.yaml`

			`# Deploy monitoring certificate`
			`# kubectl apply -f k8s/monitoring/certificate.yaml`

			`# Deploy monitoring helm`
			`# helm install \`
			`# monitoring stable/prometheus-operator \`
			`# -f k8s/monitoring/helm-values.yaml \`
			`# --namespace monitoring \`
			`# --set grafana.adminPassword=jamkazamMonitoring`


add k8s thirdparty services 2021-07-16 15:15:34 +00:00			`- step:`
			`name: Deploy to K8s`
setup production clusterush 2021-08-31 17:20:32 +00:00			`deployment: production`
add k8s thirdparty services 2021-07-16 15:15:34 +00:00			`script:`
coturn-dns updater manifest 2021-08-10 18:24:42 +00:00			`- AUTOSCALER_IMAGE="gcr.io/$GCLOUD_PROJECT/autoscaler:prod-0.1.$BITBUCKET_BUILD_NUMBER"`
fix pipeline 2021-08-10 18:40:52 +00:00			`- COTURN_DNS_IMAGE="gcr.io/$GCLOUD_PROJECT/coturn-dns:prod-0.1.$BITBUCKET_BUILD_NUMBER"`
setup production autoscaler 2021-08-31 18:49:51 +00:00			`- sed -i "s\|{{linode_autoscaler_image}}\|$AUTOSCALER_IMAGE\|g" k8s/linode-autoscaler/production-webrtc-be-autoscaler.yaml`
			`- sed -i "s\|{{linode_autoscaler_image}}\|$AUTOSCALER_IMAGE\|g" k8s/linode-autoscaler/production-coturn-autoscaler.yaml`
setup production cluster 2021-08-31 16:23:14 +00:00			`- sed -i "s\|{{coturn_dns_image}}\|$COTURN_DNS_IMAGE\|g" k8s/coturn-dns/production-coturn-dns.yaml`
add linode autoscaler production 2021-09-02 16:15:44 +00:00			`# - pipe: atlassian/kubectl-run:1.1.2`
			`# variables:`
			`# KUBE_CONFIG: $KUBE_CONFIG_PRD`
			`# KUBECTL_COMMAND: 'apply -f https://github.com/kubernetes-sigs/metrics-server/releases/latest/download/components.yaml'`
linode autoscaler production 2021-09-02 08:36:46 +00:00			`- pipe: atlassian/kubectl-run:1.1.2`
			`variables:`
			`KUBE_CONFIG: $KUBE_CONFIG_PRD`
			`KUBECTL_COMMAND: 'apply'`
			`RESOURCE_PATH: 'k8s/linode-autoscaler/linode-autoscaler-namespace-secrets.yaml'`
setup production autoscaler 2021-08-31 18:49:51 +00:00			`- pipe: atlassian/kubectl-run:1.1.2`
			`variables:`
setup coturn autoscaler 2021-09-01 17:49:15 +00:00			`KUBE_CONFIG: $KUBE_CONFIG_PRD`
setup production autoscaler 2021-08-31 18:49:51 +00:00			`KUBECTL_COMMAND: 'apply'`
			`RESOURCE_PATH: 'k8s/linode-autoscaler/production-coturn-autoscaler.yaml'`
coturn-dns updater manifest 2021-08-10 18:32:05 +00:00			`- pipe: atlassian/kubectl-run:1.1.2`
			`variables:`
setup production cluster 2021-08-30 18:27:23 +00:00			`KUBE_CONFIG: $KUBE_CONFIG_PRD`
coturn-dns updater manifest 2021-08-10 18:32:05 +00:00			`KUBECTL_COMMAND: 'apply'`
setup production clusterush 2021-08-31 17:20:32 +00:00			`RESOURCE_PATH: 'k8s/coturn-dns/production-coturn-dns.yaml'`