Gineesh 
- Pipeline Introduction
- PROJECT TYPES
- JENKINS PIPELINE
- PIPELINE BENEFITS (1/2)
- PIPELINE-AS-CODE
- Basic Jenkins Pipeline Sections
- Jenkins Parallel Pipeline
- SCRIPTED PIPELINE
- Multi-environment Pipeline
- Post Section in Jenkins Pipeline
- Environment Directive
- Notifications
- WHEN DIRECTIVE
- GIT ENVIRONMENT VARIABLES
- CREDENTIALS
- OPTIONS AND CONFIGURATIONS
- PARAMETERS
- BUILD TOOLS TO CREATE CODE FOR STEPS
- SHARED LIBRARIES
- BEST PRACTICES
- Create Multibranch Pipeline with Git
- Jenkins add SSH authentication to remote host
- Learn Jenkins
- Reference
Installing Jenkins
- important - plugin dir and jenkins.xml
- once login, jenkins will show the admin password details
Create a Pipeline
- new pipeline
- name and description
Pipeline Introduction
PROJECT TYPES
The Continuous Delivery build flow is defined as a project, of one of the following types:
- Freestyle Projects
- Pipeline Projects
- Declarative Pipeline
- Scripted Pipeline
JENKINS PIPELINE
https://jenkins.io/doc/book/pipeline/
PIPELINE BENEFITS (1/2)
The pipeline functionality is:
- Durable: The Jenkins master can restart and the Pipeline continues to run
- Pausable: can stop and wait for human input or approval
- Versatile: supports complex real-world CD requirements (fork, join, loop, parallelize)
- Extensible: supports custom extensions to its “DSL” (Domain-specific Language)
- Reduces number of jobs
- Easier maintenance
- Decentralization of job configuration
- Easier specification through code
PIPELINE-AS-CODE
- A Pipeline is defined in a Jenkinsfile - Uses a DSL based on Apache Groovy syntax
- Deployment flow is expressed as code - Can express complex flows, conditionals and such
- The Jenkinsfile is stored on an SCM - Works with SCM conventions such as Branches and Git Pull Requests
Jenkins Componenets
- Master: Computer, VM or container where Jenkins is installed and run. Serves requests and handles build tasks
- Agent: (formerly “slave”) Computer, VM or container that connects to a Jenkins Master. Executes tasks when - directed by the Master. Has a number and scope of operations to perform.
- Node: is sometimes used to refer to the computer, VM or container used for the Master or Agent; be careful because “Node” has another meaning for Pipeline
- Executor: Computational resource for running builds. Performs Operations, Can run on any Master or Agent, although running builds on masters, can degrade performance and opens up serious security vulnerabilities, Can be parallelized on a specific Master or Agent
Basic Jenkins Pipeline Sections
pipeline {
agent { label 'linux' }
stages {
stage('MyBuild') {
steps {
sh './jenkins/build.sh'
}
}
stage('MySmalltest') {
steps {
sh './jenkins/smalltest.sh'
}
}
}
}
Jenkins Parallel Pipeline
pipeline {
agent any
stages {
stage('Fluffy Build') {
steps {
sh './jenkins/build.sh'
archiveArtifacts 'target/*.jar'
}
}
stage('Fluffy Test') {
parallel {
stage('Backend') {
steps {
sh './jenkins/test-backend.sh'
junit 'target/surefire-reports/**/TEST*.xml'
}
}
stage('Frontend') {
steps {
sh './jenkins/test-frontend.sh'
junit 'target/test-results/**/TEST*.xml'
}
}
stage('Performance') {
steps {
sh './jenkins/test-performance.sh'
}
}
stage('Static') {
steps {
sh './jenkins/test-static.sh'
}
}
}
}
stage('Fluffy Deploy') {
steps {
sh './jenkins/deploy.sh staging'
}
}
}
}
SCRIPTED PIPELINE
stage('Build') {
parallel linux: {
node('linux') {
checkout scm
try {
sh 'make'
}
finally {
junit '**/target/*.xml'
}
}
},
windows: {
node('windows') {
/* .. snip .. */
}
}
}
Multi-environment Pipeline
pipeline {
agent none
stages {
stage('Fluffy Build') {
parallel {
stage('Build Java 8') {
agent {
node {
label 'java8'
}
}
steps {
sh './jenkins/build.sh'
stash(name: 'Java 8', includes: 'target/**')
}
}
stage('Build Java 7') {
agent {
node {
label 'java7'
}
}
steps {
sh './jenkins/build.sh'
archiveArtifacts 'target/*.jar'
stash(name: 'Java 7', includes: 'target/**')
}
}
}
}
stage('Fluffy Test') {
parallel {
stage('Backend Java 8') {
agent {
node {
label 'java8'
}
}
steps {
unstash 'Java 8'
sh './jenkins/test-backend.sh'
junit 'target/surefire-reports/**/TEST*.xml'
}
}
stage('Frontend') {
agent {
node {
label 'java8'
}
}
steps {
unstash 'Java 8'
sh './jenkins/test-frontend.sh'
junit 'target/test-results/**/TEST*.xml'
}
}
stage('Performance Java 8') {
agent {
node {
label 'java8'
}
}
steps {
unstash 'Java 8'
sh './jenkins/test-performance.sh'
}
}
stage('Static Java 8') {
agent {
node {
label 'java8'
}
}
steps {
unstash 'Java 8'
sh './jenkins/test-static.sh'
}
}
stage('Backend Java 7') {
agent {
node {
label 'java7'
}
}
steps {
unstash 'Java 7'
sh './jenkins/test-backend.sh'
junit 'target/surefire-reports/**/TEST*.xml'
}
}
stage('Frontend Java 7') {
agent {
node {
label 'java7'
}
}
steps {
unstash 'Java 7'
sh './jenkins/test-frontend.sh'
junit 'target/test-results/**/TEST*.xml'
}
}
stage('Performance Java 7') {
agent {
node {
label 'java7'
}
}
steps {
unstash 'Java 7'
sh './jenkins/test-performance.sh'
}
}
stage('Static Java 7') {
agent {
node {
label 'java7'
}
}
steps {
unstash 'Java 7'
sh './jenkins/test-static.sh'
}
}
}
}
stage('Confirm Deploy') {
steps {
input(message: 'Okay to Deploy to Staging?', ok: 'Let\'s Do it!')
}
}
stage('Fluffy Deploy') {
agent {
node {
label 'java7'
}
}
steps {
unstash 'Java 7'
sh './jenkins/deploy.sh staging'
}
}
}
}
Post Section in Jenkins Pipeline
pipeline {
stages {
stage('Buzz Build') {
parallel {
stage('Build Java 7') {
steps {
sh """
echo I am a $BUZZ_NAME!
./jenkins/build.sh
"""
}
post {
always {
archiveArtifacts(artifacts: 'target/*.jar', fingerprint: true)
}
success {
stash(name: 'Buzz Java 7', includes: 'target/**')
}
}
}
...
}
Environment Directive
- Examples include BUILD_NUMBER, JENKINS_URL and EXECUTOR_NUMBER
pipeline {
agent any
environment {
CC = 'clang'
}
stages {
stage('Example') {
environment {
AN_ACCESS_KEY = "SECRET" //credentials('my-predefined-secret-text')
}
steps {
sh 'printenv'
Notifications
stages {
stage ('Start') {
steps {
// send build started notifications
slackSend (color: '#FFFF00', message: "STARTED: Job '${env.JOB_NAME} [${env.BUILD_NUMBER}]' (${env.BUILD_URL})")
}
}
}
// send to email
emailext (
subject: "STARTED: Job '${env.JOB_NAME} [${env.BUILD_NUMBER}]'",
body: """<p>STARTED: Job '${env.JOB_NAME} [${env.BUILD_NUMBER}]':</p>
<p>Check console output at "<a href='${env.BUILD_URL}'>${env.JOB_NAME} [${env.BUILD_NUMBER}]</a>"</p>""",
recipientProviders: [[$class: 'DevelopersRecipientProvider']]
)
Conditional Notificaton
// on success
post {
success {
slackSend (color: '#00FF00', message: "SUCCESSFUL: Job '${env.JOB_NAME} [${env.BUILD_NUMBER}]' (${env.BUILD_URL})")
emailext (
subject: "SUCCESSFUL: Job '${env.JOB_NAME} [${env.BUILD_NUMBER}]'",
body: """<p>SUCCESSFUL: Job '${env.JOB_NAME} [${env.BUILD_NUMBER}]':</p>
<p>Check console output at "<a href='${env.BUILD_URL}'>${env.JOB_NAME} [${env.BUILD_NUMBER}]</a>"</p>""",
recipientProviders: [[$class: 'DevelopersRecipientProvider']]
)
}
}
// on fail
failure {
slackSend (color: '#FF0000', message: "FAILED: Job '${env.JOB_NAME} [${env.BUILD_NUMBER}]' (${env.BUILD_URL})")
emailext (
subject: "FAILED: Job '${env.JOB_NAME} [${env.BUILD_NUMBER}]'",
body: """<p>FAILED: Job '${env.JOB_NAME} [${env.BUILD_NUMBER}]':</p>
<p>Check console output at "<a href='${env.BUILD_URL}'>${env.JOB_NAME} [${env.BUILD_NUMBER}]</a>"</p>""",
recipientProviders: [[$class: 'DevelopersRecipientProvider']]
)
}
WHEN DIRECTIVE
BUILT-IN CONDITIONS
// branch — Execute the stage when the branch being built matches the branch pattern given:
when {
branch 'master'
}
//environment — Execute the stage when the specified environment variable is set to the given value:
when {
environment name: 'DEPLOY_TO', value: 'production'
}
//expression — Execute the stage when the specified expression evaluates to true:
when {
expression {
return params.DEBUG_BUILD
}
}
BUILT-IN NESTED CONDITIONS
// allOf — Execute the stage when all nested conditions are true:
when {
allOf {
branch 'master'
environment name: 'DEPLOY_TO', value: 'production' // AND
}
}
//anyOf — Execute the stage when at least one of the nested conditions is true
when {
anyOf {
branch 'master'
branch 'staging' // OR
}
}
// not — Execute the stage when the nested condition is false.
when { not { branch 'master' } }
...
stage('Confirm Deploy to Staging') {
when {
branch 'master'
}
steps {
input(message: 'Deploy to Stage', ok: 'Yes, let\'s do it!')
}
}
stage('Deploy to Staging') {
agent {
node {
label 'java8'
}
}
when {
branch 'master'
}
steps {
unstash 'Buzz Java 8'
sh './jenkins/deploy.sh staging'
}
}
...
GIT ENVIRONMENT VARIABLES
stage('Generate Reports') {
steps {
sh './jenkins/generate-reports.sh'
sh 'tar -czv target/reports.tar.gz target/reports'
archiveArtifacts 'target/*.tar.gz'
echo "Finished run for commit ${ env.GIT_COMMIT.substring(0,6) }"
}
}
CREDENTIALS
...
stage('Deploy Reports')
steps {
...
withCredentials(bindings: [string(credentialsId: 'my-elastic-key', variable: 'ELASTIC_ACCESS_KEY')]) {
// Environment Variable available in the remote shell
sh "env | grep ELASTIC_ACCESS_KEY"
sh "echo ${ELASTIC_ACCESS_KEY} > secret-file.txt"
}
...
}
OPTIONS AND CONFIGURATIONS
SET TIMEOUT
//timeout for the entire Pipeline (Note the double quotes around DAYS
options {
timeout(time: 3, unit: "DAYS")
}
//timeout for an "input" stage
steps {
timeout(time:3, unit:"DAYS") {
input(message: "Deploy to Stage", ok: "Yes, let's do it!")
}
}
PARAMETERS
pipeline {
agent none
parameters {
string(name: 'DEPLOY_ENV', defaultValue: 'staging', description: '')
}
stages {
stage ('Deploy') {
echo "Deploying to ${DEPLOY_ENV}"
}
}
}
BUILD TOOLS TO CREATE CODE FOR STEPS
- Make
- Apache Ant
- Apache Maven
- Gradle
- NPM
Pipelines using when, post etc
pipeline {
agent none
stages {
stage('Fluffy Build') {
parallel {
stage('Build Java 8') {
agent {
node {
label 'java8'
}
}
steps {
sh './jenkins/build.sh'
}
post {
success {
stash(name: 'Java 8', includes: 'target/**')
}
}
}
stage('Build Java 7') {
agent {
node {
label 'java7'
}
}
steps {
sh './jenkins/build.sh'
}
post {
success {
archiveArtifacts 'target/*.jar'
stash(name: 'Java 7', includes: 'target/**')
}
}
}
}
}
stage('Fluffy Test') {
parallel {
stage('Backend Java 8') {
agent {
node {
label 'java8'
}
}
steps {
unstash 'Java 8'
sh './jenkins/test-backend.sh'
}
post {
always {
junit 'target/surefire-reports/**/TEST*.xml'
}
}
}
stage('Frontend') {
agent {
node {
label 'java8'
}
}
steps {
unstash 'Java 8'
sh './jenkins/test-frontend.sh'
}
post {
always {
junit 'target/test-results/**/TEST*.xml'
}
}
}
stage('Performance Java 8') {
agent {
node {
label 'java8'
}
}
steps {
unstash 'Java 8'
sh './jenkins/test-performance.sh'
}
}
stage('Static Java 8') {
agent {
node {
label 'java8'
}
}
steps {
unstash 'Java 8'
sh './jenkins/test-static.sh'
}
}
stage('Backend Java 7') {
agent {
node {
label 'java7'
}
}
steps {
unstash 'Java 7'
sh './jenkins/test-backend.sh'
}
post {
always {
junit 'target/surefire-reports/**/TEST*.xml'
}
}
}
stage('Frontend Java 7') {
agent {
node {
label 'java7'
}
}
steps {
unstash 'Java 7'
sh './jenkins/test-frontend.sh'
}
post {
always {
junit 'target/test-results/**/TEST*.xml'
}
}
}
stage('Performance Java 7') {
agent {
node {
label 'java7'
}
}
steps {
unstash 'Java 7'
sh './jenkins/test-performance.sh'
}
}
stage('Static Java 7') {
agent {
node {
label 'java7'
}
}
steps {
unstash 'Java 7'
sh './jenkins/test-static.sh'
}
}
}
}
stage('Confirm Deploy') {
when {
branch 'master'
}
steps {
input(message: 'Okay to Deploy to Staging?', ok: 'Let\'s Do it!')
}
}
stage('Fluffy Deploy') {
when {
branch 'master'
}
agent {
node {
label 'java7'
}
}
steps {
unstash 'Java 7'
sh "./jenkins/deploy.sh ${params.DEPLOY_TO}"
}
}
}
parameters {
string(name: 'DEPLOY_TO', defaultValue: 'dev', description: '')
}
}
SHARED LIBRARIES
BEST PRACTICES
IMPLEMENT A TRIGGER
pipeline {
agent any
triggers {
cron('H */4 * * 1-5')
}
stages {
stage('Example') {
steps {
echo 'Hello World'
}
}
}
}
Create Multibranch Pipeline with Git
Jenkins add SSH authentication to remote host
Create an ssh key
### DO NOT use ssh-keygen with default values
$ ssh-keygen -t rsa -m PEM
Using Stored Global Credential
Visit: Jenkins > Credentials > System > Global credentials (unrestricted) > Add Credentials
- Kind: “SSH Username with private key”
- Scope: “Global”
- ID: [CREAT A UNIQUE ID FOR THIS KEY]
- Description: [optionally, enter a decription]
- Username: [USERNAME JENKINS WILL USE TO CONNECT TO REMOTE SERVER]
- Private Key: [select “Enter directly”]
- Key: [paste the contents of the private key (id_rsa per the above - article)]
- Passphrase: [enter the passphrase for the key, or leave it blank if the key is not encrypted]
Install Jenkins SSH plugin
- Install Jenkins SSH plugin
Add SSH Site
Goto Configuration -> SSH Remote hosts -> Addd IP/Hostname, SSH Credential from drop down.
Learn Jenkins
- Jenkins Pipeline - Fundamentals - FREE Course from CloudBees University
Reference
- Deploying Jenkins X in Linode Kubernetes Engine
- Installing Jenkins X using JX Boot (The Non CJXD edition)
- A collection of tutorials with JX
- salaboy/products-service
- salaboy/online-store
- salaboy/customers-service
- cd.foundation
more…
-
[Complete Jenkins Pipeline Tutorial Jenkinsfile explained](https://www.youtube.com/watch?v=7KCS70sCoK0) - Jenkins-Nexus Demo
- Publishing Artifacts to Sonatype Nexus using Jenkins Pipelines