Newer
Older
- dev_secrets_in_repo
- dev_linting_code
- dev_linting_docker
CI_REGISTRY_USER: $CI_REGISTRY_USER
CI_REGISTRY: $CI_REGISTRY
#dev_pulling_repo:
# stage: dev_pulling_repo
# script:
# - git clone https://oauth2:${CI_JOB_TOKEN}@labs.etsi.org/rep/ocf/capif.git
# <<: *dev_common
- |
pip install trufflehog
trufflehog capif --exclude_paths capif/cicd/exclusions --max_depth=5
# needs: ["dev_pulling_repo"]
# define the process to do linting code: Sonarque, ruff?
- |
echo "###ruff checks###"
pip install ruff
# Download hadolint binary
wget https://github.com/hadolint/hadolint/releases/download/v2.8.0/hadolint-Linux-x86_64 -O hadolint
# Make it executable
chmod +x hadolint
# Move it to your binaries folder
#find . -name 'services/Dockerfile*' -exec hadolint --no-fail -f gitlab_codeclimate {} + > docker-lint.json
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
../hadolint services/vault/Dockerfile || true
echo "### nginx ###"
../hadolint services/nginx/Dockerfile || true
echo "### register ###"
../hadolint services/register/Dockerfile || true
echo "### TS29222_CAPIF_Access_Control_Policy_API ###"
../hadolint services/TS29222_CAPIF_Access_Control_Policy_API/Dockerfile || true
echo "### TS29222_CAPIF_API_Invoker_Management_API ###"
../hadolint services/TS29222_CAPIF_API_Invoker_Management_API/Dockerfile || true
echo "### TS29222_CAPIF_API_Provider_Management_API ###"
../hadolint services/TS29222_CAPIF_API_Provider_Management_API/Dockerfile || true
echo "### TS29222_CAPIF_Auditing_API ###"
../hadolint services/TS29222_CAPIF_Auditing_API/Dockerfile || true
echo "### TS29222_CAPIF_Discover_Service_API ###"
../hadolint services/TS29222_CAPIF_Discover_Service_API/Dockerfile || true
echo "### TS29222_CAPIF_Events_API ###"
../hadolint services/TS29222_CAPIF_Events_API/Dockerfile || true
echo "### TS29222_CAPIF_Logging_API_Invocation_API ###"
../hadolint services/TS29222_CAPIF_Logging_API_Invocation_API/Dockerfile || true
echo "### TS29222_CAPIF_Publish_Service_API ###"
../hadolint services/TS29222_CAPIF_Publish_Service_API/Dockerfile || true
echo "### TS29222_CAPIF_Routing_Info_API ###"
../hadolint services/TS29222_CAPIF_Routing_Info_API/Dockerfile || true
echo "### TS29222_CAPIF_Security_API ###"
../hadolint services/TS29222_CAPIF_Security_API/Dockerfile || true
# artifacts:
# name: "$CI_JOB_NAME artifacts from $CI_PROJECT_NAME on $CI_COMMIT_REF_SLUG"
# when: always
# reports:
# codequality:
# - docker-lint.json
# interruptible: true
dev_build_and_push:
needs: ["dev_linting_docker"]
- docker login --username $CI_REGISTRY_USER --password $CAPIF_DOCKER_REGISTRY $CI_REGISTRY
- docker build -t $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/capif-client:$CI_COMMIT_REF_SLUG .
- docker push $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/capif-client:$CI_COMMIT_REF_SLUG
- echo "----------------------------------------------------"
- docker build -t $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/nginx:$CI_COMMIT_REF_SLUG .
- docker push $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/nginx:$CI_COMMIT_REF_SLUG
- echo "----------------------------------------------------"
- docker build -t $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/register:$CI_COMMIT_REF_SLUG .
- docker push $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/register:$CI_COMMIT_REF_SLUG
- echo "----------------------------------------------------"
- echo "### build and push TS29222_CAPIF_Access_Control_Policy_API image###"
- cd $TMP_PWD/services/TS29222_CAPIF_Access_Control_Policy_API/
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
- docker build -t $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/ocf-access-control-policy-api:$CI_COMMIT_REF_SLUG .
- docker push $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/ocf-access-control-policy-api:$CI_COMMIT_REF_SLUG
- echo "----------------------------------------------------"
- echo "### build and push TS29222_CAPIF_API_Invoker_Management_API image###"
- cd $TMP_PWD/services/TS29222_CAPIF_API_Invoker_Management_API/
- docker build -t $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/ocf-api-invoker-management-api:$CI_COMMIT_REF_SLUG .
- docker push $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/ocf-api-invoker-management-api:$CI_COMMIT_REF_SLUG
- echo "----------------------------------------------------"
- echo "### build and push TS29222_CAPIF_API_Provider_Management_API image###"
- cd $TMP_PWD/services/TS29222_CAPIF_API_Provider_Management_API/
- docker build -t $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/ocf-api-provider-management-api:$CI_COMMIT_REF_SLUG .
- docker push $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/ocf-api-provider-management-api:$CI_COMMIT_REF_SLUG
- echo "----------------------------------------------------"
- echo "### build and push TS29222_CAPIF_Auditing_API image###"
- cd $TMP_PWD/services/TS29222_CAPIF_Auditing_API/
- docker build -t $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/ocf-auditing-api:$CI_COMMIT_REF_SLUG .
- docker push $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/ocf-auditing-api:$CI_COMMIT_REF_SLUG
- echo "----------------------------------------------------"
- echo "### build and push TS29222_CAPIF_Discover_Service_API image###"
- cd $TMP_PWD/services/TS29222_CAPIF_Discover_Service_API/
- docker build -t $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/ocf-discover-service-api:$CI_COMMIT_REF_SLUG .
- docker push $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/ocf-discover-service-api:$CI_COMMIT_REF_SLUG
- echo "----------------------------------------------------"
- echo "### build and push TS29222_CAPIF_Events_API image###"
- cd $TMP_PWD/services/TS29222_CAPIF_Events_API/
- docker build -t $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/ocf-events-api:$CI_COMMIT_REF_SLUG .
- docker push $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/ocf-events-api:$CI_COMMIT_REF_SLUG
- echo "----------------------------------------------------"
- echo "### build and push TS29222_CAPIF_Logging_API_Invocation_API image###"
- cd $TMP_PWD/services/TS29222_CAPIF_Logging_API_Invocation_API/
- docker build -t $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/ocf-logging-api-invocation-api:$CI_COMMIT_REF_SLUG .
- docker push $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/ocf-logging-api-invocation-api:$CI_COMMIT_REF_SLUG
- echo "----------------------------------------------------"
- echo "### build and push TS29222_CAPIF_Publish_Service_API image###"
- cd $TMP_PWD/services/TS29222_CAPIF_Publish_Service_API/
- docker build -t $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/ocf-publish-service-api:$CI_COMMIT_REF_SLUG .
- docker push $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/ocf-publish-service-api:$CI_COMMIT_REF_SLUG
- echo "----------------------------------------------------"
- echo "### build and push TS29222_CAPIF_Routing_Info_API image###"
- cd $TMP_PWD/services/TS29222_CAPIF_Routing_Info_API/
- docker build -t $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/ocf-routing-info-api:$CI_COMMIT_REF_SLUG .
- docker push $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/ocf-routing-info-api:$CI_COMMIT_REF_SLUG
- echo "----------------------------------------------------"
- echo "### build and push TS29222_CAPIF_Security_API image###"
- cd $TMP_PWD/services/TS29222_CAPIF_Security_API/
- docker build -t $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/ocf-security-api:$CI_COMMIT_REF_SLUG .
- docker push $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/ocf-security-api:$CI_COMMIT_REF_SLUG
- echo "----------------------------------------------------"
- echo "### build and push vault image###"
- cd $TMP_PWD/services/vault/
- docker build -t $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/vault:$CI_COMMIT_REF_SLUG .
- docker push $CI_REGISTRY/ocf/capif/$CI_COMMIT_REF_SLUG/vault:$CI_COMMIT_REF_SLUG
- echo "----------------------------------------------------"
- docker logout $CI_REGISTRY