Gitiles
Code Review Sign In
gerrit.mcp.mirantis.com / salt-formulas / jenkins / 0a03c2cee0c10e8890f7250332fbff16261f04b0 / . / README.rst
blob: 5e8a6e975ff02360def31d08d4f2f6467353a328 [file] [log] [blame]
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]1===============
2Jenkins formula
3===============
Filip Pytloun8bfd2bf2015-10-06 16:28:32 +0200[diff] [blame]4
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]5Jenkins is an application that monitors executions of repeated jobs, such as
6building a software project or jobs run by cron.
Filip Pytloun8bfd2bf2015-10-06 16:28:32 +0200[diff] [blame]7
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]8Setup jenkins client, works with Salt 2016.3+, supports pipeline workflow
9projects only now.
Filip Pytloun8bfd2bf2015-10-06 16:28:32 +0200[diff] [blame]10
Filip Pytloun8bfd2bf2015-10-06 16:28:32 +0200[diff] [blame]11
Ales Komareke5a1ed62016-08-27 12:02:48 +0200[diff] [blame]12Sample pillars
13==============
Filip Pytloun8bfd2bf2015-10-06 16:28:32 +0200[diff] [blame]14
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]15Master role
16-----------
Ales Komareke5a1ed62016-08-27 12:02:48 +0200[diff] [blame]17
18Simple master with reverse proxy
Filip Pytloun8bfd2bf2015-10-06 16:28:32 +0200[diff] [blame]19
20.. code-block:: yaml
21
Filip Pytloun8bfd2bf2015-10-06 16:28:32 +0200[diff] [blame]22 nginx:
23 server:
24 site:
25 jenkins:
26 enabled: true
27 type: nginx_proxy
28 name: jenkins
29 proxy:
30 host: 127.0.0.1
31 port: 8080
32 protocol: http
33 host:
34 name: jenkins.example.com
35 port: 80
36 jenkins:
37 master:
38 mode: EXCLUSIVE
Filip Pytloun52b9c2c2016-01-28 13:45:57 +0100[diff] [blame]39 # Do not manage config.xml from Salt, use UI instead
40 no_config: true
Filip Pytloun8bfd2bf2015-10-06 16:28:32 +0200[diff] [blame]41 slaves:
42 - name: slave01
43 label: pbuilder
44 executors: 2
45 - name: slave02
46 label: image_builder
47 mode: EXCLUSIVE
48 executors: 2
49 views:
50 - name: "Package builds"
51 regex: "debian-build-.*"
52 - name: "Contrail builds"
53 regex: "contrail-build-.*"
54 - name: "Aptly"
55 regex: "aptly-.*"
56 plugins:
57 - name: slack
58 - name: extended-choice-parameter
59 - name: rebuild
60 - name: test-stability
61
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]62Jenkins master with experimental plugin source support
Ales Komarekaf967ee2016-08-31 19:38:50 +0200[diff] [blame]63
64.. code-block:: yaml
65
66 jenkins:
67 master:
68 enabled: true
69 update_site_url: 'http://updates.jenkins-ci.org/experimental/update-center.json'
70
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]71SMTP server settings
Ales Komarekaf967ee2016-08-31 19:38:50 +0200[diff] [blame]72
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]73.. code-block:: yaml
74
75 jenkins:
76 master:
77 email:
78 engine: "smtp"
79 host: "smtp.domain.com"
80 user: "user@domain.cz"
81 password: "smtp-password"
82 port: 25
83
Jakub Josefbf0b73e2017-03-22 14:32:45 +0100[diff] [blame]84Script approvals from client
85
86.. code-block:: yaml
87
88 jenkins:
89 client:
90 approved_scripts:
91 - method groovy.json.JsonSlurperClassic parseText java.lang.String
92
93
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]94Script approvals
95
96.. code-block:: yaml
97
98 jenkins:
99 master:
100 approved_scripts:
101 - method groovy.json.JsonSlurperClassic parseText java.lang.String
102
103User enforcement
104
105.. code-block:: yaml
106
107 jenkins:
108 master:
109 user:
110 admin:
111 api_token: xxxxxxxxxx
112 password: admin_password
113 email: admin@domain.com
114 user01:
115 api_token: xxxxxxxxxx
116 password: user_password
117 email: user01@domain.com
118
119
120Agent (slave) role
121------------------
Filip Pytloun8bfd2bf2015-10-06 16:28:32 +0200[diff] [blame]122
123.. code-block:: yaml
124
Ales Komarek4c0bab12016-01-22 12:10:50 +0100[diff] [blame]125 jenkins:
126 slave:
127 master:
128 host: jenkins.example.com
129 port: 80
Michael Kutý37a35952016-06-10 23:51:36 +0200[diff] [blame]130 protocol: http
Ales Komarek4c0bab12016-01-22 12:10:50 +0100[diff] [blame]131 user:
132 name: jenkins_slave
133 password: dexiech6AepohthaiHook2iesh7ol5ook4Ov3leid3yek6daid2ooNg3Ee2oKeYo
134 gpg:
135 keypair_id: A76882D3
136 public_key: |
137 -----BEGIN PGP PUBLIC KEY BLOCK-----
138 ...
139 private_key: |
140 -----BEGIN PGP PRIVATE KEY BLOCK-----
141 ...
Ales Komarekaf967ee2016-08-31 19:38:50 +0200[diff] [blame]142
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]143
144Client role
145-----------
Ales Komareke5a1ed62016-08-27 12:02:48 +0200[diff] [blame]146
147Simple client with workflow job definition
148
149.. code-block:: yaml
150
151 jenkins:
152 client:
153 master:
154 host: jenkins.example.com
155 port: 80
156 protocol: http
157 job:
158 jobname:
159 type: workflow
160 param:
161 bool_param:
162 type: boolean
163 description: true/false
164 default: true
165 string_param:
166 type: string
167 description: 1 liner
168 default: default_string
169 text_param:
170 type: text
171 description: multi-liner
172 default: default_text
Filip Pytlounebd4d172016-09-01 14:23:20 +0200[diff] [blame]173 jobname_scm:
174 type: workflow-scm
175 concurrent: false
176 scm:
177 type: git
178 url: https://github.com/jenkinsci/docker.git
179 branch: master
180 script: Jenkinsfile
181 github:
182 url: https://github.com/jenkinsci/docker
183 name: "Jenkins Docker Image"
184 trigger:
Tomáš Kukrála9cf2c62017-03-04 11:25:20 +0100[diff] [blame]185 timer:
186 spec: "H H * * *"
Filip Pytlounebd4d172016-09-01 14:23:20 +0200[diff] [blame]187 github:
188 pollscm:
189 spec: "H/15 * * * *"
190 reverse:
191 projects:
192 - test1
193 - test2
194 state: SUCCESS
195 param:
196 bool_param:
197 type: boolean
198 description: true/false
199 default: true
200 string_param:
201 type: string
202 description: 1 liner
203 default: default_string
204 text_param:
205 type: text
206 description: multi-liner
207 default: default_text
Ales Komareke5a1ed62016-08-27 12:02:48 +0200[diff] [blame]208
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]209Inline Groovy scripts
Ales Komareke5a1ed62016-08-27 12:02:48 +0200[diff] [blame]210
211.. code-block:: yaml
212
213 jenkins:
214 client:
215 job:
216 test_workflow_jenkins_simple:
217 type: workflow
218 display_name: Test jenkins simple workflow
Ales Komarek5b672fd2016-08-29 16:05:03 +0200[diff] [blame]219 script:
220 content: |
221 node {
222 stage 'Stage 1'
223 echo 'Hello World 1'
224 stage 'Stage 2'
225 echo 'Hello World 2'
226 }
Ales Komareke5a1ed62016-08-27 12:02:48 +0200[diff] [blame]227 test_workflow_jenkins_input:
228 type: workflow
229 display_name: Test jenkins workflow inputs
Ales Komarek5b672fd2016-08-29 16:05:03 +0200[diff] [blame]230 script:
231 content: |
232 node {
233 stage 'Enter string'
234 input message: 'Enter job parameters', ok: 'OK', parameters: [
235 string(defaultValue: 'default', description: 'Enter a string.', name: 'string'),
236 ]
237 stage 'Enter boolean'
238 input message: 'Enter job parameters', ok: 'OK', parameters: [
239 booleanParam(defaultValue: false, description: 'Select boolean.', name: 'Bool'),
240 ]
241 stage 'Enter text'
242 input message: 'Enter job parameters', ok: 'OK', parameters: [
243 text(defaultValue: '', description: 'Enter multiline', name: 'Multiline')
244 ]
245 }
Ales Komareke5a1ed62016-08-27 12:02:48 +0200[diff] [blame]246
Filip Pytloun8bfd2bf2015-10-06 16:28:32 +0200[diff] [blame]247
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]248GIT controlled groovy scripts
Ales Komarekdaf31f72016-08-29 11:00:13 +0200[diff] [blame]249
250.. code-block:: yaml
251
252 jenkins:
253 client:
254 source:
Ales Komarek5b672fd2016-08-29 16:05:03 +0200[diff] [blame]255 base:
256 engine: git
257 address: repo_url
258 branch: branch
259 domain:
260 engine: git
261 address: domain_url
262 branch: branch
Ales Komarekdaf31f72016-08-29 11:00:13 +0200[diff] [blame]263 job:
264 test_workflow_jenkins_simple:
265 type: workflow
266 display_name: Test jenkins simple workflow
Ales Komarek5b672fd2016-08-29 16:05:03 +0200[diff] [blame]267 param:
268 bool_param:
269 type: boolean
270 description: true/false
271 default: true
272 script:
273 repository: base
274 file: workflows/test_workflow_jenkins_simple.groovy
Ales Komarekdaf31f72016-08-29 11:00:13 +0200[diff] [blame]275 test_workflow_jenkins_input:
276 type: workflow
277 display_name: Test jenkins workflow inputs
Ales Komarek5b672fd2016-08-29 16:05:03 +0200[diff] [blame]278 script:
279 repository: domain
280 file: workflows/test_workflow_jenkins_input.groovy
281 test_workflow_jenkins_input_jenkinsfile:
282 type: workflow
283 display_name: Test jenkins workflow inputs (jenknisfile)
284 script:
285 repository: domain
286 file: workflows/test_workflow_jenkins_input/Jenkinsfile
Ales Komarekdaf31f72016-08-29 11:00:13 +0200[diff] [blame]287
Ales Komarek5b672fd2016-08-29 16:05:03 +0200[diff] [blame]288GIT controlled groovy script with shared libraries
289
290.. code-block:: yaml
291
292 jenkins:
293 client:
294 source:
295 base:
296 engine: git
297 address: repo_url
298 branch: branch
299 domain:
300 engine: git
301 address: domain_url
302 branch: branch
303 job:
304 test_workflow_jenkins_simple:
305 type: workflow
306 display_name: Test jenkins simple workflow
307 param:
308 bool_param:
309 type: boolean
310 description: true/false
311 default: true
312 script:
313 repository: base
314 file: workflows/test_workflow_jenkins_simple.groovy
315 libs:
316 - repository: base
317 file: macros/cookiecutter.groovy
318 - repository: base
319 file: macros/git.groovy
Ales Komarekdaf31f72016-08-29 11:00:13 +0200[diff] [blame]320
Jakub Josef120714d2017-02-09 16:29:18 +0100[diff] [blame]321Setting job max builds to keep (amount of last builds stored on Jenkins master)
322
323.. code-block:: yaml
324
325 jenkins:
326 client:
327 job:
328 my-amazing-job:
329 type: workflow
330 discard:
331 build:
332 keep_num: 5
333 keep_days: 5
334 artifact:
335 keep_num: 6
336 keep_days: 6
337
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]338
339Using job templates in similar way as in jjb. For now just 1 defined param is
340supported.
341
342.. code-block:: yaml
343
344 jenkins:
345 client:
346 job_template:
347 test_workflow_template:
348 name: test-{{formula}}-workflow
349 template:
350 type: workflow
351 display_name: Test jenkins {{name}} workflow
352 param:
353 repo_param:
354 type: string
355 default: repo/{{formula}}
356 script:
357 repository: base
358 file: workflows/test_formula_workflow.groovy
359 param:
360 formula:
361 - aodh
362 - linux
363 - openssh
364
365Interpolating parameters for job templates.
366
Filip Pytloun83129fc2017-02-23 10:07:32 +0100[diff] [blame]367.. code-block:: yaml
368
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]369 _param:
370 salt_formulas:
371 - aodh
372 - git
373 - nova
374 - xorg
375 jenkins:
376 client:
377 job_template:
378 test_workflow_template:
379 name: test-{{formula}}-workflow
380 template:
381 ...
382 param:
383 formula: ${_param:salt_formulas}
384
Filip Pytloun83129fc2017-02-23 10:07:32 +0100[diff] [blame]385Or simply define multiple jobs and it's parameters to replace from template:
386
387.. code-block:: yaml
388
389 jenkins:
390 client:
391 job_template:
392 test_workflow_template:
393 name: test-{{name}}-{{myparam}}
394 template:
395 ...
396 jobs:
397 - name: firstjob
398 myparam: dummy
399 - name: secondjob
400 myparam: dummyaswell
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]401
Jakub Josef2a7739b2017-01-24 18:33:44 +0100[diff] [blame]402Purging undefined jobs from Jenkins
403
404.. code-block:: yaml
405
406 jenkins:
407 client:
408 purge_jobs: true
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]409 job:
410 my-amazing-job:
411 type: workflow
Jakub Josef2a7739b2017-01-24 18:33:44 +0100[diff] [blame]412
Jakub Josef10b4e102017-01-05 18:18:41 +0100[diff] [blame]413Plugins management from client
414
415.. code-block:: yaml
416
417
418 jenkins:
419 client:
420 plugin:
421 swarm:
422 restart: false
423 hipchat:
424 enabled: false
425 restart: true
426
Jakub Josef063a7532017-01-11 15:48:01 +0100[diff] [blame]427LDAP configuration (depends on LDAP plugin)
428
429.. code-block:: yaml
430
431 jenkins:
432 client:
433 security:
434 ldap:
435 server: 1.2.3.4
436 root_dn: dc=foo,dc=com
437 user_search_base: cn=users,cn=accounts
438 manager_dn: ""
439 manager_password: password
440 user_search: ""
441 group_search_base: ""
442 inhibit_infer_root_dn: false
443
444
445Matrix configuration (depends on auth-matrix plugin)
446
447.. code-block:: yaml
448
449 jenkins:
450 client:
451 security:
452 matrix:
Jakub Josef0ee470e2017-01-17 11:46:58 +0100[diff] [blame]453 # set true for use ProjectMatrixAuthStrategy instead of GlobalMatrixAuthStrategy
454 project_based: false
Jakub Josef063a7532017-01-11 15:48:01 +0100[diff] [blame]455 permissions:
456 Jenkins:
457 # administrator access
458 ADMINISTER:
459 - admin
460 # read access (anonymous too)
461 READ:
462 - anonymous
463 - user1
464 - user2
465 # agents permissions
466 MasterComputer:
467 BUILD:
468 - user3
469 # jobs permissions
470 hudson:
471 model:
472 Item:
473 BUILD:
474 - user4
475
476`Common matrix strategies <https://github.com/arbabnazar/configuration/blob/c08a5eaf4e04a68d2481375502a926517097b253/playbooks/roles/tools_jenkins/templates/projectBasedMatrixSecurity.groovy.j2>`_
477
Jakub Josef7bb17ab2017-01-12 14:52:53 +0100[diff] [blame]478Views enforcing from client
479
480.. code-block:: yaml
481
482 jenkins:
483 client:
484 view:
485 my-list-view:
486 enabled: true
487 type: ListView
488 include_regex: ".\*."
489 my-view:
490 # set false to disable
491 enabled: true
492 type: MyView
493
494View specific params:
495
496- include_regex for ListView
497
Jakub Josef063a7532017-01-11 15:48:01 +0100[diff] [blame]498
Jakub Josef123be7a2016-12-12 16:02:36 +0100[diff] [blame]499Credentials enforcing from client
500
501.. code-block:: yaml
502
503 jenkins:
504 client:
505 credential:
506 cred_first:
507 username: admin
508 password: password
509 cred_second:
510 username: salt
511 password: password
512 cred_with_key:
513 username: admin
514 key: SOMESSHKEY
515
516Users enforcing from client
517
518.. code-block:: yaml
519
520 jenkins:
521 client:
522 user:
523 admin:
524 password: admin_password
525 admin: true
526 user01:
527 password: user_password
528
529Node enforcing from client using JNLP launcher
530
531.. code-block:: yaml
532
533 jenkins:
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]534 client:
535 node:
536 node01:
537 remote_home: /remote/home/path
538 desc: node-description
539 num_executors: 1
540 node_mode: Normal
541 ret_strategy: Always
542 labels:
543 - example
544 - label
545 launcher:
546 type: jnlp
Jakub Josef123be7a2016-12-12 16:02:36 +0100[diff] [blame]547
548Node enforcing from client using SSH launcher
549
550.. code-block:: yaml
551
552 jenkins:
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]553 client:
554 node:
555 node01:
556 remote_home: /remote/home/path
557 desc: node-description
558 num_executors: 1
559 node_mode: Normal
560 ret_strategy: Always
561 labels:
562 - example
563 - label
564 launcher:
565 type: ssh
566 host: test-launcher
567 port: 22
568 username: launcher-user
569 password: launcher-pass
Jakub Josef123be7a2016-12-12 16:02:36 +0100[diff] [blame]570
571Setting node labels
572
573.. code-block:: yaml
574
575 jenkins:
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]576 client:
577 label:
578 node-name:
579 lbl_text: label-offline
580 append: false # set true for label append instead of replace
Jakub Josefd8e04292016-11-28 18:02:27 +0100[diff] [blame]581
Jakub Josef60cc9d22017-01-18 12:02:14 +0100[diff] [blame]582SMTP server settings from client
583
584.. code-block:: yaml
585
586 jenkins:
587 client:
588 smtp:
589 host: "smtp.domain.com"
590 username: "user@domain.cz"
591 password: "smtp-password"
592 port: 25
593 ssl: false
594 reply_to: reply_to@address.com
595
Jakub Josefa6d4c832017-01-19 14:06:12 +0100[diff] [blame]596Slack plugin configuration
597
598.. code-block:: yaml
599
600 jenkins:
601 client:
602 slack:
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]603 team_domain: example.com
604 token: slack-token
605 room: slack-room
Jakub Josef6e0cda92017-02-14 18:01:58 +0100[diff] [blame]606 token_credential_id: cred_id
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]607 send_as: Some slack user
Jakub Josefa6d4c832017-01-19 14:06:12 +0100[diff] [blame]608
Jakub Josef6e0cda92017-02-14 18:01:58 +0100[diff] [blame]609Pipeline global libraries setup
610
611.. code-block:: yaml
612
613 jenkins:
614 client:
615 lib:
616 my-pipeline-library:
617 enabled: true
618 url: https://path-to-my-library
619 credential_id: github
620 branch: master # optional, default master
621 implicit: true # optional default true
Jakub Josefd8e04292016-11-28 18:02:27 +0100[diff] [blame]622
Ales Komarek4c0bab12016-01-22 12:10:50 +0100[diff] [blame]623Usage
624=====
Filip Pytloun8bfd2bf2015-10-06 16:28:32 +0200[diff] [blame]625
Ales Komarek4c0bab12016-01-22 12:10:50 +0100[diff] [blame]626Generate password hash:
627
628.. code-block:: bash
629
630 echo -n "salt{plainpassword}" | openssl dgst -sha256
631
632Place in the configuration ``salt:hashpassword``.
Filip Pytloun8bfd2bf2015-10-06 16:28:32 +0200[diff] [blame]633
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]634
635External links
636==============
Filip Pytloun8bfd2bf2015-10-06 16:28:32 +0200[diff] [blame]637
638* https://wiki.jenkins-ci.org/display/JENKINS/Use+Jenkins
Filip Pytlounadf72fa2017-02-02 13:02:03 +0100[diff] [blame]639
Ales Komarekffe8bb22017-02-09 11:10:16 +0100[diff] [blame]640
Filip Pytlounadf72fa2017-02-02 13:02:03 +0100[diff] [blame]641Documentation and Bugs
642======================
643
644To learn how to install and update salt-formulas, consult the documentation
645available online at:
646
647 http://salt-formulas.readthedocs.io/
648
649In the unfortunate event that bugs are discovered, they should be reported to
650the appropriate issue tracker. Use Github issue tracker for specific salt
651formula:
652
653 https://github.com/salt-formulas/salt-formula-jenkins/issues
654
655For feature requests, bug reports or blueprints affecting entire ecosystem,
656use Launchpad salt-formulas project:
657
658 https://launchpad.net/salt-formulas
659
660You can also join salt-formulas-users team and subscribe to mailing list:
661
662 https://launchpad.net/~salt-formulas-users
663
664Developers wishing to work on the salt-formulas projects should always base
665their work on master branch and submit pull request against specific formula.
666
667 https://github.com/salt-formulas/salt-formula-jenkins
668
669Any questions or feedback is always welcome so feel free to join our IRC
670channel:
671
672 #salt-formulas @ irc.freenode.net