Setting up CI CD for Developers
This tutorial will guide you through the steps to set up a project on the ABAIR CI/CD pipeline. As an example, it uses a node application with the name ABAIR_APP_X.
Prerequisites:
-
Server:
- You have a key for your project to SSH into the services VM.
- An Admin has set up a directory for your project with a deployment script.
-
Github:
- You are a member of the Phonetics & Speech Lab Github Organisation.
- You have created a remote Git repository on Github for
ABAIR_APP_X - You have initialised a local Git repository and linked it to the remote.
-
Docker:
- You have Docker installed on your local machine.
- You have a Dockerfile in the root of your project that successfully builds an image of your application.
- This image can be run locally using Docker and accessed over the specified open port.
- You have been given the Docker Password for the registry.
Steps
1. Add CI/CD Github Actions to your project
Create a .github/workflows/ folder in the root of your project and add the following 2 files
ci.yml
name: Node.js CI
on:
pull_request:
branches: [main]
jobs:
build:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- name: Use Node.js LTS
uses: actions/setup-node@v3
with:
node-version: 18.16.0
- run: |
npm i
cd.yml
name: Publish Docker image
on:
push:
branches:
- main
jobs:
push_to_registry:
name: Push Docker image to Docker Registry
runs-on: ubuntu-latest
steps:
- name: Check out the repo
uses: actions/checkout@v2
- name: Log in to Docker Hub
uses: docker/login-action@f054a8b539a109f9f41c372932f1ae047eff08c9
with:
registry: ${{ secrets.DOCKER_REGISTRY }}
username: ${{ secrets.DOCKER_USERNAME }}
password: ${{ secrets.DOCKER_PASSWORD }}
- name: Extract metadata (tags, labels) for Docker
id: meta
uses: docker/metadata-action@v4
with:
images: registry.abair.ie:5000/${{ secrets.PROJECT_NAME }}
- name: Build and push Docker image
uses: docker/build-push-action@v3
with:
context: .
push: true
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}
update_ssh:
name: Update running software
needs: "push_to_registry"
runs-on: ubuntu-latest
steps:
- name: executing remote ssh commands using password
uses: appleboy/ssh-action@master
with:
host: ${{ secrets.HOST }}
username: ${{ secrets.USERNAME }}
key: ${{ secrets.KEY }}
port: ${{ secrets.PORT }}
script: bash ${{ secrets.DEPLOY_SCRIPT_PATH }}
2. Set Secrets
On the Github page for ABAIR_APP_X, navigate to settings - Secrets and variables - Actions, and add the following Repository secrets:
| Name | Value | |
|---|---|---|
| PROJECT_NAME | ABAIR_APP_X | |
| DOCKER_REGISTRY | registry.abair.ie:5000 | |
| DOCKER_USERNAME | admin | |
| DOCKER_PASSWORD | KiVGdGsRnMNcrmgt822w | |
| HOST | srv.abair.ie | |
| USERNAME | services | |
| KEY | XXXXXXXXXX | |
| PORT | 22102 | |
| DEPLOY_SCRIPT_PATH | /home/services/ABAIR_APP_X/deploy-ABAIR_APP_X.sh |
3. Deploy Script
Add the following deploy script to the base of your project for reference. It will be copied by Admin to the Services VM
deploy-ABAIR_APP_X.sh
docker stop ABAIR_APP_X
docker rm ABAIR_APP_X
docker login 10.0.0.2:5000 -u admin -p {see elsewhere}
docker rmi 10.0.0.2:5000/ABAIR_APP_X:main
docker pull 10.0.0.2:5000/ABAIR_APP_X:main
docker run -t -d -p port:port --restart always --name project-name 10.0.0.2:5000/ABAIR_APP_X:main