Compare commits
24 Commits
7d32a83af2
...
main
| Author | SHA1 | Date | |
|---|---|---|---|
| 31333ea168 | |||
| e26c79a9d7 | |||
| 200789e832 | |||
| ae1440fce3 | |||
| b58b5777fd | |||
| 3e84af9bb5 | |||
| 83dfdc2cc3 | |||
| bbdb27b116 | |||
| 31f2439033 | |||
| 1da1328870 | |||
| 15a2ad0b89 | |||
| 3b5ca4f5b0 | |||
| d179d2d79d | |||
| 1526648d9a | |||
| b6813057a4 | |||
| d1f723c135 | |||
| 7882b380b5 | |||
| 423281d071 | |||
| 75ecf71370 | |||
| 44fbc613a3 | |||
| 5fa7d49bcd | |||
| a922531f50 | |||
| f356ecdcc0 | |||
| 9acebb67fe |
72
.drone.yml
72
.drone.yml
@@ -1,9 +1,7 @@
|
||||
---
|
||||
kind: pipeline
|
||||
type: docker
|
||||
name: cicd-pipeline
|
||||
|
||||
clone:
|
||||
depth: 1
|
||||
name: build-and-package
|
||||
|
||||
steps:
|
||||
- name: build-test-publish
|
||||
@@ -14,48 +12,45 @@ steps:
|
||||
- dotnet test --configuration Release --no-build
|
||||
- dotnet publish --configuration Release --no-build
|
||||
|
||||
- name: docker-build
|
||||
- name: docker-build-and-push
|
||||
image: plugins/docker
|
||||
settings:
|
||||
registry: nexus.khongisa.co.za
|
||||
repo: nexus.khongisa.co.za/webapitest
|
||||
tags: [ "${DRONE_BUILD_NUMBER}", "latest" ]
|
||||
username:
|
||||
from_secret: docker_username
|
||||
password:
|
||||
from_secret: docker_password
|
||||
dry_run: true
|
||||
|
||||
- name: docker-push
|
||||
image: plugins/docker
|
||||
settings:
|
||||
registry: nexus.khongisa.co.za
|
||||
repo: nexus.khongisa.co.za/webapitest
|
||||
tags: [ "${DRONE_BUILD_NUMBER}", "latest" ]
|
||||
username:
|
||||
from_secret: docker_username
|
||||
password:
|
||||
from_secret: docker_password
|
||||
username: { from_secret: docker_username }
|
||||
password: { from_secret: docker_password }
|
||||
|
||||
- name: vulnerability-scan
|
||||
image: aquasec/trivy:0.50.1
|
||||
environment:
|
||||
TRIVY_USERNAME:
|
||||
from_secret: docker_username
|
||||
TRIVY_PASSWORD:
|
||||
from_secret: docker_password
|
||||
TRIVY_USERNAME: { from_secret: docker_username }
|
||||
TRIVY_PASSWORD: { from_secret: docker_password }
|
||||
commands:
|
||||
- trivy image --exit-code 1 --severity CRITICAL nexus.khongisa.co.za/webapitest:${DRONE_BUILD_NUMBER}
|
||||
- trivy image --image-src remote --exit-code 1 --severity CRITICAL nexus.khongisa.co.za/webapitest:${DRONE_BUILD_NUMBER}
|
||||
|
||||
- name: deploy-uat
|
||||
trigger:
|
||||
branch:
|
||||
- main
|
||||
event:
|
||||
exclude:
|
||||
- promote
|
||||
|
||||
---
|
||||
kind: pipeline
|
||||
type: docker
|
||||
name: deploy-to-uat
|
||||
|
||||
depends_on:
|
||||
- build-and-package
|
||||
|
||||
steps:
|
||||
- name: uat-deployment
|
||||
image: appleboy/drone-ssh
|
||||
settings:
|
||||
host:
|
||||
from_secret: ssh_host
|
||||
username:
|
||||
from_secret: ssh_user
|
||||
password:
|
||||
from_secret: ssh_password
|
||||
host: { from_secret: ssh_host }
|
||||
username: { from_secret: ssh_user }
|
||||
password: { from_secret: ssh_password }
|
||||
script:
|
||||
- echo $DOCKER_PASSWORD | docker login nexus.khongisa.co.za -u $DOCKER_USERNAME --password-stdin
|
||||
- docker pull nexus.khongisa.co.za/webapitest:latest
|
||||
@@ -63,12 +58,11 @@ steps:
|
||||
- docker rm webapi 2>/dev/null || true
|
||||
- docker run -d --name webapi --restart unless-stopped -e ASPNETCORE_ENVIRONMENT=Development -p 4000:8081 nexus.khongisa.co.za/webapitest:latest
|
||||
environment:
|
||||
DOCKER_USERNAME:
|
||||
from_secret: docker_username
|
||||
DOCKER_PASSWORD:
|
||||
from_secret: docker_password
|
||||
DOCKER_USERNAME: { from_secret: docker_username }
|
||||
DOCKER_PASSWORD: { from_secret: docker_password }
|
||||
|
||||
trigger:
|
||||
event:
|
||||
exclude:
|
||||
- promote
|
||||
- promote
|
||||
target:
|
||||
- staging
|
||||
Reference in New Issue
Block a user