admin/neon-vortex
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
5753e6ee78a88e137ab6c40d3b119c806bbb3044
neon-vortex/flux-build-on-push.yaml

198 lines
5.5 KiB
YAML
Raw Normal View History

Add complete webhook-based CI/CD with automatic builds and notifications This commit implements a full webhook-triggered CI/CD pipeline: **Flux Components:** - Flux Receiver for Gitea webhooks (generic type, NodePort 30090) - Notification Provider for notify.caffeinetux.com - Alerts for git updates, builds, and deployments **Build Automation:** - Webhook listener deployment that triggers on git push - Automatic Kaniko build jobs with git metadata - Images tagged with both 'latest' and commit SHA - Build notifications sent at start and completion **Workflow:** 1. Push to Gitea → Webhooks trigger Flux receiver & build listener 2. Build listener creates Kaniko job with commit info 3. Kaniko builds and pushes to Harbor (latest + SHA tags) 4. Flux auto-deploys latest image to cluster 5. Notifications sent to notify.caffeinetux.com at each stage **Configuration:** - Token: APMvTuncQJmm6vd - Webhook path: /hook/548969c2b24c717fe9e5af8c78ddfeec40d3024c270c7e85ac8f986259aeec9a - Build trigger: http://<node-ip>:30091/webhook - Comprehensive setup documentation in WEBHOOK_SETUP_GUIDE.md 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
2025-11-22 22:50:07 -05:00
---
# ConfigMap with build script that extracts git commit info
apiVersion: v1
kind: ConfigMap
metadata:
name: build-on-push-script
namespace: default
data:
build.sh: |
#!/bin/bash
set -e
echo "===== Neon Vortex Build Triggered by Git Push ====="
# Get latest commit info from git
cd /workspace
GIT_COMMIT=$(git rev-parse HEAD)
GIT_SHORT_COMMIT=$(git rev-parse --short HEAD)
GIT_MESSAGE=$(git log -1 --pretty=%B)
echo "Commit: $GIT_COMMIT"
echo "Short: $GIT_SHORT_COMMIT"
echo "Message: $GIT_MESSAGE"
# Create unique job name
TIMESTAMP=$(date +%s)
JOB_NAME="neon-vortex-build-${GIT_SHORT_COMMIT}-${TIMESTAMP}"
echo "Creating build job: $JOB_NAME"
# Create the build job
cat <<EOF | kubectl apply -f -
apiVersion: batch/v1
kind: Job
metadata:
name: $JOB_NAME
namespace: default
labels:
app: neon-vortex
build-type: webhook
git-commit: "$GIT_SHORT_COMMIT"
annotations:
git-commit-full: "$GIT_COMMIT"
git-message: "$GIT_MESSAGE"
spec:
ttlSecondsAfterFinished: 7200
backoffLimit: 1
template:
metadata:
labels:
app: neon-vortex
build-type: webhook
spec:
restartPolicy: Never
initContainers:
- name: git-clone
image: alpine/git:latest
command:
- sh
- -c
- |
echo "Cloning repository..."
git clone http://192.168.1.49:13001/admin/neon-vortex.git /workspace
cd /workspace
git checkout $GIT_COMMIT
echo "Checked out commit: $GIT_COMMIT"
volumeMounts:
- name: workspace
mountPath: /workspace
containers:
- name: kaniko
image: gcr.io/kaniko-project/executor:latest
args:
- "--dockerfile=/workspace/htlm/Dockerfile"
- "--context=/workspace/htlm"
- "--destination=images.caffeinetux.com/apps/neon-vortex:latest"
- "--destination=images.caffeinetux.com/apps/neon-vortex:$GIT_SHORT_COMMIT"
- "--cache=true"
- "--cache-repo=images.caffeinetux.com/apps/neon-vortex/cache"
- "--label=git.commit=$GIT_COMMIT"
- "--label=git.message=$GIT_MESSAGE"
volumeMounts:
- name: workspace
mountPath: /workspace
- name: docker-config
mountPath: /kaniko/.docker
volumes:
- name: workspace
emptyDir: {}
- name: docker-config
secret:
secretName: harbor-registry
items:
- key: .dockerconfigjson
path: config.json
EOF
echo "Build job $JOB_NAME created successfully!"
# Send notification
curl -X POST https://notify.caffeinetux.com \
-H "Authorization: Bearer APMvTuncQJmm6vd" \
-H "Content-Type: application/json" \
-d "{\"title\":\"Neon Vortex Build Started\",\"message\":\"Building commit $GIT_SHORT_COMMIT: $GIT_MESSAGE\",\"priority\":3}" \
|| echo "Notification failed (non-critical)"
---
# Kustomization that triggers on every git push
apiVersion: kustomize.toolkit.fluxcd.io/v1
kind: Kustomization
metadata:
name: neon-vortex-build-trigger
namespace: flux-system
spec:
interval: 30s
retryInterval: 1m
timeout: 5m
sourceRef:
kind: GitRepository
name: neon-vortex
namespace: flux-system
path: ./
prune: false
targetNamespace: default
postBuild:
substitute:
TRIGGER_TIME: "{{ .FluxReconcileTime }}"
patches:
- target:
kind: Job
name: flux-triggered-build
patch: |
apiVersion: batch/v1
kind: Job
metadata:
name: flux-triggered-build-{{ .FluxReconcileTime | replace ":" "-" | replace "." "-" | lower }}
namespace: default
spec:
ttlSecondsAfterFinished: 600
template:
spec:
serviceAccountName: build-trigger-sa
restartPolicy: Never
containers:
- name: trigger-build
image: alpine/k8s:1.28.13
command: ["/bin/bash", "/scripts/build.sh"]
volumeMounts:
- name: workspace
mountPath: /workspace
- name: script
mountPath: /scripts
volumes:
- name: workspace
emptyDir: {}
- name: script
configMap:
name: build-on-push-script
defaultMode: 0755
---
# Job template (will be created by Kustomization on each reconcile)
apiVersion: batch/v1
kind: Job
metadata:
name: flux-triggered-build
namespace: default
spec:
ttlSecondsAfterFinished: 600
template:
spec:
serviceAccountName: build-trigger-sa
restartPolicy: Never
containers:
- name: trigger-build
image: alpine/k8s:1.28.13
command:
- /bin/bash
- -c
- |
apk add --no-cache git curl
echo "Cloning repository to check for changes..."
git clone http://192.168.1.49:13001/admin/neon-vortex.git /workspace
cd /workspace
/scripts/build.sh
volumeMounts:
- name: workspace
mountPath: /workspace
- name: script
mountPath: /scripts
volumes:
- name: workspace
emptyDir: {}
- name: script
configMap:
name: build-on-push-script
defaultMode: 0755
Reference in New Issue Copy Permalink