Configured volume to share data between steps

Created initial workflow to build and push DOcker image by Argo Workflow
2025-05-10 19:26:23 +00:00 · 2025-05-10 15:14:33 +00:00
14 changed files with 212 additions and 202 deletions
--- a/15
+++ b/15
@ -1,18 +1,5 @@
-FROM python:3.11.7-alpine
+FROM python:3.11.7-slim-bookworm
 # Wersja i data builda jako build-arg
 ARG APP_VERSION=unknown
 ARG BUILD_DATE=unknown
 # Ustawiamy zmienne w ENV, by były dostępne w kontenerze
 ENV APP_VERSION=$APP_VERSION
 ENV BUILD_DATE=$BUILD_DATE
 WORKDIR /app
 COPY api .
 RUN apk add --no-cache curl
 RUN pip install -r requirements.txt
 CMD python3 app.py
--- a/72
+++ b/72
@ -0,0 +1,72 @@
 pipeline {
    agent any
    environment {
        DOCKER_REGISTRY_URL = 'marcin00.azurecr.io'
        DOCKER_IMAGE = "${DOCKER_REGISTRY_URL}/user-microservice:${GIT_COMMIT}"
        ACR_NAME = 'marcin00'
    }
    stages {
        stage('Checkout') {
            steps {
                checkout scm
            }
        }
        stage('Test python app') {
            steps {
                script {
                    dir('api') {
                        sh '''
                            python3 -m venv env
                            source env/bin/activate
                            pip install -r requirements.txt pytest
                            python3 -m pytest --junit-xml=pytest_junit.xml
                        '''
                    }
                }
            }
            post {
                always {
                    junit testResults: '**/*pytest_junit.xml'
                }
            }
        }
        stage('Build & test docker image') {
            steps {
                script {
                    appImage = docker.build("${DOCKER_IMAGE}")
                    sh label: 'Install dgoss', script: '''
                        curl -s -L https://github.com/aelsabbahy/goss/releases/latest/download/goss-linux-amd64 -o goss
                        curl -s -L https://github.com/aelsabbahy/goss/releases/latest/download/dgoss -o dgoss
                        chmod +rx *goss
                    '''
                    withEnv(['GOSS_OPTS=-f junit', 'GOSS_PATH=./goss', 'GOSS_SLEEP=3', 'SQLALCHEMY_DATABASE_URI=sqlite:///:memory:']) {
                        sh label: 'run image tests', script: './dgoss run -e SQLALCHEMY_DATABASE_URI=sqlite:///:memory: ${DOCKER_IMAGE} > goss_junit.xml'
                    }
                }
            }
            post {
                always {
                    junit testResults: '**/*goss_junit.xml'
                }
            }
        }
        stage('Deploy') {
            steps {
                script {
                    sh '''
                        az login --identity
                        az acr login --name ${ACR_NAME}
                        docker push ${DOCKER_IMAGE}
                    '''
                }
            }
        }
    }
    post {
        cleanup {
            script { cleanWs() }
        }
    }
 }
--- a/api/app.py
+++ b/api/app.py
@ -4,8 +4,7 @@ from flask_jwt_extended import JWTManager
 from jwt import ExpiredSignatureError
 from models import db, RevokedToken
 import os
-from tech_views import tech_bp
+from utils import init_db
 from utils import init_db, wait_for_db
 from views import user_bp
 from werkzeug.exceptions import HTTPException
@ -27,7 +26,6 @@ def create_app(config_name="default"):
    # Blueprints registration
    app.register_blueprint(user_bp)
    app.register_blueprint(tech_bp)
    # Database and JWT initialization
    db.init_app(app)
@ -55,7 +53,6 @@ def create_app(config_name="default"):
    # Fill database by initial values (only if we are not testing)
    with app.app_context():
        wait_for_db(max_retries=100)
        db.create_all()
        if config_name != "testing":
            init_db()
--- a/api/tech_views.py
+++ b/api/tech_views.py
@ -1,20 +0,0 @@
 from flask import Blueprint, jsonify
 from models import db
 from sqlalchemy import text
 from utils import db_ready
 # Blueprint with technical endpoints
 tech_bp = Blueprint('tech_bp', __name__)
@tech_bp.route('/health', methods=['GET'])
 def health_check():
    "Check if service works and database is functional"
    try:
        with db.engine.connect() as connection:
            connection.execute(text("SELECT 1"))
        return jsonify(status="healthy"), 200
    except Exception:
        if db_ready:
            return jsonify(status="unhealthy"), 500
        else:
            return jsonify(status="starting"), 503
--- a/api/utils.py
+++ b/api/utils.py
@ -2,22 +2,17 @@ from flask import abort
 from flask_jwt_extended import get_jwt_identity
 from models import User, db
 import os
 from sqlalchemy import text
 from sqlalchemy.exc import DatabaseError, InterfaceError
 import time
 from werkzeug.security import generate_password_hash
 db_ready = False
 def admin_required(user_id, message='Access denied.'):
    "Check if common user try to make administrative action."
    user = db.session.get(User, user_id)
    if user is None or user.role != "Administrator":
        abort(403, message)
 def validate_access(owner_id, message='Access denied.'):
-    "Check if user try to access or edit resource that does not belong to them."
+    # Check if user try to access or edit resource that does not belong to them 
    logged_user_id = int(get_jwt_identity())
    logged_user_role = db.session.get(User, logged_user_id).role
    if logged_user_role != "Administrator" and logged_user_id != owner_id:
@ -32,20 +27,6 @@ def get_user_or_404(user_id):
    return user
 def wait_for_db(max_retries):
    "Try to connect with database <max_retries> times."
    global db_ready
    for _ in range(max_retries):
        try:
            with db.engine.connect() as connection:
                connection.execute(text("SELECT 1"))
            db_ready = True
            return
        except DatabaseError | InterfaceError:
            time.sleep(3)
    raise Exception("Failed to connect to database.")
 def init_db():
    """Create default admin account if database is empty"""
    with db.session.begin():
--- a/api/views.py
+++ b/api/views.py
@ -2,7 +2,6 @@ from flask import Blueprint, jsonify, request, abort
 from flask_jwt_extended import create_access_token, set_access_cookies, jwt_required, \
 verify_jwt_in_request, get_jwt_identity, unset_jwt_cookies, get_jwt
 from models import db, RevokedToken, User
 import os
 from utils import admin_required, validate_access, get_user_or_404
 from werkzeug.security import check_password_hash, generate_password_hash
@ -111,10 +110,3 @@ def user_logout():
    response = jsonify({"msg": "User logged out successfully."})
    unset_jwt_cookies(response)
    return response
@user_bp.route('/version', methods=['GET'])
 def version():
    return jsonify({
        "version": os.getenv("APP_VERSION", "unknown"),
        "build_time": os.getenv("BUILD_DATE", "unknown")
    })
--- a/argo-workflows/acr-pusher.yaml
+++ b/argo-workflows/acr-pusher.yaml
@ -0,0 +1,5 @@
 apiVersion: v1
 kind: ServiceAccount
 metadata:
  name: edu-agentpool
  namespace: argo
--- a/argo-workflows/argo-workflow-manager-role.yaml
+++ b/argo-workflows/argo-workflow-manager-role.yaml
@ -0,0 +1,12 @@
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
  namespace: argo
  name: argo-workflow-manager
 rules:
  - apiGroups: ["argoproj.io"]
    resources: ["workflowtaskresults"]
    verbs: ["create", "get", "list", "update", "patch", "delete"]
  - apiGroups: ["argoproj.io"]
    resources: ["workflows"]
    verbs: ["create", "get", "list", "update", "patch", "delete"]
--- a/argo-workflows/build.yaml
+++ b/argo-workflows/build.yaml
@ -0,0 +1,99 @@
 apiVersion: argoproj.io/v1alpha1
 kind: Workflow
 metadata:
  generateName: build-workflow-
 spec:
  entrypoint: main
  serviceAccountName: edu-agentpool
  volumeClaimTemplates:
  - metadata:
      name: workspace
    spec:
      accessModes: [ "ReadWriteOnce" ]
      resources:
        requests:
          storage: 1Gi
  templates:
  # 🔁 Main steps sequence
  - name: main
    steps:
      - - name: checkout
          template: git-checkout
          arguments: {}
      - - name: test-python
          template: python-tests
      - - name: build-and-test-image
          template: docker-goss-test
      - - name: deploy
          template: push-docker-image
  # 📦 GIT CHECKOUT
  - name: git-checkout
    script:
      image: alpine/git
      command: [sh]
      source: |
        git clone https://gitea.marcin00.pl/pikram/user-microservice.git /workspace/repo
        cd /workspace/repo
        git checkout main
      volumeMounts:
        - name: workspace
          mountPath: /workspace
  # 🧪 PYTHON TESTS
  - name: python-tests
    script:
      image: python:3.11.7-alpine
      command: [sh]
      source: |
        cd /workspace/repo/api
        python3 -m venv env
        . env/bin/activate
        pip install -r requirements.txt pytest
        python3 -m pytest --junit-xml=pytest_junit.xml
      volumeMounts:
        - name: workspace
          mountPath: /workspace
  # 🐳 BUILDS AND GOSS TESTS
  - name: docker-goss-test
    script:
      image: docker:cli
      command: [sh]
      source: |
        cd /workspace/repo
        docker build -t ${DOCKER_IMAGE} .
        curl -s -L https://github.com/aelsabbahy/goss/releases/latest/download/goss-linux-amd64 -o goss
        curl -s -L https://github.com/aelsabbahy/goss/releases/latest/download/dgoss -o dgoss
        chmod +rx *goss
        export GOSS_OPTS="-f junit"
        export GOSS_PATH=./goss
        export GOSS_SLEEP=3
        ./dgoss run -e SQLALCHEMY_DATABASE_URI=sqlite:///:memory: ${DOCKER_IMAGE} > /workspace/goss_junit.xml
      env:
        - name: DOCKER_IMAGE
          value: marcin00.azurecr.io/user-microservice:$(WORKFLOW_ID)
      volumeMounts:
        - name: workspace
          mountPath: /workspace
  # 🚀 DEPLOY
  - name: push-docker-image
    script:
      image: mcr.microsoft.com/azure-cli
      command: [sh]
      source: |
        az login --identity
        az acr login --name ${ACR_NAME}
        docker push ${DOCKER_IMAGE}
      env:
        - name: ACR_NAME
          value: marcin00
        - name: DOCKER_IMAGE
          value: marcin00.azurecr.io/user-microservice:$(WORKFLOW_ID)
      volumeMounts:
        - name: workspace
          mountPath: /workspace
--- a/argo-workflows/role-binding.yaml
+++ b/argo-workflows/role-binding.yaml
@ -0,0 +1,13 @@
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
  name: argo-edu-agentpool-binding
  namespace: argo
 subjects:
  - kind: ServiceAccount
    name: edu-agentpool
    namespace: argo
 roleRef:
  kind: Role
  name: argo-workflow-manager
  apiGroup: rbac.authorization.k8s.io
--- a/data_analysis.py
+++ b/data_analysis.py
@ -1,67 +0,0 @@
 import matplotlib.pyplot as plt # type: ignore
 import os
 import statistics
 # Dane
 data = {
    'Jenkins + Jenkins': (165, 158, 217, 164, 136, 135, 147, 145, 138, 134, 137, 129, 136, 142, 125, 138, 133, 136, 128, 131),
    'Jenkins + ArgoCD': (181, 111, 115, 121, 128, 105, 108, 119, 112, 109, 110, 108, 111, 106, 113, 117, 113, 120, 113, 107),
    'Jenkins + FluxCD' : (167, 119, 113, 110, 102, 126, 111, 113, 118, 106, 111, 104, 101, 105, 104, 106, 102, 105, 107, 103),
    'Woodpecker + Woodpecker': (340, 348, 334, 363, 350, 339, 331, 354, 357, 351, 356, 347, 354, 341, 357, 352, 368, 336, 331, 340),
    'Woodpecker + ArgoCD': (355, 360, 354, 344, 318, 353, 328, 305, 331, 324, 328, 349, 337, 328, 349, 350, 344, 344, 344, 341),
    'Woodpecker + FluxCD' : (326, 344, 325, 337, 343, 358, 339, 341, 335, 354, 342, 355, 345, 334, 356, 346, 338, 342, 330, 333),
    'Argo Workflows + Argo-Workflows': (190, 190, 169, 211, 172, 198, 207, 192, 212, 181, 168, 199, 216, 213, 220, 209, 192, 210, 196, 165),
    'Argo Workflows + ArgoCD': (145, 159, 163, 148, 169, 185, 153, 148, 139, 176, 133, 140, 161, 135, 161, 130, 139, 164, 183, 183),
    'Argo Workflows + FluxCD': (161, 136, 181, 157, 141, 139, 157, 149, 151, 139, 139, 148, 152, 142, 136, 149, 160, 145, 173, 161)
 }
 # Wyliczenie średnich
 labels = list(data.keys())
 means = [statistics.mean(data[k]) for k in labels]
 # Grupy indeksów do porównań
 groupings = [
    [0, 1, 2],
    [3, 4, 5],
    [6, 7, 8],
    [0, 3, 6],
    [1, 4, 7],
    [2, 5, 8]
 ]
 # Kolory z palety 'tab10'
 color_palette = plt.get_cmap('tab10')
 # Folder wyjściowy
 output_folder = "plots"
 os.makedirs(output_folder, exist_ok=True)
 # Generowanie wykresów
 for i, group in enumerate(groupings):
    group_labels = [labels[j] for j in group]
    group_means = [means[j] for j in group]
    colors = [color_palette(j % 10) for j in group]  # różne kolory
    plt.figure()
    bars = plt.bar(group_labels, group_means, color=colors)
    # Oblicz maksymalną wartość, by zwiększyć wysokość osi Y
    max_val = max(group_means)
    plt.ylim(0, max_val * 1.15)  # dodaj 15% zapasu na tekst
    plt.ylabel("Średni czas wdrożenia (sek)")
    plt.title(f"Porównanie średnich czasów wdrożenia")
    plt.xticks(rotation=45)
    # Dodanie wartości nad słupkami
    for bar in bars:
        yval = bar.get_height()
        label = f'{yval:.1f}'.replace('.', ',')  # <-- tutaj zamiana kropki na przecinek
        plt.text(bar.get_x() + bar.get_width()/2.0, yval + max_val * 0.02, label,
                ha='center', va='bottom', fontsize=9)
    plt.tight_layout()
    plt.savefig(f"{output_folder}/mean_times_{i}.png")
    plt.close()
 print("Wszystkie wykresy wygenerowane z dodatkowymi marginesami!")
--- a/deployment_timer.sh
+++ b/deployment_timer.sh
@ -1,54 +0,0 @@
 #!/bin/bash
 # === KONFIGURACJA ===
 APP_URL="https://user-microservice.marcin00.pl/version"
 MARKER_FILE="version_marker.txt"
 OUTPUT_FILE="deployment_times.csv"
 CHECK_INTERVAL=1  # sekundy
 # === POBRANIE AKTUALNEJ WERSJI APLIKACJI ===
 echo "[INFO] Pobieranie aktualnej wersji z /version..."
 OLD_VERSION=$(curl -s "$APP_URL" | jq -r '.version')
 if [[ -z "$OLD_VERSION" ]]; then
  echo "[ERROR] Nie udało się pobrać aktualnej wersji aplikacji."
  exit 1
 fi
 echo "[INFO] Aktualna wersja: $OLD_VERSION"
 # === Modyfikacja pliku, commit i push ===
 TIMESTAMP=$(date +%s)
 echo "$TIMESTAMP" > "$MARKER_FILE"
 git add "$MARKER_FILE"
 git commit -m "Automatyczna zmiana: $TIMESTAMP"
 START_TIME=$(date +%s)
 echo "[INFO] Wykonuję git push..."
 git push
 if [[ $? -ne 0 ]]; then
  echo "[ERROR] Push nie powiódł się."
  exit 1
 fi
 echo "[INFO] Oczekiwanie na wdrożenie nowej wersji..."
 # === Odpytywanie endpointa /version ===
 while true; do
  sleep $CHECK_INTERVAL
  NEW_VERSION=$(curl -s "$APP_URL" | jq -r '.version')
  if [[ "$NEW_VERSION" != "$OLD_VERSION" ]]; then
    END_TIME=$(date +%s)
    DURATION=$((END_TIME - START_TIME))
    echo "[INFO] Nowa wersja wdrożona: $NEW_VERSION"
    echo "[INFO] Czas wdrożenia: $DURATION sekund"
    echo "$START_TIME,$END_TIME,$DURATION,$OLD_VERSION,$NEW_VERSION" >> "$OUTPUT_FILE"
    break
  else
    echo "[WAIT] Czekam... ($NEW_VERSION)"
  fi
 done
--- a/docker-compose.yml
+++ b/docker-compose.yml
@ -7,24 +7,9 @@ services:
    build: .
    env_file:
      - api/.env
    ports:
      - 80:80
    healthcheck:
      test: ["CMD", "curl", "-f", "http://localhost/health"]
      interval: 10s
      timeout: 5s
      retries: 5
      start_period: 15s
  db:
    container_name: db
    hostname: db
    image: mysql:latest
    env_file:
      - db/.env
    ports:
      - 3306:3306
    healthcheck:
      test: ["CMD", "mysqladmin", "ping", "-h", "localhost"]
      interval: 10s
      timeout: 5s
      retries: 5
--- a/goss.yaml
+++ b/goss.yaml
@ -0,0 +1,8 @@
 port:
  tcp:80:
    listening: true
    ip:
    - 0.0.0.0
 process:
  python3:
    running: true
Author	SHA1	Message	Date
Marcin-Ramotowski	2a80c733b3	Configured volume to share data between steps	2025-05-10 19:26:23 +00:00
Marcin-Ramotowski	3764970082	Created initial workflow to build and push DOcker image by Argo Workflow	2025-05-10 15:14:33 +00:00