rproxy/Jenkinsfile

pipeline {
    agent any
    options {
        buildDiscarder logRotator (
            numToKeepStr: '5',
            daysToKeepStr: '7',
            artifactNumToKeepStr: '10',
            artifactDaysToKeepStr: '7'
        )
        ansiColor('xterm')
        timestamps()
    }
    parameters {
        string(name: "target_host", defaultValue: "", trim: true, description: "Target host")
        booleanParam(name: "rproxy_install", defaultValue: true, description: "Install Rproxy")
        booleanParam(name: "config_add", defaultValue: true, description: "Add config")
        string(name: "rproxy_service_name", defaultValue: "", trim: true, description: "Service name (for 'Add config' job only)")
        string(name: "rproxy_service_port", defaultValue: "", trim: true, description: "Service port (for 'Add config' job only)")
        string(name: "rproxy_service_address", defaultValue: "", trim: true, description: "Service address (for 'Add config' job only)")
        booleanParam(name: 'update_job', defaultValue: false, description: 'Update job, free run, no changes')
    }
    stages {
        stage('Update Job') {
            when {
                expression {
                    return params.update_job
                }
            }
            steps {
                script {
                    currentBuild.getRawBuild().getExecutor().interrupt(Result.SUCCESS)
                    sleep(1)
                }
            }
        }
        stage('Save certs') {
            when {
                expression {
                    return params.rproxy_install
                }
            }
            steps {
                script {
                    withCredentials([
                            file(credentialsId: "ROOTCA_CERT", variable: "rootca"),
                            file(credentialsId: "ROOTCA_KEY", variable: "rootca_key")
                        ]) {
                        sh(script: "cp ${rootca} roles/gitlab/files/RootCA.crt", returnStdout: false)
                        sh(script: "cp ${rootca_key} roles/gitlab/files/RootCA.key", returnStdout: false)
                    } 
                }
            }
        }
        stage('Prepare inventory') {
            steps {
                script {
                    def hostsFile = new File("${WORKSPACE}/hosts.ini")
                    hostsFile.append('[all]')
                    hostsFile.append('\n' + params.target_host)
                    println hostsFile.getText('UTF-8')
                }
            }
        }
        stage('Install Rproxy') {
            when {
                expression {
                    return params.rproxy_install
                }
            }
            steps {
                script {
                    withCredentials([
                        sshUserPrivateKey(credentialsId: 'JENKINS_DEPLOYER_KEY', keyFileVariable: 'SSH_KEY'), 
                        usernamePassword(credentialsId:'JENKINS_DEPLOYER_PASS', usernameVariable: 'username', passwordVariable: 'password')
                        ]) {
                        wrap([$class: 'MaskPasswordsBuildWrapper', varPasswordPairs: [[password: env.password]]]) {
                            wrap([$class: 'AnsiColorBuildWrapper', colorMapName: "xterm"]) {
                                ansiblePlaybook(
                                    playbook: 'rproxy.yml',
                                    inventory: 'hosts.ini',
                                    tags: 'install',
                                    colorized: true,
                                    extras: '--private-key ${SSH_KEY} -e "ansible_user=${username} ansible_password=${password} rproxy_service_name=${rproxy_service_name} rproxy_service_port=${rproxy_service_port} rproxy_service_address=${rproxy_service_address}"'
                                )
                            }                            
                        }
                    }
                }
            }
        }
        stage('Add config') {
            when {
                expression {
                    return params.config_add
                }
            }
            steps {
                script {
                    withCredentials([
                        sshUserPrivateKey(credentialsId: 'JENKINS_DEPLOYER_KEY', keyFileVariable: 'SSH_KEY'), 
                        usernamePassword(credentialsId:'JENKINS_DEPLOYER_PASS', usernameVariable: 'username', passwordVariable: 'password')
                        ]) {
                        wrap([$class: 'MaskPasswordsBuildWrapper', varPasswordPairs: [[password: env.password]]]) {
                            wrap([$class: 'AnsiColorBuildWrapper', colorMapName: "xterm"]) {
                                ansiblePlaybook(
                                    playbook: 'rproxy.yml',
                                    inventory: 'hosts.ini',
                                    tags: 'add_config',
                                    colorized: true,
                                    extras: '--private-key ${SSH_KEY} -e "ansible_user=${username} ansible_password=${password} rproxy_service_name=${rproxy_service_name} rproxy_service_port=${rproxy_service_port} rproxy_service_address=${rproxy_service_address}"'
                                )
                            }  
                        }
                    }
                }
            }
        }
    }
    post {
        always {
            cleanWs(patterns: [
                [pattern: 'hosts.ini', type: 'INCLUDE']
            ])
        }
    }
}
init 2024-06-23 01:05:03 +03:00			`pipeline {`
			`agent any`
Update Jenkinsfile 2024-09-29 01:48:21 +03:00			`options {`
			`buildDiscarder logRotator (`
			`numToKeepStr: '5',`
			`daysToKeepStr: '7',`
			`artifactNumToKeepStr: '10',`
			`artifactDaysToKeepStr: '7'`
			`)`
Refactor Jenkinsfile 2025-06-08 01:38:44 +03:00			`ansiColor('xterm')`
			`timestamps()`
Update Jenkinsfile 2024-09-29 01:48:21 +03:00			`}`
init 2024-06-23 01:05:03 +03:00			`parameters {`
			`string(name: "target_host", defaultValue: "", trim: true, description: "Target host")`
progress 2024-06-30 18:30:49 +03:00			`booleanParam(name: "rproxy_install", defaultValue: true, description: "Install Rproxy")`
			`booleanParam(name: "config_add", defaultValue: true, description: "Add config")`
revert 9a5dde1e010a8ae2e306ff02b35936f6e6672cdf revert more info in jenkinsfile 2024-09-27 23:26:27 +03:00			`string(name: "rproxy_service_name", defaultValue: "", trim: true, description: "Service name (for 'Add config' job only)")`
			`string(name: "rproxy_service_port", defaultValue: "", trim: true, description: "Service port (for 'Add config' job only)")`
			`string(name: "rproxy_service_address", defaultValue: "", trim: true, description: "Service address (for 'Add config' job only)")`
Add Update Job stage 2025-07-20 18:04:47 +03:00			`booleanParam(name: 'update_job', defaultValue: false, description: 'Update job, free run, no changes')`
init 2024-06-23 01:05:03 +03:00			`}`
			`stages {`
Add Update Job stage 2025-07-20 18:04:47 +03:00			`stage('Update Job') {`
			`when {`
			`expression {`
			`return params.update_job`
			`}`
			`}`
			`steps {`
			`script {`
			`currentBuild.getRawBuild().getExecutor().interrupt(Result.SUCCESS)`
			`sleep(1)`
			`}`
			`}`
			`}`
progress 2024-06-30 18:30:49 +03:00			`stage('Save certs') {`
fixed rootca copy 2024-10-03 21:29:25 +03:00			`when {`
			`expression {`
			`return params.rproxy_install`
			`}`
			`}`
another test 2024-10-03 20:48:17 +03:00			`steps {`
			`script {`
Auto pull root certificate and key from Jenkins vault 2025-07-29 01:26:59 +03:00			`withCredentials([`
			`file(credentialsId: "ROOTCA_CERT", variable: "rootca"),`
			`file(credentialsId: "ROOTCA_KEY", variable: "rootca_key")`
			`]) {`
			`sh(script: "cp ${rootca} roles/gitlab/files/RootCA.crt", returnStdout: false)`
			`sh(script: "cp ${rootca_key} roles/gitlab/files/RootCA.key", returnStdout: false)`
			`}`
another test 2024-10-03 20:48:17 +03:00			`}`
			`}`
progress 2024-06-30 18:30:49 +03:00			`}`
Refactor Jenkinsfile 2025-06-08 01:38:44 +03:00			`stage('Prepare inventory') {`
			`steps {`
			`script {`
			`def hostsFile = new File("${WORKSPACE}/hosts.ini")`
			`hostsFile.append('[all]')`
			`hostsFile.append('\n' + params.target_host)`
			`println hostsFile.getText('UTF-8')`
			`}`
			`}`
			`}`
progress 2024-06-30 18:30:49 +03:00			`stage('Install Rproxy') {`
			`when {`
			`expression {`
			`return params.rproxy_install`
			`}`
			`}`
			`steps {`
			`script {`
Update Jenkinsfile 2024-09-29 01:48:21 +03:00			`withCredentials([`
			`sshUserPrivateKey(credentialsId: 'JENKINS_DEPLOYER_KEY', keyFileVariable: 'SSH_KEY'),`
			`usernamePassword(credentialsId:'JENKINS_DEPLOYER_PASS', usernameVariable: 'username', passwordVariable: 'password')`
			`]) {`
			`wrap([$class: 'MaskPasswordsBuildWrapper', varPasswordPairs: [[password: env.password]]]) {`
Refactor Jenkinsfile 2025-06-08 01:38:44 +03:00			`wrap([$class: 'AnsiColorBuildWrapper', colorMapName: "xterm"]) {`
			`ansiblePlaybook(`
			`playbook: 'rproxy.yml',`
			`inventory: 'hosts.ini',`
			`tags: 'install',`
			`colorized: true,`
			`extras: '--private-key ${SSH_KEY} -e "ansible_user=${username} ansible_password=${password} rproxy_service_name=${rproxy_service_name} rproxy_service_port=${rproxy_service_port} rproxy_service_address=${rproxy_service_address}"'`
			`)`
			`}`
Update Jenkinsfile 2024-09-29 01:48:21 +03:00			`}`
progress 2024-06-30 18:30:49 +03:00			`}`
			`}`
			`}`
			`}`
			`stage('Add config') {`
			`when {`
			`expression {`
			`return params.config_add`
			`}`
			`}`
init 2024-06-23 01:05:03 +03:00			`steps {`
mask passwords 2024-06-30 16:39:34 +03:00			`script {`
Update Jenkinsfile 2024-09-29 01:48:21 +03:00			`withCredentials([`
			`sshUserPrivateKey(credentialsId: 'JENKINS_DEPLOYER_KEY', keyFileVariable: 'SSH_KEY'),`
			`usernamePassword(credentialsId:'JENKINS_DEPLOYER_PASS', usernameVariable: 'username', passwordVariable: 'password')`
			`]) {`
			`wrap([$class: 'MaskPasswordsBuildWrapper', varPasswordPairs: [[password: env.password]]]) {`
Refactor Jenkinsfile 2025-06-08 01:38:44 +03:00			`wrap([$class: 'AnsiColorBuildWrapper', colorMapName: "xterm"]) {`
			`ansiblePlaybook(`
			`playbook: 'rproxy.yml',`
			`inventory: 'hosts.ini',`
			`tags: 'add_config',`
			`colorized: true,`
			`extras: '--private-key ${SSH_KEY} -e "ansible_user=${username} ansible_password=${password} rproxy_service_name=${rproxy_service_name} rproxy_service_port=${rproxy_service_port} rproxy_service_address=${rproxy_service_address}"'`
			`)`
			`}`
Update Jenkinsfile 2024-09-29 01:48:21 +03:00			`}`
mask passwords 2024-06-30 16:39:34 +03:00			`}`
			`}`
init 2024-06-23 01:05:03 +03:00			`}`
			`}`
			`}`
Refactor Jenkinsfile 2025-06-08 01:38:44 +03:00			`post {`
			`always {`
			`cleanWs(patterns: [`
			`[pattern: 'hosts.ini', type: 'INCLUDE']`
			`])`
			`}`
			`}`
init 2024-06-23 01:05:03 +03:00			`}`