Created pipeline for Jenkins in Kubernetes cluster

Updated managed identity
2025-06-12 19:02:29 +00:00 · 2025-06-11 18:42:21 +00:00
4 changed files with 121 additions and 46 deletions
--- a/.jenkins/Jenkinsfile
+++ b/.jenkins/Jenkinsfile
@ -0,0 +1,90 @@
+pipeline {
+    agent {
+        kubernetes {
+            defaultContainer 'kubectl'
+            yamlFile '.jenkins/podTemplate.yaml'
+        }
+    }
+    environment {
+        RESOURCE_GROUP = 'tst-aks-rg'
+        CLUSTER_NAME   = 'build'
+        DEPLOY_FILES   = 'namespace.yaml secret-store.yaml deploy.yaml ingress.yaml'
+        NAMESPACE      = 'user-microservice'
+        DEPLOYMENT     = 'api'
+    }
+    stages {
+        stage('Checkout') {
+            steps {
+                container('kubectl') {
+                    checkout scm
+                }
+            }
+        }
+        stage('Login to Azure & Get Kubeconfig') {
+            steps {
+                container('kubectl') {
+                    sh '''
+                        az login --identity
+                        az aks get-credentials --resource-group $RESOURCE_GROUP --name $CLUSTER_NAME --overwrite-existing
+                    '''
+                }
+                container('kubelogin') {
+                    sh '''
+                        kubelogin convert-kubeconfig -l azurecli
+                    '''
+                }
+            }
+        }
+        stage('Apply Kubernetes Resources') {
+            steps {
+                container('kubectl') {
+                    script {
+                        def files = DEPLOY_FILES.tokenize()
+                        for (file in files) {
+                            sh "kubectl apply -f ${file}"
+                        }
+                    }
+                }
+            }
+        }
+
+        stage('Verify Deployment') {
+            steps {
+                container('kubectl') {
+                    script {
+                        // Waiting until all pods reach "ready" status
+                        sh '''
+                            echo "Waiting for deployment rollout..."
+                            kubectl rollout status deployment/$DEPLOYMENT -n $NAMESPACE --timeout=60s
+                        '''
+                    }
+                }
+            }
+        }
+
+        stage('Health Check') {
+            steps {
+                container('kubectl') {
+                    script {
+                        // Check if app is healthy
+                        def ingressUrl = "https://user-microservice.marcin00.pl/health"
+                        sh """
+                            echo "Checking app health ${ingressUrl}..."
+                            for i in {1..30}; do
+                                if curl -sf $ingressUrl; then
+                                    echo "Health check OK"
+                                    exit 0
+                                else
+                                    echo "Health check failed. Retry \$i..."
+                                    sleep 5
+                                fi
+                            done
+                            echo "Health check failed."
+                            exit 1
+                        """
+                    }
+                }
+            }
+        }
+    }
+}
--- a/.jenkins/podTemplate.yaml
+++ b/.jenkins/podTemplate.yaml
@ -0,0 +1,30 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  labels:
+    some-label: jenkins-agent
+spec:
+  containers:
+  - name: kubectl
+    image: mcr.microsoft.com/azure-cli:latest
+    command:
+    - cat
+    tty: true
+    volumeMounts:
+    - name: azure-config
+      mountPath: /root/.azure
+
+  - name: kubelogin
+    image: ghcr.io/int128/kubelogin:latest
+    command:
+    - cat
+    tty: true
+
+  volumes:
+  - name: azure-config
+    emptyDir: {}
+
+  nodeSelector:
+    kubernetes.io/os: linux
+
+  restartPolicy: Never
--- a/.woodpecker/build.yaml
+++ b/.woodpecker/build.yaml
@ -1,45 +0,0 @@
-when:
-  - event: push
-    branch: woodpecker-deploy
-
-steps:
-  - name: 'Deploy user microservice'
-    image: marcin00.azurecr.io/azure-cli-kubectl:latest
-    environment:
-      CLIENT_ID: 'c302726f-fafb-4143-94c1-67a70975574a'
-      CLUSTER_NAME: 'build'
-      DEPLOY_FILES: 'namespace.yaml secret-store.yaml deploy.yaml ingress.yaml'
-      DEPLOYMENT: 'api'
-      HEALTHCHECK_URL: 'https://user-microservice.marcin00.pl/health'
-      NAMESPACE: 'user-microservice'
-      RESOURCE_GROUP: 'tst-aks-rg'
-    commands:
-      # Login to Azure & Get Kubeconfig
-      - az login --identity --client-id $CLIENT_ID
-      - az aks get-credentials --resource-group $RESOURCE_GROUP --name $CLUSTER_NAME --overwrite-existing
-      - kubelogin convert-kubeconfig -l azurecli
-
-      # Apply Kubernetes Resources
-      - |
-        for file in $DEPLOY_FILES; do
-          kubectl apply -f "$file"
-        done
-
-      # Verify Deployment (waiting until all pods reach "ready" status)
-      - echo "Waiting for deployment rollout..."
-      - kubectl rollout status deployment/$DEPLOYMENT -n $NAMESPACE --timeout=60s
-
-      # Health Check
-      - | 
-        echo "Checking app health $HEALTHCHECK_URL..."
-        for i in {1..120}; do
-          if curl -sf $HEALTHCHECK_URL; then
-            echo "Health check OK"
-            exit 0
-          else
-            echo "Health check failed. Retry \$i..."
-            sleep 5
-          fi
-        done
-        echo "Health check failed."
-        exit 1
--- a/deploy.yaml
+++ b/deploy.yaml
@ -81,7 +81,7 @@ spec:
    spec:
      containers:
        - name: api
-          image: marcin00.azurecr.io/user-microservice:78613948f5698688723d49a3255f15102b047006
+          image: marcin00.azurecr.io/user-microservice:76a351710fffe2be1ae10471bc1a2f511f481126
          ports:
            - containerPort: 80
          env:
Author	SHA1	Message	Date
Marcin-Ramotowski	4901890d0e	Created pipeline for Jenkins in Kubernetes cluster	2025-06-12 19:02:29 +00:00
Marcin-Ramotowski	f55776916e	Updated managed identity	2025-06-11 18:42:21 +00:00