103 lines
3.8 KiB
YAML
103 lines
3.8 KiB
YAML
# Tekton Kaniko Build Task for Bakery-IA CI/CD
|
|
# This task builds and pushes container images using Kaniko
|
|
# Supports environment-configurable base images via build-args
|
|
|
|
apiVersion: tekton.dev/v1beta1
|
|
kind: Task
|
|
metadata:
|
|
name: kaniko-build
|
|
namespace: {{ .Values.namespace }}
|
|
labels:
|
|
app.kubernetes.io/name: {{ .Values.labels.app.name }}
|
|
app.kubernetes.io/component: build
|
|
spec:
|
|
workspaces:
|
|
- name: source
|
|
description: Workspace containing the source code
|
|
- name: docker-credentials
|
|
description: Docker registry credentials
|
|
params:
|
|
- name: services
|
|
type: string
|
|
description: Comma-separated list of services to build
|
|
- name: registry
|
|
type: string
|
|
description: Container registry URL for pushing built images
|
|
- name: git-revision
|
|
type: string
|
|
description: Git revision to tag images with
|
|
- name: base-registry
|
|
type: string
|
|
description: Base image registry URL (e.g., docker.io, ghcr.io/org)
|
|
default: "docker.io"
|
|
- name: python-image
|
|
type: string
|
|
description: Python base image name and tag
|
|
default: "python:3.11-slim"
|
|
results:
|
|
- name: build-status
|
|
description: Status of the build operation
|
|
steps:
|
|
- name: build-and-push
|
|
image: gcr.io/kaniko-project/executor:v1.15.0
|
|
env:
|
|
- name: DOCKER_CONFIG
|
|
value: /tekton/home/.docker
|
|
script: |
|
|
#!/bin/bash
|
|
set -e
|
|
|
|
echo "==================================================================="
|
|
echo "Kaniko Build Configuration"
|
|
echo "==================================================================="
|
|
echo "Target Registry: $(params.registry)"
|
|
echo "Base Registry: $(params.base-registry)"
|
|
echo "Python Image: $(params.python-image)"
|
|
echo "Git Revision: $(params.git-revision)"
|
|
echo "==================================================================="
|
|
|
|
# Split services parameter by comma
|
|
IFS=',' read -ra SERVICES <<< "$(params.services)"
|
|
|
|
# Build each service
|
|
for service in "${SERVICES[@]}"; do
|
|
service=$(echo "$service" | xargs) # Trim whitespace
|
|
if [ -n "$service" ] && [ "$service" != "none" ]; then
|
|
echo ""
|
|
echo "Building service: $service"
|
|
echo "-------------------------------------------------------------------"
|
|
|
|
# Determine Dockerfile path (services vs gateway vs frontend)
|
|
if [ "$service" = "gateway" ]; then
|
|
DOCKERFILE_PATH="$(workspaces.source.path)/gateway/Dockerfile"
|
|
elif [ "$service" = "frontend" ]; then
|
|
DOCKERFILE_PATH="$(workspaces.source.path)/frontend/Dockerfile.kubernetes"
|
|
else
|
|
DOCKERFILE_PATH="$(workspaces.source.path)/services/$service/Dockerfile"
|
|
fi
|
|
|
|
/kaniko/executor \
|
|
--dockerfile="$DOCKERFILE_PATH" \
|
|
--destination="$(params.registry)/$service:$(params.git-revision)" \
|
|
--context="$(workspaces.source.path)" \
|
|
--build-arg="BASE_REGISTRY=$(params.base-registry)" \
|
|
--build-arg="PYTHON_IMAGE=$(params.python-image)" \
|
|
--cache=true \
|
|
--cache-repo="$(params.registry)/cache"
|
|
|
|
echo "Successfully built: $(params.registry)/$service:$(params.git-revision)"
|
|
fi
|
|
done
|
|
|
|
echo ""
|
|
echo "==================================================================="
|
|
echo "Build completed successfully!"
|
|
echo "==================================================================="
|
|
echo "success" > $(results.build-status.path)
|
|
resources:
|
|
limits:
|
|
cpu: 2000m
|
|
memory: 4Gi
|
|
requests:
|
|
cpu: 500m
|
|
memory: 1Gi |