Skip to content

kay-hk/jenkins-project

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
images
images
 
 
jcasc
jcasc
 
 
pipelines
pipelines
 
 
terraform
terraform
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 

Repository files navigation

This package was created as a part of Northcoders Final Project, and is included in https://github.com/AM-Doyle/NC-GitOps-HeadInTheClouds.git main repository.

Perquisites

  • Docker: installed and configured
  • DockerHub account
  • AWS account: IAM user with approproate permissions; key pair, created and saved to /jenkins/terraform folder; an ERC you wish to push your images into
  • GitHub account and a GitHub access token with repo permissions
  • Slack account and a workspace

Setting up your Jenkins

Building the Jenkins image via JCasC

The provided JCaSC configuration allows access to Docker CLI and AWS CLI. Modify as needed.

  • Navigate to /jenkins/jcasc
  • Run the following Docker commands to build your image:
docker build -t yourDockerhubUsername/projectName:projectTag .
  • Push the image to your Dockerhub
docker push yourDockerhubUsername/projectName:projectTag

Terraform

  • Navigate to /jenkins/terraform
  • Paste in your SSH key directly into the directory, OR make sure to update the file source:
private_key = file(var.key_pair)
  • Create your own terraform.tfvars file, and include:
aws_access_key = "YOUR_ACCESS_KEY"
aws_secret_access_key = "YOUR_SECRET_ACCESS_KEY"
key_pair_name = "YOUR_KEY"
key_pair = "YOUR_KEY.pem"
jenkins_admin_password = "YOUR_PASSWORD"
jenkins_image = "YOUR_IMAGE_HERE"
  • Run the following commands:
terraform init
terraform plan
terraform apply
  • Wait for terraform to finish. The console will output your AWS Public DNS.

Jenkins

You can now access Jenkins at http://YOUR_PUBLIC_DNS:8080 with the username "jenkins" and the password you have provided via .tfvars (or use the default "password")

Setting up credentials

This step can be done separately or as a part of a pipeline.

  • Navigate to Dashboard -> Manage Jenkins -> Credentials
  • Click on Domain -> Add Credentials
  • Set up GitHub/DockerHub (dependent on needs):

Domain: Global credentials (unrestricted)
Kind: Username with password
Scope: Global
Username: YOUR_USERNAME
Password: YOUR_ACCESS_TOKEN
ID: YOUR_ID

That's it! We got our credentials set up.

Setting up GitHub server

  • Inside Jenkins, navigate to Manage Jenkins -> System
  • Scroll down to GitHub Server
  • Add GitHub Server
  • Give your server a name of your choosing
  • Under Credentials, click Add, choose Jenkins provider
  • Configure Credentials as follows:

Domain: Global credentials (unrestricted)
Kind: Secret text
Scope: Global
Secret: YOUR_GITHUB_ACCESS_TOKEN
ID: GIT_ID

credentials

  • Click Add, then choose GIT_ID from the Credentials dropdown
  • Test Connection; you should see: Credentials verified for user YOUR_USERNAME, rate limit: number

github_server

Your GitHub server is now configured. Let's set up some pipelines.

Slack Notifications

This step is optional.

In order to set up Slack notifications, you need to create a Slack workspace to suit your needs.

Once your workspace is created:

  • Click on More -> Automations
  • Search for and add Jenkins jenkins_slack
  • Pick the channel you want Jenkins to post notofications to

You will be presented with instructions on how to continue. We now switch to Jenkins:

  • Navigate to Dashboard -> Manage Jenkins -> Plugins -> Available Plugins
  • Search for and install the "Slack Notification Plugin"
  • After installation, navigate to Dashboard -> Manage Jenkins -> System jenkins_slack_main
  • Configure according to Step 3 of Slack instructions
  • Test Connection; if successful, you will see Success

Now Slack Notifications can be added to your projects as a post-build step.

Setting up the project

  • Navigate to Dashboard -> New Item -> Freestyle Project
  • Give your project a name, then press OK
  • For Source Code Management, select Git
  • Configure with the following:

    Repository URL: YOUR_REPO_URL
    Credentials: YOUR_ID (GitHub)
    Branch Specifier: YOUR_BRANCH (or main by default)

  • In Build Triggers, tick GitHub hook trigger GITScm polling
  • For Post-build Actions, add a post-build action Slack Notification
  • Configure the notifications as needed
  • Save your project

Jenkins can now communicate with your repository and run pipelines from the Jenkinsfile. You will be notified via Slack on your build actions.

Please head to /pipelines to see example files.

Webhooks

In order to set up a webhook, so that Jenkins automatically detects code changes in our app, we can do the following:

  • Navigate to the correct repository on GitHub
  • Settings -> Webhooks
  • Add Webhook github_webhook
  • Configure as follows:

    Payload URL: http://YOUR_PUBLIC_DNS:8080/github-webhook/
    Content type: application/json

  • Add webhook

Now your Jenkins will automatically build a new version of your application if it detects any repository changes to code.

Considerations

  • Security might be of issue. Accessing Jenkins via HTTP is not ideal, and to further improve our infrastructure, we could look into reverse proxy.
  • Remote exec and sleep on Terraform are not the most elegant solutions, but the purpose of this pipeline was to be able to spin up Jenkins quickly and efficiently, where other users can access the interface within minutes.
  • JCasC can be as simple or as elaborate as the user/s desire. As we are using a public repository, we have not configured credentials/clouds/etc. within the JCaSC, which could speed up the setup.
  • You can use HashiCorp Cloud to store your .tfstate as well as the SSH key for easy shared workspace.

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages