mirror of
https://github.com/google/nomulus.git
synced 2025-08-03 00:12:11 +02:00
23ee5b21ec
Our Gradle build now requires three programs to build: Java, npm and gcloud. There are no existing images that contain all of them. Even if there were, they probably come from some random Joe on the Internet and we cannot trust the image to be free of malwares. Therefore we need to build our own builder. The builder images will be built by Cloud Build and upload to our container registry. We should periodically rebuild it to pull in the latest security updates both for the base Ubuntu image, and for the components that we install. I have not figured out a way to do that yet. For now we'll just trigger Cloud Build manually once in a while. ------------- Created by MOE: https://github.com/google/moe MOE_MIGRATED_REVID=234009343
62 lines
2.3 KiB
YAML
62 lines
2.3 KiB
YAML
# To run the build locally, install cloud-build-local first.
|
|
# See: https://cloud.google.com/cloud-build/docs/build-debug-locally
|
|
# Then run:
|
|
# cloud-build-local --config=cloudbuild-nomulus.yaml --dryrun=false --substitutions TAG_NAME=[TAG] .
|
|
# This will create a docker image named gcr.io/[PROJECT_ID]/proxy:[TAG] locally.
|
|
# The PROJECT_ID is the current project name that gcloud uses.
|
|
# You can add "--push true" to have the image pushed to GCR.
|
|
#
|
|
# To manually trigger a build on GCB, run:
|
|
# gcloud builds submit --config cloudbuild-nomulus.yaml --substitutions TAG_NAME=[TAG] .
|
|
#
|
|
# To trigger a build automatically, follow the instructions below and add a trigger:
|
|
# https://cloud.google.com/cloud-build/docs/running-builds/automate-builds
|
|
steps:
|
|
# Set permissions correctly. Not sure why it is necessary, but it is.
|
|
- name: 'alpine'
|
|
args: ['chown', '-R', 'root:root', '.']
|
|
- name: 'alpine'
|
|
args: ['chmod', '-R', '777', '.']
|
|
# Clone the private repo and merge its contents.
|
|
- name: 'gcr.io/cloud-builders/gcloud'
|
|
args: ['source', 'repos', 'clone', 'nomulus-internal']
|
|
- name: 'alpine'
|
|
args: ['sh', '-c', 'cp -r nomulus-internal/* .']
|
|
# Build the deployment files.
|
|
- name: 'gcr.io/${PROJECT_ID}/builder'
|
|
args:
|
|
- './gradlew'
|
|
- 'stage'
|
|
- '-x'
|
|
- 'autoLintGradle'
|
|
- '-PrepositoryUrl=gcs://domain-registry-maven-repository'
|
|
- '-Penvironment=${_ENVIRONMENT}'
|
|
dir: 'gradle'
|
|
# Tar the deployment files as we cannot upload directories to GCS.
|
|
- name: 'alpine'
|
|
args: ['tar', 'cvf', '../../../default.tar', '.']
|
|
dir: 'gradle/services/default/build/staged-app'
|
|
- name: 'alpine'
|
|
args: ['tar', 'cvf', '../../../pubapi.tar', '.']
|
|
dir: 'gradle/services/pubapi/build/staged-app'
|
|
- name: 'alpine'
|
|
args: ['tar', 'cvf', '../../../backend.tar', '.']
|
|
dir: 'gradle/services/backend/build/staged-app'
|
|
- name: 'alpine'
|
|
args: ['tar', 'cvf', '../../../tools.tar', '.']
|
|
dir: 'gradle/services/tools/build/staged-app'
|
|
# Tar files to upload to GCS.
|
|
artifacts:
|
|
objects:
|
|
location: 'gs://${PROJECT_ID}-deploy/${TAG_NAME}/${_ENVIRONMENT}'
|
|
paths:
|
|
- 'gradle/services/default.tar'
|
|
- 'gradle/services/pubapi.tar'
|
|
- 'gradle/services/backend.tar'
|
|
- 'gradle/services/tools.tar'
|
|
timeout: 3600s
|
|
# Default values
|
|
substitutions:
|
|
_ENVIRONMENT: alpha
|
|
options:
|
|
machineType: 'N1_HIGHCPU_8'
|