Skip to main content

Swarm Based Deployment

Here we'll deploy our pipeline in the Docker Container using compose.

Pre-requisites:

  • Jenkins Server for running pipelines
  • Hashicorp Vault for storing secrets
  • Docker Swarm (This could be your localhost as well)
  • Private Docker Registry
  • Ansible for deploying swarm nodes

Setting up the Pipeline

git clone https://github.com/SamagraX-RCW/devops.git
  • Run the scripts to install Docker Ansible and Vault Cli

chmod +x ./scripts/setup.sh
./scripts/setup.sh
  • Install and Start Jenkins Service

chmod +x ./scripts/jenkins_init.sh
./scripts/jenkins_init.sh
  • Configure Jenkins Credentials for Private Registry

    • Update the Registry Credentials in Jenkins:

      Dashboard > RCW > deploy-staging > Credentials > docker-server

      Update with https://nginx-reverse-proxy:80, also create new credentials for registry username and password**

    • Update the job credentials for anisble deployment

      Dashboard > RCW > deploy-staging > credentials/identity/schema > configure

    • Add Vault Server Address and Token Secret

      Dashboard > Manage Jenkins > System > System > Environment Variables

      Add VAULT_TOKEN and VAULT_ADDR

  • Now run the compose file to deploy Registry, Nginx and Vault

docker compose up -d
  • Configure Vault

    • Run the script to init the vault & generate unseal tokens
    chmod +x setup_vault_gha.sh
    ./setup_vault_gha.sh

    Note: This will store the registry username & password (admin/admin) inside the vault

    • Run the script to get registry username and password from vault
    chmod +x ./scripts/get_secrets.sh
    ./scripts/get_secrets.sh
  • Configure Ansible hosts

    • Copy the hostname and paste in inside the ./ansible_workspace_dir/inventory/hosts file

    • The RCW Services will be deployed to the hosts after the Jenkins build

  • SSL Configuration for Nginx(Optional)

    • Copy the SSL certificates and paste it inside the nginx_config/ssl folder

    • Now run the script

      chmod +x ./scripts/set_up_ssl.sh
      ./scripts/set_up_ssl.sh
    • This script will store the ssl certs content inside the Vault as KV(key value) and keep as environment variable inside the Nginx container

  • Deploy Swarm and other Services

    • Deploy RCW compose services
    docker compose -f rcw-compose.yml up -d

Adding Ansible Roles for Services

chmod +x /scripts/roles.sh
./scripts/roles.sh
  • Give the name of the role

    eg. monitoring

  • Now give the variables for that role

    eg. no. of replicas : 1/2/3