The latest articles on DEV Community by Lester Diaz Perez (@sharker3312). https://dev.to/sharker3312 https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F1299900%2F7a42a784-c654-4960-8111-01c210d63003.jpg https://dev.to/sharker3312 en Lester Diaz Perez Sun, 22 Jun 2025 00:46:42 +0000 https://dev.to/sharker3312/-4bhb https://dev.to/sharker3312/-4bhb <div class="ltag__link--embedded"> <div class="crayons-story "> <a href="https://dev.to/sharker3312/azure-devops-build-push-docker-micro-services-to-azure-container-registry-3c5b" class="crayons-story__hidden-navigation-link">Azure DevOps: build &amp; push docker micro-services to Azure Container Registry</a> <div class="crayons-story__body crayons-story__body-full_post"> <div class="crayons-story__top"> <div class="crayons-story__meta"> <div class="crayons-story__author-pic"> <a href="/sharker3312" class="crayons-avatar crayons-avatar--l "> <img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F1299900%2F7a42a784-c654-4960-8111-01c210d63003.jpg" alt="sharker3312 profile" class="crayons-avatar__image"> </a> </div> <div> <div> <a href="/sharker3312" class="crayons-story__secondary fw-medium m:hidden"> Lester Diaz Perez </a> <div class="profile-preview-card relative mb-4 s:mb-0 fw-medium hidden m:inline-block"> Lester Diaz Perez <div id="story-author-preview-content-2584934" class="profile-preview-card__content crayons-dropdown branded-7 p-4 pt-0"> <div class="gap-4 grid"> <div class="-mt-4"> <a href="/sharker3312" class="flex"> <span class="crayons-avatar crayons-avatar--xl mr-2 shrink-0"> <img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F1299900%2F7a42a784-c654-4960-8111-01c210d63003.jpg" class="crayons-avatar__image" alt=""> </span> <span class="crayons-link crayons-subtitle-2 mt-5">Lester Diaz Perez</span> </a> </div> <div class="print-hidden"> Follow </div> <div class="author-preview-metadata-container"></div> </div> </div> </div> </div> <a href="https://dev.to/sharker3312/azure-devops-build-push-docker-micro-services-to-azure-container-registry-3c5b" class="crayons-story__tertiary fs-xs"><time>Jun 21 '25</time><span class="time-ago-indicator-initial-placeholder"></span></a> </div> </div> </div> <div class="crayons-story__indention"> <h2 class="crayons-story__title crayons-story__title-full_post"> <a href="https://dev.to/sharker3312/azure-devops-build-push-docker-micro-services-to-azure-container-registry-3c5b" id="article-link-2584934"> Azure DevOps: build &amp; push docker micro-services to Azure Container Registry </a> </h2> <div class="crayons-story__tags"> <a class="crayons-tag crayons-tag--monochrome " href="/t/azure"><span class="crayons-tag__prefix">#</span>azure</a> <a class="crayons-tag crayons-tag--monochrome " href="/t/devops"><span class="crayons-tag__prefix">#</span>devops</a> <a class="crayons-tag crayons-tag--monochrome " href="/t/cicd"><span class="crayons-tag__prefix">#</span>cicd</a> <a class="crayons-tag crayons-tag--monochrome " href="/t/docker"><span class="crayons-tag__prefix">#</span>docker</a> </div> <div class="crayons-story__bottom"> <div class="crayons-story__details"> <a href="https://dev.to/sharker3312/azure-devops-build-push-docker-micro-services-to-azure-container-registry-3c5b" class="crayons-btn crayons-btn--s crayons-btn--ghost crayons-btn--icon-left"> <div class="multiple_reactions_aggregate"> <span class="multiple_reactions_icons_container"> <span class="crayons_icon_container"> <img src="https://assets.dev.to/assets/fire-f60e7a582391810302117f987b22a8ef04a2fe0df7e3258a5f49332df1cec71e.svg" width="18" height="18"> </span> </span> <span class="aggregate_reactions_counter">1<span class="hidden s:inline"> reaction</span></span> </div> </a> <a href="https://dev.to/sharker3312/azure-devops-build-push-docker-micro-services-to-azure-container-registry-3c5b#comments" class="crayons-btn crayons-btn--s crayons-btn--ghost crayons-btn--icon-left flex items-center"> Comments 1<span class="hidden s:inline"> comment</span> </a> </div> <div class="crayons-story__save"> <small class="crayons-story__tertiary fs-xs mr-2"> 5 min read </small> <span class="bm-initial"> </span> <span class="bm-success"> </span> </div> </div> </div> </div> </div> </div> azure devops cicd docker Lester Diaz Perez Sat, 21 Jun 2025 19:10:09 +0000 https://dev.to/sharker3312/deploying-argocd-on-an-azure-kubernetes-cluster-for-gitops-4cp0 https://dev.to/sharker3312/deploying-argocd-on-an-azure-kubernetes-cluster-for-gitops-4cp0 <h1> Azure Kubernetes Service (AKS) Cluster Setup ☸️ </h1> <p>This document outlines the steps to create an Azure Kubernetes Service (AKS) cluster.</p> <h2> 1. Prerequisites: Equipping Your Toolkit 🛠️ </h2> <p>Before you begin, ensure you have:</p> <ul> <li> An active Azure subscription 💳.</li> <li> Azure CLI installed and configured. If not, follow the <a href="https://docs.microsoft.com/cli/azure/install-azure-cli" rel="noopener noreferrer">official Azure CLI installation guide</a> 💻.</li> <li> <code>kubectl</code> installed. If not, follow the <a href="https://kubernetes.io/docs/tasks/tools/install-kubectl/" rel="noopener noreferrer">official kubectl installation guide</a> ## 2. Create AKS Cluster: Setting up Your Kubernetes Environment 🔥➡️☸️</li> </ul> <p>Time to create your AKS cluster.</p> <ol> <li> <strong>Sign in to Azure Portal</strong>: Navigate to <a href="https://portal.azure.com" rel="noopener noreferrer">portal.azure.com</a> 🔑.</li> <li> <strong>Search for AKS</strong>: In the search bar, type "Azure Kubernetes Service" and select it 🔍.</li> </ol> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fwm7rcz6yeph134362uua.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fwm7rcz6yeph134362uua.png" alt=" " width="510" height="272"></a></p> <ol> <li> <strong>Initiate Cluster Creation</strong>: Click "Create" and then "Create Kubernetes cluster" ✨.</li> <li> <strong>Configure Basic Settings</strong> ⚙️: <ul> <li> <strong>Project details</strong>: Select your Azure subscription and resource group 📂.</li> <li> <strong>Cluster details</strong>: <ul> <li> <strong>Kubernetes cluster name</strong>: Enter a unique name for your cluster 🏷️.</li> <li> <strong>Region</strong>: Choose the Azure region for your cluster 🌍.</li> <li> <strong>Availability zones</strong>: Select zones for high availability if needed 🏞️.</li> <li> <strong>AKS pricing tier</strong>: Standard is recommended for production 💰.</li> <li> <strong>Kubernetes version</strong>: Choose a recent, stable version ✅.</li> </ul> </li> <li> <strong>Primary node pool</strong>: <ul> <li> <strong>Node size</strong>: Select an appropriate VM size 🖥️. <code>Standard_B2s</code> is a good starting point for dev/test. For production, consider <code>Standard_D2s_v3</code>.</li> <li> <strong>Scale method</strong>: Choose "Autoscale" for flexibility ⚖️.</li> <li> <strong>Node count</strong>: Set the initial number of nodes #️⃣.</li> </ul> </li> </ul> </li> </ol> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fsaztl4nj2n2d0e10rug8.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fsaztl4nj2n2d0e10rug8.png" alt=" " width="800" height="660"></a><br> .</p> <ol> <li> <strong>Review and Create</strong>: Carefully review all settings 👀. Once confirmed, click "Create". Cluster deployment may take several minutes ⏳. (Perfect time for a coffee! ☕)</li> </ol> <h2> 3. Connect to Your AKS Cluster: Establishing Communication 🔮 </h2> <p>After the cluster is deployed, connect to it.</p> <ol> <li> <p><strong>Install Azure CLI (if not already done)</strong>:<br> Ensure Azure CLI is installed 💻.<br> Verify installation:<br> </p> <pre class="highlight shell"><code>az <span class="nt">--version</span> </code></pre> </li> <li> <p><strong>Login to Azure</strong> 🔑:<br> </p> <pre class="highlight shell"><code>az login </code></pre> <p>Follow the prompts to authenticate.</p> </li> <li> <p><strong>Get Cluster Credentials</strong> 📜:<br> This command configures <code>kubectl</code>.<br> </p> <pre class="highlight shell"><code>az aks get-credentials <span class="nt">--resource-group</span> &lt;your-resource-group&gt; <span class="nt">--name</span> &lt;your-cluster-name&gt; </code></pre> </li> <li> <p><strong>Verify Connection</strong> ✅:<br> Check if your nodes are ready.<br> </p> <pre class="highlight shell"><code>kubectl get nodes </code></pre> <p>You should see your nodes listed with a <code>Ready</code> status.<br> </p> <pre class="highlight plaintext"><code>NAME STATUS ROLES AGE VERSION aks-systempool-12345678-vmss000000 Ready agent 5m16s v1.28.5 aks-systempool-12345678-vmss000001 Ready agent 5m17s v1.28.5 </code></pre> </li> </ol> <h2> 4. Install ArgoCD using Helm: Your GitOps Companion 🧙‍♂️⛵📦 </h2> <p>ArgoCD will manage your deployments based on your Git repository.</p> <ol> <li> <p><strong>Add ArgoCD Helm Repository</strong> ➕:<br> </p> <pre class="highlight shell"><code>helm repo add argo https://argoproj.github.io/argo-helm </code></pre> </li> <li> <p><strong>Update Helm Repositories</strong> 🔄:<br> </p> <pre class="highlight shell"><code>helm repo update </code></pre> </li> <li> <p><strong>Install ArgoCD</strong> 🚀:<br> This installs ArgoCD into the <code>argocd</code> namespace.<br> </p> <pre class="highlight shell"><code>helm <span class="nb">install </span>argocd argo/argo-cd <span class="nt">--namespace</span> argocd <span class="nt">--create-namespace</span> </code></pre> </li> <li> <p><strong>Access ArgoCD UI (via Port Forwarding)</strong> 🖥️➡️🚪:<br> Access the ArgoCD dashboard.<br> </p> <pre class="highlight shell"><code>kubectl get pods <span class="nt">-n</span> argocd <span class="c"># Wait for argocd-server to be Running</span> kubectl port-forward svc/argocd-server <span class="nt">-n</span> argocd 8080:https </code></pre> </li> </ol> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fau7sgxrgk1ol7d4tzqry.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fau7sgxrgk1ol7d4tzqry.png" alt=" " width="800" height="404"></a><br> Open <code>https://localhost:8080</code> in your browser.</p> <ol> <li> <p><strong>Get Initial Admin Password</strong> 🤫🔑:<br> "Keep it secret, keep it safe!" (Okay, just one for the road! 😉)<br> </p> <pre class="highlight shell"><code>kubectl <span class="nt">-n</span> argocd get secret argocd-initial-admin-secret <span class="nt">-o</span> <span class="nv">jsonpath</span><span class="o">=</span><span class="s2">"{.data.password}"</span> | <span class="nb">base64</span> <span class="nt">-d</span><span class="p">;</span> <span class="nb">echo</span> </code></pre> </li> </ol> <h2> 5. Next Steps: The Journey Continues... ➡️👣 </h2> <p>Your AKS and ArgoCD setup is complete!</p> <ul> <li> Connect Git repositories to ArgoCD 🔗.</li> <li> Define applications for ArgoCD to manage 📝.</li> </ul> kubernetes gitops azure devops Lester Diaz Perez Sat, 21 Jun 2025 19:08:05 +0000 https://dev.to/sharker3312/azure-devops-build-push-docker-micro-services-to-azure-container-registry-3c5b https://dev.to/sharker3312/azure-devops-build-push-docker-micro-services-to-azure-container-registry-3c5b <h2> 🦆 Prerequisites: Get Your Ducks in a Row </h2> <p>Before we dive in:</p> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Requirement</th> <th>Why You Need It</th> </tr> </thead> <tbody> <tr> <td>✅ <strong>Azure subscription</strong> </td> <td>Need Credits</td> </tr> <tr> <td>✅ <strong>Docker basics</strong> </td> <td>Containerization knowledge</td> </tr> <tr> <td>✅ <strong>Git workflows</strong> </td> <td>Version control fundamentals</td> </tr> <tr> <td>✅ <strong>GitHub repo</strong> </td> <td><a href="https://github.com/dockersamples/example-voting-app" rel="noopener noreferrer">Fork this repo</a></td> </tr> <tr> <td>☕ <strong>Coffee</strong> </td> <td>Optional but highly recommended</td> </tr> </tbody> </table></div> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F2udvz60ngc1rx0bsroe2.gif" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F2udvz60ngc1rx0bsroe2.gif" alt="Let's Go!" width="480" height="202"></a></p> <p><strong>Microservices Architecture:</strong></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F7c2jxgkmfrcunbt31cna.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F7c2jxgkmfrcunbt31cna.png" alt=" " width="800" height="742"></a></p> <h2> 🏗️ Step 1: Azure DevOps Foundation </h2> <h3> Why Azure DevOps? </h3> <ul> <li>🔥 <strong>Industry standard</strong> for enterprise CI/CD</li> <li>💎 <strong>Free private repos</strong> (up to 5 users)</li> <li>🚀 <strong>Seamless Azure integration</strong> </li> </ul> <h3> Quick Setup: </h3> <ol> <li>🌐 Head to <a href="https://dev.azure.com" rel="noopener noreferrer">Azure DevOps</a> </li> <li>🆕 Create new project</li> <li>🔗 Link your forked <code>example-voting-app</code> repo</li> </ol> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F5th922k8tq98whbrcffg.jpg" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F5th922k8tq98whbrcffg.jpg" alt=" " width="576" height="362"></a></p> <h2> 🏪 Step 2: Container Registry - Your Image Vault </h2> <h3> The Solution: Azure Container Registry (ACR) </h3> <ul> <li>🔒 <strong>Private &amp; secure</strong> </li> <li>⚡ <strong>Geo-replication</strong> </li> <li>🔗 <strong>Native Azure integration</strong> </li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F96d223ak09tu7rjm333f.jpg" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F96d223ak09tu7rjm333f.jpg" alt=" " width="526" height="165"></a></p> <p><strong>Think of ACR as:</strong> Your private, VIP parking garage for containers! </p> <h3> Quick Create: </h3> <p>Navigate to Container Registry → Create</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fqstudlcvun556kd4n4o5.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fqstudlcvun556kd4n4o5.png" alt=" " width="793" height="712"></a></p> <p><strong>Oops! 🤦‍♂️</strong> Need a Resource Group first. Let's fix that...</p> <h2> 📁 Step 3: Resource Group - Organization Master </h2> <p><strong>What it is:</strong> Think digital folder that keeps all your Azure resources organized.</p> <p><strong>Why it matters:</strong> </p> <ul> <li>💰 <strong>Cost tracking</strong> per project</li> <li>🗂️ <strong>Easy cleanup</strong> (delete group = delete everything)</li> <li>🎯 <strong>Access management</strong> in one place</li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fo7r3inr3r7316r0i6xh2.jpg" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fo7r3inr3r7316r0i6xh2.jpg" alt=" " width="800" height="381"></a></p> <p><strong>Naming convention:</strong> <code>rg-voting-app-prod</code> (descriptive + environment)</p> <h2> 🤖 Step 4: Self-Hosted Agent - Your Build Butler </h2> <h3> Hosted vs Self-Hosted: The Truth </h3> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Hosted Agents</th> <th>Self-Hosted Agents</th> </tr> </thead> <tbody> <tr> <td>💸 Pay per minute</td> <td>💰 <strong>Free after VM cost</strong> </td> </tr> <tr> <td>🐌 Queue times</td> <td>⚡ <strong>Instant builds</strong> </td> </tr> <tr> <td>🔒 Limited customization</td> <td>🔧 <strong>Full control</strong> </td> </tr> </tbody> </table></div> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fmedy0perb7rvhynl6mtj.gif" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fmedy0perb7rvhynl6mtj.gif" alt="Let's Go!" width="398" height="478"></a></p> <h3> Setup Process: </h3> <ol> <li>🖥️ Create Ubuntu VM in Azure</li> <li>⚙️ <strong>Azure DevOps</strong> → Project Settings → Agent Pools → Add pool</li> <li>📋 Follow installation steps</li> </ol> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fofwjdiezqni2mofu2dtf.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fofwjdiezqni2mofu2dtf.png" alt=" " width="800" height="768"></a></p> <h3> 🔐 Security: Personal Access Token (PAT) </h3> <p><strong>Why PAT?</strong> Secure communication between agent and Azure DevOps.</p> <p><strong>Steps:</strong></p> <ol> <li>Profile picture → <strong>Personal Access Tokens</strong> </li> <li>Create token with required scopes</li> </ol> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fa6t6kadnqcmh4rgqb0g7.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fa6t6kadnqcmh4rgqb0g7.png" alt=" " width="703" height="498"></a></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fjg5yxjozozh0o9kqe7p4.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fjg5yxjozozh0o9kqe7p4.png" alt=" " width="800" height="137"></a></p> <p><strong>Security Note:</strong> Full access scope = demo only. Production = minimal required permissions! ⚠️</p> <h2> 💍 Step 5: Crafting My Preciouuuuss Pipeline </h2> <p><em>"One pipeline to build them all, one pipeline to find them, one pipeline to bring them all, and in the registry bind them."</em> – DevOps Gandalf</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F83o2mg400gj699es9mud.gif" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F83o2mg400gj699es9mud.gif" alt="DevOps Sauron" width="400" height="200"></a></p> <h3> Pipeline Creation Magic ✨ </h3> <p><strong>Azure DevOps makes this stupid easy:</strong></p> <ol> <li> <strong>Pipelines</strong> → New Pipeline</li> <li><strong>Azure Repos Git</strong></li> <li>Select repository</li> <li><strong>Docker - build and push to ACR</strong></li> </ol> <p>!<br> <a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fumnawdfycj2s4hrnleta.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fumnawdfycj2s4hrnleta.png" alt=" " width="800" height="421"></a></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F5oqg9neyqffhi3quanu1.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F5oqg9neyqffhi3quanu1.png" alt=" " width="800" height="655"></a><br> Look at all the infinity of tasks available! Probably all frequently used tasks are already developed here. But you know, if something's missing, you can always create it yourself!</p> <h2> Dockerize and Push Our Vote Microservice </h2> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Faedn0j6qo9qbl0ejz6vn.jpg" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Faedn0j6qo9qbl0ejz6vn.jpg" alt=" " width="800" height="743"></a></p> <h3> 🐳 Creating the Vote Pipeline </h3> <p>Now let's create a dedicated pipeline for our vote microservice. This pipeline will:</p> <ul> <li>✅ <strong>Trigger only on vote/ changes</strong> (efficient builds)</li> <li>✅ <strong>Build the Python Flask app</strong> using Docker</li> <li>✅ <strong>Push to Azure Container Registry</strong> securely</li> <li>✅ <strong>Tag with build number</strong> for version tracking</li> </ul> <p><strong>Pipeline Configuration:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">trigger</span><span class="pi">:</span> <span class="na">paths</span><span class="pi">:</span> <span class="na">include</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">vote/*</span> <span class="c1"># Only triggers when vote microservice changes</span> <span class="na">resources</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">repo</span><span class="pi">:</span> <span class="s">self</span> <span class="na">variables</span><span class="pi">:</span> <span class="na">dockerRegistryServiceConnection</span><span class="pi">:</span> <span class="s1">'</span><span class="s">2833cab0-ae52-474d-97fd-43a2db870ebe'</span> <span class="na">imageRepository</span><span class="pi">:</span> <span class="s1">'</span><span class="s">vote'</span> <span class="c1"># For each service one repository (worker, result)</span> <span class="na">containerRegistry</span><span class="pi">:</span> <span class="s1">'</span><span class="s">sharker3312.azurecr.io'</span> <span class="na">dockerfilePath</span><span class="pi">:</span> <span class="s1">'</span><span class="s">$(Build.SourcesDirectory)/vote/Dockerfile'</span> <span class="c1"># Dockerfile PATH</span> <span class="na">tag</span><span class="pi">:</span> <span class="s1">'</span><span class="s">$(Build.BuildId)'</span> <span class="na">pool</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s1">'</span><span class="s">self-host'</span> <span class="c1"># Using our self-hosted agent</span> <span class="na">stages</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">stage</span><span class="pi">:</span> <span class="s">Build</span> <span class="na">displayName</span><span class="pi">:</span> <span class="s">Build and push stage</span> <span class="na">jobs</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">job</span><span class="pi">:</span> <span class="s">Build</span> <span class="na">displayName</span><span class="pi">:</span> <span class="s">Build</span> <span class="na">steps</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">task</span><span class="pi">:</span> <span class="s">Docker@2</span> <span class="na">displayName</span><span class="pi">:</span> <span class="s">Build and push an image to container registry</span> <span class="na">inputs</span><span class="pi">:</span> <span class="na">command</span><span class="pi">:</span> <span class="s">buildAndPush</span> <span class="na">repository</span><span class="pi">:</span> <span class="s">$(imageRepository)</span> <span class="na">dockerfile</span><span class="pi">:</span> <span class="s">$(dockerfilePath)</span> <span class="na">containerRegistry</span><span class="pi">:</span> <span class="s">$(dockerRegistryServiceConnection)</span> <span class="na">tags</span><span class="pi">:</span> <span class="pi">|</span> <span class="s">$(tag)</span> <span class="s">latest</span> </code></pre> </div> <h2> 🚨 <strong>REALITY CHECK: When Things Go BOOM!</strong> 💥 </h2> <p><em>Because let's be honest - your first pipeline run is going to fail spectacularly, and that's perfectly normal!</em> 😅</p> <h3> 🔥 <strong>THE MOMENT OF TRUTH</strong> 🔥 </h3> <p>You hit that "Run Pipeline" button with all the confidence in the world, and then...</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fji0676g1ie9crf9dsuio.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fji0676g1ie9crf9dsuio.png" alt=" " width="800" height="331"></a></p> <p><strong>Problem Solved:</strong> Our agent needs Docker to build those containers! Let's fix that:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">sudo </span>apt-get update <span class="nb">sudo </span>apt-get <span class="nb">install</span> <span class="nt">-y</span> apt-transport-https ca-certificates curl software-properties-common curl <span class="nt">-fsSL</span> https://download.docker.com/linux/ubuntu/gpg | <span class="nb">sudo </span>gpg <span class="nt">--dearmor</span> <span class="nt">-o</span> /usr/share/keyrings/docker-archive-keyring.gpg <span class="nb">echo</span> <span class="s2">"deb [arch=</span><span class="si">$(</span>dpkg <span class="nt">--print-architecture</span><span class="si">)</span><span class="s2"> signed-by=/usr/share/keyrings/docker-archive-keyring.gpg] https://download.docker.com/linux/ubuntu </span><span class="si">$(</span>lsb_release <span class="nt">-cs</span><span class="si">)</span><span class="s2"> stable"</span> | <span class="nb">sudo tee</span> /etc/apt/sources.list.d/docker.list <span class="o">&gt;</span> /dev/null <span class="nb">sudo </span>apt-get update <span class="nb">sudo </span>apt-get <span class="nb">install</span> <span class="nt">-y</span> docker-ce docker-ce-cli containerd.io <span class="c"># Add agent user to docker group (no sudo needed for docker)</span> <span class="nb">sudo </span>usermod <span class="nt">-aG</span> docker <span class="nv">$USER</span> </code></pre> </div> <p>Don't worry about errors - they're just DevOps giving you a chance to learn something new! 🧠</p> <h3> 🏷️ Tagging Strategy Explained: </h3> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Tag</th> <th>Example</th> <th>Purpose</th> </tr> </thead> <tbody> <tr> <td><strong>Build ID</strong></td> <td><code>vote:12345</code></td> <td>Specific version tracking</td> </tr> <tr> <td><strong>Latest</strong></td> <td><code>vote:latest</code></td> <td>Always points to newest build</td> </tr> </tbody> </table></div> <h2> 🔄 Step 7: Worker &amp; Result Microservices </h2> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fe2dvzbsa6i9vly8ux3fr.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fe2dvzbsa6i9vly8ux3fr.png" alt=" " width="800" height="742"></a></p> <h3> 👷‍♂️ The Worker Pipeline </h3> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code> <span class="na">imageRepository</span><span class="pi">:</span> <span class="s1">'</span><span class="s">worker'</span> <span class="c1"># Changed from 'vote'</span> <span class="na">dockerfilePath</span><span class="pi">:</span> <span class="s1">'</span><span class="s">$(Build.SourcesDirectory)/worker/Dockerfile'</span> <span class="c1"># Changed path</span> </code></pre> </div> <p><strong>Also update your trigger path:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">trigger</span><span class="pi">:</span> <span class="na">paths</span><span class="pi">:</span> <span class="na">include</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">worker/*</span> <span class="c1"># Only triggers when worker microservice changes</span> </code></pre> </div> <h3> 📊 The Result Pipeline </h3> <p>Same story, different microservice! For the Result app, just modify:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code> <span class="na">imageRepository</span><span class="pi">:</span> <span class="s1">'</span><span class="s">result'</span> <span class="c1"># Changed from 'vote'</span> <span class="na">dockerfilePath</span><span class="pi">:</span> <span class="s1">'</span><span class="s">$(Build.SourcesDirectory)/result/Dockerfile'</span> <span class="c1"># Changed path</span> </code></pre> </div> <p>And update your trigger:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">trigger</span><span class="pi">:</span> <span class="na">paths</span><span class="pi">:</span> <span class="na">include</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">result/*</span> <span class="c1"># Only triggers when result microservice changes </span> </code></pre> </div> <p><strong>Pro tip:</strong> 🧙‍♂️ With this approach, each microservice has its own dedicated pipeline that only triggers when that specific service changes! Talk about efficiency!</p> <p>At this moment we've got all our pipelines functioning beautifully:</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F8nthyyamh7s3fyi0hvq6.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F8nthyyamh7s3fyi0hvq6.png" alt=" " width="800" height="185"></a></p> <h2> 🔄 Step 8: Redis &amp; PostgreSQL - The Missing Pieces </h2> <h3> 🤔 What about Redis and PostgreSQL? </h3> <p>No need to reinvent the wheel! For these components:</p> <ul> <li>🐘 <strong>PostgreSQL</strong> - Using official public image from Docker Hub</li> <li>🔄 <strong>Redis</strong> - Using official public image from Docker Hub</li> </ul> <p><strong>Why use public images?</strong> </p> <ul> <li>🏆 <strong>Production-ready</strong> containers maintained by experts</li> <li>🛡️ <strong>Security updates</strong> automatically rolled out </li> <li>💰 <strong>Cost-efficient</strong> - no need to maintain our own images</li> </ul> <h2> 🚢 What's Next? </h2> <p>But the real question is: What do we do with these container images once they're in our registry?</p> <p>Well, this is just the beginning of our DevOps journey! Now we need a way to manage these containers through a single orchestration service.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fvqry628jsua3lml3ar73.gif" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fvqry628jsua3lml3ar73.gif" alt="Kubernetes Excitement" width="480" height="200"></a></p> <p>Maybe <strong>Kubernetes</strong> - the container orchestration superhero! 🦸‍♂️</p> azure devops cicd docker Lester Diaz Perez Thu, 09 Jan 2025 15:34:14 +0000 https://dev.to/sharker3312/provision-aws-ec2-instances-with-terraform-and-set-up-docker-via-user-data-2ik7 https://dev.to/sharker3312/provision-aws-ec2-instances-with-terraform-and-set-up-docker-via-user-data-2ik7 <h1> 📋Workflow </h1> <p>1️⃣ 📁 Structure<br> 2️⃣ 🌱 Root module<br> 3️⃣ 💻 EC2 module<br> 4️⃣ 🛡️ Security Group module</p> <p>🔗<a href="https://github.com/Sharker3312/AWS-Projects/tree/main/TerraTraefik" rel="noopener noreferrer">Link to project</a></p> <h2> 1️⃣ 📁 Structure </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>├── dev.tfvars ├── main.tf ├── provider.tf ├── modules │ ├── ec2 │ │ ├── install_docker.sh │ │ ├── main.tf │ │ ├── output.tf │ │ └── variables.tf │ └── security_group │ ├── igw.tf │ ├── output.tf │ ├── rt.tf │ ├── sg.tf │ ├── subnet.tf │ └── vpc.tf </code></pre> </div> <blockquote> <p>Why it's important to split terraform into modules?</p> </blockquote> <ol> <li>🔄 Code reuse</li> <li>📈 Improved scalability</li> <li>🧩 Modularity and abstraction</li> <li>👥 Clear separation of responsibilities.</li> <li>🛠️ Simplified maintenance</li> <li>📖 Improved readability</li> <li>🔄 Efficient version control</li> </ol> <h2> 2️⃣ 🌱 Root module </h2> <div class="highlight js-code-highlight"> <pre class="highlight hcl"><code><span class="c1"># main.tf</span> <span class="nx">variable</span> <span class="s2">"ami"</span> <span class="p">{}</span> <span class="nx">variable</span> <span class="s2">"instance_type"</span> <span class="p">{}</span> <span class="nx">variable</span> <span class="s2">"key_name"</span> <span class="p">{}</span> <span class="c1">#Replace the resource with a module</span> <span class="nx">module</span> <span class="s2">"ec2_instance"</span> <span class="p">{</span> <span class="c1">#References file location of new module</span> <span class="nx">source</span> <span class="p">=</span> <span class="s2">"./modules/ec2"</span> <span class="nx">ami</span> <span class="p">=</span> <span class="nx">var</span><span class="p">.</span><span class="nx">ami</span> <span class="nx">instance_type</span> <span class="p">=</span> <span class="nx">var</span><span class="p">.</span><span class="nx">instance_type</span> <span class="nx">key_name</span> <span class="p">=</span> <span class="nx">var</span><span class="p">.</span><span class="nx">key_name</span> <span class="nx">subnet_id</span> <span class="p">=</span> <span class="nx">module</span><span class="p">.</span><span class="nx">security_group</span><span class="p">.</span><span class="nx">subnet_id</span> <span class="c1"># Call the name of variable output </span> <span class="nx">sg_id</span> <span class="p">=</span> <span class="nx">module</span><span class="p">.</span><span class="nx">security_group</span><span class="p">.</span><span class="nx">sg_id</span> <span class="p">}</span> <span class="c1"># Specify the name for the security group</span> <span class="nx">module</span> <span class="s2">"security_group"</span> <span class="p">{</span> <span class="nx">source</span> <span class="p">=</span> <span class="s2">"./modules/security_group"</span> <span class="p">}</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight hcl"><code><span class="c1">#provider.tf</span> <span class="nx">terraform</span> <span class="p">{</span> <span class="nx">required_providers</span> <span class="p">{</span> <span class="nx">aws</span> <span class="p">=</span> <span class="p">{</span> <span class="nx">source</span> <span class="p">=</span> <span class="s2">"hashicorp/aws"</span> <span class="nx">version</span> <span class="p">=</span> <span class="s2">"~&gt; 5.52.0"</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="nx">provider</span> <span class="s2">"aws"</span> <span class="p">{</span> <span class="nx">region</span> <span class="p">=</span> <span class="s2">"us-east-2"</span> <span class="p">}</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight hcl"><code><span class="c1"># dev.tfvars</span> <span class="nx">ami</span> <span class="err">=</span> <span class="s2">"ami-0b4624933067d393a"</span> <span class="c1"># each ami is region specific </span> <span class="nx">instance_type</span> <span class="err">=</span> <span class="s2">"t2.micro"</span> <span class="nx">key_name</span> <span class="err">=</span> <span class="s2">"ec2_key"</span> </code></pre> </div> <h2> 3️⃣ 💻 EC2 module </h2> <div class="highlight js-code-highlight"> <pre class="highlight hcl"><code><span class="c1"># modules/ec2/main.tf</span> <span class="nx">variable</span> <span class="s2">"ami"</span> <span class="p">{}</span> <span class="nx">variable</span> <span class="s2">"instance_type"</span> <span class="p">{}</span> <span class="nx">variable</span> <span class="s2">"key_name"</span> <span class="p">{}</span> <span class="nx">resource</span> <span class="s2">"aws_instance"</span> <span class="s2">"ec2"</span> <span class="p">{</span> <span class="nx">ami</span> <span class="p">=</span> <span class="nx">var</span><span class="p">.</span><span class="nx">ami</span> <span class="nx">instance_type</span> <span class="p">=</span> <span class="nx">var</span><span class="p">.</span><span class="nx">instance_type</span> <span class="nx">key_name</span> <span class="p">=</span> <span class="nx">var</span><span class="p">.</span><span class="nx">key_name</span> <span class="nx">vpc_security_group_ids</span> <span class="p">=</span> <span class="p">[</span><span class="nx">var</span><span class="p">.</span><span class="nx">sg_id</span><span class="p">]</span> <span class="nx">subnet_id</span> <span class="p">=</span> <span class="nx">var</span><span class="p">.</span><span class="nx">subnet_id</span> <span class="nx">user_data</span> <span class="p">=</span> <span class="s2">"${file("</span><span class="p">./</span><span class="nx">modules</span><span class="p">/</span><span class="nx">ec2</span><span class="p">/</span><span class="nx">install_docker</span><span class="p">.</span><span class="nx">sh</span><span class="s2">")}"</span> <span class="nx">tags</span> <span class="p">=</span> <span class="p">{</span> <span class="nx">Name</span> <span class="p">=</span> <span class="s2">"traefik-demo"</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight hcl"><code><span class="c1"># modules/ec2/variables.tf</span> <span class="nx">variable</span> <span class="s2">"sg_id"</span> <span class="p">{</span> <span class="nx">description</span> <span class="p">=</span> <span class="s2">"Security Group ID"</span> <span class="nx">type</span> <span class="p">=</span> <span class="nx">string</span> <span class="p">}</span> <span class="nx">variable</span> <span class="s2">"subnet_id"</span> <span class="p">{</span> <span class="nx">description</span> <span class="p">=</span> <span class="s2">"Subnet ID"</span> <span class="nx">type</span> <span class="p">=</span> <span class="nx">string</span> <span class="p">}</span> </code></pre> </div> <p>🔑 Key points.<br> The <strong>EC2 module</strong> requires two essential fields:</p> <ul> <li>🛡️ Security Group ID.</li> <li>🌐 Subnet ID </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight hcl"><code><span class="c1"># modules/ec2/output.tf</span> <span class="nx">output</span> <span class="s2">"instance_id"</span> <span class="p">{</span> <span class="nx">value</span> <span class="p">=</span> <span class="nx">aws_instance</span><span class="p">.</span><span class="nx">ec2</span><span class="p">.</span><span class="nx">id</span> <span class="p">}</span> <span class="nx">output</span> <span class="s2">"public_ip"</span> <span class="p">{</span> <span class="nx">value</span> <span class="p">=</span> <span class="nx">aws_instance</span><span class="p">.</span><span class="nx">ec2</span><span class="p">.</span><span class="nx">public_ip</span> <span class="p">}</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c">#!/bin/bash</span> <span class="c"># Update and install Docker</span> <span class="nb">sudo </span>yum update <span class="nt">-y</span> <span class="nb">sudo </span>yum <span class="nb">install</span> <span class="nt">-y</span> jq docker <span class="c"># Enable Docker service</span> <span class="nb">sudo </span>service docker start <span class="nb">sudo </span>usermod <span class="nt">-a</span> <span class="nt">-G</span> docker ec2-user <span class="c"># Get the latest version of Docker Compose </span> <span class="nv">DOCKER_COMPOSE_VERSION</span><span class="o">=</span><span class="si">$(</span>curl <span class="nt">-s</span> https://api.github.com/repos/docker/compose/releases/latest | jq <span class="nt">-r</span> .tag_name<span class="si">)</span> <span class="c"># Install Docker Compose</span> <span class="nb">sudo </span>curl <span class="nt">-L</span> <span class="s2">"https://github.com/docker/compose/releases/download/</span><span class="k">${</span><span class="nv">DOCKER_COMPOSE_VERSION</span><span class="k">}</span><span class="s2">/docker-compose-</span><span class="si">$(</span><span class="nb">uname</span> <span class="nt">-s</span><span class="si">)</span><span class="s2">-</span><span class="si">$(</span><span class="nb">uname</span> <span class="nt">-m</span><span class="si">)</span><span class="s2">"</span> <span class="nt">-o</span> /usr/local/bin/docker-compose <span class="nb">sudo chmod</span> +x /usr/local/bin/docker-compose </code></pre> </div> <h2> 4️⃣ 🛡️ Security Group module </h2> <p>vpc.tf<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight hcl"><code><span class="c1">#modules/security_group/vpc.tf</span> <span class="nx">resource</span> <span class="s2">"aws_vpc"</span> <span class="s2">"traefik_vpc"</span> <span class="p">{</span> <span class="nx">cidr_block</span> <span class="p">=</span> <span class="s2">"10.0.0.0/16"</span> <span class="nx">tags</span> <span class="p">=</span> <span class="p">{</span> <span class="nx">Name</span> <span class="p">=</span> <span class="s2">"main-vpc"</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight hcl"><code><span class="c1">#modules/security_group/subnet.tf</span> <span class="nx">resource</span> <span class="s2">"aws_subnet"</span> <span class="s2">"traefik_subnet"</span> <span class="p">{</span> <span class="nx">vpc_id</span> <span class="p">=</span> <span class="nx">aws_vpc</span><span class="p">.</span><span class="nx">traefik_vpc</span><span class="p">.</span><span class="nx">id</span> <span class="nx">cidr_block</span> <span class="p">=</span> <span class="s2">"10.0.1.0/24"</span> <span class="nx">map_public_ip_on_launch</span> <span class="p">=</span> <span class="kc">true</span> <span class="nx">tags</span> <span class="p">=</span> <span class="p">{</span> <span class="nx">Name</span> <span class="p">=</span> <span class="s2">"example-subnet"</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight hcl"><code><span class="c1">#modules/security_group/sg.tf</span> <span class="nx">resource</span> <span class="s2">"aws_security_group"</span> <span class="s2">"traefik_sg"</span> <span class="p">{</span> <span class="nx">name</span> <span class="p">=</span> <span class="s2">"traefik-security-group"</span> <span class="nx">vpc_id</span> <span class="p">=</span> <span class="nx">aws_vpc</span><span class="p">.</span><span class="nx">traefik_vpc</span><span class="p">.</span><span class="nx">id</span> <span class="nx">description</span> <span class="p">=</span> <span class="s2">"Allow HTTP and HTTPS traffic"</span> <span class="nx">ingress</span> <span class="p">{</span> <span class="nx">from_port</span> <span class="p">=</span> <span class="mi">80</span> <span class="nx">to_port</span> <span class="p">=</span> <span class="mi">80</span> <span class="nx">protocol</span> <span class="p">=</span> <span class="s2">"tcp"</span> <span class="nx">cidr_blocks</span> <span class="p">=</span> <span class="p">[</span><span class="s2">"0.0.0.0/0"</span><span class="p">]</span> <span class="p">}</span> <span class="nx">ingress</span> <span class="p">{</span> <span class="nx">from_port</span> <span class="p">=</span> <span class="mi">443</span> <span class="nx">to_port</span> <span class="p">=</span> <span class="mi">443</span> <span class="nx">protocol</span> <span class="p">=</span> <span class="s2">"tcp"</span> <span class="nx">cidr_blocks</span> <span class="p">=</span> <span class="p">[</span><span class="s2">"0.0.0.0/0"</span><span class="p">]</span> <span class="p">}</span> <span class="nx">ingress</span> <span class="p">{</span> <span class="nx">from_port</span> <span class="p">=</span> <span class="mi">22</span> <span class="nx">to_port</span> <span class="p">=</span> <span class="mi">22</span> <span class="nx">protocol</span> <span class="p">=</span> <span class="s2">"tcp"</span> <span class="nx">cidr_blocks</span> <span class="p">=</span> <span class="p">[</span><span class="s2">"0.0.0.0/0"</span><span class="p">]</span> <span class="c1"># Allow ssh from internet</span> <span class="p">}</span> <span class="nx">egress</span> <span class="p">{</span> <span class="nx">from_port</span> <span class="p">=</span> <span class="mi">0</span> <span class="nx">to_port</span> <span class="p">=</span> <span class="mi">0</span> <span class="nx">protocol</span> <span class="p">=</span> <span class="s2">"-1"</span> <span class="c1"># Allow all traffic</span> <span class="nx">cidr_blocks</span> <span class="p">=</span> <span class="p">[</span><span class="s2">"0.0.0.0/0"</span><span class="p">]</span> <span class="p">}</span> <span class="nx">tags</span> <span class="p">=</span> <span class="p">{</span> <span class="nx">Name</span> <span class="p">=</span> <span class="s2">"traefik_sg"</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight hcl"><code><span class="c1">#modules/security_group/rt.tf</span> <span class="nx">resource</span> <span class="s2">"aws_route_table"</span> <span class="s2">"traefik_route_table"</span> <span class="p">{</span> <span class="nx">vpc_id</span> <span class="p">=</span> <span class="nx">aws_vpc</span><span class="p">.</span><span class="nx">traefik_vpc</span><span class="p">.</span><span class="nx">id</span> <span class="nx">route</span> <span class="p">{</span> <span class="nx">cidr_block</span> <span class="p">=</span> <span class="s2">"0.0.0.0/0"</span> <span class="nx">gateway_id</span> <span class="p">=</span> <span class="nx">aws_internet_gateway</span><span class="p">.</span><span class="nx">traefik_igw</span><span class="p">.</span><span class="nx">id</span> <span class="p">}</span> <span class="nx">tags</span> <span class="p">=</span> <span class="p">{</span> <span class="nx">Name</span> <span class="p">=</span> <span class="s2">"route_table"</span> <span class="p">}</span> <span class="p">}</span> <span class="nx">resource</span> <span class="s2">"aws_route_table_association"</span> <span class="s2">"a"</span> <span class="p">{</span> <span class="nx">subnet_id</span> <span class="p">=</span> <span class="nx">aws_subnet</span><span class="p">.</span><span class="nx">traefik_subnet</span><span class="p">.</span><span class="nx">id</span> <span class="nx">route_table_id</span> <span class="p">=</span> <span class="nx">aws_route_table</span><span class="p">.</span><span class="nx">traefik_route_table</span><span class="p">.</span><span class="nx">id</span> <span class="p">}</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight hcl"><code><span class="c1">#modules/security_group/igw.tf</span> <span class="nx">resource</span> <span class="s2">"aws_internet_gateway"</span> <span class="s2">"traefik_igw"</span> <span class="p">{</span> <span class="nx">vpc_id</span> <span class="p">=</span> <span class="nx">aws_vpc</span><span class="p">.</span><span class="nx">traefik_vpc</span><span class="p">.</span><span class="nx">id</span> <span class="nx">tags</span> <span class="p">=</span> <span class="p">{</span> <span class="nx">Name</span> <span class="p">=</span> <span class="s2">"traefik_IGW"</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight hcl"><code><span class="c1">#modules/security_group/output.tf</span> <span class="nx">output</span> <span class="s2">"subnet_id"</span> <span class="p">{</span> <span class="nx">value</span> <span class="p">=</span> <span class="nx">aws_subnet</span><span class="p">.</span><span class="nx">traefik_subnet</span><span class="p">.</span><span class="nx">id</span> <span class="p">}</span> <span class="nx">output</span> <span class="s2">"sg_id"</span> <span class="p">{</span> <span class="nx">value</span> <span class="p">=</span> <span class="nx">aws_security_group</span><span class="p">.</span><span class="nx">traefik_sg</span><span class="p">.</span><span class="nx">id</span> <span class="p">}</span> </code></pre> </div> <h2> 🏗️ Terraform deploy </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> terraform init terraform validate <span class="nt">--var-file</span><span class="o">=</span>dev.tfvars terraform plan <span class="nt">--var-file</span><span class="o">=</span>dev.tfvars terraform apply <span class="nt">--var-file</span><span class="o">=</span>dev.tfvars <span class="nt">-auto-approve</span> </code></pre> </div> aws terraform docker network Lester Diaz Perez Mon, 17 Jun 2024 20:13:55 +0000 https://dev.to/sharker3312/aws-email-notification-system-2clo https://dev.to/sharker3312/aws-email-notification-system-2clo <h1> Technologies: </h1> <p>☁️ AWS: 🪣 S3 bucket, ⚡️ lambda function, 🔔 SNS, 📬 SQS<br> 🤖 IaC: 🏗️ Terraform<br> 🔄 CD: 🛠️ GitLab</p> <p>Project resume: Email notification system developed in AWS. Once a file is uploaded to an s3 bucket it triggers an event which calls a lambda function and notifies service subscribers that a file has been uploaded.</p> <h2> 📌Requirements </h2> <ul> <li>AWS <a href="https://aws.amazon.com/free/" rel="noopener noreferrer">account</a> </li> <li><a href="https://code.visualstudio.com/download" rel="noopener noreferrer">VsCode</a></li> <li><a href="https://gitlab.com/users/sign_in" rel="noopener noreferrer">GitLab</a></li> </ul> <h2> 🎯Workflow </h2> <p>1️⃣ Source code 📄<br> 2️⃣ Lambda function ⚡️<br> 3️⃣ Deploy to AWS through GitLab 🚀</p> <h2> 1️⃣ Source code 📄 </h2> <p><a href="https://gitlab.com/sharker2/AWS-Projects/-/tree/main/Notification-system?ref_type=heads" rel="noopener noreferrer">Gitlab project</a></p> <p><strong>Structure</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>terraform └── terraform ├── bucket │ ├── main.tf │ └── output.tf │ └── variables.tf ├── lambda │ ├── main.tf │ └── output.tf │ └── variables.tf │ └── lambda_assume_role_policy.json │ └── lambda_policy.json │ └── lambda_function.py │ └── lambda_function.zip ├── sns │ ├── main.tf │ └── output.tf │ └── variables.tf ├── sqs │ ├── main.tf │ └── output.tf │ └── variables.tf ├── main.tf └── providers.tf </code></pre> </div> <p>It is organized into modules dedicated to different AWS services, each designed to serve a specific purpose and facilitate the management and scalability of the cloud environment.In addition, using Terraform to orchestrate these modules ensures a consistent and controlled deployment of the infrastructure, aligned with best practices for configuration management and agile development in the cloud.</p> <h2> 2️⃣ Lambda function ⚡️ </h2> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="kn">import</span> <span class="n">json</span> <span class="kn">import</span> <span class="n">boto3</span> <span class="c1"># Initialize AWS clients </span><span class="n">s3_client</span> <span class="o">=</span> <span class="n">boto3</span><span class="p">.</span><span class="nf">client</span><span class="p">(</span><span class="sh">'</span><span class="s">s3</span><span class="sh">'</span><span class="p">)</span> <span class="n">sns_client</span> <span class="o">=</span> <span class="n">boto3</span><span class="p">.</span><span class="nf">client</span><span class="p">(</span><span class="sh">'</span><span class="s">sns</span><span class="sh">'</span><span class="p">)</span> <span class="n">sqs_client</span> <span class="o">=</span> <span class="n">boto3</span><span class="p">.</span><span class="nf">client</span><span class="p">(</span><span class="sh">'</span><span class="s">sqs</span><span class="sh">'</span><span class="p">)</span> <span class="k">def</span> <span class="nf">lambda_handler</span><span class="p">(</span><span class="n">event</span><span class="p">,</span> <span class="n">context</span><span class="p">):</span> <span class="c1"># Define SNS topic ARN and SQS queue URL </span> <span class="n">sns_topic_arn</span> <span class="o">=</span> <span class="sh">'</span><span class="s">arn:aws:sns:us-east-2:087243254862:notifcationsystem-bucket</span><span class="sh">'</span> <span class="n">sqs_queue_url</span> <span class="o">=</span> <span class="sh">'</span><span class="s">https://sqs.us-east-2.amazonaws.com/087243254862/notification</span><span class="sh">'</span> <span class="c1"># Process S3 event records </span> <span class="k">for</span> <span class="n">record</span> <span class="ow">in</span> <span class="n">event</span><span class="p">[</span><span class="sh">'</span><span class="s">Records</span><span class="sh">'</span><span class="p">]:</span> <span class="c1"># Print the entire event for debugging purposes </span> <span class="nf">print</span><span class="p">(</span><span class="n">event</span><span class="p">)</span> <span class="c1"># Extract S3 bucket and object information from the event record </span> <span class="n">s3_bucket</span> <span class="o">=</span> <span class="n">record</span><span class="p">[</span><span class="sh">'</span><span class="s">s3</span><span class="sh">'</span><span class="p">][</span><span class="sh">'</span><span class="s">bucket</span><span class="sh">'</span><span class="p">][</span><span class="sh">'</span><span class="s">name</span><span class="sh">'</span><span class="p">]</span> <span class="n">s3_key</span> <span class="o">=</span> <span class="n">record</span><span class="p">[</span><span class="sh">'</span><span class="s">s3</span><span class="sh">'</span><span class="p">][</span><span class="sh">'</span><span class="s">object</span><span class="sh">'</span><span class="p">][</span><span class="sh">'</span><span class="s">key</span><span class="sh">'</span><span class="p">]</span> <span class="c1"># Example: Prepare metadata to send to SQS </span> <span class="n">metadata</span> <span class="o">=</span> <span class="p">{</span> <span class="sh">'</span><span class="s">bucket</span><span class="sh">'</span><span class="p">:</span> <span class="n">s3_bucket</span><span class="p">,</span> <span class="sh">'</span><span class="s">key</span><span class="sh">'</span><span class="p">:</span> <span class="n">s3_key</span><span class="p">,</span> <span class="sh">'</span><span class="s">timestamp</span><span class="sh">'</span><span class="p">:</span> <span class="n">record</span><span class="p">[</span><span class="sh">'</span><span class="s">eventTime</span><span class="sh">'</span><span class="p">]</span> <span class="p">}</span> <span class="c1"># Send metadata to SQS queue </span> <span class="n">sqs_response</span> <span class="o">=</span> <span class="n">sqs_client</span><span class="p">.</span><span class="nf">send_message</span><span class="p">(</span> <span class="n">QueueUrl</span><span class="o">=</span><span class="n">sqs_queue_url</span><span class="p">,</span> <span class="n">MessageBody</span><span class="o">=</span><span class="n">json</span><span class="p">.</span><span class="nf">dumps</span><span class="p">(</span><span class="n">metadata</span><span class="p">)</span> <span class="p">)</span> <span class="c1"># Example: Prepare notification message to send to SNS </span> <span class="n">notification_message</span> <span class="o">=</span> <span class="sa">f</span><span class="sh">"</span><span class="s">New file uploaded to S3 bucket </span><span class="sh">'</span><span class="si">{</span><span class="n">s3_bucket</span><span class="si">}</span><span class="sh">'</span><span class="s"> with key </span><span class="sh">'</span><span class="si">{</span><span class="n">s3_key</span><span class="si">}</span><span class="sh">'"</span> <span class="c1"># Publish notification message to SNS topic </span> <span class="n">sns_response</span> <span class="o">=</span> <span class="n">sns_client</span><span class="p">.</span><span class="nf">publish</span><span class="p">(</span> <span class="n">TopicArn</span><span class="o">=</span><span class="n">sns_topic_arn</span><span class="p">,</span> <span class="n">Message</span><span class="o">=</span><span class="n">notification_message</span><span class="p">,</span> <span class="n">Subject</span><span class="o">=</span><span class="sh">"</span><span class="s">File Upload Notification</span><span class="sh">"</span> <span class="p">)</span> <span class="c1"># Return a success response </span> <span class="k">return</span> <span class="p">{</span> <span class="sh">'</span><span class="s">statusCode</span><span class="sh">'</span><span class="p">:</span> <span class="mi">200</span><span class="p">,</span> <span class="sh">'</span><span class="s">body</span><span class="sh">'</span><span class="p">:</span> <span class="n">json</span><span class="p">.</span><span class="nf">dumps</span><span class="p">(</span><span class="sh">'</span><span class="s">Processing complete</span><span class="sh">'</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>3️⃣ GitLab workflow 🚀</p> <ul> <li>Add pipeline</li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fgtohuu18oh7o1h1gtm66.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fgtohuu18oh7o1h1gtm66.png" alt="Click pipeline" width="316" height="391"></a></p> <ul> <li><p>🔑Add access key from AWS into secrets in GitLab(Create a User for this purpose)</p></li> <li><p>▶️ Run</p></li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fainli13x389z5nz0bmv6.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fainli13x389z5nz0bmv6.png" alt="running pipeline" width="800" height="113"></a></p> <p><a href="https://linkedin.com/in/lesterdprez" rel="nofollow noopener noreferrer"><img src="https://camo.githubusercontent.com/d94940866c98cb4fca5783c4e8ac95776d2f52df6bbf3d5ab9e30d76836f30ae/68747470733a2f2f696d672e736869656c64732e696f2f62616467652f4c696e6b6564496e2d2532333030373742352e7376673f6c6f676f3d6c696e6b6564696e266c6f676f436f6c6f723d7768697465" alt="LinkedIn" width="" height=""></a></p> terraform aws python devops Lester Diaz Perez Fri, 26 Apr 2024 02:11:12 +0000 https://dev.to/sharker3312/ansible-the-swiss-army-knife-of-automation-5d0c https://dev.to/sharker3312/ansible-the-swiss-army-knife-of-automation-5d0c <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Ftaufq48h7ztu34md9fma.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Ftaufq48h7ztu34md9fma.png" alt=" " width="512" height="154"></a></p> <h2> 📌Prerequisites: </h2> <ul> <li><p>Install <a href="https://docs.ansible.com/ansible/latest/installation_guide/installation_distros.html" rel="noopener noreferrer">Ansible</a></p></li> <li><p>Install <a href="https://code.visualstudio.com/download" rel="noopener noreferrer">Vscode</a></p></li> </ul> <h2> 🎯Workflow </h2> <p>1️⃣What we need to deploy the application❓<br> 2️⃣Structure of the Project👷<br> 3️⃣File Descriptions📂<br> 4️⃣Playbook✏<br> 5️⃣Check connectivity🌐 &amp; Install Docker🐳<br> 6️⃣Run docker app🚀</p> <h2> 1️⃣What we need to deploy the application❓ </h2> <p>Well, as the application is dockerized, the only thing we have to do is to <strong>install docker</strong> in the ec2 instance.</p> <h2> 2️⃣Structure of the Project👷 </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>ansible/ │ ├── ansible.cfg ├── inventory.ini │ ├── key/ │ └── ec2_key.pem │ ├── playbooks/ │ └── install_docker.yml │ └── run_image.yml </code></pre> </div> <ul> <li> <em>ansible.cfg</em>📋 : <em>Defines the global configuration for running Ansible tasks in an environment.</em> </li> <li> <em>inventary.ini📋: Define the list of hosts on which Ansible tasks will run. This file can contain groups of hosts and variables associated with those groups or individual hosts.</em> <ul> <li><em>/key/ec2_key.pem : This file will only be available on our localhost and contains the ssh key. Later I will add it as an environment variable.</em></li> <li><em>/playbooks/install_docker📋 : This file contain all the tasks to execute the docker installation</em></li> </ul> </li> </ul> <h2> 3️⃣File Descriptions📂 </h2> <blockquote> <p>ansible.cfg<br> </p> </blockquote> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="o">[</span>defaults] inventory <span class="o">=</span> inventory.ini host_key_checking <span class="o">=</span> False <span class="c"># optional: removes the SSH prompt </span> <span class="nv">deprecation_warnings</span><span class="o">=</span>False <span class="c"># optional: removes deprecation warning in playbooks</span> remote_user <span class="o">=</span> ubuntu <span class="c">#private_key_file = ./key/ec2_key.pem</span> </code></pre> </div> <blockquote> <p>inventory.ini<br> </p> </blockquote> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="o">[</span>all] node <span class="nv">ansible_host</span><span class="o">=</span>x.x.x.x <span class="nv">ansible_user</span><span class="o">=</span>ubuntu <span class="nv">ansible_ssh_private_key_file</span><span class="o">=</span>./key/ec2_key.pem </code></pre> </div> <blockquote> <p>key/ec2_key.pem<br> alerta bla blA</p> </blockquote> <h2> 4️⃣Playbook✏ </h2> <blockquote> <p>playbooks/install_docker.yml<br> </p> </blockquote> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="nn">---</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Install docker</span> <span class="na">hosts</span><span class="pi">:</span> <span class="s">all</span> <span class="na">become</span><span class="pi">:</span> <span class="kc">true</span> <span class="na">tasks</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Install docker dependencies</span> <span class="na">ansible.builtin.apt</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">apt-transport-https</span> <span class="pi">-</span> <span class="s">ca-certificates</span> <span class="pi">-</span> <span class="s">curl</span> <span class="pi">-</span> <span class="s">gnupg-agent</span> <span class="pi">-</span> <span class="s">software-properties-common</span> <span class="na">update_cache</span><span class="pi">:</span> <span class="kc">true</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Add docker gpg key</span> <span class="na">ansible.builtin.apt_key</span><span class="pi">:</span> <span class="na">url</span><span class="pi">:</span> <span class="s">https://download.docker.com/linux/ubuntu/gpg</span> <span class="na">state</span><span class="pi">:</span> <span class="s">present</span> <span class="na">keyring</span><span class="pi">:</span> <span class="s">/etc/apt/keyrings/docker.gpg</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Add docker repository</span> <span class="na">ansible.builtin.apt_repository</span><span class="pi">:</span> <span class="na">filename</span><span class="pi">:</span> <span class="s">docker</span> <span class="na">repo</span><span class="pi">:</span> <span class="s">deb [arch=amd64 signed-by=/etc/apt/keyrings/docker.gpg] https://download.docker.com/linux/ubuntu {{ ansible_lsb.codename | lower }} stable</span> <span class="na">state</span><span class="pi">:</span> <span class="s">present</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Install docker engine</span> <span class="na">ansible.builtin.apt</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">docker-ce</span> <span class="pi">-</span> <span class="s">docker-ce-cli</span> <span class="pi">-</span> <span class="s">containerd.io</span> <span class="pi">-</span> <span class="s">docker-buildx-plugin</span> <span class="pi">-</span> <span class="s">docker-scan-plugin</span> <span class="pi">-</span> <span class="s">docker-compose-plugin</span> <span class="na">update_cache</span><span class="pi">:</span> <span class="kc">true</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Add user permissions</span> <span class="na">shell</span><span class="pi">:</span> <span class="s2">"</span><span class="s">usermod</span><span class="nv"> </span><span class="s">-aG</span><span class="nv"> </span><span class="s">docker</span><span class="nv"> </span><span class="s">ubuntu"</span> </code></pre> </div> <h2> 5️⃣Check connectivity🌐 </h2> <p><code>ansible -i inventory.ini -m ping all</code></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F1bkbf4p6u4ntpp8j7vpl.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F1bkbf4p6u4ntpp8j7vpl.png" alt=" " width="800" height="156"></a></p> <p>Then, install docker🐳 on the host<br> <code>ansible-playbook -i inventory.ini playbooks/install_docker.yml</code><br> <a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F7eylj7zyuonftap3tnjw.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F7eylj7zyuonftap3tnjw.png" alt=" " width="800" height="333"></a></p> <h2> 6️⃣Run docker app🚀 </h2> <p>This is the playbook to pull and run the docker image<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nt">---</span> - name: Download and run sharker3312/nodeapp:latest hosts: all become: <span class="nb">true </span>tasks: - name: Download Docker image ansible.builtin.docker_image: name: sharker3312/nodeapp:latest <span class="nb">source</span>: pull - name: Run Docker container ansible.builtin.docker_container: name: nodeapp image: sharker3312/nodeapp:latest state: started detach: <span class="nb">yes </span>ports: - <span class="s2">"8000:8000"</span> </code></pre> </div> <p><code>ansible-playbook -i inventory.ini playbooks/run_image.yml</code></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F48h3ivorbu0lulftwhdt.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F48h3ivorbu0lulftwhdt.png" alt=" " width="800" height="227"></a></p> <p>The web site: </p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fzf3r1ng6fm78ccuxapfs.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fzf3r1ng6fm78ccuxapfs.png" alt=" " width="800" height="251"></a></p> <p>The purpose of using anisble software is to fully automate daily tasks. In this blog we observed how without having an interactive shell on the EC2 instance we were able to deploy a docker image.</p> <p><a href="https://linkedin.com/in/lesterdprez" rel="nofollow noopener noreferrer"><img src="https://camo.githubusercontent.com/d94940866c98cb4fca5783c4e8ac95776d2f52df6bbf3d5ab9e30d76836f30ae/68747470733a2f2f696d672e736869656c64732e696f2f62616467652f4c696e6b6564496e2d2532333030373742352e7376673f6c6f676f3d6c696e6b6564696e266c6f676f436f6c6f723d7768697465" alt="LinkedIn" width="" height=""></a></p> devops ansible aws docker Lester Diaz Perez Sat, 13 Apr 2024 02:39:45 +0000 https://dev.to/sharker3312/automating-aws-with-terraform-i9p https://dev.to/sharker3312/automating-aws-with-terraform-i9p <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fjl16no7t3h0xcfeoexos.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fjl16no7t3h0xcfeoexos.png" alt=" " width="800" height="278"></a></p> <h2> 📌Prerequisites: </h2> <ul> <li>AWS <a href="https://aws.amazon.com/free/" rel="noopener noreferrer">account</a> </li> <li><a href="https://code.visualstudio.com/download" rel="noopener noreferrer">VsCode</a></li> </ul> <h2> 🎯Workflow </h2> <p>1️⃣Create IAM user👤<br> 2️⃣Save🔒 Acces &amp; Secret <br> 3️⃣Key Pair for ssh🔑<br> 4️⃣Terraform Pipeline📝<br> 5️⃣Job from Github Actions📝</p> <h3> 1️⃣Create IAM user👤 </h3> <ul> <li>Login AWS </li> <li>IAM -&gt; Users -&gt; <strong>Create user</strong> </li> </ul> <blockquote> <p><em>Name of user whatever as you wish</em></p> </blockquote> <ul> <li>Select <strong>Attach policies directly</strong> -&gt; Select <strong>AmazonEC2FullAccess</strong> </li> </ul> <p><em>It's not❌ the best practice, but it's simple for this purpose</em></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fatgiy0pu90wa8if2bnfu.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fatgiy0pu90wa8if2bnfu.png" alt=" " width="187" height="41"></a></p> <p>User created successfully✅</p> <p><u>Create Credentials</u></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F10te4wc0g83rzvsjzcrr.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F10te4wc0g83rzvsjzcrr.png" alt=" " width="592" height="61"></a></p> <ul> <li> <strong>Create Access Key</strong> -&gt; <strong>Third-party service</strong> </li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fh1ludf49956vflp0n2ym.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fh1ludf49956vflp0n2ym.png" alt=" " width="460" height="84"></a></p> <h3> 2️⃣Save🔒 Acces &amp; Secret </h3> <ul> <li>Go to Github repository</li> <li>Settings -&gt; Secrets &amp; Variables -&gt; Actions</li> <li>Save as a <strong>Secret</strong> </li> </ul> <p><code>AWS_ACCESS_KEY_ID</code> <code>TF_USER_AWS_SECRET</code><br> <a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fnmyzqchfyvpes0v105s3.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fnmyzqchfyvpes0v105s3.png" alt=" " width="692" height="89"></a></p> <h3> 3️⃣Create Key Pair for ssh </h3> <ul> <li>Just go here and name it.Is simple</li> </ul> <blockquote> <p><em>The key will download⬇ automatically</em></p> </blockquote> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F5vezsj0239fpafayvd36.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F5vezsj0239fpafayvd36.png" alt=" " width="800" height="117"></a></p> <h3> 4️⃣Terraform Pipeline📝 </h3> <p>Create a new directory in the root <a href="https://github.com/Sharker3312/Node-App" rel="noopener noreferrer">project</a><br> 🔰Name: terraform</p> <blockquote> <p><em>This is a very simple pipeline. Remember this is a tutorial. I will soon make📍 a Terraform series.</em><br> </p> </blockquote> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="s">provider "aws" {</span> <span class="s">region = "us-east-2"</span> <span class="c1">#Region as you wish</span> <span class="err">}</span> <span class="s">resource "aws_instance" "nodeapp" {</span> <span class="s">ami = "ami-00cda30cf72311684"</span> <span class="c1">#Check the AMI list for free tier</span> <span class="s">instance_type = "t2.micro"</span> <span class="c1">#Well... very intuitive -_-</span> <span class="s">key_name = "ec2_key"</span> <span class="c1">#Name of key pair created in step 3</span> <span class="s">vpc_security_group_ids = [aws_security_group.nodeapp.id]</span> <span class="c1"># ID security group</span> <span class="s">tags = {</span> <span class="s">Name = "Nodeapp"</span> <span class="s">}</span> <span class="err">}</span> <span class="c1">#Security Group</span> <span class="s">resource "aws_security_group" "nodeapp" {</span> <span class="s">name = "ec2_ecurity-group"</span> <span class="c1">#Whatever name</span> <span class="s">description = "Allow inbound traffic on port 8080 and SSH"</span> <span class="c1">#The app expose port 8080</span> <span class="s">ingress {</span> <span class="s">from_port = </span><span class="m">22</span> <span class="s">to_port = </span><span class="m">22</span> <span class="s">protocol = "tcp"</span> <span class="s">cidr_blocks = ["0.0.0.0/0"]</span> <span class="s">}</span> <span class="s">ingress {</span> <span class="s">from_port = </span><span class="m">8080</span> <span class="s">to_port = </span><span class="m">8080</span> <span class="s">protocol = "tcp"</span> <span class="s">cidr_blocks = ["0.0.0.0/0"]</span> <span class="s">}</span> <span class="err">}</span> </code></pre> </div> <h3> 5️⃣Job from Github Actions📝 </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>name: Deploy Node app on: push: branches: - master <span class="nb">jobs</span>: tf-aws: name: Deploy Node app to AWS runs-on: ubuntu-latest defaults: run: working-directory: terraform <span class="c">#Path directory</span> steps: - name: Checkout repository uses: actions/checkout@v2 - name: Configure AWS Credentials uses: aws-actions/configure-aws-credentials@v4 with: aws-access-key-id: <span class="k">${</span><span class="p">{ secrets.AWS_ACCESS_KEY_ID </span><span class="k">}</span><span class="o">}</span> aws-secret-access-key: <span class="k">${</span><span class="p">{ secrets.AWS_SECRET_ACCESS_KEY </span><span class="k">}</span><span class="o">}</span> aws-region: us-east-2 - name: Setup Terraform CLI uses: hashicorp/setup-terraform@v3 - name: Terraform Init run: terraform init - name: Terraform Validate run: terraform validate - name: Terraform Plan run: terraform plan - name: Terraform Apply run: terraform apply <span class="nt">-auto-approve</span> </code></pre> </div> <p>🎬 Run the job</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fqr2mw28qe2iforh4dg6t.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fqr2mw28qe2iforh4dg6t.png" alt="job done" width="566" height="167"></a><br> ✅</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fipj6aoheimiz0ksb8cd2.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fipj6aoheimiz0ksb8cd2.png" alt="ec2_nodeapp" width="800" height="148"></a></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fi0wj8xm7yaoi3d93adzj.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fi0wj8xm7yaoi3d93adzj.png" alt="security group" width="800" height="172"></a></p> <p><a href="https://linkedin.com/in/lesterdprez" rel="nofollow noopener noreferrer"><img src="https://camo.githubusercontent.com/d94940866c98cb4fca5783c4e8ac95776d2f52df6bbf3d5ab9e30d76836f30ae/68747470733a2f2f696d672e736869656c64732e696f2f62616467652f4c696e6b6564496e2d2532333030373742352e7376673f6c6f676f3d6c696e6b6564696e266c6f676f436f6c6f723d7768697465" alt="LinkedIn" width="" height=""></a></p> devops github aws terraform Lester Diaz Perez Tue, 02 Apr 2024 20:41:21 +0000 https://dev.to/sharker3312/integrating-a-codequality-scanner-into-github-actions-52e7 https://dev.to/sharker3312/integrating-a-codequality-scanner-into-github-actions-52e7 <h2> 🎯Workflow </h2> <p>1️⃣Search🔍 the CodeQuality scanner tool<br> 2️⃣Hands On✍</p> <h3> 1️⃣Search🔍 the CodeQuality scanner tool </h3> <ul> <li>As always Let's go to the 🛒<a href="https://github.com/marketplace" rel="noopener noreferrer">marketplace</a> </li> <li>Looking for a Codequality scanner🐞</li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F13gufggm6lji7mh2rb8p.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F13gufggm6lji7mh2rb8p.png" alt=" " width="266" height="179"></a></p> <ul> <li>Well, the <strong>SonarCloud</strong> is very used</li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fxicrg964ojjuh3boeopa.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fxicrg964ojjuh3boeopa.png" alt=" " width="361" height="148"></a></p> <h3> 2️⃣Hands On✍ </h3> <ul> <li>Select SonarCloud and complete✅ the process</li> <li>Just select the current repository in which you are working</li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F2pfsjllehtfdhxq2y4x4.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F2pfsjllehtfdhxq2y4x4.png" alt=" " width="411" height="396"></a></p> <ul> <li>You will be redirected to login📌 of the web SonarCloud(Just continue with your github account)</li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fi0v26jt057j7vp8uuq2f.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fi0v26jt057j7vp8uuq2f.png" alt=" " width="367" height="272"></a></p> <ul> <li>Create Organization👥</li> </ul> <h3> 2️⃣Hands On✍ </h3> <ul> <li>Inside the web ,get the SONAR_TOKEN</li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F9iihbi2vsr2qzc3mopn3.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F9iihbi2vsr2qzc3mopn3.png" alt=" " width="713" height="100"></a></p> <ul> <li>✏Save the SONAR_TOKEN as a secret in the repository</li> <li>Create this file🗒 at the root directory &gt;sonar-project.properties </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>sonar.projectKey=sharker_sharker sonar.organization=sharker sonar.host.url=https://sonarcloud.io </code></pre> </div> <ul> <li>Add ➕ this job to the Workflow </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> sonarcloud: name: SonarCloud runs-on: ubuntu-latest steps: - uses: actions/checkout@v3 with: fetch-depth: 0 <span class="c"># Shallow clones should be disabled for a better relevancy of analysis</span> - name: SonarCloud Scan uses: SonarSource/sonarcloud-github-action@master <span class="nb">env</span>: <span class="c"># This Token is automatically generated by Github</span> GITHUB_TOKEN: <span class="k">${</span><span class="p">{ secrets.GITHUB_TOKEN </span><span class="k">}</span><span class="o">}</span> <span class="c"># Needed to get PR information, if any</span> SONAR_TOKEN: <span class="k">${</span><span class="p">{ secrets.SONAR_TOKEN </span><span class="k">}</span><span class="o">}</span> </code></pre> </div> <p>🎬Run The Action</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Flaioqet8ds5fig14rwzh.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Flaioqet8ds5fig14rwzh.png" alt=" " width="800" height="160"></a></p> <p>Done 🚀</p> <p><a href="https://linkedin.com/in/lesterdprez" rel="nofollow noopener noreferrer"><img src="https://camo.githubusercontent.com/d94940866c98cb4fca5783c4e8ac95776d2f52df6bbf3d5ab9e30d76836f30ae/68747470733a2f2f696d672e736869656c64732e696f2f62616467652f4c696e6b6564496e2d2532333030373742352e7376673f6c6f676f3d6c696e6b6564696e266c6f676f436f6c6f723d7768697465" alt="LinkedIn" width="" height=""></a></p> tutorial codequality github devops Lester Diaz Perez Tue, 02 Apr 2024 20:39:02 +0000 https://dev.to/sharker3312/add-slack-notifications-into-github-actions-486p https://dev.to/sharker3312/add-slack-notifications-into-github-actions-486p <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F7072pp6013k50wzjz4fp.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F7072pp6013k50wzjz4fp.png" alt=" " width="267" height="148"></a></p> <h2> 🎯Workflow </h2> <p>1️⃣Search🔍 the Slack-Notifications in the marketplace🛒<br> 2️⃣Configure📋 the Webhook<br> 3️⃣Configure📋 the Job</p> <h3> 1️⃣Search🔍 the Slack-Notifications in the marketplace🛒 </h3> <ul> <li>Go to github action <a href="https://github.com/marketplace" rel="noopener noreferrer">marketplace</a> </li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F89kzampatl3iyy3q427y.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F89kzampatl3iyy3q427y.png" alt=" " width="725" height="188"></a></p> <ul> <li>Select Slack-Notify🔔</li> <li>Read📖 the doc</li> </ul> <h3> 2️⃣ Configure 📋 the Webhook </h3> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fjh6o6xtw8e1jse3tm4ls.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fjh6o6xtw8e1jse3tm4ls.png" alt=" " width="217" height="249"></a></p> <blockquote> <p><em>For communication between Slack and Github we need a <strong>Slack webhook</strong>.</em></p> <ul> <li>Login in Slack</li> <li>Enter here to add the <a href="https://api.slack.com/incoming-webhooks" rel="noopener noreferrer">incoming webhook</a> </li> <li>You will be asked❓ to enter your team URL</li> <li>Select the channel📱 to which you want to post</li> <li>Save the URL generated as a <strong>Webhook</strong> </li> </ul> </blockquote> <h3> 3️⃣Configure📋 the Job </h3> <ul> <li>Add ➕ a Slack Notification Job to the <a href="https://github.com/Sharker3312/Node-App/blob/master/.github/workflows/node.js.yml" rel="noopener noreferrer">pipeline</a> </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> Slack-Notify: runs-on: ubuntu-latest <span class="c">#Wait for test job ending</span> needs: <span class="nb">test</span> <span class="c">#If the test job is wrong, this job will still be executed </span> <span class="k">if</span>: always<span class="o">()</span> steps: - uses: actions/checkout@v2 - name: Slack Notification uses: rtCamp/action-slack-notify@v2 <span class="nb">env</span>: <span class="c">#Settings-&gt;Secrets &amp; Variables-&gt;Actions-&gt;New Secret</span> <span class="c">#Paste here your secret webhook </span> SLACK_WEBHOOK: <span class="k">${</span><span class="p">{ secrets.SLACK_WEBHOOK </span><span class="k">}</span><span class="o">}</span> <span class="c"># The variable needs.test.result print the result of the test job </span> SLACK_COLOR: <span class="k">${</span><span class="p">{ needs.test.result </span><span class="k">}</span><span class="o">}</span> SLACK_CHANNEL: general SLACK_USERNAME: <span class="s1">'Node-Bot'</span> SLACK_TITLE: Workflow <span class="k">${</span><span class="p">{ needs.test.result </span><span class="k">}</span><span class="o">}</span> SLACK_MESSAGE_ON_SUCCESS: <span class="s1">'✅'</span> SLACK_MESSAGE_ON_FAILURE: <span class="s1">'❌'</span> SLACK_FOOTER: By Sharker3312 </code></pre> </div> <p>🚨🚨🚨:<em>It is likely that you only want to send notifications when an error occurs, in this case just substitute this line</em><br> <code>if: ${{ always() &amp;&amp; (needs.failing-job.result == 'failure' || needs.failing-job.result == 'timed_out') }}</code></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F7qyhblpdiju4m4ijwk17.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F7qyhblpdiju4m4ijwk17.png" alt=" " width="441" height="247"></a></p> <p>Done✅🚀</p> <p><a href="https://linkedin.com/in/lesterdprez" rel="nofollow noopener noreferrer"><img src="https://camo.githubusercontent.com/d94940866c98cb4fca5783c4e8ac95776d2f52df6bbf3d5ab9e30d76836f30ae/68747470733a2f2f696d672e736869656c64732e696f2f62616467652f4c696e6b6564496e2d2532333030373742352e7376673f6c6f676f3d6c696e6b6564696e266c6f676f436f6c6f723d7768697465" alt="LinkedIn" width="" height=""></a></p> tutorial devops github cicd Lester Diaz Perez Mon, 01 Apr 2024 03:53:30 +0000 https://dev.to/sharker3312/leveraging-github-actions-docker-code-quality-and-slack-integration-501g https://dev.to/sharker3312/leveraging-github-actions-docker-code-quality-and-slack-integration-501g <p><strong>📌Prerequisites:</strong></p> <ul> <li><a href="https://github.com/" rel="noopener noreferrer">Github account</a></li> <li><a href="https://hub.docker.com/" rel="noopener noreferrer">Dockerhub account</a></li> <li>Web repository for dockerize</li> </ul> <blockquote> <p><em>The web repository could be any of you wish</em></p> </blockquote> <h2> 🎯Workflow </h2> <p>1️⃣Build🧱 &amp; Test🧪 <br> 2️⃣Dockerize🐳 the web project<br> 3️⃣Upload💹 image to your docker hub account</p> <h2> 1️⃣Build🧱 &amp; Test🧪 </h2> <p>Why do what others have already done?</p> <blockquote> <p><em>Github Actions has a marketplace where you can find🔎 any pipeline that any other developer has developed.</em></p> </blockquote> <p><strong>Writing✏ the pipeline</strong></p> <ul> <li>Inside repo -&gt; Click in <strong>Actions</strong> </li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Ffph6szm4dyh79mb9b37r.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Ffph6szm4dyh79mb9b37r.png" alt=" " width="763" height="49"></a></p> <ul> <li><p>Create the workflow -&gt; Enter <strong>New workflow</strong><br> <a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Flyc563l7v5tiyf8yy0f5.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Flyc563l7v5tiyf8yy0f5.png" alt=" " width="320" height="195"></a></p></li> <li><p>Search for a NodeJs pipeline</p></li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F9haxwuf6dwpazhhgyemq.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F9haxwuf6dwpazhhgyemq.png" alt=" " width="294" height="191"></a></p> <ul> <li>Adjust the pipeline to your needs An example of my <a href="https://github.com/Sharker3312/Node-App/actions/runs/8445740088/workflow" rel="noopener noreferrer">pipeline </a>stages</li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fjnve0nb5tchopev8szhx.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fjnve0nb5tchopev8szhx.png" alt=" " width="800" height="433"></a></p> <h2> 2️⃣Dockerize🐳 the web project </h2> <blockquote> <p><em>So, if you want to contain the application, you just have to write a dockerfile</em></p> </blockquote> <p>🚨 Packing the NodeJs project</p> <ul> <li>Create a <em>dockerfile.ci</em> at the root project directory </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>FROM node:18-alpine WORKDIR /usr/src/app COPY package.json package-lock.json ./ COPY app.js ./ COPY views ./views/ RUN npm <span class="nb">install</span> <span class="c">#web port</span> EXPOSE 8000 CMD <span class="o">[</span><span class="s2">"node"</span>, <span class="s2">"app.js"</span><span class="o">]</span> </code></pre> </div> <h2> 3️⃣Upload💹 image to your docker hub account </h2> <ul> <li>Go to github <a href="https://github.com/marketplace" rel="noopener noreferrer">marketplace</a>🛒</li> <li>Looking for build and push dockerhub</li> </ul> <p>I like this pipeline<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c">#Name of Job</span> to_dockerhub: runs-on: ubuntu-latest <span class="c">#Wait for ending test process</span> needs: <span class="nb">test </span>steps: - uses: actions/checkout@v3 name: Check out code - uses: mr-smithers-excellent/docker-build-push@v6 name: Build &amp; push Docker image with: <span class="c">#Name's dockerhub / Name as you want</span> image: sharker3312/nodeapp tags: v1, latest registry: docker.io dockerfile: Dockerfile username: <span class="k">${</span><span class="p">{ secrets.DOCKER_USERNAME </span><span class="k">}</span><span class="o">}</span> password: <span class="k">${</span><span class="p">{ secrets.DOCKER_PASSWORD </span><span class="k">}</span><span class="o">}</span> </code></pre> </div> <p><strong>Create the secret for login</strong></p> <ul> <li>Go to Settings</li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fz54j9j18hhh2abh49g6h.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fz54j9j18hhh2abh49g6h.png" alt=" " width="781" height="52"></a></p> <ul> <li>In left panel Click </li> <li> <strong>Secrets and Variables</strong> -&gt; <strong>Actions</strong> </li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F4yw4u45qctdtjnw72l1l.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F4yw4u45qctdtjnw72l1l.png" alt=" " width="331" height="252"></a></p> <ul> <li>Enter the secrets</li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fznmhirglzykbjo18an9h.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fznmhirglzykbjo18an9h.png" alt=" " width="800" height="469"></a></p> <p>🎬Run the workflow</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fjwwd7xmy5o40topbv1gj.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fjwwd7xmy5o40topbv1gj.png" alt=" " width="800" height="249"></a></p> <p>🔦Check the dockerhub repository</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fo7meqqs2z7lwdkqtpqjt.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fo7meqqs2z7lwdkqtpqjt.png" alt=" " width="693" height="146"></a></p> <p>Done✅🚀</p> <p><a href="https://linkedin.com/in/lesterdprez" rel="nofollow noopener noreferrer"><img src="https://camo.githubusercontent.com/d94940866c98cb4fca5783c4e8ac95776d2f52df6bbf3d5ab9e30d76836f30ae/68747470733a2f2f696d672e736869656c64732e696f2f62616467652f4c696e6b6564496e2d2532333030373742352e7376673f6c6f676f3d6c696e6b6564696e266c6f676f436f6c6f723d7768697465" alt="LinkedIn" width="" height=""></a></p> devops tutorial docker githubactions Lester Diaz Perez Mon, 11 Mar 2024 01:43:08 +0000 https://dev.to/sharker3312/manual-approval-and-telegram-notifications-in-jenkins-1l7a https://dev.to/sharker3312/manual-approval-and-telegram-notifications-in-jenkins-1l7a <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fm39s07p2q1ihbha75flz.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fm39s07p2q1ihbha75flz.png" alt=" " width="707" height="280"></a></p> <h2> Why use a manual approval step in the deploy code? </h2> <blockquote> <p>Manual approval in Jenkins provides a mechanism to ensure quality, security and compliance in software development and deployment processes.</p> </blockquote> <p><strong>Manual approval</strong></p> <ul> <li>Add this stage to the pipeline </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> stage<span class="o">(</span><span class="s1">'Approval'</span><span class="o">)</span> <span class="o">{</span> steps <span class="o">{</span> <span class="nb">timeout</span><span class="o">(</span><span class="nb">time</span>: 15, unit: <span class="s2">"MINUTES"</span><span class="o">)</span> <span class="o">{</span> input message: <span class="s1">'Do you want to approve the deployment?'</span>, ok: <span class="s1">'Yes'</span> <span class="o">}</span> <span class="nb">echo</span> <span class="s2">"Initiating deployment"</span> <span class="o">}</span> <span class="o">}</span> </code></pre> </div> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fx0awadb72xwbig89urew.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fx0awadb72xwbig89urew.png" alt=" " width="260" height="86"></a></p> <h2> Telegram Notifications </h2> <blockquote> <p><em>To send notifications we need two things</em><br> <strong>First</strong>: HTTP_API of bot<br> <strong>Second</strong>: CHAT_ID</p> </blockquote> <p><strong><em>HTTP_API of bot</em></strong></p> <ul> <li> <p>Create telegram bot</p> <ol> <li>BotFather in Telegram (<a class="mentioned-user" href="https://dev.to/botfather">@botfather</a>)</li> <li>Send /newbot command</li> <li>Enter bot name and bot username</li> </ol> <p><u>token-http-api</u></p> </li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fb3berv927qnf987ggm45.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fb3berv927qnf987ggm45.png" alt=" " width="800" height="483"></a></p> <p><strong><em>CHAT_ID</em></strong><br> 1. Go to @myidbot <br> 2. Enter: /start -&gt; /getid<br> 3. Save your chat_ID</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F9qugr3zi80agdi7k9c9j.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F9qugr3zi80agdi7k9c9j.png" alt=" " width="329" height="552"></a></p> <h2> Creating Jenkins Global Credentials </h2> <ol> <li> <strong>Manage Jenkins</strong> -&gt; <strong>Credentials</strong> -&gt; <strong>System</strong> -&gt; <strong>Global credentials (unrestricted)</strong> </li> <li>Add Crediantials(CHAT_ID &amp; TELEGRAM_API)</li> </ol> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fih5pvksqgy6o2thho82j.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fih5pvksqgy6o2thho82j.png" alt=" " width="800" height="65"></a></p> <p>Configurig pipeline</p> <blockquote> <p>_At the top of the <a href="https://github.com/Sharker3312/Node-App/blob/master/Jenkinsfile" rel="noopener noreferrer">pipeline</a><br> </p> </blockquote> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>environment <span class="o">{</span> // Telegram configuration TOKEN <span class="o">=</span> credentials<span class="o">(</span><span class="s1">'telegram-api'</span><span class="o">)</span> CHAT_ID <span class="o">=</span> credentials<span class="o">(</span><span class="s1">'telegram_chatid'</span><span class="o">)</span> <span class="o">}</span> </code></pre> </div> <blockquote> <p><em>Declare two variables which contain the tokens</em><br> </p> </blockquote> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> post <span class="o">{</span> success <span class="o">{</span> script <span class="o">{</span> sh <span class="s2">"curl -X POST -H 'Content-Type: application/json' -d '{</span><span class="se">\"</span><span class="s2">chat_id</span><span class="se">\"</span><span class="s2">: </span><span class="se">\"</span><span class="k">${</span><span class="nv">CHAT_ID</span><span class="k">}</span><span class="se">\"</span><span class="s2">, </span><span class="se">\"</span><span class="s2">text</span><span class="se">\"</span><span class="s2">: </span><span class="se">\"</span><span class="k">${</span><span class="nv">JOB_NAME</span><span class="k">}</span><span class="s2">: #</span><span class="k">${</span><span class="nv">BUILD_NUMBER</span><span class="k">}</span><span class="se">\n</span><span class="s2">✅ Deploy succeeded! </span><span class="se">\"</span><span class="s2">, </span><span class="se">\"</span><span class="s2">disable_notification</span><span class="se">\"</span><span class="s2">: false}' </span><span class="se">\"</span><span class="s2">https://api.telegram.org/bot</span><span class="k">${</span><span class="nv">TOKEN</span><span class="k">}</span><span class="s2">/sendMessage</span><span class="se">\"</span><span class="s2">"</span> <span class="o">}</span> <span class="o">}</span> failure <span class="o">{</span> script <span class="o">{</span> sh <span class="s2">"curl -X POST -H 'Content-Type: application/json' -d '{</span><span class="se">\"</span><span class="s2">chat_id</span><span class="se">\"</span><span class="s2">: </span><span class="se">\"</span><span class="k">${</span><span class="nv">CHAT_ID</span><span class="k">}</span><span class="se">\"</span><span class="s2">, </span><span class="se">\"</span><span class="s2">text</span><span class="se">\"</span><span class="s2">: </span><span class="se">\"</span><span class="k">${</span><span class="nv">JOB_NAME</span><span class="k">}</span><span class="s2">: #</span><span class="k">${</span><span class="nv">BUILD_NUMBER</span><span class="k">}</span><span class="se">\n</span><span class="s2">❌Deploy failure!</span><span class="se">\"</span><span class="s2">, </span><span class="se">\"</span><span class="s2">disable_notification</span><span class="se">\"</span><span class="s2">: false}' </span><span class="se">\"</span><span class="s2">https://api.telegram.org/bot</span><span class="k">${</span><span class="nv">TOKEN</span><span class="k">}</span><span class="s2">/sendMessage</span><span class="se">\"</span><span class="s2">"</span> <span class="o">}</span> <span class="o">}</span> aborted <span class="o">{</span> script <span class="o">{</span> sh <span class="s2">"curl -X POST -H 'Content-Type: application/json' -d '{</span><span class="se">\"</span><span class="s2">chat_id</span><span class="se">\"</span><span class="s2">: </span><span class="se">\"</span><span class="k">${</span><span class="nv">CHAT_ID</span><span class="k">}</span><span class="se">\"</span><span class="s2">, </span><span class="se">\"</span><span class="s2">text</span><span class="se">\"</span><span class="s2">: </span><span class="se">\"</span><span class="k">${</span><span class="nv">JOB_NAME</span><span class="k">}</span><span class="s2">: #</span><span class="k">${</span><span class="nv">BUILD_NUMBER</span><span class="k">}</span><span class="se">\n</span><span class="s2">❌Deploy aborted!</span><span class="se">\"</span><span class="s2">, </span><span class="se">\"</span><span class="s2">disable_notification</span><span class="se">\"</span><span class="s2">: false}' </span><span class="se">\"</span><span class="s2">https://api.telegram.org/bot</span><span class="k">${</span><span class="nv">TOKEN</span><span class="k">}</span><span class="s2">/sendMessage</span><span class="se">\"</span><span class="s2">"</span> <span class="o">}</span> <span class="o">}</span> <span class="o">}</span> </code></pre> </div> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Flbdku9p3yglchktuwwcy.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Flbdku9p3yglchktuwwcy.png" alt=" " width="192" height="180"></a></p> <p>I hope helpful!! </p> <p><a href="https://linkedin.com/in/lesterdprez" rel="nofollow noopener noreferrer"><img src="https://camo.githubusercontent.com/d94940866c98cb4fca5783c4e8ac95776d2f52df6bbf3d5ab9e30d76836f30ae/68747470733a2f2f696d672e736869656c64732e696f2f62616467652f4c696e6b6564496e2d2532333030373742352e7376673f6c6f676f3d6c696e6b6564696e266c6f676f436f6c6f723d7768697465" alt="LinkedIn" width="" height=""></a></p> tutorial cloud devops jenkins Lester Diaz Perez Mon, 26 Feb 2024 01:23:40 +0000 https://dev.to/sharker3312/integrating-sonarqube-into-your-cicd-pipeline-elevating-code-quality-and-security-4111 https://dev.to/sharker3312/integrating-sonarqube-into-your-cicd-pipeline-elevating-code-quality-and-security-4111 <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fa32riwzaz5p69monxai5.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fa32riwzaz5p69monxai5.png" alt=" " width="365" height="138"></a><br> <em>Adding Sonarqube into our workflow, code and security analysis.</em></p> <p><strong>Pre-requisites</strong></p> <ul> <li>Read the 1st part</li> <li>Ngrok app</li> </ul> <p><strong>For clarification</strong></p> <blockquote> <p><em>I tried to install it on the t2.micro instance but Sonarqube requires 2 gb ram</em></p> </blockquote> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fcdf7th06el2zc26p85ma.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fcdf7th06el2zc26p85ma.png" alt="Requirementes of Sonarqube" width="705" height="150"></a></p> <blockquote> <p><em>We will install it on our local machine to do everything for free at least in this test environment, but in AWS a t2.medium is recommended (it is not free tier).</em></p> </blockquote> <p><strong>Deploy Sonarqube</strong></p> <ul> <li>Sonarqube <a href="https://github.com/Sharker3312/Devops-Projects/blob/main/CD_pipeline_for_an_app/sonarqube.yml" rel="noopener noreferrer">compose</a> file</li> <li>cd /path(compose file) </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>docker-compose up <span class="nt">-d</span> </code></pre> </div> <blockquote> <p><em>In sonarqube it is typical to find this error when deploying the container.</em></p> </blockquote> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fhrwatyk5zucz3w4krrgb.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fhrwatyk5zucz3w4krrgb.png" alt=" " width="800" height="14"></a><br> <em>The solution is simple paste into the CLI the next code</em><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">sudo </span>sysctl <span class="nt">-w</span> vm.max_map_count<span class="o">=</span>262144 </code></pre> </div> <p>Opening Sonarqube Web -&gt; <em><a href="http://localhost:9000" rel="noopener noreferrer">http://localhost:9000</a></em></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fqf6tphhulsfa5os2slhp.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fqf6tphhulsfa5os2slhp.png" alt=" " width="800" height="598"></a></p> <blockquote> <p><em>Well as sonarqube is in our localhost now we will expose it to the internet</em></p> <ul> <li>Tunneling app to internet through <a href="https://ngrok.com/docs/getting-started/" rel="noopener noreferrer">Ngrok</a> </li> </ul> </blockquote> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F72lmlp6rhxjrqcmjiceb.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F72lmlp6rhxjrqcmjiceb.png" alt=" " width="800" height="275"></a></p> <blockquote> <p><em>Our Sonarqube is now exposed to the internet</em></p> </blockquote> <p><strong>Configure Jenkins to add Sonarqube</strong></p> <ol> <li>Go to <strong>Jenkins</strong> -&gt; <strong>Manage</strong> Jenkins -&gt; <strong>Plugins</strong> -&gt;<strong>Available</strong> plugins</li> <li>Install <strong>SonarQube Scanner</strong> </li> </ol> <blockquote> <p><em>Now we configure the plugin</em></p> <ol> <li>Manage Jenkins -&gt; <strong>System</strong> </li> <li>Search <strong>SonarQube servers</strong> -&gt; <strong>Click</strong> Environment variables</li> </ol> </blockquote> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F4ev1mzugttmtywjfc8cu.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F4ev1mzugttmtywjfc8cu.png" alt=" " width="800" height="276"></a></p> <ul> <li>Go to SonarQube Web</li> <li>Click in <strong>Administration</strong> bar -&gt; <strong>Security</strong>-&gt; <strong>Users</strong> </li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fzjilsbpt550owcvcx1eu.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fzjilsbpt550owcvcx1eu.png" alt=" " width="800" height="255"></a></p> <ul> <li>Click Token and name it <img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fddlpfqkzq5mhppc2l8hu.png" alt=" " width="800" height="255"> </li> </ul> <blockquote> <p><em>Now copy the token into the jenkins configuration variable</em></p> <ul> <li>Press Add</li> <li>Kind= Secret text <em>ID and description name them as you wish</em> </li> </ul> </blockquote> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fgly83wk3t4nmqxjd6hqj.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fgly83wk3t4nmqxjd6hqj.png" alt=" " width="800" height="361"></a></p> <ul> <li>Change Server authentication token</li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Flud6kjr60ec45bazy7lh.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Flud6kjr60ec45bazy7lh.png" alt=" " width="634" height="397"></a></p> <ul> <li>Save</li> </ul> <h2> CodeQuality Stage </h2> <blockquote> <p><em>Take a look to the pipeline <a href="https://github.com/Sharker3312/sonar-test" rel="noopener noreferrer">project</a></em></p> </blockquote> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fx60ey2o15bgum5rgtq1m.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fx60ey2o15bgum5rgtq1m.png" alt=" " width="409" height="336"></a><br> <u>tools: maven 3.9.6</u><br> Go to <strong>Manage Jenkins</strong> -&gt; <strong>Tools</strong> -&gt; <strong>Maven</strong></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fqbsn2wu5kzf876zt3xfi.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fqbsn2wu5kzf876zt3xfi.png" alt=" " width="800" height="313"></a></p> <p><strong>Ready to run the job</strong></p> <ul> <li>Build the job</li> </ul> <ol> <li> <strong>New Item</strong> -&gt; <strong>Pipeline</strong> </li> </ol> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fr06jgrlvzph8n9j8lih0.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fr06jgrlvzph8n9j8lih0.png" alt=" " width="800" height="359"></a><br> <u>Check the correct branch</u></p> <blockquote> <p><em>run</em></p> </blockquote> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fdc7uv4o1ph2awkr9cyj5.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fdc7uv4o1ph2awkr9cyj5.png" alt=" " width="161" height="19"></a></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F2fyzo0ozgk5ckt90wtxt.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F2fyzo0ozgk5ckt90wtxt.png" alt=" " width="408" height="170"></a></p> <ul> <li>Pulsa sobre el icono de sonarqube en la web, y haz click en el proyecto demo</li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fjlxzi71t9ym9c8xfnr40.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fjlxzi71t9ym9c8xfnr40.png" alt=" " width="537" height="330"></a></p> <p><strong>Quality Gate</strong></p> <blockquote> <p><em>What is a quality gate for?</em> <br> This function is used to wait for a certain time until the code analysis is completed<br> It's simple to use, just add the next code to the <strong>pipeline</strong><br> </p> </blockquote> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>stage<span class="o">(</span><span class="s2">"Quality Gate"</span><span class="o">)</span> <span class="o">{</span> steps <span class="o">{</span> <span class="nb">timeout</span><span class="o">(</span><span class="nb">time</span>: 2, unit: <span class="s1">'MINUTES'</span><span class="o">)</span> <span class="o">{</span> waitForQualityGate abortPipeline: <span class="nb">true</span> <span class="o">}</span> <span class="o">}</span> <span class="o">}</span> </code></pre> </div> <p><a href="https://linkedin.com/in/lesterdprez" rel="nofollow noopener noreferrer"><img src="https://camo.githubusercontent.com/d94940866c98cb4fca5783c4e8ac95776d2f52df6bbf3d5ab9e30d76836f30ae/68747470733a2f2f696d672e736869656c64732e696f2f62616467652f4c696e6b6564496e2d2532333030373742352e7376673f6c6f676f3d6c696e6b6564696e266c6f676f436f6c6f723d7768697465" alt="LinkedIn" width="" height=""></a></p> devops codequality tutorial cloud