|
|
|
@ -17,6 +17,8 @@ pipeline {
|
|
|
|
|
GITLAB_TOKEN=credentials('b6f0f1dd-6952-4cf6-95d1-9c06380283f0')
|
|
|
|
|
GITLAB_NAMESPACE=credentials('gitlab-namespace-id')
|
|
|
|
|
DOCKERHUB_TOKEN=credentials('docker-hub-ci-pat')
|
|
|
|
|
QUAYIO_API_TOKEN=credentials('quayio-repo-api-token')
|
|
|
|
|
GIT_SIGNING_KEY=credentials('484fbca6-9a4f-455e-b9e3-97ac98785f5f')
|
|
|
|
|
JSON_URL = 'https://plex.tv/api/downloads/5.json'
|
|
|
|
|
JSON_PATH = '.computer.Linux.version'
|
|
|
|
|
BUILD_VERSION_ARG = 'PLEX_RELEASE'
|
|
|
|
@ -38,9 +40,23 @@ pipeline {
|
|
|
|
|
CI_WEBPATH='/web/index.html'
|
|
|
|
|
}
|
|
|
|
|
stages {
|
|
|
|
|
stage("Set git config"){
|
|
|
|
|
steps{
|
|
|
|
|
sh '''#!/bin/bash
|
|
|
|
|
cat ${GIT_SIGNING_KEY} > /config/.ssh/id_sign
|
|
|
|
|
chmod 600 /config/.ssh/id_sign
|
|
|
|
|
ssh-keygen -y -f /config/.ssh/id_sign > /config/.ssh/id_sign.pub
|
|
|
|
|
echo "Using $(ssh-keygen -lf /config/.ssh/id_sign) to sign commits"
|
|
|
|
|
git config --global gpg.format ssh
|
|
|
|
|
git config --global user.signingkey /config/.ssh/id_sign
|
|
|
|
|
git config --global commit.gpgsign true
|
|
|
|
|
'''
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
// Setup all the basic environment variables needed for the build
|
|
|
|
|
stage("Set ENV Variables base"){
|
|
|
|
|
steps{
|
|
|
|
|
echo "Running on node: ${NODE_NAME}"
|
|
|
|
|
sh '''#! /bin/bash
|
|
|
|
|
containers=$(docker ps -aq)
|
|
|
|
|
if [[ -n "${containers}" ]]; then
|
|
|
|
@ -383,9 +399,9 @@ pipeline {
|
|
|
|
|
echo "Updating Unraid template"
|
|
|
|
|
cd ${TEMPDIR}/unraid/templates/
|
|
|
|
|
GH_TEMPLATES_DEFAULT_BRANCH=$(git remote show origin | grep "HEAD branch:" | sed 's|.*HEAD branch: ||')
|
|
|
|
|
if grep -wq "${CONTAINER_NAME}" ${TEMPDIR}/unraid/templates/unraid/ignore.list && [[ -f ${TEMPDIR}/unraid/templates/unraid/deprecated/${CONTAINER_NAME}.xml ]]; then
|
|
|
|
|
if grep -wq "^${CONTAINER_NAME}$" ${TEMPDIR}/unraid/templates/unraid/ignore.list && [[ -f ${TEMPDIR}/unraid/templates/unraid/deprecated/${CONTAINER_NAME}.xml ]]; then
|
|
|
|
|
echo "Image is on the ignore list, and already in the deprecation folder."
|
|
|
|
|
elif grep -wq "${CONTAINER_NAME}" ${TEMPDIR}/unraid/templates/unraid/ignore.list; then
|
|
|
|
|
elif grep -wq "^${CONTAINER_NAME}$" ${TEMPDIR}/unraid/templates/unraid/ignore.list; then
|
|
|
|
|
echo "Image is on the ignore list, marking Unraid template as deprecated"
|
|
|
|
|
cp ${TEMPDIR}/docker-${CONTAINER_NAME}/.jenkins-external/${CONTAINER_NAME}.xml ${TEMPDIR}/unraid/templates/unraid/
|
|
|
|
|
git add -u unraid/${CONTAINER_NAME}.xml
|
|
|
|
@ -478,10 +494,10 @@ pipeline {
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
/* #######################
|
|
|
|
|
GitLab Mirroring
|
|
|
|
|
GitLab Mirroring and Quay.io Repo Visibility
|
|
|
|
|
####################### */
|
|
|
|
|
// Ping into Gitlab to mirror this repo and have a registry endpoint
|
|
|
|
|
stage("GitLab Mirror"){
|
|
|
|
|
// Ping into Gitlab to mirror this repo and have a registry endpoint & mark this repo on Quay.io as public
|
|
|
|
|
stage("GitLab Mirror and Quay.io Visibility"){
|
|
|
|
|
when {
|
|
|
|
|
environment name: 'EXIT_STATUS', value: ''
|
|
|
|
|
}
|
|
|
|
@ -497,6 +513,8 @@ pipeline {
|
|
|
|
|
"visibility":"public"}' '''
|
|
|
|
|
sh '''curl -H "Private-Token: ${GITLAB_TOKEN}" -X PUT "https://gitlab.com/api/v4/projects/Linuxserver.io%2F${LS_REPO}" \
|
|
|
|
|
-d "mirror=true&import_url=https://github.com/linuxserver/${LS_REPO}.git" '''
|
|
|
|
|
sh '''curl -H "Content-Type: application/json" -H "Authorization: Bearer ${QUAYIO_API_TOKEN}" -X POST "https://quay.io/api/v1/repository${QUAYIMAGE/quay.io/}/changevisibility" \
|
|
|
|
|
-d '{"visibility":"public"}' ||: '''
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
/* ###############
|
|
|
|
@ -591,7 +609,7 @@ pipeline {
|
|
|
|
|
--provenance=false --sbom=false \
|
|
|
|
|
--build-arg ${BUILD_VERSION_ARG}=${EXT_RELEASE} --build-arg VERSION=\"${VERSION_TAG}\" --build-arg BUILD_DATE=${GITHUB_DATE} ."
|
|
|
|
|
sh "docker tag ${IMAGE}:arm64v8-${META_TAG} ghcr.io/linuxserver/lsiodev-buildcache:arm64v8-${COMMIT_SHA}-${BUILD_NUMBER}"
|
|
|
|
|
retry(5) {
|
|
|
|
|
retry_backoff(5,5) {
|
|
|
|
|
sh "docker push ghcr.io/linuxserver/lsiodev-buildcache:arm64v8-${COMMIT_SHA}-${BUILD_NUMBER}"
|
|
|
|
|
}
|
|
|
|
|
sh '''#! /bin/bash
|
|
|
|
@ -747,7 +765,7 @@ pipeline {
|
|
|
|
|
passwordVariable: 'QUAYPASS'
|
|
|
|
|
]
|
|
|
|
|
]) {
|
|
|
|
|
retry(5) {
|
|
|
|
|
retry_backoff(5,5) {
|
|
|
|
|
sh '''#! /bin/bash
|
|
|
|
|
set -e
|
|
|
|
|
echo $DOCKERHUB_TOKEN | docker login -u linuxserverci --password-stdin
|
|
|
|
@ -765,7 +783,7 @@ pipeline {
|
|
|
|
|
docker push ${PUSHIMAGE}:${META_TAG}
|
|
|
|
|
docker push ${PUSHIMAGE}:${EXT_RELEASE_TAG}
|
|
|
|
|
if [ -n "${SEMVER}" ]; then
|
|
|
|
|
docker push ${PUSHIMAGE}:${SEMVER}
|
|
|
|
|
docker push ${PUSHIMAGE}:${SEMVER}
|
|
|
|
|
fi
|
|
|
|
|
done
|
|
|
|
|
'''
|
|
|
|
@ -788,7 +806,7 @@ pipeline {
|
|
|
|
|
passwordVariable: 'QUAYPASS'
|
|
|
|
|
]
|
|
|
|
|
]) {
|
|
|
|
|
retry(5) {
|
|
|
|
|
retry_backoff(5,5) {
|
|
|
|
|
sh '''#! /bin/bash
|
|
|
|
|
set -e
|
|
|
|
|
echo $DOCKERHUB_TOKEN | docker login -u linuxserverci --password-stdin
|
|
|
|
@ -851,7 +869,7 @@ pipeline {
|
|
|
|
|
"object": "'${COMMIT_SHA}'",\
|
|
|
|
|
"message": "Tagging Release '${EXT_RELEASE_CLEAN}'-ls'${LS_TAG_NUMBER}' to master",\
|
|
|
|
|
"type": "commit",\
|
|
|
|
|
"tagger": {"name": "LinuxServer Jenkins","email": "jenkins@linuxserver.io","date": "'${GITHUB_DATE}'"}}' '''
|
|
|
|
|
"tagger": {"name": "LinuxServer-CI","email": "ci@linuxserver.io","date": "'${GITHUB_DATE}'"}}' '''
|
|
|
|
|
echo "Pushing New release for Tag"
|
|
|
|
|
sh '''#! /bin/bash
|
|
|
|
|
echo "Data change at JSON endpoint ${JSON_URL}" > releasebody.json
|
|
|
|
@ -983,6 +1001,13 @@ EOF
|
|
|
|
|
###################### */
|
|
|
|
|
post {
|
|
|
|
|
always {
|
|
|
|
|
sh '''#!/bin/bash
|
|
|
|
|
rm -rf /config/.ssh/id_sign
|
|
|
|
|
rm -rf /config/.ssh/id_sign.pub
|
|
|
|
|
git config --global --unset gpg.format
|
|
|
|
|
git config --global --unset user.signingkey
|
|
|
|
|
git config --global --unset commit.gpgsign
|
|
|
|
|
'''
|
|
|
|
|
script{
|
|
|
|
|
if (env.EXIT_STATUS == "ABORTED"){
|
|
|
|
|
sh 'echo "build aborted"'
|
|
|
|
@ -1012,3 +1037,20 @@ EOF
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
def retry_backoff(int max_attempts, int power_base, Closure c) {
|
|
|
|
|
int n = 0
|
|
|
|
|
while (n < max_attempts) {
|
|
|
|
|
try {
|
|
|
|
|
c()
|
|
|
|
|
return
|
|
|
|
|
} catch (err) {
|
|
|
|
|
if ((n + 1) >= max_attempts) {
|
|
|
|
|
throw err
|
|
|
|
|
}
|
|
|
|
|
sleep(power_base ** n)
|
|
|
|
|
n++
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|