Skip to content

Commit

Permalink
Use TriggerGroups for CI Jobs 🥳
Browse files Browse the repository at this point in the history
TriggerGroups are a new alpha feature in Triggers that allow define
a set of interceptors that will be processed before Trigger resources
for a filtered group of Triggers.

All triggers in CI jobs deal with GitHub event so they share a large
surface of the interceptors. Using TriggerGroups makes it easier to
maintain the triggers for all projects.

The change is not only cosmetic though: interceptors like github,
cel, add-pr-body will be processed only once. The hash in the GitHub
event is going to be validated once. The PR definition will be pulled
from the GitHub API once (per trigger group) instead of once per
trigger.

This paves the way for further changes:
- add the add-team-member custom interceptor and logic so we only
  run tests for authorised users
- add a trigger group to add comments that enahnce the user experience

Signed-off-by: Andrea Frittoli <andrea.frittoli@uk.ibm.com>
  • Loading branch information
afrittoli committed Dec 10, 2021
1 parent 390f663 commit a35742a
Show file tree
Hide file tree
Showing 9 changed files with 175 additions and 383 deletions.
124 changes: 51 additions & 73 deletions tekton/ci/README.md
Original file line number Diff line number Diff line change
Expand Up @@ -258,9 +258,11 @@ the CI job when relevant files have been modified.

### PipelineRun

The `PipelineRun` is added to the relevant `TriggerTemplate` in the
`PipelineRuns` are added to the relevant `TriggerTemplate` in the
`tektoncd/plumbing` repo under `tekton/ci/<project>/template.yaml`.
The `shared` folder is used for jobs that are shared across repos.
Unless `PipelineRuns` *require* a different `Trigger`, they should all be
added to a single `TriggerTemplate`.

The event listener will trigger the correct template based on the event.
The `PipelineRun` must define specific metadata for the conditions and the
Expand All @@ -283,6 +285,15 @@ downstream CEL filters to work correctly.
serviceAccountName: tekton-ci-jobs
pipelineRef:
name: PIPELINE_NAME # The name of the CI pipeline
workspaces:
- name: source
volumeClaimTemplate:
spec:
accessModes:
- ReadWriteOnce
resources:
requests:
storage: 1Gi
params:
- name: checkName
value: CHECK-NAME # *MUST* be the GitHub check name
Expand All @@ -298,17 +309,6 @@ downstream CEL filters to work correctly.
- name: gitHubCommand
value: $(tt.params.gitHubCommand)
# Extra parameters required by the pipeline shall be passed here
resources:
- name: source
resourceSpec: # Pipeline resources *MUST* be embedded
type: git
params:
- name: revision
value: $(tt.params.gitRevision)
- name: url
value: $(tt.params.gitRepository)
- name: depth
value: $(tt.params.gitCloneDepth)
```

*NOTE* The naming convention for labels and annotations may change in future
Expand All @@ -318,78 +318,56 @@ as the `tekton.dev` namespace has been reserved for Tekton itself only.

If a `TriggerTemplate` for a specific repository does not exists yet, it must be
created under `tekton/ci/templates` and named `REPO-template.yaml`.
When a new trigger template is added, the event listener needs to be updated to
trigger the new template for the right events.
When a new trigger template is added, corresponding `Trigger` resources need to
be added to use the new template when events are received.

A good starting point is to look at the two triggers already defined for the
`plumbing` repo and replicate them for the new repo.

To react to pull requests:

```yaml
triggers:
- name: plumbing-pull-request-ci
interceptors:
- github:
secretRef:
secretName: ci-webhook
secretKey: secret
eventTypes:
- pull_request
- cel:
filter: >-
body.repository.full_name == 'tektoncd/plumbing' &&
(body.action == 'opened' || body.action == 'synchronize')
overlays:
- key: git_clone_depth
expression: "string(body.pull_request.commits + 1.0)"
bindings:
- ref: tekton-ci-github-base
- ref: tekton-ci-webhook-pull-request
- ref: tekton-ci-clone-depth
- ref: tekton-ci-webhook-pr-labels
template:
ref: tekton-plumbing-ci-pipeline
apiVersion: triggers.tekton.dev/v1alpha1
kind: Trigger
metadata:
name: plumbing-pull-request
labels:
ci.tekton.dev/trigger-type: github.pull-request
spec:
interceptors:
- cel:
filter: >-
body.repository.name == 'plumbing'
bindings:
- ref: tekton-ci-github-base
- ref: tekton-ci-webhook-pull-request
- ref: tekton-ci-webhook-pr-labels
- ref: tekton-ci-clone-depth
template:
ref: tekton-plumbing-ci-pipeline
```

To react to issue comments:

```yaml
- name: all-comment-ci
interceptors:
- github:
secretRef:
secretName: ci-webhook
secretKey: secret
eventTypes:
- issue_comment
- cel:
filter: >-
body.repository.full_name.startsWith('tektoncd/') &&
body.repository.name in ['plumbing', 'pipeline', 'triggers', 'cli', 'dashboard', 'catalog', 'hub'] &&
body.action == 'created' &&
'pull_request' in body.issue &&
body.issue.state == 'open' &&
body.comment.body.matches('^/test($| [^ ]*[ ]*$)')
overlays:
- key: add_pr_body.pull_request_url
expression: "body.issue.pull_request.url"
- webhook:
objectRef:
kind: Service
name: add-pr-body
apiVersion: v1
namespace: tekton-ci
- cel:
overlays:
- key: git_clone_depth
expression: "string(body.extensions.add_pr_body.pull_request_body.commits + 1.0)"
bindings:
- ref: tekton-ci-github-base
- ref: tekton-ci-webhook-comment
- ref: tekton-ci-clone-depth
- ref: tekton-ci-webhook-pr-labels
template:
ref: tekton-plumbing-ci-pipeline
apiVersion: triggers.tekton.dev/v1alpha1
kind: Trigger
metadata:
name: plumbing-issue-comment
labels:
ci.tekton.dev/trigger-type: github.issue-comment
spec:
interceptors:
- cel:
filter: >-
body.repository.name == 'plumbing'
bindings:
- ref: tekton-ci-github-base
- ref: tekton-ci-webhook-comment
- ref: tekton-ci-clone-depth
- ref: tekton-ci-webhook-issue-labels
template:
ref: tekton-plumbing-ci-pipeline
```

### Integration Test Jobs with KinD
Expand Down
23 changes: 0 additions & 23 deletions tekton/ci/catalog/template.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -69,28 +69,6 @@ spec:
value: $(tt.params.pullRequestBaseRef)
- name: gitRepository
value: "$(tt.params.gitRepository)"
---
apiVersion: triggers.tekton.dev/v1alpha1
kind: TriggerTemplate
metadata:
name: tekton-catalog-diff-task-template
spec:
params:
- name: buildUUID
description: UUID used to track a CI Pipeline Run in logs
- name: pullRequestNumber
description: The pullRequestNumber
- name: pullRequestUrl
description: The HTML URL for the pull request
- name: pullRequestBaseRef
description: |
The base git ref for the pull request. This is the branch the
pull request would merge onto once approved.
- name: gitRepository
description: The git repository that hosts context and Dockerfile
- name: gitRevision
description: The Git revision to be used.
resourcetemplates:
- apiVersion: tekton.dev/v1beta1
kind: PipelineRun
metadata:
Expand Down Expand Up @@ -124,4 +102,3 @@ spec:
value: $(tt.params.pullRequestBaseRef)
- name: gitRepository
value: "$(tt.params.gitRepository)"
---
108 changes: 6 additions & 102 deletions tekton/ci/catalog/trigger.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -3,21 +3,13 @@ apiVersion: triggers.tekton.dev/v1alpha1
kind: Trigger
metadata:
name: catalog-pull-request
labels:
ci.tekton.dev/trigger-type: github.pull-request
spec:
interceptors:
- github:
secretRef:
secretName: ci-webhook
secretKey: secret
eventTypes:
- pull_request
- cel:
filter: >-
body.repository.full_name == 'tektoncd/catalog' &&
body.action in ['opened','synchronize']
overlays:
- key: git_clone_depth
expression: "string(body.pull_request.commits + 1.0)"
body.repository.full_name == 'tektoncd/catalog'
bindings:
- ref: tekton-ci-github-base
- ref: tekton-ci-webhook-pull-request
Expand All @@ -30,105 +22,17 @@ apiVersion: triggers.tekton.dev/v1alpha1
kind: Trigger
metadata:
name: catalog-issue-comment
labels:
ci.tekton.dev/trigger-type: github.issue-comment
spec:
interceptors:
- github:
secretRef:
secretName: ci-webhook
secretKey: secret
eventTypes:
- issue_comment
- cel:
filter: >-
body.repository.full_name == 'tektoncd/catalog' &&
body.action == 'created' &&
'pull_request' in body.issue &&
body.issue.state == 'open' &&
body.comment.body.matches('^/test($| [^ ]*[ ]*$)')
overlays:
- key: add_pr_body.pull_request_url
expression: "body.issue.pull_request.url"
- webhook:
objectRef:
kind: Service
name: add-pr-body
apiVersion: v1
namespace: tekton-ci
- cel:
overlays:
- key: git_clone_depth
expression: "string(body.extensions.add_pr_body.pull_request_body.commits + 1.0)"
body.repository.full_name == 'tektoncd/catalog'
bindings:
- ref: tekton-ci-github-base
- ref: tekton-ci-webhook-comment
- ref: tekton-ci-clone-depth
- ref: tekton-ci-webhook-issue-labels
template:
ref: tekton-catalog-ci-pipeline
---
apiVersion: triggers.tekton.dev/v1alpha1
kind: Trigger
metadata:
name: catalog-pull-request-diff-task
spec:
interceptors:
- github:
secretRef:
secretName: ci-webhook
secretKey: secret
eventTypes:
- pull_request
- cel:
filter: >-
body.repository.full_name == 'tektoncd/catalog' &&
body.action in ['opened','synchronize']
overlays:
- key: git_clone_depth
expression: "string(body.pull_request.commits + 1.0)"
bindings:
- ref: tekton-ci-github-base
- ref: tekton-ci-webhook-pull-request
- ref: tekton-ci-clone-depth
- ref: tekton-ci-webhook-pr-labels
template:
ref: tekton-catalog-diff-task-template
---
apiVersion: triggers.tekton.dev/v1alpha1
kind: Trigger
metadata:
name: catalog-issue-comment-diff-task
spec:
interceptors:
- github:
secretRef:
secretName: ci-webhook
secretKey: secret
eventTypes:
- issue_comment
- cel:
filter: >-
body.repository.full_name == 'tektoncd/catalog' &&
body.action == 'created' &&
'pull_request' in body.issue &&
body.issue.state == 'open' &&
body.comment.body.matches('^/diff-task')
overlays:
- key: add_pr_body.pull_request_url
expression: "body.issue.pull_request.url"
- webhook:
objectRef:
kind: Service
name: add-pr-body
apiVersion: v1
namespace: tekton-ci
- cel:
overlays:
- key: git_clone_depth
expression: "string(body.extensions.add_pr_body.pull_request_body.commits + 1.0)"
bindings:
- ref: tekton-ci-github-base
- ref: tekton-ci-webhook-comment
- ref: tekton-ci-clone-depth
- ref: tekton-ci-webhook-issue-labels
template:
ref: tekton-catalog-diff-task-template
41 changes: 6 additions & 35 deletions tekton/ci/community/trigger.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -3,21 +3,13 @@ apiVersion: triggers.tekton.dev/v1alpha1
kind: Trigger
metadata:
name: community-pull-request
labels:
ci.tekton.dev/trigger-type: github.pull-request
spec:
interceptors:
- github:
secretRef:
secretName: ci-webhook
secretKey: secret
eventTypes:
- pull_request
- cel:
filter: >-
body.repository.name == 'community' &&
body.action in ['opened', 'synchronize', 'labeled', 'unlabeled', 'reopened']
overlays:
- key: git_clone_depth
expression: "string(body.pull_request.commits + 1.0)"
body.repository.name == 'community'
bindings:
- ref: tekton-ci-github-base
- ref: tekton-ci-webhook-pull-request
Expand All @@ -30,34 +22,13 @@ apiVersion: triggers.tekton.dev/v1alpha1
kind: Trigger
metadata:
name: community-issue-comment
labels:
ci.tekton.dev/trigger-type: github.issue-comment
spec:
interceptors:
- github:
secretRef:
secretName: ci-webhook
secretKey: secret
eventTypes:
- issue_comment
- cel:
filter: >-
body.repository.name == 'community' &&
body.action == 'created' &&
'pull_request' in body.issue &&
body.issue.state == 'open' &&
body.comment.body.matches('^/test($| [^ ]*[ ]*$)')
overlays:
- key: add_pr_body.pull_request_url
expression: "body.issue.pull_request.url"
- webhook:
objectRef:
kind: Service
name: add-pr-body
apiVersion: v1
namespace: tekton-ci
- cel:
overlays:
- key: git_clone_depth
expression: "string(body.extensions.add_pr_body.pull_request_body.commits + 1.0)"
body.repository.name == 'community'
bindings:
- ref: tekton-ci-github-base
- ref: tekton-ci-webhook-comment
Expand Down
Loading

0 comments on commit a35742a

Please sign in to comment.