./target/*

FROM openjdk:8

ADD jarstaging/com/satish/demo-workshop/2.1.2/demo-workshop-2.1.2.jar sample_app.jar

ENTRYPOINT [ "java", "-jar", "sample_app.jar" ]

def registry = 'https://satishk.jfrog.io'

def imageName = 'satishk.jfrog.io/satish-docker-local/sample_app'

def version = '2.1.2'

pipeline {

agent {

node {

label 'maven'

}

}

environment {

PATH = "/opt/apache-maven-3.9.4/bin:$PATH"

}

stages {

stage("build"){

steps {

echo "----------- build started ----------"

sh 'mvn clean deploy -Dmaven.test.skip=true'

echo "----------- build complted ----------"

}

}

stage("test"){

steps{

echo "----------- unit test started ----------"

sh 'mvn surefire-report:report'

echo "----------- unit test Complted ----------"

}

}

stage('SonarQube analysis') {

environment {

scannerHome = tool 'satish-sonarqube-scanner'

}

steps{

withSonarQubeEnv('satish-sonarqube-server') { // If you have configured more than one global server connection, you can specify its name

sh "${scannerHome}/bin/sonar-scanner"

}

}

}

stage("Quality Gate"){

steps {

script {

timeout(time: 1, unit: 'HOURS') { // Just in case something goes wrong, pipeline will be killed after a timeout

def qg = waitForQualityGate() // Reuse taskId previously collected by withSonarQubeEnv

if (qg.status != 'OK') {

error "Pipeline aborted due to quality gate failure: ${qg.status}"

}

}

}

}

}

stage("Jar Publish") {

steps {

script {

echo '<--------------- Jar Publish Started --------------->'

def server = Artifactory.newServer url:registry+"/artifactory" , credentialsId:"jfrog_cred"

def properties = "buildid=${env.BUILD_ID},commitid=${GIT_COMMIT}";

def uploadSpec = """{

def buildInfo = server.upload(uploadSpec)

buildInfo.env.collect()

server.publishBuildInfo(buildInfo)

echo '<--------------- Jar Publish Ended --------------->'

}

}

}

stage(" Docker Build ") {

steps {

script {

echo '<--------------- Docker Build Started --------------->'

app = docker.build(imageName+":"+version)

echo '<--------------- Docker Build Ends --------------->'

}

}

}

stage (" Docker Publish "){

steps {

script {

echo '<--------------- Docker Publish Started --------------->'

docker.withRegistry(registry, 'jfrog_cred'){

app.push()

}

echo '<--------------- Docker Publish Ended --------------->'

}

}

}

// stage (" Deploy "){

// steps {

// script {

// sh './deploy.sh'

// }

// }

// }

stage(" Deploy ") {

steps {

script {

echo '<--------------- Helm Deploy Started --------------->'

sh 'helm install sample-app sample-app-1.0.1'

echo '<--------------- Helm deploy Ends --------------->'

}

}

}

}

}


1. [Provisioned the required infrastructure like VPC, Security Group, Ansible Controller Instance, Jenkins Master and Agent Instances using Terraform.](https://github.com/NotHarshhaa/DevOps-Projects/blob/master/DevOps%20Project-06/Steps/step1.md#L1)

2. [Configured SSH keys for password less authentication between Ansible Controller and Agent nodes.](https://github.com/NotHarshhaa/DevOps-Projects/blob/master/DevOps%20Project-06/Steps/step2.md#L1)

3. [Configured the Jenkins Master and Agent nodes using Ansible. Configured Jenkins Agent as the Maven Build server.](https://github.com/NotHarshhaa/DevOps-Projects/blob/master/DevOps%20Project-06/Steps/step3.md#L1)

4. [Added Jenkins Agent node's credentials in Jenkins Master to establish a connection between Jenkins Master and Agent nodes.](https://github.com/NotHarshhaa/DevOps-Projects/blob/master/DevOps%20Project-06/Steps/step4.md#L1)

5. [Added GitHub credentials to the Jenkins Master and created Multibranch Pipeline job.](https://github.com/NotHarshhaa/DevOps-Projects/blob/master/DevOps%20Project-06/Steps/step5.md#L1)

6. [Configured the Multibranch Pipeline job with GitHub Webhook Trigger with the help of Multibranch Scan Webhook Trigger Plugin.](https://github.com/NotHarshhaa/DevOps-Projects/blob/master/DevOps%20Project-06/Steps/step6.md#L1)

7. **SonarQube:**

1. [Generated an access token in SonarCloud and added SonarQube server credentials in Jenkins Master.](https://github.com/NotHarshhaa/DevOps-Projects/blob/master/DevOps%20Project-06/Steps/step7.md#L3)

2. [Installed Sonarqube scanner plugin.](https://github.com/NotHarshhaa/DevOps-Projects/blob/master/DevOps%20Project-06/Steps/step7.md#L64)

3. [Added Sonarqube server to the Jenkins Master in System section.](https://github.com/NotHarshhaa/DevOps-Projects/blob/master/DevOps%20Project-06/Steps/step7.md#L100)

4. [Added Sonarqube scanner to the Jenkins Master in Tools section.](https://github.com/NotHarshhaa/DevOps-Projects/blob/master/DevOps%20Project-06/Steps/step7.md#L140)

5. [Configured an organization and project in SonarCloud and wrote a sonar-project. properties file.](https://github.com/NotHarshhaa/DevOps-Projects/blob/master/DevOps%20Project-06/Steps/step7.md#L174)

6. [Added sonarqube, unit tests and build stages in the Jenkinsfile.](https://github.com/NotHarshhaa/DevOps-Projects/blob/master/DevOps%20Project-06/Steps/step7.md#L236)

8. [Added JFrog credentials in the Jenkins Master and integrated JFrog artifactory with Jenkins by installing Artifactory plugin in Jenkins Master.](https://github.com/NotHarshhaa/DevOps-Projects/blob/master/DevOps%20Project-06/Steps/step8.md#L1)

9. [Created a Docker Image out of the jar file and committed that Docker Image into the Docker repository of the JFrog artifactory with the help of Docker Pipeline plugin. Added the Docker Build and Publish stage in Jenkinsfile.](https://github.com/NotHarshhaa/DevOps-Projects/blob/master/DevOps%20Project-06/Steps/step9.md#L1)

10. **EKS:**

1. [Provisioned the EKS cluster with Terraform.](https://github.com/NotHarshhaa/DevOps-Projects/blob/master/DevOps%20Project-06/Steps/step10.md#L3)

2. [Installed kubectl in Jenkins Slave.](https://github.com/NotHarshhaa/DevOps-Projects/blob/master/DevOps%20Project-06/Steps/step10.md#L69)

3. [Installed AWS CLI v2 in Jenkins Slave to connect with AWS account.](https://github.com/NotHarshhaa/DevOps-Projects/blob/master/DevOps%20Project-06/Steps/step10.md#L125)

4. [Downloaded Kubernetes credentials and cluster configuration from the cluster using the command](https://github.com/NotHarshhaa/DevOps-Projects/blob/master/DevOps%20Project-06/Steps/step10.md#L181)

5. `aws eks update-kubeconfig --region <region_name> --name <cluster_name>`

11. [Pulled the Docker Image from the JFrog artifactory using Kubernetes secret and deployed it in our EKS cluster using deployment resource and exposed it to access from outside using service resource under a particular namespace. Added the deployment stage in Jenkinsfile.](https://github.com/NotHarshhaa/DevOps-Projects/blob/master/DevOps%20Project-06/Steps/step11.md#L1)

12. [Added the Prometheus helm chart repository and implemented the cluster monitoring using Prometheus and Grafana.](https://github.com/NotHarshhaa/DevOps-Projects/blob/master/DevOps%20Project-06/Steps/step12.md#L1)

* Note: Changed the default service type of Prometheus and Grafana services from ClusterIP to LoadBalancer to access them from the browser.

***If you are planning to use this repo for learning, please hit the star. Thanks!***

This Steps used to Terraform to provision a set of infrastructure components including a VPC, Security Group, Ansible Controller Instance, and Jenkins Master and Agent Instances. This is a common approach to automate the deployment of infrastructure using code. Here's a breakdown of the components you've mentioned:

1. **VPC (Virtual Private Cloud):** A VPC is an isolated network environment within the cloud provider's infrastructure. It allows you to define your own IP address range, subnets, route tables, and network gateways. This helps you create a private and secure network for your resources.

2. **Security Group:** A security group acts as a virtual firewall for instances in a VPC. It controls inbound and outbound traffic by specifying rules. These rules define the allowed protocols, ports, and source/destination IP ranges. Security groups are used to enforce security policies on instances.

3. **Ansible Controller Instance:** This is an instance that is set up to run Ansible, an automation tool that helps you manage configuration and deployment tasks. The Ansible Controller Instance is where you'll typically run your Ansible playbooks to configure and manage other instances in your environment.

4. **Jenkins Master:** Jenkins is an open-source automation server that helps automate various parts of the software development process, including building, testing, and deploying applications. The Jenkins Master is the central server that manages jobs, schedules builds, and coordinates the activities of Jenkins Agents.

5. **Jenkins Agent Instances:** Jenkins Agents (also known as nodes) are responsible for executing the tasks and jobs scheduled by the Jenkins Master. They can be set up on different machines to distribute workloads and enable parallel execution of tasks.

Using Terraform to provision this infrastructure means that you've defined the configuration of these components in Terraform configuration files. These files specify the desired state of the infrastructure, and Terraform handles the provisioning, modification, and deletion of resources to match that desired state.

For future steps, you might want to consider the following:

1. **Configuration Management:** After provisioning the infrastructure, you would likely use Ansible to configure the instances. Ansible playbooks can define the desired state of the software and configurations on the Ansible Controller Instance and other instances.

2. **Integration with Jenkins:** You can configure Jenkins jobs to trigger Ansible playbooks or other automation tasks. This integration helps you automate the deployment and testing processes.

3. **Scaling and Maintenance:** As your application and infrastructure needs grow, you might need to scale up your resources. Terraform can help you manage scaling by defining the desired number of instances and other resources.

4. **Monitoring and Security:** Implement monitoring and security best practices to ensure that your infrastructure is performing well and is protected against potential threats.

Remember to regularly update your infrastructure code as your requirements evolve, and make use of version control systems to track changes and collaborate effectively with your team.