github/ansible-later
0
0
Fork 0
mirror of https://github.com/thegeeklab/ansible-later.git synced 2024-11-26 06:40:42 +00:00
Code Issues Projects Releases Wiki Activity

ci: switch to drone-matrix plugin (#209)

Browse Source
This commit is contained in:
Robert Kaussow 2021-09-19 22:49:05 +02:00 committed by GitHub
parent 001a708455
commit 24388a63a6
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 577 additions and 506 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
.drone.jsonnet
View File

@ -475,11 +475,11 @@ local PipelineNotifications = {
}, },
{ {
name: 'matrix', name: 'matrix',
image: 'plugins/matrix', image: 'thegeeklab/drone-matrix',
settings: { settings: {
homeserver: { from_secret: 'matrix_homeserver' }, homeserver: { from_secret: 'matrix_homeserver' },
roomid: { from_secret: 'matrix_roomid' }, roomid: { from_secret: 'matrix_roomid' },
template: 'Status: **{{ build.status }}**<br/> Build: [{{ repo.Owner }}/{{ repo.Name }}]({{ build.link }}) ({{ build.branch }}) by {{ build.author }}<br/> Message: {{ build.message }}', template: 'Status: **{{ build.Status }}**<br/> Build: [{{ repo.Owner }}/{{ repo.Name }}]({{ build.Link }}) ({{ build.Branch }}) by {{ commit.Author }}<br/> Message: {{ commit.Message }}',
username: { from_secret: 'matrix_username' }, username: { from_secret: 'matrix_username' },
password: { from_secret: 'matrix_password' }, password: { from_secret: 'matrix_password' },
}, },

403
.drone.yml
View File

@ -1,11 +1,15 @@
--- ---
kind: pipeline kind: pipeline
name: lint name: lint
platform: platform:
arch: amd64
os: linux os: linux
arch: amd64
steps: steps:
- commands: - name: yapf
image: python:3.9
commands:
- git fetch -tq - git fetch -tq
- pip install poetry poetry-dynamic-versioning -qq - pip install poetry poetry-dynamic-versioning -qq
- poetry config experimental.new-installer false - poetry config experimental.new-installer false
@ -13,161 +17,180 @@ steps:
- poetry run yapf -dr ./ansiblelater - poetry run yapf -dr ./ansiblelater
environment: environment:
PY_COLORS: 1 PY_COLORS: 1
- name: flake8
image: python:3.9 image: python:3.9
name: yapf commands:
- commands:
- git fetch -tq - git fetch -tq
- pip install poetry poetry-dynamic-versioning -qq - pip install poetry poetry-dynamic-versioning -qq
- poetry install -E ansible-base - poetry install -E ansible-base
- poetry run flake8 ./ansiblelater - poetry run flake8 ./ansiblelater
environment: environment:
PY_COLORS: 1 PY_COLORS: 1
image: python:3.9
name: flake8
trigger: trigger:
ref: ref:
- refs/heads/main - refs/heads/main
- refs/tags/** - refs/tags/**
- refs/pull/** - refs/pull/**
--- ---
depends_on:
- lint
kind: pipeline kind: pipeline
name: test name: test
platform: platform:
arch: amd64
os: linux os: linux
arch: amd64
steps: steps:
- commands: - name: fetch
image: python:3.9
commands:
- git fetch -tq - git fetch -tq
image: python:3.9
name: fetch - name: python36-pytest
- commands:
- pip install poetry poetry-dynamic-versioning -qq
- poetry config experimental.new-installer false
- poetry install -E ansible-base
- poetry run pytest
- poetry version
- poetry run ansible-later --help
depends_on:
- fetch
environment:
PY_COLORS: 1
image: python:3.6 image: python:3.6
name: python36-pytest commands:
- commands:
- pip install poetry poetry-dynamic-versioning -qq - pip install poetry poetry-dynamic-versioning -qq
- poetry config experimental.new-installer false - poetry config experimental.new-installer false
- poetry install -E ansible-base - poetry install -E ansible-base
- poetry run pytest - poetry run pytest
- poetry version - poetry version
- poetry run ansible-later --help - poetry run ansible-later --help
depends_on:
- fetch
environment: environment:
PY_COLORS: 1 PY_COLORS: 1
depends_on:
- fetch
- name: python37-pytest
image: python:3.7 image: python:3.7
name: python37-pytest commands:
- commands:
- pip install poetry poetry-dynamic-versioning -qq - pip install poetry poetry-dynamic-versioning -qq
- poetry config experimental.new-installer false - poetry config experimental.new-installer false
- poetry install -E ansible-base - poetry install -E ansible-base
- poetry run pytest - poetry run pytest
- poetry version - poetry version
- poetry run ansible-later --help - poetry run ansible-later --help
depends_on:
- fetch
environment: environment:
PY_COLORS: 1 PY_COLORS: 1
depends_on:
- fetch
- name: python38-pytest
image: python:3.8 image: python:3.8
name: python38-pytest commands:
- commands:
- pip install poetry poetry-dynamic-versioning -qq - pip install poetry poetry-dynamic-versioning -qq
- poetry config experimental.new-installer false - poetry config experimental.new-installer false
- poetry install -E ansible-base - poetry install -E ansible-base
- poetry run pytest - poetry run pytest
- poetry version - poetry version
- poetry run ansible-later --help - poetry run ansible-later --help
depends_on:
- fetch
environment: environment:
PY_COLORS: 1 PY_COLORS: 1
depends_on:
- fetch
- name: python39-pytest
image: python:3.9 image: python:3.9
name: python39-pytest commands:
- commands: - pip install poetry poetry-dynamic-versioning -qq
- poetry config experimental.new-installer false
- poetry install -E ansible-base
- poetry run pytest
- poetry version
- poetry run ansible-later --help
environment:
PY_COLORS: 1
depends_on:
- fetch
- name: codecov
image: python:3.9
commands:
- pip install codecov -qq - pip install codecov -qq
- codecov --required -X gcov - codecov --required -X gcov
environment:
CODECOV_TOKEN:
from_secret: codecov_token
PY_COLORS: 1
depends_on: depends_on:
- python36-pytest - python36-pytest
- python37-pytest - python37-pytest
- python38-pytest - python38-pytest
- python39-pytest - python39-pytest
environment:
CODECOV_TOKEN:
from_secret: codecov_token
PY_COLORS: 1
image: python:3.9
name: codecov
trigger: trigger:
ref: ref:
- refs/heads/main - refs/heads/main
- refs/tags/** - refs/tags/**
- refs/pull/** - refs/pull/**
---
depends_on: depends_on:
- test - lint
---
kind: pipeline kind: pipeline
name: security name: security
platform: platform:
arch: amd64
os: linux os: linux
arch: amd64
steps: steps:
- commands: - name: bandit
image: python:3.9
commands:
- git fetch -tq - git fetch -tq
- pip install poetry poetry-dynamic-versioning -qq - pip install poetry poetry-dynamic-versioning -qq
- poetry install -E ansible-base - poetry install -E ansible-base
- poetry run bandit -r ./ansiblelater -x ./ansiblelater/test - poetry run bandit -r ./ansiblelater -x ./ansiblelater/test
environment: environment:
PY_COLORS: 1 PY_COLORS: 1
image: python:3.9
name: bandit
trigger: trigger:
ref: ref:
- refs/heads/main - refs/heads/main
- refs/tags/** - refs/tags/**
- refs/pull/** - refs/pull/**
---
depends_on: depends_on:
- security - test
---
kind: pipeline kind: pipeline
name: build-package name: build-package
platform: platform:
arch: amd64
os: linux os: linux
arch: amd64
steps: steps:
- commands: - name: build
image: python:3.9
commands:
- git fetch -tq - git fetch -tq
- pip install poetry poetry-dynamic-versioning -qq - pip install poetry poetry-dynamic-versioning -qq
- poetry build - poetry build
image: python:3.9
name: build - name: checksum
- commands:
- cd dist/ && sha256sum * > ../sha256sum.txt
image: alpine image: alpine
name: checksum commands:
- commands: - cd dist/ && sha256sum * > ../sha256sum.txt
- git fetch -tq
- git-chglog --no-color --no-emoji -o CHANGELOG.md ${DRONE_TAG:---next-tag unreleased - name: changelog-generate
unreleased}
image: thegeeklab/git-chglog image: thegeeklab/git-chglog
name: changelog-generate commands:
- commands: - git fetch -tq
- git-chglog --no-color --no-emoji -o CHANGELOG.md ${DRONE_TAG:---next-tag unreleased unreleased}
- name: changelog-format
image: thegeeklab/alpine-tools
commands:
- prettier CHANGELOG.md - prettier CHANGELOG.md
- prettier -w CHANGELOG.md - prettier -w CHANGELOG.md
image: thegeeklab/alpine-tools
name: changelog-format - name: publish-github
- image: plugins/github-release image: plugins/github-release
name: publish-github
settings: settings:
api_key: api_key:
from_secret: github_token from_secret: github_token
@ -180,7 +203,10 @@ steps:
when: when:
ref: ref:
- refs/tags/** - refs/tags/**
- commands:
- name: publish-pypi
image: python:3.9
commands:
- git fetch -tq - git fetch -tq
- pip install poetry poetry-dynamic-versioning -qq - pip install poetry poetry-dynamic-versioning -qq
- poetry publish -n - poetry publish -n
@ -189,35 +215,37 @@ steps:
from_secret: pypi_password from_secret: pypi_password
POETRY_HTTP_BASIC_PYPI_USERNAME: POETRY_HTTP_BASIC_PYPI_USERNAME:
from_secret: pypi_username from_secret: pypi_username
image: python:3.9
name: publish-pypi
when: when:
ref: ref:
- refs/tags/** - refs/tags/**
trigger: trigger:
ref: ref:
- refs/heads/main - refs/heads/main
- refs/tags/** - refs/tags/**
- refs/pull/** - refs/pull/**
---
depends_on: depends_on:
- security - security
---
kind: pipeline kind: pipeline
name: build-container-amd64 name: build-container-amd64
platform: platform:
arch: amd64
os: linux os: linux
arch: amd64
steps: steps:
- commands: - name: build
image: python:3.9
commands:
- git fetch -tq - git fetch -tq
- pip install poetry poetry-dynamic-versioning -qq - pip install poetry poetry-dynamic-versioning -qq
- poetry build - poetry build
image: python:3.9
name: build - name: dryrun
- depends_on:
- build
image: thegeeklab/drone-docker:19 image: thegeeklab/drone-docker:19
name: dryrun
settings: settings:
dockerfile: docker/Dockerfile.amd64 dockerfile: docker/Dockerfile.amd64
dry_run: true dry_run: true
@ -229,10 +257,11 @@ steps:
when: when:
ref: ref:
- refs/pull/** - refs/pull/**
- depends_on: depends_on:
- dryrun - build
- name: publish-dockerhub
image: thegeeklab/drone-docker:19 image: thegeeklab/drone-docker:19
name: publish-dockerhub
settings: settings:
auto_tag: true auto_tag: true
auto_tag_suffix: amd64 auto_tag_suffix: amd64
@ -246,10 +275,11 @@ steps:
ref: ref:
- refs/heads/main - refs/heads/main
- refs/tags/** - refs/tags/**
- depends_on: depends_on:
- dryrun - dryrun
- name: publish-quay
image: thegeeklab/drone-docker:19 image: thegeeklab/drone-docker:19
name: publish-quay
settings: settings:
auto_tag: true auto_tag: true
auto_tag_suffix: amd64 auto_tag_suffix: amd64
@ -264,30 +294,36 @@ steps:
ref: ref:
- refs/heads/main - refs/heads/main
- refs/tags/** - refs/tags/**
depends_on:
- dryrun
trigger: trigger:
ref: ref:
- refs/heads/main - refs/heads/main
- refs/tags/** - refs/tags/**
- refs/pull/** - refs/pull/**
---
depends_on: depends_on:
- security - security
---
kind: pipeline kind: pipeline
name: build-container-arm64 name: build-container-arm64
platform: platform:
arch: arm64
os: linux os: linux
arch: arm64
steps: steps:
- commands: - name: build
image: python:3.9
commands:
- git fetch -tq - git fetch -tq
- pip install poetry poetry-dynamic-versioning -qq - pip install poetry poetry-dynamic-versioning -qq
- poetry build - poetry build
image: python:3.9
name: build - name: dryrun
- depends_on:
- build
image: thegeeklab/drone-docker:19 image: thegeeklab/drone-docker:19
name: dryrun
settings: settings:
dockerfile: docker/Dockerfile.arm64 dockerfile: docker/Dockerfile.arm64
dry_run: true dry_run: true
@ -299,10 +335,11 @@ steps:
when: when:
ref: ref:
- refs/pull/** - refs/pull/**
- depends_on: depends_on:
- dryrun - build
- name: publish-dockerhub
image: thegeeklab/drone-docker:19 image: thegeeklab/drone-docker:19
name: publish-dockerhub
settings: settings:
auto_tag: true auto_tag: true
auto_tag_suffix: arm64 auto_tag_suffix: arm64
@ -316,10 +353,11 @@ steps:
ref: ref:
- refs/heads/main - refs/heads/main
- refs/tags/** - refs/tags/**
- depends_on: depends_on:
- dryrun - dryrun
- name: publish-quay
image: thegeeklab/drone-docker:19 image: thegeeklab/drone-docker:19
name: publish-quay
settings: settings:
auto_tag: true auto_tag: true
auto_tag_suffix: arm64 auto_tag_suffix: arm64
@ -334,34 +372,39 @@ steps:
ref: ref:
- refs/heads/main - refs/heads/main
- refs/tags/** - refs/tags/**
depends_on:
- dryrun
trigger: trigger:
ref: ref:
- refs/heads/main - refs/heads/main
- refs/tags/** - refs/tags/**
- refs/pull/** - refs/pull/**
---
depends_on: depends_on:
- security - security
---
kind: pipeline kind: pipeline
name: build-container-arm name: build-container-arm
platform: platform:
arch: arm
os: linux os: linux
arch: arm
steps: steps:
- commands: - name: build
- apk add -Uq --no-cache build-base openssl-dev libffi-dev musl-dev python3-dev image: python:3.9-alpine
git cargo commands:
- apk add -Uq --no-cache build-base openssl-dev libffi-dev musl-dev python3-dev git cargo
- git fetch -tq - git fetch -tq
- pip install poetry poetry-dynamic-versioning -qq - pip install poetry poetry-dynamic-versioning -qq
- poetry build - poetry build
environment: environment:
CARGO_NET_GIT_FETCH_WITH_CLI: true CARGO_NET_GIT_FETCH_WITH_CLI: true
image: python:3.9-alpine
name: build - name: dryrun
- depends_on:
- build
image: thegeeklab/drone-docker:19 image: thegeeklab/drone-docker:19
name: dryrun
settings: settings:
dockerfile: docker/Dockerfile.arm dockerfile: docker/Dockerfile.arm
dry_run: true dry_run: true
@ -373,10 +416,11 @@ steps:
when: when:
ref: ref:
- refs/pull/** - refs/pull/**
- depends_on: depends_on:
- dryrun - build
- name: publish-dockerhub
image: thegeeklab/drone-docker:19 image: thegeeklab/drone-docker:19
name: publish-dockerhub
settings: settings:
auto_tag: true auto_tag: true
auto_tag_suffix: arm auto_tag_suffix: arm
@ -390,10 +434,11 @@ steps:
ref: ref:
- refs/heads/main - refs/heads/main
- refs/tags/** - refs/tags/**
- depends_on: depends_on:
- dryrun - dryrun
- name: publish-quay
image: thegeeklab/drone-docker:19 image: thegeeklab/drone-docker:19
name: publish-quay
settings: settings:
auto_tag: true auto_tag: true
auto_tag_suffix: arm auto_tag_suffix: arm
@ -408,66 +453,77 @@ steps:
ref: ref:
- refs/heads/main - refs/heads/main
- refs/tags/** - refs/tags/**
depends_on:
- dryrun
trigger: trigger:
ref: ref:
- refs/heads/main - refs/heads/main
- refs/tags/** - refs/tags/**
- refs/pull/** - refs/pull/**
---
concurrency:
limit: 1
depends_on: depends_on:
- build-package - security
- build-container-amd64
- build-container-arm64 ---
- build-container-arm
kind: pipeline kind: pipeline
name: docs name: docs
platform: platform:
arch: amd64
os: linux os: linux
arch: amd64
concurrency:
limit: 1
steps: steps:
- commands: - name: assets
- make doc
image: thegeeklab/alpine-tools image: thegeeklab/alpine-tools
name: assets commands:
- commands: - make doc
- markdownlint 'docs/content/**/*.md' 'README.md' 'CONTRIBUTING.md'
- name: markdownlint
image: thegeeklab/markdownlint-cli image: thegeeklab/markdownlint-cli
name: markdownlint commands:
- commands: - markdownlint 'docs/content/**/*.md' 'README.md' 'CONTRIBUTING.md'
- name: spellcheck
image: node:lts-alpine
commands:
- npm install -g spellchecker-cli - npm install -g spellchecker-cli
- spellchecker --files 'docs/content/**/*.md' 'README.md' -d .dictionary -p spell - spellchecker --files 'docs/content/**/*.md' 'README.md' -d .dictionary -p spell indefinite-article syntax-urls --no-suggestions
indefinite-article syntax-urls --no-suggestions
environment: environment:
FORCE_COLOR: true FORCE_COLOR: true
NPM_CONFIG_LOGLEVEL: error NPM_CONFIG_LOGLEVEL: error
image: node:lts-alpine
name: spellcheck - name: testbuild
- commands:
- hugo -s docs/ -b http://localhost/
image: thegeeklab/hugo:0.83.1 image: thegeeklab/hugo:0.83.1
name: testbuild commands:
- commands: - hugo -s docs/ -b http://localhost/
- name: link-validation
image: thegeeklab/link-validator
commands:
- link-validator -ro - link-validator -ro
environment: environment:
LINK_VALIDATOR_BASE_DIR: docs/public LINK_VALIDATOR_BASE_DIR: docs/public
image: thegeeklab/link-validator
name: link-validation - name: build
- commands:
- hugo -s docs/
image: thegeeklab/hugo:0.83.1 image: thegeeklab/hugo:0.83.1
name: build commands:
- commands: - hugo -s docs/
- name: beautify
image: node:lts-alpine
commands:
- npm install -g js-beautify - npm install -g js-beautify
- html-beautify -r -f 'docs/public/**/*.html' - html-beautify -r -f 'docs/public/**/*.html'
environment: environment:
FORCE_COLOR: true FORCE_COLOR: true
NPM_CONFIG_LOGLEVEL: error NPM_CONFIG_LOGLEVEL: error
image: node:lts-alpine
name: beautify - name: publish
- image: plugins/s3-sync image: plugins/s3-sync
name: publish
settings: settings:
access_key: access_key:
from_secret: s3_access_key from_secret: s3_access_key
@ -484,22 +540,30 @@ steps:
ref: ref:
- refs/heads/main - refs/heads/main
- refs/tags/** - refs/tags/**
trigger: trigger:
ref: ref:
- refs/heads/main - refs/heads/main
- refs/tags/** - refs/tags/**
- refs/pull/** - refs/pull/**
---
depends_on: depends_on:
- docs - build-package
- build-container-amd64
- build-container-arm64
- build-container-arm
---
kind: pipeline kind: pipeline
name: notifications name: notifications
platform: platform:
arch: amd64
os: linux os: linux
arch: amd64
steps: steps:
- image: plugins/manifest - name: manifest-dockerhub
name: manifest-dockerhub image: plugins/manifest
settings: settings:
auto_tag: true auto_tag: true
ignore_missing: true ignore_missing: true
@ -511,8 +575,9 @@ steps:
when: when:
status: status:
- success - success
- image: plugins/manifest
name: manifest-quay - name: manifest-quay
image: plugins/manifest
settings: settings:
auto_tag: true auto_tag: true
ignore_missing: true ignore_missing: true
@ -524,7 +589,11 @@ steps:
when: when:
status: status:
- success - success
- environment:
- name: pushrm-dockerhub
pull: always
image: chko/docker-pushrm:1
environment:
DOCKER_PASS: DOCKER_PASS:
from_secret: docker_password from_secret: docker_password
DOCKER_USER: DOCKER_USER:
@ -532,25 +601,24 @@ steps:
PUSHRM_FILE: README.md PUSHRM_FILE: README.md
PUSHRM_SHORT: Another best practice scanner for Ansible roles and playbooks PUSHRM_SHORT: Another best practice scanner for Ansible roles and playbooks
PUSHRM_TARGET: thegeeklab/${DRONE_REPO_NAME} PUSHRM_TARGET: thegeeklab/${DRONE_REPO_NAME}
image: chko/docker-pushrm:1
name: pushrm-dockerhub
pull: always
when: when:
status: status:
- success - success
- environment:
- name: pushrm-quay
pull: always
image: chko/docker-pushrm:1
environment:
APIKEY__QUAY_IO: APIKEY__QUAY_IO:
from_secret: quay_token from_secret: quay_token
PUSHRM_FILE: README.md PUSHRM_FILE: README.md
PUSHRM_TARGET: quay.io/thegeeklab/${DRONE_REPO_NAME} PUSHRM_TARGET: quay.io/thegeeklab/${DRONE_REPO_NAME}
image: chko/docker-pushrm:1
name: pushrm-quay
pull: always
when: when:
status: status:
- success - success
- image: plugins/matrix
name: matrix - name: matrix
image: thegeeklab/drone-matrix
settings: settings:
homeserver: homeserver:
from_secret: matrix_homeserver from_secret: matrix_homeserver
@ -558,15 +626,14 @@ steps:
from_secret: matrix_password from_secret: matrix_password
roomid: roomid:
from_secret: matrix_roomid from_secret: matrix_roomid
template: 'Status: **{{ build.status }}**<br/> Build: [{{ repo.Owner }}/{{ repo.Name template: "Status: **{{ build.Status }}**<br/> Build: [{{ repo.Owner }}/{{ repo.Name }}]({{ build.Link }}) ({{ build.Branch }}) by {{ commit.Author }}<br/> Message: {{ commit.Message }}"
}}]({{ build.link }}) ({{ build.branch }}) by {{ build.author }}<br/> Message:
{{ build.message }}'
username: username:
from_secret: matrix_username from_secret: matrix_username
when: when:
status: status:
- success - success
- failure - failure
trigger: trigger:
ref: ref:
- refs/heads/main - refs/heads/main
@ -574,8 +641,12 @@ trigger:
status: status:
- success - success
- failure - failure
depends_on:
- docs
--- ---
kind: signature kind: signature
hmac: eb840b80a482cdb542fe7fcbe4f497de8b94a976e112ad5dcf78a62eaa15d2ed hmac: 45f362c977ca5de69b46d30fc7534243639530a8695212e163bf53f2f9219b54
... ...