Skip to content

Commit

Permalink
ustream ci: Use infra scripts to build testing images
Browse files Browse the repository at this point in the history
As we do not use molecule features, using a Dockerfile and the
ansible-freeipa deployment roles is enough to create the container
testing images.

This patch removes the usage of molecule in favor of the custom
ansible-freeipa image building script, which allow us to have a similar
process for creating images both on the ustream CI, or on a developer's
environment.

Also, CentOS 7 is removed from the build script, as it in not possible
to run CentOS 7 containers with current versions of systemd.
  • Loading branch information
rjeffman committed Jul 20, 2024
1 parent 9b8662d commit 408ce49
Show file tree
Hide file tree
Showing 2 changed files with 47 additions and 36 deletions.
33 changes: 16 additions & 17 deletions tests/azure/build-containers.yml
Original file line number Diff line number Diff line change
Expand Up @@ -11,51 +11,50 @@ schedules:
trigger: none

pool:
vmImage: 'ubuntu-20.04'
vmImage: 'ubuntu-22.04'

stages:

- stage: CentOS_7
dependsOn: []
jobs:
- template: templates/build_container.yml
parameters:
job_name_suffix: Centos7
container_name: centos-7
build_scenario_name: centos-7-build
# Currently, it's not possible to use CentOS container
#
# - stage: CentOS_7
# dependsOn: []
# jobs:
# - template: templates/build_container.yml
# parameters:
# job_name_suffix: Centos7
# distro: centos-7

- stage: CentOS_8_Stream
dependsOn: []
jobs:
- template: templates/build_container.yml
parameters:
job_name_suffix: C8S
container_name: c8s
build_scenario_name: c8s-build
distro: c8s
# ansible-core 2.17+ cannot be used to deploy on CentOS 8 Stream.
ansible_core_version: "<2.17"

- stage: CentOS_9_Stream
dependsOn: []
jobs:
- template: templates/build_container.yml
parameters:
job_name_suffix: C9S
container_name: c9s
build_scenario_name: c9s-build
distro: c9s

- stage: Fedora_Latest
dependsOn: []
jobs:
- template: templates/build_container.yml
parameters:
job_name_suffix: FedoraLatest
container_name: fedora-latest
build_scenario_name: fedora-latest-build
distro: fedora-latest

- stage: Fedora_Rawhide
dependsOn: []
jobs:
- template: templates/build_container.yml
parameters:
job_name_suffix: FedoraRawhide
container_name: fedora-rawhide
build_scenario_name: fedora-rawhide-build
distro: fedora-rawhide
50 changes: 31 additions & 19 deletions tests/azure/templates/build_container.yml
Original file line number Diff line number Diff line change
Expand Up @@ -2,42 +2,54 @@
parameters:
- name: job_name_suffix
type: string
- name: container_name
type: string
- name: build_scenario_name
- name: distro
type: string
- name: python_version
type: string
default: 3.x
- name: ansible_core_version
default: ""

jobs:
- job: BuildTestImage${{ parameters.job_name_suffix }}
displayName: Build ${{ parameters.container_name }} test container
displayName: Build ${{ parameters.distro }} test container
steps:
- task: UsePythonVersion@0
inputs:
versionSpec: '${{ parameters.python_version }}'

- script: python -m pip install --upgrade pip setuptools wheel ansible
- script: python -m pip install --upgrade pip "ansible-core${{ parameters.ansible_core_version }}"
retryCountOnTaskFailure: 5
displayName: Install tools

- script: pip install molecule-plugins[docker] "requests<2.29"
retryCountOnTaskFailure: 5
displayName: Install molecule
- script: |
rm -rf ~/.ansible
mkdir -p ~/.ansible
ln -snf $(readlink -f roles) ~/.ansible/roles
ln -snf $(readlink -f plugins) ~/.ansible/plugins
displayName: Setup ansible-freeipa using Git repository
- script: molecule create -s ${{ parameters.build_scenario_name }}
retryCountOnTaskFailure: 5
displayName: Create test container
env:
ANSIBLE_LIBRARY: ./molecule
- script: ansible-galaxy collection install containers.podman
displayName: Install Ansible Galaxy collections

- script: |
docker stop ${{ parameters.build_scenario_name }}
docker commit ${{ parameters.build_scenario_name }} quay.io/ansible-freeipa/upstream-tests:${{ parameters.container_name }}
docker login -u="$QUAY_ROBOT_USERNAME" -p="$QUAY_ROBOT_TOKEN" quay.io
docker push quay.io/ansible-freeipa/upstream-tests:${{ parameters.container_name }}
displayName: Save image and upload
- script: infra/image/build.sh -I ${{ parameters.distro }}
displayName: Build ${{ parameters.distro }} base image

- script: podman login -u="$QUAY_ROBOT_USERNAME" -p="$QUAY_ROBOT_TOKEN" quay.io
displayName: Registry login
env:
# Secrets needs to be mapped as env vars to work properly
QUAY_ROBOT_TOKEN: $(QUAY_ROBOT_TOKEN)

- script: |
commited="$(podman commit ansible-test)"
podman push "${commited}" quay.io/ansible-freeipa/upstream-tests:${{ parameters.distro }}-base
displayName: Save base image and upload
- script: infra/image/build.sh -c ansible-test ${{ parameters.distro }}
displayName: Install FreeIPA into the container

- script: |
commited="$(podman commit ansible-test)"
podman push "${commited}" quay.io/ansible-freeipa/upstream-tests:${{ parameters.distro }}
displayName: Save FreeIPA image and upload

0 comments on commit 408ce49

Please sign in to comment.