gitea-admin/lti-web-client
1
0
Fork 0
mirror of https://gitlab.com/mbugroup/lti-web-client.git synced 2026-05-20 05:22:02 +00:00
Code Issues Packages Projects Releases Wiki Activity

build docker via gitlab

Browse Source
This commit is contained in:
GitLab Deploy Bot
2025-11-09 14:21:58 +07:00
parent d679c9f278
commit 8a11c176aa
3 changed files with 158 additions and 69 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.gitlab-ci.yml
+95 -69
View File
@@ -1,76 +1,102 @@
stages: [notify]
stages:
- build
- cleanup
- deploy
# --- Notify when MR is opened/updated ---
notify_discord_mr:
stage: notify
image: alpine:3.20
rules:
- if: '$CI_PIPELINE_SOURCE == "merge_request_event"'
variables:
DOCKER_DRIVER: overlay2
IMAGE_NAME: "${CI_REGISTRY_IMAGE}/web-lti"
DEPLOY_ENV: development
KEEP_IMAGES: 3
BUILD_MODE: static
# =====================================================
# 🔑 AUTH TO REGISTRY
# =====================================================
before_script:
- echo "🔐 Logging in to GitLab Container Registry..."
- echo "$GITLAB_TOKEN" | docker login -u "$GITLAB_USER" --password-stdin "$CI_REGISTRY"
# =====================================================
# 🧱 BUILD IMAGE
# =====================================================
build-image:
stage: build
image: docker:27.0.2
services:
- docker:dind
variables:
WEBHOOK_URL: $DISCORD_WEBHOOK_URL
before_script:
- apk add --no-cache curl jq
script: |
MR_URL="${CI_PROJECT_URL}/-/merge_requests/${CI_MERGE_REQUEST_IID}"
DOCKER_TLS_CERTDIR: ""
script:
- echo "🚀 Building Docker image for ${DEPLOY_ENV} branch..."
jq -n \
--arg repo "$CI_PROJECT_PATH" \
--arg mr "#${CI_MERGE_REQUEST_IID}" \
--arg url "$MR_URL" \
--arg requestor "${GITLAB_USER_LOGIN:-$GITLAB_USER_NAME}" \
--arg source "$CI_MERGE_REQUEST_SOURCE_BRANCH_NAME" \
--arg target "$CI_MERGE_REQUEST_TARGET_BRANCH_NAME" \
--arg title "$CI_MERGE_REQUEST_TITLE" \
'{
username: "CI Bot - FE",
embeds: [{
title: "📣 [LTI WEB CLIENT] Merge Request Opened/Updated",
description: ($mr + " in " + $repo),
url: $url,
color: 3447003,
fields: [
{name: "Author", value: $requestor, inline: true},
{name: "Source → Target", value: ($source + " → " + $target), inline: true},
{name: "Title", value: $title}
]
}]
}' \
| curl -sS -H "Content-Type: application/json" -d @- "$WEBHOOK_URL"
# Tag format: web-lti:development_<commit>
- export TAG="${DEPLOY_ENV}_${CI_COMMIT_SHORT_SHA}"
# --- Notify when MR is merged ---
notify_discord_merge:
stage: notify
- echo "🧱 Tagging image as: $IMAGE_NAME:$TAG"
- docker build \
--build-arg NEXT_PUBLIC_API_BASE_URL=$NEXT_PUBLIC_API_BASE_URL \
--build-arg NEXT_PUBLIC_LTI_API_START_URL=$NEXT_PUBLIC_LTI_API_START_URL \
--build-arg NEXT_PUBLIC_LTI_CLIENT_ID=$NEXT_PUBLIC_LTI_CLIENT_ID \
--build-arg BUILD_MODE=$BUILD_MODE \
-t "$IMAGE_NAME:$TAG" \
-t "$IMAGE_NAME:$DEPLOY_ENV" .
- echo "📦 Pushing images to registry..."
- docker push "$IMAGE_NAME:$TAG"
- docker push "$IMAGE_NAME:$DEPLOY_ENV"
only:
- development
# =====================================================
# 🧹 CLEANUP OLD IMAGES (KEEP 3)
# =====================================================
cleanup-registry:
stage: cleanup
image: alpine:3.20
rules:
# Only run for merge request pipelines that are in merged state
- if: '$CI_PIPELINE_SOURCE == "merge_request_event" && $CI_MERGE_REQUEST_STATE == "merged"'
variables:
WEBHOOK_URL: $DISCORD_WEBHOOK_URL
before_script:
script:
- apk add --no-cache curl jq
script: |
MR_URL="${CI_PROJECT_URL}/-/merge_requests/${CI_MERGE_REQUEST_IID}"
- echo "🧹 Cleaning up old images (keeping ${KEEP_IMAGES})..."
jq -n \
--arg repo "$CI_PROJECT_PATH" \
--arg mr "#${CI_MERGE_REQUEST_IID}" \
--arg url "$MR_URL" \
--arg requestor "${CI_MERGE_REQUEST_AUTHOR}" \
--arg source "$CI_MERGE_REQUEST_SOURCE_BRANCH_NAME" \
--arg target "$CI_MERGE_REQUEST_TARGET_BRANCH_NAME" \
--arg title "$CI_MERGE_REQUEST_TITLE" \
'{
username: "CI Bot - FE",
embeds: [{
title: "✅ [LTI WEB CLIENT] Merge Request Merged",
description: ($mr + " has been merged into " + $repo),
url: $url,
color: 3066993,
fields: [
{name: "Author", value: $requestor, inline: true},
{name: "Source → Target", value: ($source + " → " + $target), inline: true},
{name: "Title", value: $title}
]
}]
}' \
| curl -sS -H "Content-Type: application/json" -d @- "$WEBHOOK_URL"
- TOKEN=$(curl --silent --request POST --header "Content-Type: application/json" \
--data "{\"login\": \"$GITLAB_USER\", \"password\": \"$GITLAB_TOKEN\"}" \
"${CI_REGISTRY}/jwt/auth" | jq -r '.token')
- ALL_TAGS=$(curl --silent --header "Authorization: Bearer $TOKEN" \
"${CI_REGISTRY}/v2/${CI_PROJECT_PATH}/web-lti/tags/list" \
| jq -r '.tags | sort | reverse | .['$KEEP_IMAGES':] | @sh' | tr -d "'")
- |
for tag in $ALL_TAGS; do
echo "🗑️ Deleting old image tag: $tag"
DIGEST=$(curl --silent -H "Authorization: Bearer $TOKEN" \
"${CI_REGISTRY}/v2/${CI_PROJECT_PATH}/web-lti/manifests/$tag" | jq -r '.config.digest')
curl --silent -X DELETE -H "Authorization: Bearer $TOKEN" \
"${CI_REGISTRY}/v2/${CI_PROJECT_PATH}/web-lti/manifests/${DIGEST}"
done
only:
- development
when: always
# =====================================================
# 🚀 DEPLOY TO SERVER (VIA SSH)
# =====================================================
deploy:
stage: deploy
image: alpine:3.20
before_script:
- apk add --no-cache openssh
- mkdir -p ~/.ssh
- echo "$SSH_PRIVATE_KEY" > ~/.ssh/id_rsa
- chmod 600 ~/.ssh/id_rsa
- ssh-keyscan -H "$SERVER_IP" >> ~/.ssh/known_hosts
script:
- echo "🚀 Deploying $IMAGE_NAME:$DEPLOY_ENV to $SERVER_USER@$SERVER_IP"
- ssh $SERVER_USER@$SERVER_IP "
docker login -u '$GITLAB_USER' -p '$GITLAB_TOKEN' $CI_REGISTRY &&
docker pull $IMAGE_NAME:$DEPLOY_ENV &&
docker compose -f /home/devops/docker/deployment/development/compose/docker-compose.web-lti.yaml up -d dev-web-lti &&
docker image prune -f
"
only:
- development