engelsystem/.gitlab-ci.yml

image: php

variables:
  DOCKER_DRIVER: overlay2
  TEST_IMAGE: ${CI_REGISTRY_IMAGE}/engelsystem:${CI_COMMIT_REF_SLUG}
  TEST_IMAGE_NGINX: ${CI_REGISTRY_IMAGE}/nginx:${CI_COMMIT_REF_SLUG}
  RELEASE_IMAGE: ${CI_REGISTRY_IMAGE}/engelsystem:latest
  RELEASE_IMAGE_NGINX: ${CI_REGISTRY_IMAGE}/nginx:latest
  MYSQL_DATABASE: engelsystem
  MYSQL_USER: engel
  MYSQL_PASSWORD: engelsystem
  MYSQL_HOST: mariadb
  MYSQL_RANDOM_ROOT_PASSWORD: "yes"
  MYSQL_INITDB_SKIP_TZINFO: "yes"
  DOCROOT: /var/www/

stages:
  - validate
  - build
  - test
  - release
  - deploy

check-style:
  image: composer:latest
  stage: validate
  before_script:
    - composer --no-ansi global require squizlabs/php_codesniffer
    - export PATH=$PATH:$COMPOSER_HOME/vendor/bin
  script:
    - phpcs -p --no-colors --basepath="$PWD"

validate-composer:
  image: composer:latest
  stage: validate
  script:
    - composer --no-ansi validate --strict

validate-yarn:
  image: node:alpine
  stage: validate
  before_script:
    - yarn global add package-json-validator
    - export PATH=$PATH:~/.yarn/bin
  script:
    - pjv

.docker_template: &docker_definition
  image: docker:18
  services:
    - docker:18-dind
  tags:
    - dind
  before_script:
    - docker login -u gitlab-ci-token -p "${CI_JOB_TOKEN}" "${CI_REGISTRY}"

build-image-nginx:
  <<: *docker_definition
  stage: build
  artifacts:
    name: "${CI_JOB_NAME}_${CI_JOB_ID}_assets"
    expire_in: 1 day
    paths:
      - ./public/assets
  script:
    - docker build --pull -t "${TEST_IMAGE_NGINX}" -f docker/nginx/Dockerfile .
    - docker push "${TEST_IMAGE_NGINX}"
    - instance=$(docker create "${TEST_IMAGE_NGINX}")
    - docker cp "${instance}:/var/www/public/assets" public/
    - docker rm "${instance}"

build-image:
  <<: *docker_definition
  stage: build
  script:
    - apk add -q git
    - VERSION="$(git describe --abbrev=0 --tags)-${CI_COMMIT_REF_NAME}+${CI_PIPELINE_ID}.${CI_COMMIT_SHORT_SHA}"
    - docker build --pull --build-arg VERSION="${VERSION}" -t "${TEST_IMAGE}" -f docker/Dockerfile .
    - docker push "${TEST_IMAGE}"

audit-composer:
  image: ${TEST_IMAGE}
  stage: test
  before_script:
    - curl -sSo /usr/local/bin/security-checker https://get.sensiolabs.org/security-checker.phar
    - chmod +x /usr/local/bin/security-checker
    - cd "${DOCROOT}"
  script:
    - security-checker --no-ansi security:check

audit-yarn:
  image: node:10-alpine
  stage: test
  script:
    - yarn audit

test:
  image: ${TEST_IMAGE}
  stage: test
  services:
    - mariadb:10.2
  artifacts:
    name: "${CI_JOB_NAME}_${CI_JOB_ID}"
    expire_in: 1 week
    when: always
    paths:
      - ./coverage/
      - ./unittests.xml
    reports:
      junit: ./unittests.xml
  coverage: '/^\s*Lines:\s*(\d+(?:\.\d+)?%)/'
  before_script:
    - apk add -q ${PHPIZE_DEPS} && pecl install pcov > /dev/null && docker-php-ext-enable pcov
    - curl -sS https://getcomposer.org/installer | php -- --no-ansi --install-dir /usr/local/bin/ --filename composer
    - cp -R tests/ phpunit.xml "${DOCROOT}"
    - HOMEDIR=$PWD
    - cd "${DOCROOT}"
    - composer --no-ansi install
    - ./bin/migrate
  script:
    - >-
      php -d pcov.enabled=1 vendor/bin/phpunit -vvv --colors=never
      --coverage-text --coverage-html "${HOMEDIR}/coverage/"
      --log-junit "${HOMEDIR}/unittests.xml"
  after_script:
    - '"${DOCROOT}/bin/migrate" down'

release-image:
  <<: *docker_definition
  stage: release
  script:
    - docker pull "${TEST_IMAGE}"
    - docker tag "${TEST_IMAGE}" "${RELEASE_IMAGE}"
    - docker push "${RELEASE_IMAGE}"
  only:
    - master

release-image-nginx:
  <<: *docker_definition
  stage: release
  script:
    - docker pull "${TEST_IMAGE_NGINX}"
    - docker tag "${TEST_IMAGE_NGINX}" "${RELEASE_IMAGE_NGINX}"
    - docker push "${RELEASE_IMAGE_NGINX}"
  only:
    - master

.deploy_template: &deploy_definition
  stage: deploy
  image: ${TEST_IMAGE}
  before_script:
    - apk add -q bash rsync openssh-client

.deploy_template_script:
  # Configure SSH
  - &deploy_template_script |-
    eval $(ssh-agent -s) && echo "${SSH_PRIVATE_KEY}" | ssh-add -
    rsync -vAax public/assets ${DOCROOT}/public/
    cd "${DOCROOT}"

build-release-file:
  <<: *deploy_definition
  stage: deploy
  artifacts:
    name: "release_${CI_COMMIT_REF_SLUG}_${CI_JOB_ID}_${CI_COMMIT_SHA}"
    expire_in: 1 week
    paths:
      - ./release/
  script:
    - rsync -vAax "${DOCROOT}" "${DOCROOT}/.babelrc" "${DOCROOT}/.browserslistrc" release/
    - rsync -vAax public/assets release/public/

deploy-staging:
  <<: *deploy_definition
  environment:
    name: staging
  only:
    - master
  script:
    # Check if deployment variables where set
    - |-
      if [ -z "${SSH_PRIVATE_KEY}" ] || [ -z "${STAGING_REMOTE}" ] || [ -z "${STAGING_REMOTE_PATH}" ]; then
        echo "Skipping deployment"
        exit
      fi
    - *deploy_template_script
    # Deploy to server
    - ./bin/deploy.sh -r "${STAGING_REMOTE}" -p "${STAGING_REMOTE_PATH}" -i "${CI_JOB_ID}-${CI_COMMIT_SHA}"

deploy-production:
  <<: *deploy_definition
  environment:
    name: production
  when: manual
  only:
    - master
  script:
    # Check if deployment variables where set
    - |-
      if [ -z "${SSH_PRIVATE_KEY}" ] || [ -z "${PRODUCTION_REMOTE}" ] || [ -z "${PRODUCTION_REMOTE_PATH}" ]; then
        echo "Skipping deployment"
        exit
      fi
    - *deploy_template_script
    # Deploy to server
    - ./bin/deploy.sh -r "${PRODUCTION_REMOTE}" -p "${PRODUCTION_REMOTE_PATH}" -i "${CI_JOB_ID}-${CI_COMMIT_SHA}"
Added env function, added GitLab CI code coverage config 7 years ago			`image: php`

			`variables:`
Build docker image with gitlab 6 years ago			`DOCKER_DRIVER: overlay2`
CI: Cleanup 5 years ago			`TEST_IMAGE: ${CI_REGISTRY_IMAGE}/engelsystem:${CI_COMMIT_REF_SLUG}`
			`TEST_IMAGE_NGINX: ${CI_REGISTRY_IMAGE}/nginx:${CI_COMMIT_REF_SLUG}`
			`RELEASE_IMAGE: ${CI_REGISTRY_IMAGE}/engelsystem:latest`
			`RELEASE_IMAGE_NGINX: ${CI_REGISTRY_IMAGE}/nginx:latest`
Added env function, added GitLab CI code coverage config 7 years ago			`MYSQL_DATABASE: engelsystem`
			`MYSQL_USER: engel`
			`MYSQL_PASSWORD: engelsystem`
Changed tests database to mariadb 7 years ago			`MYSQL_HOST: mariadb`
Added env function, added GitLab CI code coverage config 7 years ago			`MYSQL_RANDOM_ROOT_PASSWORD: "yes"`
CI: Fix slow mariadb startup 5 years ago			`MYSQL_INITDB_SKIP_TZINFO: "yes"`
Build docker image with gitlab 6 years ago			`DOCROOT: /var/www/`
Added env function, added GitLab CI code coverage config 7 years ago
Build docker image with gitlab 6 years ago			`stages:`
Added composer.json and package.json validation and auditing 5 years ago			`- validate`
Build docker image with gitlab 6 years ago			`- build`
			`- test`
			`- release`
			`- deploy`

Added composer.json and package.json validation and auditing 5 years ago			`check-style:`
			`image: composer:latest`
			`stage: validate`
			`before_script:`
			`- composer --no-ansi global require squizlabs/php_codesniffer`
			`- export PATH=$PATH:$COMPOSER_HOME/vendor/bin`
			`script:`
			`- phpcs -p --no-colors --basepath="$PWD"`

			`validate-composer:`
			`image: composer:latest`
			`stage: validate`
			`script:`
			`- composer --no-ansi validate --strict`

			`validate-yarn:`
			`image: node:alpine`
			`stage: validate`
			`before_script:`
			`- yarn global add package-json-validator`
			`- export PATH=$PATH:~/.yarn/bin`
			`script:`
			`- pjv`

Build docker image with gitlab 6 years ago			`.docker_template: &docker_definition`
GitLab: Fixed failing run as Docker 19 images require shared TLS certificates See https://gitlab.com/gitlab-org/gitlab-runner/issues/4501 5 years ago			`image: docker:18`
Build docker image with gitlab 6 years ago			`services:`
GitLab: Fixed failing run as Docker 19 images require shared TLS certificates See https://gitlab.com/gitlab-org/gitlab-runner/issues/4501 5 years ago			`- docker:18-dind`
Build docker image with gitlab 6 years ago			`tags:`
			`- dind`
			`before_script:`
Formatting 6 years ago			`- docker login -u gitlab-ci-token -p "${CI_JOB_TOKEN}" "${CI_REGISTRY}"`
Added env function, added GitLab CI code coverage config 7 years ago
CI: Cleanup 5 years ago			`build-image-nginx:`
Build docker image with gitlab 6 years ago			`<<: *docker_definition`
Docker/Release: Add more state files, improved Dockerfiles 5 years ago			`stage: build`
Docker: Decoupled nginx and fpm builds 5 years ago			`artifacts:`
			`name: "${CI_JOB_NAME}_${CI_JOB_ID}_assets"`
			`expire_in: 1 day`
			`paths:`
			`- ./public/assets`
Build docker image with gitlab 6 years ago			`script:`
CI: Cleanup 5 years ago			`- docker build --pull -t "${TEST_IMAGE_NGINX}" -f docker/nginx/Dockerfile .`
			`- docker push "${TEST_IMAGE_NGINX}"`
			`- instance=$(docker create "${TEST_IMAGE_NGINX}")`
Docker: Decoupled nginx and fpm builds 5 years ago			`- docker cp "${instance}:/var/www/public/assets" public/`
			`- docker rm "${instance}"`
Added env function, added GitLab CI code coverage config 7 years ago
Fixed release file build (did not include frontend files), formatting 6 years ago			`build-image:`
Build docker image with gitlab 6 years ago			`<<: *docker_definition`
			`stage: build`
			`script:`
Added composer.json and package.json validation and auditing 5 years ago			`- apk add -q git`
Added version to credits and metrics page 5 years ago			`- VERSION="$(git describe --abbrev=0 --tags)-${CI_COMMIT_REF_NAME}+${CI_PIPELINE_ID}.${CI_COMMIT_SHORT_SHA}"`
Adds a docker dev setup 5 years ago			`- docker build --pull --build-arg VERSION="${VERSION}" -t "${TEST_IMAGE}" -f docker/Dockerfile .`
Fixed release file build (did not include frontend files), formatting 6 years ago			`- docker push "${TEST_IMAGE}"`
Added env function, added GitLab CI code coverage config 7 years ago
Added composer.json and package.json validation and auditing 5 years ago			`audit-composer:`
			`image: ${TEST_IMAGE}`
			`stage: test`
			`before_script:`
			`- curl -sSo /usr/local/bin/security-checker https://get.sensiolabs.org/security-checker.phar`
			`- chmod +x /usr/local/bin/security-checker`
			`- cd "${DOCROOT}"`
			`script:`
			`- security-checker --no-ansi security:check`

			`audit-yarn:`
			`image: node:10-alpine`
			`stage: test`
			`script:`
			`- yarn audit`

Build docker image with gitlab 6 years ago			`test:`
Formatting 6 years ago			`image: ${TEST_IMAGE}`
Refactored .gitlab-ci.yml, added deploy to production 7 years ago			`stage: test`
Build docker image with gitlab 6 years ago			`services:`
			`- mariadb:10.2`
Added env function, added GitLab CI code coverage config 7 years ago			`artifacts:`
Updated .gitlab-ci.yaml to create a release archive 6 years ago			`name: "${CI_JOB_NAME}_${CI_JOB_ID}"`
Added env function, added GitLab CI code coverage config 7 years ago			`expire_in: 1 week`
CI: Always add artifacts 6 years ago			`when: always`
Added env function, added GitLab CI code coverage config 7 years ago			`paths:`
			`- ./coverage/`
Added junit xml export artifacts for GitLab CI 6 years ago			`- ./unittests.xml`
			`reports:`
			`junit: ./unittests.xml`
Added env function, added GitLab CI code coverage config 7 years ago			`coverage: '/^\sLines:\s(\d+(?:\.\d+)?%)/'`
Build docker image with gitlab 6 years ago			`before_script:`
Use pcov to speed up tests with code coverage 5 years ago			`- apk add -q ${PHPIZE_DEPS} && pecl install pcov > /dev/null && docker-php-ext-enable pcov`
Build docker image with gitlab 6 years ago			`- curl -sS https://getcomposer.org/installer \| php -- --no-ansi --install-dir /usr/local/bin/ --filename composer`
			`- cp -R tests/ phpunit.xml "${DOCROOT}"`
Formatting to follow PSR-12 5 years ago			`- HOMEDIR=$PWD`
Build docker image with gitlab 6 years ago			`- cd "${DOCROOT}"`
Upgraded external components 6 years ago			`- composer --no-ansi install`
Merged build-docker-ci to master 6 years ago			`- ./bin/migrate`
			`script:`
CI: Cleanup 5 years ago			`- >-`
			`php -d pcov.enabled=1 vendor/bin/phpunit -vvv --colors=never`
			`--coverage-text --coverage-html "${HOMEDIR}/coverage/"`
			`--log-junit "${HOMEDIR}/unittests.xml"`
			`after_script:`
			`- '"${DOCROOT}/bin/migrate" down'`
Formatting to follow PSR-12 5 years ago
Build docker image with gitlab 6 years ago			`release-image:`
			`<<: *docker_definition`
			`stage: release`
			`script:`
Formatting 6 years ago			`- docker pull "${TEST_IMAGE}"`
			`- docker tag "${TEST_IMAGE}" "${RELEASE_IMAGE}"`
			`- docker push "${RELEASE_IMAGE}"`
Build docker image with gitlab 6 years ago			`only:`
			`- master`
Added env function, added GitLab CI code coverage config 7 years ago
CI: Cleanup 5 years ago			`release-image-nginx:`
Build docker image with gitlab 6 years ago			`<<: *docker_definition`
			`stage: release`
			`script:`
CI: Cleanup 5 years ago			`- docker pull "${TEST_IMAGE_NGINX}"`
			`- docker tag "${TEST_IMAGE_NGINX}" "${RELEASE_IMAGE_NGINX}"`
			`- docker push "${RELEASE_IMAGE_NGINX}"`
Build docker image with gitlab 6 years ago			`only:`
			`- master`
Added deploy to staging 7 years ago
Refactored .gitlab-ci.yml, added deploy to production 7 years ago			`.deploy_template: &deploy_definition`
Added deploy to staging 7 years ago			`stage: deploy`
Formatting 6 years ago			`image: ${TEST_IMAGE}`
Refactored .gitlab-ci.yml, added deploy to production 7 years ago			`before_script:`
Added composer.json and package.json validation and auditing 5 years ago			`- apk add -q bash rsync openssh-client`
Refactored .gitlab-ci.yml, added deploy to production 7 years ago
			`.deploy_template_script:`
			`# Configure SSH`
Merged build-docker-ci to master 6 years ago			`- &deploy_template_script \|-`
Added composer.json and package.json validation and auditing 5 years ago			`eval $(ssh-agent -s) && echo "${SSH_PRIVATE_KEY}" \| ssh-add -`
CI: Deployment: Fix assets 5 years ago			`rsync -vAax public/assets ${DOCROOT}/public/`
Build docker image with gitlab 6 years ago			`cd "${DOCROOT}"`
Refactored .gitlab-ci.yml, added deploy to production 7 years ago
Build docker image with gitlab 6 years ago			`build-release-file:`
Updated .gitlab-ci.yaml to create a release archive 6 years ago			`<<: *deploy_definition`
Build docker image with gitlab 6 years ago			`stage: deploy`
Updated .gitlab-ci.yaml to create a release archive 6 years ago			`artifacts:`
			`name: "release_${CI_COMMIT_REF_SLUG}_${CI_JOB_ID}_${CI_COMMIT_SHA}"`
			`expire_in: 1 week`
			`paths:`
			`- ./release/`
			`script:`
Docker/Release: Add more state files, improved Dockerfiles 5 years ago			`- rsync -vAax "${DOCROOT}" "${DOCROOT}/.babelrc" "${DOCROOT}/.browserslistrc" release/`
Docker: Decoupled nginx and fpm builds 5 years ago			`- rsync -vAax public/assets release/public/`
Updated .gitlab-ci.yaml to create a release archive 6 years ago
Build docker image with gitlab 6 years ago			`deploy-staging:`
Refactored .gitlab-ci.yml, added deploy to production 7 years ago			`<<: *deploy_definition`
			`environment:`
			`name: staging`
Build docker image with gitlab 6 years ago			`only:`
			`- master`
Added deploy to staging 7 years ago			`script:`
Refactored .gitlab-ci.yml, added deploy to production 7 years ago			`# Check if deployment variables where set`
Added deploy to staging 7 years ago			`- \|-`
Refactored .gitlab-ci.yml, added deploy to production 7 years ago			`if [ -z "${SSH_PRIVATE_KEY}" ] \|\| [ -z "${STAGING_REMOTE}" ] \|\| [ -z "${STAGING_REMOTE_PATH}" ]; then`
CI: Cleanup 5 years ago			`echo "Skipping deployment"`
Added deploy to staging 7 years ago			`exit`
			`fi`
Merged build-docker-ci to master 6 years ago			`- *deploy_template_script`
Refactored .gitlab-ci.yml, added deploy to production 7 years ago			`# Deploy to server`
Moved deploy.sh to bin folder 6 years ago			`- ./bin/deploy.sh -r "${STAGING_REMOTE}" -p "${STAGING_REMOTE_PATH}" -i "${CI_JOB_ID}-${CI_COMMIT_SHA}"`
Added deploy to staging 7 years ago
Build docker image with gitlab 6 years ago			`deploy-production:`
Refactored .gitlab-ci.yml, added deploy to production 7 years ago			`<<: *deploy_definition`
			`environment:`
			`name: production`
			`when: manual`
Build docker image with gitlab 6 years ago			`only:`
			`- master`
Refactored .gitlab-ci.yml, added deploy to production 7 years ago			`script:`
			`# Check if deployment variables where set`
			`- \|-`
			`if [ -z "${SSH_PRIVATE_KEY}" ] \|\| [ -z "${PRODUCTION_REMOTE}" ] \|\| [ -z "${PRODUCTION_REMOTE_PATH}" ]; then`
CI: Cleanup 5 years ago			`echo "Skipping deployment"`
Refactored .gitlab-ci.yml, added deploy to production 7 years ago			`exit`
			`fi`
Merged build-docker-ci to master 6 years ago			`- *deploy_template_script`
Refactored .gitlab-ci.yml, added deploy to production 7 years ago			`# Deploy to server`
Moved deploy.sh to bin folder 6 years ago			`- ./bin/deploy.sh -r "${PRODUCTION_REMOTE}" -p "${PRODUCTION_REMOTE_PATH}" -i "${CI_JOB_ID}-${CI_COMMIT_SHA}"`