Add Jenkins pipeline for airgap infrastructure deployment and testing #498
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,58 @@ | ||
| # Dockerfile for Airgap Go Testing | ||
|
Contributor
There was a problem hiding this comment. nit: The file names is a little different from the standart, could you rename the file to
Contributor
Author
There was a problem hiding this comment. I thought a lot about the name of this file. I might replace airgap with Ansible because it really can be used for any Ansible/Tofu-based setup that wants to run tests. I will replace the other validation/Dockerfile.infra with this one, but I will do that in a separate PR in tests and jenkins-job-builder.
Contributor
There was a problem hiding this comment. Makes sense to me! What do you think of updating Dockerfile.infra with what you need and use it here?
Contributor
Author
There was a problem hiding this comment. Created an issue, and I'll tackle this in another PR. |
||
| # Provides Go toolchain, gotestsum, OpenTofu, Ansible, and AWS CLI for test execution | ||
|
|
||
| ARG TOFU_VERSION=1.10.7 | ||
| ARG GOTESTSUM_VERSION=v1.13.0 | ||
| ARG ANSIBLE_VERSION=13.3.0 | ||
| ARG AWSCLI_VERSION=1.44.44 | ||
|
|
||
| FROM --platform=linux/amd64 golang:1.25-alpine3.22 | ||
|
|
||
| ARG TOFU_VERSION | ||
| ARG GOTESTSUM_VERSION | ||
| ARG ANSIBLE_VERSION | ||
| ARG AWSCLI_VERSION | ||
|
|
||
| # Install runtime dependencies | ||
| RUN apk add --no-cache \ | ||
| bash \ | ||
| curl \ | ||
| git \ | ||
| openssh-client \ | ||
| python3 \ | ||
| py3-pip \ | ||
| ca-certificates | ||
|
|
||
| # Install Ansible and AWS CLI (pinned versions for reproducible builds) | ||
| RUN pip3 install --no-cache-dir --break-system-packages \ | ||
| ansible==${ANSIBLE_VERSION} \ | ||
| awscli==${AWSCLI_VERSION} | ||
|
|
||
| # Install OpenTofu with checksum verification | ||
| RUN curl -Lo /tmp/tofu_${TOFU_VERSION}_linux_amd64.tar.gz "https://github.com/opentofu/opentofu/releases/download/v${TOFU_VERSION}/tofu_${TOFU_VERSION}_linux_amd64.tar.gz" \ | ||
| && curl -Lo /tmp/tofu_SHA256SUMS "https://github.com/opentofu/opentofu/releases/download/v${TOFU_VERSION}/tofu_${TOFU_VERSION}_SHA256SUMS" \ | ||
| && cd /tmp && grep "tofu_${TOFU_VERSION}_linux_amd64.tar.gz$" tofu_SHA256SUMS | sha256sum -c - \ | ||
| && tar -xzf /tmp/tofu_${TOFU_VERSION}_linux_amd64.tar.gz -C /usr/local/bin/ \ | ||
| && rm /tmp/tofu_${TOFU_VERSION}_linux_amd64.tar.gz /tmp/tofu_SHA256SUMS \ | ||
| && chmod +x /usr/local/bin/tofu | ||
|
|
||
| # Install gotestsum (pinned version for reproducible builds) | ||
| ENV GOBIN=/usr/local/bin | ||
| RUN go install gotest.tools/gotestsum@${GOTESTSUM_VERSION} | ||
| ENV GOBIN= | ||
|
rancher-max marked this conversation as resolved.
|
||
|
|
||
| # Set Ansible config to the consolidated ansible.cfg in qa-infra-automation | ||
| ENV ANSIBLE_CONFIG=/workspace/qa-infra-automation/ansible/ansible.cfg | ||
|
|
||
| # Create working directory | ||
| WORKDIR /workspace | ||
|
|
||
| # Verify installations | ||
| RUN tofu version && \ | ||
| ansible --version && \ | ||
| aws --version && \ | ||
| go version && \ | ||
| gotestsum --version | ||
|
|
||
| # Default to sh shell (compatible with docker run sh -c) | ||
| CMD ["/bin/sh"] | ||
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
You made Copilot very happy by including versions and checksum verification.
This dockerfile looks like it will be a nice default to use with all of the qa-infra-automation stuff too to be honest.