mirror of
https://github.com/google/nomulus.git
synced 2025-04-29 11:37:51 +02:00
1688d27b4e
The gcloud command does some weird stuff with sorting when custom format is used. Here we instead rely on linux sort and head command to sort the versions list. <!-- Reviewable:start --> --- This change is [<img src="https://reviewable.io/review_button.svg" height="34" align="absmiddle" alt="Reviewable"/>](https://reviewable.io/reviews/google/nomulus/1511) <!-- Reviewable:end -->
65 lines
2.3 KiB
YAML
65 lines
2.3 KiB
YAML
# To run the build locally, install cloud-build-local first.
|
|
# Then run:
|
|
# cloud-build-local --config=cloudbuild-delete.yaml --dryrun=false \
|
|
# --substitutions=TAG_NAME=[TAG],_ENV=[ENV] ..
|
|
#
|
|
# This will delete all stopped GAE versions (save 3) as there is a limit on how
|
|
# many versions can exist in a project.
|
|
#
|
|
# To manually trigger a build on GCB, run:
|
|
# gcloud builds submit --config=cloudbuild-delete.yaml \
|
|
# --substitutions=TAG_NAME=[TAG],_ENV=[ENV] ..
|
|
#
|
|
# To trigger a build automatically, follow the instructions below and add a trigger:
|
|
# https://cloud.google.com/cloud-build/docs/running-builds/automate-builds
|
|
#
|
|
# Note: to work around issue in Spinnaker's 'Deployment Manifest' stage,
|
|
# variable references must avoid the ${var} format. Valid formats include
|
|
# $var or ${"${var}"}. This file uses the former. Since TAG_NAME and _ENV are
|
|
# expanded in the copies sent to Spinnaker, we preserve the brackets around
|
|
# them for safe pattern matching during release.
|
|
# See https://github.com/spinnaker/spinnaker/issues/3028 for more information.
|
|
#
|
|
# GAE has a limit of ~250 versions per-project, including unused versions. We
|
|
# therefore need to periodically delete old versions. This GCB job finds all
|
|
# stopped versions and delete all but the last 3 (in case we need to rollback).
|
|
steps:
|
|
# Pull the credential for nomulus tool.
|
|
- name: 'gcr.io/$PROJECT_ID/builder:latest'
|
|
entrypoint: /bin/bash
|
|
args:
|
|
- -c
|
|
- |
|
|
set -e
|
|
gcloud secrets versions access latest \
|
|
--secret nomulus-tool-cloudbuild-credential > tool-credential.json
|
|
# Delete unused GAE versions.
|
|
- name: 'gcr.io/$PROJECT_ID/builder:latest'
|
|
entrypoint: /bin/bash
|
|
args:
|
|
- -c
|
|
- |
|
|
if [ ${_ENV} == production ]
|
|
then
|
|
project_id="domain-registry"
|
|
else
|
|
project_id="domain-registry-${_ENV}"
|
|
fi
|
|
|
|
gcloud auth activate-service-account --key-file=tool-credential.json
|
|
|
|
for service in default pubapi backend tools
|
|
do
|
|
for version in $(gcloud app versions list \
|
|
--filter="SERVICE:$service AND SERVING_STATUS:STOPPED" \
|
|
--format="value(VERSION.ID,LAST_DEPLOYED)" \
|
|
--project=$project_id | sort -k 2 | head -n -3)
|
|
do
|
|
gcloud app versions delete $version --service=$service \
|
|
--project=$project_id --quiet;
|
|
done
|
|
done
|
|
|
|
timeout: 3600s
|
|
options:
|
|
machineType: 'N1_HIGHCPU_8'
|