This repository contains all code related the session "Continuous Delivery on the Kubernetes Plattform" by Nicolas Byl. In this session we will provide a step-by-step demo how to build a continuous delivery pipeline running on kubernetes.
To have this running on your machine, you will need the following tools:
You will also need a virtualization that is supported by minikube. This tutorial has been tested on VirtualBox
First of all initialize your kubernetes cluster with minikube:
minikube addons enable dashboard
minikube addons enable ingress
minikube start --memory 4096
Maybe, you will have to select your VM driver using --vm-driver. To see your available options, please refer to minikube start --help.
After the cluster has been started, verify your installation with:
kubectl cluster-info
The ip of your minikube VM can be found using:
minikube ip
Update: If you want to download the docker images on high-speed connection now, you can issue the following command:
minikube ssh 'for i in nbyl/jenkins-slave-docker-image-build:2.52.2 gcr.io/kubernetes-charts-ci/jenkins-master-k8s:v0.6.0 jenkinsci/jnlp-slave:2.52 java:8 postgres:9.5.4 gcr.io/k8s-minikube/nginx-ingress-controller:0.8.4; do docker pull $i; done'
Initialize helm using it's init command:
helm init
When the server component tiller is ready, you can view a list of your (not yet existing) applications with:
helm list
Before we can install jenkins, we have to make sure that local storage can be provisioned by minikube:
kubectl apply -f minikube/storageclass.yml
Now that helm and kubernetes are ready, we can install Jenkins using the a helm command:
helm install stable/jenkins --set Agent.Memory=1024Mi --name=cd
To open jenkins in your brower simply use minikube:
minikube service cd-jenkins
The user to login is admin and the password can be found the command given by the output of helm install ... earlier.
Create a new pipeline job for our project:
- Click on "New Item" and enter the name of the project "confy"
- As a type select "Pipeline" and click on "OK"
- Configure the following job options:
- "Build Triggers" → "Poll SCM" → "* * * * *"
- "Pipeline"
- "Definition": "Pipeline from SCM"
- "SCM": "Git"
- "Repository URL": "https://github.com/nbyl/cd-workshop-demo.git"
Afterwards you can click on "Save" and "Build Now" to start your first pipeline run. Congratulations, your pipeline is setup now.
Everytime a build is now started, gradle will redownload all dependencies mentioned in the build.gradle. To save us some time, we will create a persistent volume to cache these.
First create a persistent volume:
kubectl apply -f minikube/gradle-cache.yaml
Now configure Jenkins to use it when spawning a new build pod:
- "Manage Jenkins"
- "Configure System"
- Search for "Kubernetes Pod Template"
- "Add Volume" → "Persistent Volume Claim"
- "Claim Name": gradle-cache
- "Mount path": /home/jenkins/.gradle
- "Add Volume" → "Persistent Volume Claim"
Now restart the build. It will most likely fail, because minikubes hostPath provisioner will only allow root access to our filesystem. You can correct the rights using:
minikube ssh 'sudo chmod -R 777 /tmp/hostpath_pv'
Warning: You should not do this on a production system.
Now run your build again twice. You should notice a speedup on the second run.
First we need to enable the build pod to build docker images. Configure Jenkins to mount the corresponding socket:
- "Manage Jenkins"
- "Configure System"
- Search for "Kubernetes Pod Template"
- Change "Docker Image" to "nbyl/jenkins-slave-docker-image-build:2.52.2"
- "Add Volume" → "Host Path Volume"
- "Host Path": /run/docker.sock
- "Mount path": /run/docker.sock
- "Add Volume" → "Host Path Volume"
- "Host Path": /var/run/docker.sock
- "Mount path": /var/run/docker.sock
After saving run the pipeline again. It will call another gradle task that builds a docker container. Publishing is currently disabled as we are on a minikube system and the image will always be present. But why don't you implement this as an exercise?
There is nothing to change for this lab. But to check out the helm chart, look at the helm/confy directory. The deployment is described here as a set of templates for the kubernetes resources. The application is installed using a deployment of the pod to run. The database for the application is configured using environment variables. The instances of the application are combined using a kubernetes service.
There is nothing to change for this lab. If you look at the helm/confy chart, you will find an ingress resource to access the application. It will available after deployment at http:///confy-uat
There is nothing to change for this lab. After the confirmation the application will be available at http:///confy