Bugfixes and gitlab-runner (executer=docker)

Author: Springjunky

README.md

@@ -43,7 +43,7 @@ Now you are ready to go with a little CI/CD Environment:
 |Jenkins| admin| admin |
 |Sonar|admin|admin|
 |Nexus   | admin | admin123 |
-|Gitlab  | root  | choosen Password |
+|Gitlab  | root  | gitlab4me |
 
 ## The Tools
 ### Jenkins
@@ -59,6 +59,16 @@ Now you are ready to go with a little CI/CD Environment:
   prepareCompose.sh), just create a project in gitlab and click at the  registry tab to show 
   how to login to the project registry and how to tag your images
 * ssh cloning and pushing is at port 2222
+ 
+#### gitlab-runner
+The runner is a gitlab-multirunner image with a docker-runner (concurrent=1) , based on [gitlab/gitlab-runner][2]  The docker-compose section has an environment called
+REGISTER_MODE, it can set to KEEP or REFRESH
+* KEEP register at one time a runner and keep it during startups
+* REFRESH at every startup remove all old runners and register one new runner (the pipeline-history ist lost.)
+
+It takes a long time until gitlab is ready to accept a runner registration, if it fails, increase the REGISTER_TRYS
+
+
 
 #### Jenkins and Gitlab
 
@@ -79,9 +89,10 @@ And _yes_ docker-plugin in jenkins works (docker in docker, usefull but not reco
 ### My next steps
 
 * give you some more preconfiguratiom
-* apply a gitlab runner
+* ~~apply a gitlab runner~~
 * apply git-lfs
 
 
 
 [1]: https://support.sonatype.com/hc/en-us/articles/217542177-Using-Self-Signed-Certificates-with-Nexus-Repository-Manager-and-Docker-Daemon
+[2]: https://hub.docker.com/r/gitlab/gitlab-runner/

docker-compose.yml

@@ -0,0 +1,87 @@
+#####################################
+# Don't touch this file is generated 
+# expecilly for: vision
+###################################
+#
+# Consider to Backup  /home/tom/devstack-data
+#
+version: "3"
+services: 
+  ngnix:
+     build: nginx-reverse
+     ports: 
+       - "80:80"       #http:// 
+       # SSH Bypassing into gitlab, if you want to change this edit nginx.conf also
+       - "2222:2222"   #ssh port of gitlab (ssh://git@myhostname:2222/scott/foo.git)
+       - "5555:5555"   #Gitlab Docker Registry do NOT use 5000, this is an internal PORT of the gitlab-ce Image
+  jenkins-fat:
+    build: jenkins-fat
+    dns: 192.168.178.1
+    volumes:
+      - /home/tom/devstack-data/jenkins:/var/jenkins_home 
+      - /var/run/docker.sock:/var/run/docker.sock
+  sonar-db:
+    image: postgres
+    environment:
+      - POSTGRES_USER=sonar
+      - POSTGRES_PASSWORD=sonar
+    volumes:
+      - /home/tom/devstack-data/sonar-db/postgresql:/var/lib/postgresql
+      # This needs explicit mapping due to 
+      # https://github.com/docker-library/postgres/blob/4e48e3228a30763913ece952c611e5e9b95c8759/Dockerfile.template#L52
+      - /home/tom/devstack-data/sonar-db/postgresql_data:/var/lib/postgresql/data
+  sonar:
+    image: sonarqube
+    dns: 192.168.178.1
+    environment:
+      - SONARQUBE_JDBC_URL=jdbc:postgresql://sonar-db:5432/sonar
+    volumes:
+      - /home/tom/devstack-data/sonar/sonarqube_conf:/opt/sonarqube/conf
+      - /home/tom/devstack-data/sonar/sonarqube_data:/opt/sonarqube/data
+      - /home/tom/devstack-data/sonar/sonarqube_extensions:/opt/sonarqube/extensions
+      - /home/tom/devstack-data/sonar/sonarqube_bundled-plugins:/opt/sonarqube/lib/bundled-plugins
+  gitlab:
+    image: 'gitlab/gitlab-ce:latest'
+    dns: 192.168.178.1
+    environment:
+      GITLAB_OMNIBUS_CONFIG: |
+        external_url 'http://vision/gitlab'
+        gitlab_rails['gitlab_shell_ssh_port'] = 2222
+        # docker-registry config
+        registry_external_url 'https://vision:5555'
+        registry_nginx['listen_port'] = 5555
+        registry_nginx['listen_https'] = true
+        # SSL config just for the docker-registry need
+        nginx['ssl_certificate'] = "/etc/gitlab/ssl/vision.crt"
+        nginx['ssl_certificate_key'] = "/etc/gitlab/ssl/vision.key"
+        registry_nginx['proxy_set_headers'] = {
+        "X-Forwarded-Proto" => "https",
+        "X-Forwarded-Ssl" => "on"
+        }
+    volumes:
+      - /home/tom/devstack-data/gitlab/config:/etc/gitlab
+      - /home/tom/devstack-data/gitlab/logs:/var/log/gitlab
+      - /home/tom/devstack-data/gitlab/data:/var/opt/gitlab
+  
+  gitlabrunner:
+    build: gitlabrunner
+    dns: 192.168.178.1
+    environment:
+      - DOCKER_DNS=192.168.178.1
+      - GITLAB_URL=http://vision/gitlab
+      - REGISTER_TOKEN=s3cretToken4Runner
+      - REGISTER_MODE=KEEP #KEEP register a new runner an keep it. FRESH unregister all runners and always install a new (pipeline-history lost!)
+      - REGISTER_TRYS=60 # every 5 seconds a try to register the runner..gitlab takes a long time to startup
+    volumes:
+      - /home/tom/devstack-data/gitlab-runner/config:/etc/gitlab-runner
+      - /var/run/docker.sock:/var/run/docker.sock
+  
+  nexus:
+    image: sonatype/nexus3
+    dns: 192.168.178.1
+    environment:
+      - NEXUS_CONTEXT=nexus
+    volumes:
+      - /home/tom/devstack-data/nexus:/nexus-data   
+      
+  

docker-compose.yml.template

@@ -46,6 +46,8 @@ services:
     environment:
       GITLAB_OMNIBUS_CONFIG: |
         external_url 'http://HOSTNAME/gitlab'
+        gitlab_rails['initial_root_password'] = "gitlab4me"
+        gitlab_rails['initial_shared_runners_registration_token'] = "s3cretToken4Runner"
         gitlab_rails['gitlab_shell_ssh_port'] = 2222
         # docker-registry config
         registry_external_url 'https://HOSTNAME:5555'
@@ -62,11 +64,26 @@ services:
       - BASE_DATA_DIR/gitlab/config:/etc/gitlab
       - BASE_DATA_DIR/gitlab/logs:/var/log/gitlab
       - BASE_DATA_DIR/gitlab/data:/var/opt/gitlab
+  
+  gitlabrunner:
+    build: gitlabrunner
+    dns: DNS_SERVER
+    environment:
+      - DOCKER_DNS=DNS_SERVER
+      - GITLAB_URL=http://HOSTNAME/gitlab
+      - REGISTER_TOKEN=s3cretToken4Runner
+      - REGISTER_MODE=KEEP #KEEP register a new runner an keep it. FRESH unregister all runners and always install a new (pipeline-history lost!)
+      - REGISTER_TRYS=60 # every 10 seconds a try to register the runner..gitlab takes a long time to startup
+    volumes:
+      - BASE_DATA_DIR/gitlab-runner/config:/etc/gitlab-runner
+      - /var/run/docker.sock:/var/run/docker.sock
+  
   nexus:
     image: sonatype/nexus3
     dns: DNS_SERVER
     environment:
       - NEXUS_CONTEXT=nexus
     volumes:
       - BASE_DATA_DIR/nexus:/nexus-data   
+      
 

gitlabrunner/Dockerfile

@@ -0,0 +1,12 @@
+FROM gitlab/gitlab-runner
+
+# The giltab multirunner ist an officila Image by gitlab 
+
+ADD entrypointAutoregister /
+RUN chmod +x /entrypointAutoregister
+
+ENTRYPOINT ["/usr/bin/dumb-init", "/entrypointAutoregister"]
+
+CMD ["run", "--user=gitlab-runner", "--working-directory=/home/gitlab-runner"]
+
+

gitlabrunner/entrypointAutoregister

@@ -0,0 +1,63 @@
+#!/bin/bash
+
+# gitlab-ci-multi-runner data directory
+DATA_DIR="/etc/gitlab-runner"
+CONFIG_FILE=${CONFIG_FILE:-$DATA_DIR/config.toml}
+# custom certificate authority path
+CA_CERTIFICATES_PATH=${CA_CERTIFICATES_PATH:-$DATA_DIR/certs/ca.crt}
+LOCAL_CA_PATH="/usr/local/share/ca-certificates/ca.crt"
+
+update_ca() {
+  echo "Updating CA certificates..."
+  cp "${CA_CERTIFICATES_PATH}" "${LOCAL_CA_PATH}"
+  update-ca-certificates --fresh >/dev/null
+}
+
+if [ -f "${CA_CERTIFICATES_PATH}" ]; then
+  # update the ca if the custom ca is different than the current
+  cmp --silent "${CA_CERTIFICATES_PATH}" "${LOCAL_CA_PATH}" || update_ca
+fi
+
+
+###########################################################################################################
+echo "Try to autoregister runner at ${GITLAB_URL} with ${REGISTER_TOKEN} with $REGISTER_TRYS trys"
+
+grep docker-runner /etc/gitlab-runner/config.toml 2>/dev/null 1>/dev/null
+RUNNER_IS_PRESENT=$?
+
+if test $REGISTER_MODE = "KEEP" -a $RUNNER_IS_PRESENT -eq 0 ; then
+   echo "Keeping old runner"
+fi
+
+TRYS=$REGISTER_TRYS
+REGISTERED=1
+
+if test $REGISTER_MODE = "FRESH" -o  $RUNNER_IS_PRESENT -ne 0 ; then 
+    while test $TRYS -gt 0 -a $REGISTERED -gt 0 ; do
+      TRYS=$(expr $TRYS - 1)
+      gitlab-runner register -n --url=${GITLAB_URL} --registration-token=${REGISTER_TOKEN} \
+      --executor=docker --name=docker-runner \
+      --run-untagged=true --locked=false --docker-image=docker:latest \
+      --docker-privileged 
+      REGISTERED=$?
+      if [ $REGISTERED -ne 0 ] ; then
+        echo "${GITLAB_URL} not ready $TRYS trys left, next try in 10 second for ${GITLAB_URL}"  
+        sleep 10
+      else
+        # Gitlab is ready, so remove ALL runner and re-registrer only one runner
+        # so we have a clean state
+        sleep 1
+        gitlab-runner unregister --all-runners
+        sleep 1
+        gitlab-runner verify --delete
+        sleep 1
+        gitlab-runner register -n --url=${GITLAB_URL} --registration-token=${REGISTER_TOKEN} \
+        --executor=docker --name=docker-runner \
+        --run-untagged=true --locked=false --docker-image=docker:latest \
+        --docker-privileged 
+      fi
+   done  
+fi
+
+# launch gitlab-ci-multi-runner passing all arguments
+exec gitlab-ci-multi-runner "$@"