当前位置:网站首页>Use Zadig to build a continuous delivery platform from 0 to 1
Use Zadig to build a continuous delivery platform from 0 to 1
2022-07-01 20:00:00 【51CTO】
WeChat official account : O & M development story , author : Jock
Hello everyone , I'm Jock , A restless YAML The engineer .
Recently, a friend asked me to come up with a Zadig The use of the tutorial , Tell the truth , I don't know how to write , Because everything is on the official website , I also practice by learning the official website .
But I'm too enthusiastic , Unable to suppress the repeated requests of friends , So I wrote an article that I used in practice .
The outline of this article is as follows :
What is? Zadig
I believe many friends have heard of it Zadig, But there are more friends who have not heard of it , Or I've heard of it but haven't understood it carefully , Here I would like to briefly introduce what is Zadig.
Zadig It is a platform for continuous delivery , It sets CI、CD、 Automated testing in one , Committed to building a cloud native open source software delivery platform .
Use Zadig, It can easily realize local joint debugging 、 Parallel construction of microservices 、 Integration testing and continuous deployment , Development can be more focused on business development 、 Operation and maintenance can also focus more on stability maintenance .
Said so much , Let's get to the point , Start Zadig The journey of using .
Actually Zadig Please refer to the installation chapter of the official document for the installation of . But in order to maintain the integrity of the article , Let me briefly introduce .
Here is my environmental description :
Linux:CentOS 7.9
PS: I'm based on the existing Kubernetes, Use Helm Install and deploy .
install MySQL
Why install MySQL Well ?
Use Zadig The default installation method , Installed MySQL yes 8.+ edition , And sometimes I can't get up alive ( Tread pit , I didn't find the reason why I couldn't get up ), So I installed it myself no matter in production or in the test environment MySQL 5.7 Version of , Of course , You need to choose according to your actual situation .
(1) add to MySQL Of Helm repo
(2) download MySQL chart Package to local ( I'm used to , Whatever you choose )
(3) Customize value.yaml file
mysqlUser: [email protected]'%'
mysqlPassword: [email protected]
enabled: true
storageClass: "rbd"
accessMode: ReadWriteOnce
size: 50Gi
mysql.cnf: |-
init_connect='SET NAMES utf8'
- 1.
- 2.
- 3.
- 4.
- 5.
- 6.
- 7.
- 8.
- 9.
- 10.
- 11.
- 12.
- 13.
- 14.
- 15.
- 16.
- 17.
- 18.
- 19.
- 20.
- 21.
- 22.
- 23.
- 24.
- 25.
- 26.
(4) install MySQL
(5) Check after installation MySQL Installation
install Zadig
It's already installed MySQL, Let's start the installation Zadig( Other components are used Zadig Self contained , No problems have been found in the current use ).
(1) add to Zadig Helm Chart
(2) download Zadig Chart package I'll download it here first v1.11.0 edition , Because an upgrade process is also prepared .
(3) Customize value.yaml file , The main thing is to modify mysql Configuration of
mysql: false
host: mysql:3306
user: root
password: [email protected]
type: mysql
host: mysql
port: 3306
database: dex
user: root
password: [email protected]
mode: "false"
- 1.
- 2.
- 3.
- 4.
- 5.
- 6.
- 7.
- 8.
- 9.
- 10.
- 11.
- 12.
- 13.
- 14.
- 15.
- 16.
- 17.
- 18.
- 19.
- 20.
(4) install Zadig Officials say you can use domain names or IP visit , I use the domain name here .
$ export NAMESPACE=zadig
$ export DOMAIN=zadig.jokerbai.com
$ helm upgrade --install zadig . -f my-value.yaml --namespace ${NAMESPACE} --version=1.10.0 --set endpoint.FQDN=${DOMAIN} --set global.extensions.extAuth.extauthzServerRef.namespace=${NAMESPACE} --set "dex.config.staticClients[0].redirectURIs[0]=http://${DOMAIN}/api/v1/callback,dex.config.staticClients[0].id=zadig,dex.config.staticClients[0].name=zadig,dex.config.staticClients[0].secret=ZXhhbXBsZS1hcHAtc2VjcmV0"
- 1.
- 2.
- 3.
- 4.
(5) Check the installation
$ kubectl get pod -n zadig
aslan-5d6b86ccdf-st7w9 2/2 Running 0 10d
config-7d6654fb8-xcfmk 1/1 Running 0 10d
cron-67f77f54bc-fvrgp 2/2 Running 0 10d
dind-0 1/1 Running 0 49d
discovery-68d76c5bf4-nrl5r 1/1 Running 0 57d
gateway-645958c96c-gnltp 1/1 Running 0 57d
gateway-proxy-5d6bcc677f-njvdk 1/1 Running 0 57d
gloo-7955b997b-br9m2 1/1 Running 0 57d
hub-server-7b5cc9bdb6-t6zkw 1/1 Running 0 10d
mysql-6b64454fd9-nhlqd 2/2 Running 1 57d
nsqlookup-0 1/1 Running 0 57d
nsqlookup-1 1/1 Running 0 57d
nsqlookup-2 1/1 Running 0 57d
opa-69d5c669f6-s784f 1/1 Running 0 57d
picket-55685b94d9-czm7b 1/1 Running 0 10d
podexec-868c677548-mks74 1/1 Running 0 10d
policy-5c5bd995c8-pfxnp 1/1 Running 0 10d
resource-server-c87c4cddd-ptq45 1/1 Running 0 10d
user-77b5585554-n2cm4 1/1 Running 0 10d
warpdrive-55c46595d5-hvkc2 2/2 Running 0 10d
warpdrive-55c46595d5-mn9d8 2/2 Running 0 10d
zadig-dex-d9df5944f-vgdkc 1/1 Running 0 10d
zadig-minio-5c576d44c8-rnkmp 1/1 Running 0 57d
zadig-mongodb-6dfb6f676f-9v5rq 1/1 Running 0 57d
zadig-portal-69d8f946b8-wqrpz 1/1 Running 0 10d
- 1.
- 2.
- 3.
- 4.
- 5.
- 6.
- 7.
- 8.
- 9.
- 10.
- 11.
- 12.
- 13.
- 14.
- 15.
- 16.
- 17.
- 18.
- 19.
- 20.
- 21.
- 22.
- 23.
- 24.
- 25.
- 26.
- 27.
Then according to the domain name http://zadig.jokerbai.com Visit .
Use account password admin:zadig
Log in .
Zadig Is a very active project , Community iteration is very fast , And there will be more and more functions , The experience is getting better and better , So upgrade Zadig It's a daily need .
PS: although Zadig The compatibility of each version is good , However, cross version upgrade is not recommended when upgrading .
(1) Download the new version of zadig
(2) Customize value.yaml Get clusters zadig Configuration information
modify zadig.yaml, Add custom mysql To configure
mysql: false
host: mysql:3306
user: root
password: [email protected]
type: mysql
host: mysql
port: 3306
database: dex
user: root
password: [email protected]
mode: "false"
- id: zadig
name: zadig
- http://zadig.jokerbai.com/api/v1/callback
secret: ZXhhbXBsZS1hcHAtc2VjcmV0
FQDN: zadig.ustax.tech
namespace: zadig
- 1.
- 2.
- 3.
- 4.
- 5.
- 6.
- 7.
- 8.
- 9.
- 10.
- 11.
- 12.
- 13.
- 14.
- 15.
- 16.
- 17.
- 18.
- 19.
- 20.
- 21.
- 22.
- 23.
- 24.
- 25.
- 26.
- 27.
- 28.
- 29.
- 30.
- 31.
- 32.
- 33.
- 34.
(3) Backup database
Fill in the specific information according to the actual situation
1、 Backup mongo database
2、 Backup mysql database
(4) upgrade zadig
After upgrading , see Pod Whether it starts normally , Then use the browser to log in and see if it is normal .
System integration
The integrated functions are very rich , Can integrate code source 、 Account system 、Jenkins、Jira etc. , But not all of them are useful , Just choose the integration you need .
I won't write all the collections here , That doesn't make sense , It's better to read the official documents directly . I only write about the system I use : Code source and account system .
Integrated code source
There are many choices of code sources , Ready to use saas platform , such as gitlab、gitee、github etc. , these zadig All support integration . Because our company is self built gitlab, So this is just an introduction gitlab The integration method of .
(1) establish OAuth. What I create here is an organization type OAuth, That is, you can have global permissions .
Configure according to the drawing , as follows :
- Fill in the name of the application
- Please fill in the callback address http://[zadig.yours.com]/api/directory/codehosts/callback
- To give permission api 、read_user 、read_repository
- Click Create
Once I've created it , remember Application ID
and Secret
(2) stay zadig On the configuration Gitlab Integrate Fill in the following information :
- Code source : Choose... Here GitLab
- Code source identification : Customize , Convenient in Zadig Quickly identify the code source in the system , This information is unique in the whole system
- GitLab service URL:GitLab Address
- Application ID: step 3 Returned after successful application creation Application ID
- Secret: step 3 Returned after successful application creation Secret
After confirmation , Click on Go to authorize
, Will jump to Gitlab To authorize , Click on Authorize
that will do .
Here we are ,Gitlab Integration complete .
Integrated account system
Zadig Own account system , However, enterprises generally have their own account system , such as LDAP, For unified management , At this time, it is necessary to integrate these account systems .
I'm not integrated here LDAP, It's integrated Gitlab, So this is just an introduction Gitlab The integration method of .
(1) establish Gitlab OAuth Fill in the following information :
- Fill in the name of the application
- Please fill in the callback address http://[zadig.yours.com]/api/directory/codehosts/callback
- To give permission read_user 、openid
- Click Create
(2) stay Zadig Account system integration
Gitlab It needs to be integrated in a customized way , Relevant configurations need to pass YAML To customize , as follows :
Custom account system use Dex Realization , therefore Gitlab And other user-defined account system integration , You can refer to Dex Documents (https://dexidp.io/docs/connectors/gitlab/)
After filling in the information , Click save .
(3) validate logon Exit the current account , Use Gitlab Account login .
Choose a third party login , as follows :
Then it will jump to Gitlab Login screen , Fill in the username and password , If you have logged in in the current browser Gitlab, Will jump directly to the authorization interface , as follows :
Click on Authorize
later , Will jump back to Zadig The user interface . However, the current user is only logged in Zadig, No authority , Administrative authorization is required to perform other operations .
This integrated system has been completed .
Template library management
Zadig Provide template management , Mainly YAML file ,Helm Chart,Dockerfile And build management , This improves the reuse rate , Others need to use the template to import directly .
I mainly used Helm Chart And build management .
Helm Chart Templates
Helm Chart The original code of is saved in Gitlab Of , So in the template library, you only need to start from Gitlab Just import .
Import the required template as follows .
Add template libraries as needed , For example, I add here java、 front end 、python、go、php Equal template .
Building template
A build template is a template for applying a build image , How many applications , As long as it can be reused , Can be made into templates . For example, I made the front end here ,java as well as go The template of .
Of course , Mine doesn't mean you can use , Only for reference
We java All projects use gradle managed , So use maven It's not suitable for me . Advanced configuration , Cache definition .
front end
Is it simple ? It's all that simple .
Dockerfile Example
You can see from above , All our builds have Dockerfile, So you need to customize your own Dockerfile, I'm just throwing a few examples here , For reference only .
FROM registry.cn-huhehaote.aliyuncs.com/jokerbai/openjdk8-openj9:alpine-slim
ARG NAME=gateway
# Set time zone
ENV TZ=Asia/Shanghai
RUN echo 'http://mirrors.aliyun.com/alpine/v3.11/main' > /etc/apk/repositories; \
echo 'http://mirrors.aliyun.com/alpine/v3.11/community' >>/etc/apk/repositories; \
set -eux; \
apk add --no-cache --update fontconfig ttf-dejavu; \
apk add --no-cache --update tzdata; \
ln -snf /usr/share/zoneinfo/$TZ /etc/localtime; \
echo $TZ > /etc/timezone; \
# add to Arthas Toolkit
COPY --from=registry.cn-huhehaote.aliyuncs.com/jokerbai/arthas:latest /opt/arthas /opt/arthas
# add to Skywalking Agent
COPY --from=registry.cn-huhehaote.aliyuncs.com/jokerbai/skywalking-agent-sidecar:8.1.0-es7 /usr/skywalking/agent /opt/skywalking/agent
VOLUME ["/opt"]
# ADD ${NAME}-bootstrap/build/libs/${NAME}-bootstrap-${VERSION}.jar /opt/app.jar
ADD build/libs/${NAME}-${VERSION}-SNAPSHOT.jar /opt/app.jar
ENTRYPOINT ["sh", "-c", "java $JVM_OPTS $JVM_ARGS -jar /opt/app.jar"]
- 1.
- 2.
- 3.
- 4.
- 5.
- 6.
- 7.
- 8.
- 9.
- 10.
- 11.
- 12.
- 13.
- 14.
- 15.
- 16.
- 17.
- 18.
- 19.
- 20.
- 21.
- 22.
- 23.
- 24.
- 25.
- 26.
- 27.
- 28.
- 29.
- 30.
FROM golang:1.17.5 AS build-env
ENV GOPROXY https://goproxy.cn
ADD . /go/src/app
WORKDIR /go/src/app
RUN go mod tidy
RUN cd cmd && GOOS=linux GOARCH=amd64 go build -v -o /go/src/app/app-server /go/src/app/cmd/main.go
FROM registry.cn-zhangjiakou.aliyuncs.com/jokerbai/ubuntu:22.04
ENV TZ=Asia/Shanghai
COPY --from=build-env /go/src/app/app-server /opt/app-server
CMD [ "./app-server" ]
- 1.
- 2.
- 3.
- 4.
- 5.
- 6.
- 7.
- 8.
- 9.
- 10.
- 11.
- 12.
- 13.
front end
PS: Mine may not be suitable for you , Use caution .
Service management
Everything that should be prepared is finished , Now let's really create applications 、 Release applications and pipeline management .
(1) First , We need to create a project , as follows :
(2) New services Click Service --> Create from the template library
Fill in the information as needed , Need custom value.yaml, You can customize it in the advanced part .
(3) Add build The service has been added , The next step is to add a build for the service .
We choose to use templates to create , Then associate it with the corresponding service and code .
Environmental management
The service is ready , Build also adds , The next step is to deploy the service to the corresponding environment .
Zadig By default it will create DEV and QA Environmental Science , And the corresponding Namespace, If you are adding an existing Namespace, You need to create your own environment .
Add clusters
Cloud nativity is the trend , And then Kubernetes On behalf of the use of technology is also very much .
My application is deployed in various Kubernetes In the cluster , So first we need to add the cluster we need to Zadig On .
Tips :Zadig The added cluster should be able to access Zadig. let me put it another way , If you Zadig Deployed on the intranet , Cluster on the Internet , Cluster access Zadig cannot access , Then you are not successful in adding . Also look forward to Zadig The open source community can provide Agent and Kubeconfig Various cluster access methods .
Select cluster -> newly build
Click Save , I'm going to generate the corresponding Agent Access mode .
Copy the above command , Execute on the corresponding cluster .
After execution , Can be in Agent colony , See the corresponding Pod If there is something wrong .
Wait for all Pod After everything is normal , stay Zadig You can see the access status on , as follows :
Add application
The environment is ready , Now let's add an application .
Find the corresponding environment , Select Add Service .
Select the application you want to add , You can select multiple at the same time , Then configure value.
After configuration , Click ok , Then you can see the corresponding application in the environment .
The one I use here in red is the one I just joined , The application didn't work because of the image problem .
Other features
Environmental management has other functions , For example, restart 、 Check the log 、 Get into Pod etc. .
Click the part shown in the figure , You can restart Pod operation .
If access is required Pod Or view the log , You need to click the corresponding application first , After entering , You can see the corresponding button , as follows :
Assembly line management
Applications are added above , But the application didn't work , This requires us to go back to the assembly line , Let the application work .
New workflow
Select workflow , Then select new workflow .
- Fill in the workflow name
- Specify the environment , In this way, the workflow is bound to the environment
- Whether to choose concurrent operation depends on the actual situation
Then click save .
Run the assembly line
After the workflow is created , Then you can run it directly , No additional configuration pipeline steps are required .
Enter the newly created workflow , Choose to perform , Then select the corresponding application , Fill in specific information , as follows :
Make sure the information is correct , You can start the task .
You can see that the steps of workflow are only build and deploy , And you need both of these steps OK after , The whole workflow is completed .
We can click on specific services to see specific construction information , Convenient for troubleshooting .
Wait until both steps are completed , The whole assembly line has also been completed .
And you can enter the environment , See the specific application also OK 了 .
Add message notification
Sometimes after clicking the release pipeline , Will not keep an eye on the release process , But will turn around and do something else , Such as fishing .
At this time, you need a pipeline message notification , So that we can be informed of the success or failure of the release .
Because our company uses nails as a platform for daily work and communication , So what I access here is nail message notification .
(1) First, create a nailing robot There's nothing to say , It should be noted that when creating, you need to formulate “ workflow
” keyword , Only in this way can we ensure that messages are received normally . Then find the workflow , Enter it and click Configure .
Select notification --> Add the configuration
Configure as needed , Save after completion .
Then we can receive the message notification when we build again .
Code scanning
The above continuous delivery is basically completed , And it's enough . But many friends are in the original CICD Code scanning is added to the process ,Zadig It is also the hobby of the masses , stay 1.12.0
Code scanning is added in version .
But use code scanning , You need to install the code scanning tool yourself Sonarqube.
I'll attach some simple installation steps here .
install Sonarqube
(1) add to Repo
(2) download sonarqube Helm Chart
(3) install sonarqube, if necessary PG persistent , change value.yaml that will do .
Check sonar Is the installation successful .
$ kubectl get all -n zadig | grep sonar
pod/sonarqube-5c674b5db6-ndvk8 1/1 Running 0 8d
pod/sonarqube-postgresql-0 1/1 Running 0 10d
service/sonarqube ClusterIP <none> 80/TCP,9001/TCP 10d
service/sonarqube-postgresql ClusterIP <none> 5432/TCP 10d
service/sonarqube-postgresql-hl ClusterIP None <none> 5432/TCP 10d
deployment.apps/sonarqube 1/1 1 1 10d
replicaset.apps/sonarqube-5c674b5db6 1 1 1 10d
statefulset.apps/sonarqube-postgresql 1/1 10d
- 1.
- 2.
- 3.
- 4.
- 5.
- 6.
- 7.
- 8.
- 9.
Integrate sonarqube
(1) First, in the sonarqube To create a Token
Generate directly , But remember Token.
(2) stay Zadig Upper integration
stay Sonar Fill in specific sonar Address and just generated Token, Save it .
Code scan
Enter the project , Select code scan , New code scanning .
New code and parameter configuration , as follows :
Then click execute , Code scanning .
After scanning , You can go to sonarqube View the scan results on , Code quality management .
The above is what I use now Zadig All functions of , Among them, automated testing is a relatively good function , But it still needs the cooperation of the students to complete the final rotation , At present, I don't have the energy to do these things , however , Our vision is to pass Zadig To complete the development 、 test 、 Operation and maintenance closed loop .
besides ,Zadig Some energy efficiency panels are also provided , It is convenient for us to view and review .
Reference resources
- Zadig Official documents :https://docs.koderover.com/zadig
- Dex Official documents :https://dexidp.io/docs/connectors/gitlab/
I am a Jock ,《 O & M development story 》 A member of the official account team. , Front line operation and maintenance workers , Cloud native practitioners , It's not just hard core technology , And our thinking and perception of Technology , Welcome to our official account , Looking forward to growing up with you !
- DS Transunet:用于医学图像分割的双Swin-Transformer U-Net
- HLS4ML报错The board_part definition was not found for tul.com.tw:pynq-z2:part0:1.0.
- How to turn off the boot auto start software in win11
- 振弦采集模块测量振弦传感器的流程步骤
- ORA-01950
- Redis installation and startup in Windows environment (background startup)
- 优质笔记软件综合评测和详细盘点(一) Notion、Obsidian、RemNote、FlowUs
- GaussDB(for MySQL) :Partial Result Cache,通过缓存中间结果对算子进行加速
- 一文读懂C语言中的结构体
- Getting started with fastdfs
Hls4ml entry method
HLS4ML报错The board_part definition was not found for tul.com.tw:pynq-z2:part0:1.0.
Gaussdb (for MySQL):partial result cache, which accelerates the operator by caching intermediate results
Class loading mechanism
Interview questions shared in today's group
Flask 常用组件
windows环境 redis安装和启动(后台启动)
Use of common built-in classes of JS
[research materials] national second-hand housing market monthly report January 2022 - Download attached
JS proxy
qobject_ Cast usage
Time series analysis using kibana timelion
[research materials] Huawei Technology ICT 2021: at the beginning of the "Yuan" year, the industry is "new" -- download attached
The large list set is divided into multiple small list sets in equal proportion
Powerful, easy-to-use, professional editor / notebook software suitable for programmers / software developers, comprehensive evaluation and comprehensive recommendation
Anaconda installs the virtual environment to the specified path
Is Dao safe? Build finance encountered a malicious governance takeover and was looted!