Skip to content

aboubeta/build-in-kuber

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

16 Commits
bin
bin
 
 
docker
docker
 
 
templates
templates
 
 
.gitlab-ci.yml
.gitlab-ci.yml
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Setup

Git private repo

  • Add the public key to you app repo
  • Create secret ssh-git-secret with you privat key:
kubectl create secret generic ssh-git-secret --from-file=id_rsa=ssh_priv_key

Private registry

AWS ECR

  • If you use AWS ECR registry, you need aws-login with AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY, AWS_DEFAULT_REGION keys:
kubectl create secret generic aws-login \
  --from-literal=AWS_ACCESS_KEY_ID=${AWS_ACCESS_KEY_ID} \
  --from-literal=AWS_SECRET_ACCESS_KEY=${AWS_SECRET_ACCESS_KEY} \
  --from-literal=AWS_DEFAULT_REGION=${AWS_DEFAULT_REGION}

Docker Hub

kubectl create secret generic docker-login   --from-literal=user=${DOCKER_USER} --from-literal=pass=${DOCKER_PASSWORD} --from-literal=registry=https://index.docker.io/v1/

Gitlab

** Go to "User Settings > Access Tokens" and create a token with api permissions ** Create secret:

kubectl create secret generic docker-login   --from-literal=user=${GITLAB_USER} --from-literal=pass=${TOKEN} --from-literal=registry=registry.gitlab.com

Azure

  • Azure: ** Go to "Container registries" and select the registry. Go to access keys. ** Create the secret with the data:
kubectl create secret generic docker-login   --from-literal=user=${USERNAME} --from-literal=pass=${PASSWORD} --from-literal=registry=${LOGIN_SERVER}

Other registries

  • If you use another registry:
kubectl create secret generic docker-login   --from-literal=user=${DOCKER_USER} --from-literal=pass=${DOCKER_PASSWORD} --from-literal=registry=${DOCKER_REGISTRY}

Launch job

./create-job.sh REPO IMAGE_URI [ -r REVISION] [-b BASE_DIR] [-d DOCKERFILE] [-n NAMESPACE] [-gs GIT_SECRET] [-as AWS_SECRET] [-ds DOCKER_SECRET]

REPO: Git repository
IMAGE_URI: Docker registry image URL (ex. centos/tools or registry.gitlab.com/boube/netdata)
REVISION: Git branch or commit
BASE_DIR: Docker context directory
DOCKERFILE: Dockerfile file path (relative to BASE_DIR)
NAMESPACE: Kubernetes namespace where the job will run
GIT_SECRET: SSH public key in Kubernetes
AWS_SECRET: Amazon AWS credentials secret in Kubernetes 
DOCKER_SECRET: User, pass and registry URL

Examples

  • Simple:
./create-job.sh git@gitlab.com:boube/build-in-kuber.git registry.gitlab.com/boube/build-in-kuber
  • With branch or commit:
./create-job.sh git@gitlab.com:boube/build-in-kuber.git registry.gitlab.com/boube/build-in-kuber -r develop
./create-job.sh git@gitlab.com:boube/build-in-kuber.git registry.gitlab.com/boube/build-in-kuber -r 11e6007adff0f84053761b7df6855cc01d5cdd96
  • With all options:
./create-job.sh \
  git@gitlab.com:boube/build-in-kuber.git \
  registry.gitlab.com/boube/build-in-kuber \
  -r 11e6007adff0f84053761b7df6855cc01d5cdd96 \
  -b dir
  -d dockerfiles/Dockefile
  -n ci-cd
  -gs ssh-git-secret
  -as aws-login
  -ds docker-secret

TODO

  • Tests + Pod test
  • Job config file
  • No software-properties-common package on Dockerfile (space)
  • No show passwords

Inspired on https://github.com/containerbuilding/cbi

TEST

About

Build docker images inside kubernetes

gitlab.com/boube/build-in-kuber

Resources

Readme

License

GPL-3.0 license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages