Skip to content

Latest commit

 

History

History

Scenario-302

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
cookbooks/jenkins-demo
cookbooks/jenkins-demo
 
 
README.md
README.md
 
 

README.md

LinkedIn slack Github

File me tickets or star the repo.

Table of Contents

Requirement

  1. For better security, only registered user can login
  2. For better security, Jenkins listen on port 18080, instead of 8080
  3. When Jenkins is down, get alerts

Quiz:

  • Once I have enabled Jenkins security, how my chef update will work?

Procedure

Common Setup

  • Install bundle
apt-get install ruby-dev

ruby --version
# https://github.com/bundler/bundler/issues/4065
sudo gem install bundler -n /usr/local/bin

bundle --version
  • Install gem depenencies
cd cookbooks/jenkins-demo
bundle install

kitchen docker deployment

  • Run kitchen test
# https://github.com/test-kitchen/kitchen-docker
kitchen converge
kitchen list
kitchen verify
kitchen destroy

kitchen digitalocean deployment

# https://github.com/test-kitchen/kitchen-digitalocean
cd cookbooks/jenkins-demo
export KITCHEN_YAML=".kitchen_digitalocean.yml"

# Customize this with your credential
export DIGITALOCEAN_ACCESS_TOKEN="1234"
export DIGITALOCEAN_SSH_KEY_IDS="1234, 5678"

kitchen converge
kitchen list
kitchen verify
kitchen destroy

- TODO: how does the ssh key work? With which OS user, and where the key is?

kitchen ec2 deployment

  • Install AWS cli and configure aws credential
# http://docs.aws.amazon.com/cli/latest/userguide/installing.html
pip install awscli
aws configure

# Customize this
export KEY_USER="denny-kitchen-test"
aws ec2 create-key-pair --key-name $KEY_USER | ruby -e "require 'json'; puts JSON.parse(STDIN.read)['KeyMaterial']" > ~/.ssh/$KEY_USER

chmod 600 ~/.ssh/$KEY_USER

export AWS_SSH_KEY_ID="$KEY_USER"
  • Install and run kitchen-ec2
# https://github.com/test-kitchen/kitchen-ec2
# https://github.com/test-kitchen/kitchen-ec2/blob/master/lib/kitchen/driver/ec2.rb
# http://kg4giy.com/2015/12/11/test-kitchen-to-support-amazon-web-service-aws-amis/

cd cookbooks/jenkins-demo
export KITCHEN_YAML=".kitchen_ec2.yml"
# TODO: customize this
export AWS_SSH_KEY_ID="$KEY_USER"

# Update bundle: https://github.com/chef/chef-provisioning/issues/151
bundle update

kitchen converge
kitchen list
kitchen verify
kitchen destroy

kitchen vagrant deployment

# https://github.com/test-kitchen/kitchen-vagrant
cd cookbooks/jenkins-demo
export KITCHEN_YAML=".kitchen_vagrant.yml"

bundle install

kitchen converge
kitchen list
kitchen verify
kitchen destroy

More Resources

  • TODO: security improvement for the built-in chef user: attributes/default.rb

  • Critical Info

CentOS Jenkins conf: /etc/sysconfig/jenkins