pipedawg 0.1.1 → 0.2.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 9167728fbd620f0098099ff53a90fb1d85336a8a771b24cc3059b8dc03144285
-  data.tar.gz: 6f1d59f9fb1ca2de1a49d04520f6a9cd7f171f569c72a372899f9f28749ead34
+  metadata.gz: b54013025d872389b0b01408fb78b39c63fcfc9b0d7b06d87559ae3c88e0f538
+  data.tar.gz: 1d0242a83a9dc068accbe107369950d8bdc4d040e0706bd00cd9b1f40e6112de
 SHA512:
-  metadata.gz: f53e89a60305aaa04c14443c404e3bcfa0fa24274503751c927ff6ace5f9cabbeb87f3bc2e87ca81d04a9c14aa280ca2942b381eeecbbae23db4bfd4c4c2165e
-  data.tar.gz: a3f7acd6b467e21fee88fa2e2b22ef55e60030311355fb3074ae0f4eac0a52674c0027c0b4ebb0b21dfb1317ee5d1e3a753ece8f96c098183699c53d04a703ae
+  metadata.gz: b5fb6c7365461b7d70ffdcc96cf18c7fafb686433683f236748735be10916e9f21e7635e3b1b7744d9d4010c2c57497423a0bca645f519f9b2bd968dbdaf6394
+  data.tar.gz: 338a5bb1a1fa767fc5610ee92a534eb37e41289e39c18106c8ae3b549011e09f198fc936cf2dded73fe96c50c4dbdaf84f4d96e02b5020aaab5f84bba3b87856

data/README.md

@@ -42,25 +42,13 @@ gem_job = Pipedawg::Job.new(
   script: ['bundle install', 'gem build *.gemspec']
 )
 
-docker_job = Pipedawg::Job.new(
-  'build:docker',
-  image: 'docker',
-  needs: ['build:gem'],
-  retry: 2,
-  script: [
-    'docker login -u gitlab-ci-token -p $CI_BUILD_TOKEN $CI_REGISTRY',
-    'docker pull $CI_REGISTRY_IMAGE || true',
-    'docker build --pull --cache-from $CI_REGISTRY_IMAGE -t $CI_REGISTRY_IMAGE .',
-    'docker push $CI_REGISTRY_IMAGE'
-  ],
-  services: ['docker:dind']
+kaniko_job = Pipedawg::KanikoJob.new(
+  'build:kaniko',
+  {needs: ['build:gem'], retry: 2},
+  {context:'${CI_PROJECT_DIR}/docker',external_files: {'*.gem':'gems'}}
 )
 
-pipeline = Pipedawg::Pipeline.new 'build:image', jobs: [gem_job, docker_job]
-
-# Automatically calculates stages of jobs based on 'needs'
-pipeline.update_stages
-
+pipeline = Pipedawg::Pipeline.new 'build:image', jobs: [gem_job, kaniko_job]
 puts pipeline.to_yaml
 ```
 
@@ -84,23 +72,21 @@ build:gem:
   - gem build *.gemspec
   stage: '1'
   tags: []
-build:docker:
+build:kaniko:
   artifacts: {}
   cache: {}
-  image: docker
   needs:
   - build:gem
   retry: 2
   rules: []
   script:
-  - docker login -u gitlab-ci-token -p $CI_BUILD_TOKEN $CI_REGISTRY
-  - docker pull $CI_REGISTRY_IMAGE || true
-  - docker build --pull --cache-from $CI_REGISTRY_IMAGE -t $CI_REGISTRY_IMAGE .
-  - docker push $CI_REGISTRY_IMAGE
+  - echo "{\"$CI_REGISTRY\":{\"username\":\"$CI_REGISTRY_USER\",\"password\":\"$CI_REGISTRY_PASSWORD\"}}"
+    > "/kaniko/.docker/config.json"
+  - cp "*.gem" "${CI_PROJECT_DIR}/docker/gems"
+  - '"/kaniko/executor" --context "${CI_PROJECT_DIR}/docker" --dockerfile "Dockerfile"
+    --no-push'
   stage: '2'
   tags: []
-  services:
-  - docker:dind
 ```
 
 ## Development

data/lib/pipedawg/kaniko_job.rb

@@ -0,0 +1,90 @@
+# frozen_string_literal: true
+
+module Pipedawg
+  # kaniko_job class
+  class KanikoJob < Job
+    attr_accessor :kaniko_opts
+
+    def initialize(name = 'build', opts = {}, kaniko_opts = {}) # rubocop:disable Metrics/MethodLength
+      @kaniko_opts = {
+        build_args: {},
+        config: {
+          '$CI_REGISTRY': {
+            username: '$CI_REGISTRY_USER',
+            password: '$CI_REGISTRY_PASSWORD'
+          }
+        },
+        config_file: '/kaniko/.docker/config.json',
+        context: '${CI_PROJECT_DIR}',
+        destinations: [],
+        dockerfile: 'Dockerfile',
+        executor: '/kaniko/executor',
+        external_files: {},
+        flags: [],
+        ignore_paths: [],
+        insecure_registries: [],
+        kaniko_image: {
+          entrypoint: [''],
+          name: 'gcr.io/kaniko-project/executor:debug'
+        },
+        options: {},
+        registry_certificates: {},
+        registry_mirrors: [],
+        skip_tls_verify_registry: [],
+        trusted_ca_cert_source_files: [],
+        trusted_ca_cert_target_file: '/kaniko/ssl/certs/ca-certificates.crt'
+      }.merge(kaniko_opts)
+      super name, opts
+      update
+    end
+
+    def update # rubocop:disable Metrics/AbcSize, Metrics/CyclomaticComplexity, Metrics/MethodLength, Metrics/PerceivedComplexity
+      require 'json'
+      opts[:image] = kaniko_opts[:image]
+      script = ["echo #{kaniko_opts[:config].to_json.inspect} > \"#{kaniko_opts[:config_file]}\""]
+      cert_copies = Array(kaniko_opts[:trusted_ca_cert_source_files]).map do |cert|
+        "cat \"#{cert}\" >> \"#{kaniko_opts[:trusted_ca_cert_target_file]}\""
+      end
+      script.concat cert_copies
+      file_copies = kaniko_opts[:external_files].map do |source, dest|
+        "cp \"#{source}\" \"#{kaniko_opts[:context]}/#{dest}\""
+      end
+      script.concat file_copies
+      flags = kaniko_opts[:flags].clone
+      flags << 'no-push' if kaniko_opts[:destinations].empty?
+      flags_cli = flags.uniq.map { |f| "--#{f}" }.join(' ')
+      options_cli =  kaniko_opts[:options].map { |k, v| "--#{k}=\"#{v}\"" }.join(' ')
+      build_args_cli = kaniko_opts[:build_args].map { |k, v| "--build-arg #{k}=\"#{v}\"" }.join(' ')
+      ignore_paths_cli = Array(kaniko_opts[:ignore_paths]).map { |p| "--ignore-path #{p}" }.join(' ')
+      insecure_registries_cli = Array(kaniko_opts[:insecure_registries]).map do |r|
+        "--insecure-registry #{r}"
+      end.join(' ')
+      registry_certificates_cli = kaniko_opts[:registry_certificates].map do |k, v|
+        "----registry-certificate #{k}=\"#{v}\""
+      end.join(' ')
+      registry_mirrors_cli = Array(kaniko_opts[:registry_mirrors]).map { |r| "--registry-mirror #{r}" }.join(' ')
+      skip_tls_verify_registrys_cli = Array(kaniko_opts[:skip_tls_verify_registry]).map do |r|
+        "--skip-tls-verify-registry #{r}"
+      end.join(' ')
+      destinations_cli = kaniko_opts[:destinations].map { |d| "--destination #{d}" }.join(' ')
+      kaniko_cmds = [
+        "\"#{kaniko_opts[:executor]}\"",
+        '--context',
+        "\"#{kaniko_opts[:context]}\"",
+        '--dockerfile',
+        "\"#{kaniko_opts[:dockerfile]}\"",
+        flags_cli,
+        options_cli,
+        build_args_cli,
+        ignore_paths_cli,
+        insecure_registries_cli,
+        registry_certificates_cli,
+        registry_mirrors_cli,
+        destinations_cli,
+        skip_tls_verify_registrys_cli
+      ].reject(&:empty?)
+      script << kaniko_cmds.join(' ')
+      opts[:script] = script
+    end
+  end
+end

data/lib/pipedawg/pipeline.rb

@@ -12,6 +12,7 @@ module Pipedawg
         stages: ['build'],
         workflow: {}
       }.merge(opts)
+      update
     end
 
     def to_yaml
@@ -28,7 +29,7 @@ module Pipedawg
       File.write(file, to_yaml)
     end
 
-    def update_stages
+    def update
       stages = []
       opts[:jobs].each do |job|
         stage = stage_from_needs(opts[:jobs], job.name)

data/lib/pipedawg/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Pipedawg
-  VERSION = '0.1.1'
+  VERSION = '0.2.0'
 end

data/lib/pipedawg.rb

@@ -1,6 +1,7 @@
 # frozen_string_literal: true
 
 require 'pipedawg/job'
+require 'pipedawg/kaniko_job'
 require 'pipedawg/pipeline'
 require 'pipedawg/version'
 

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: pipedawg
 version: !ruby/object:Gem::Version
-  version: 0.1.1
+  version: 0.2.0
 platform: ruby
 authors:
 - harbottle
@@ -21,6 +21,7 @@ files:
 - README.md
 - lib/pipedawg.rb
 - lib/pipedawg/job.rb
+- lib/pipedawg/kaniko_job.rb
 - lib/pipedawg/pipeline.rb
 - lib/pipedawg/version.rb
 homepage: https://github.com/liger1978/pipedawg