Deployer is, at its core, a local CI/CD. In other words, a bash command manager.
Typically, it runs a Deployer build in a separate folder to save the cache while keeping the code folder clean. However, you can specify either any folder or the code folder; if you already have caches, you can copy them from the source folder, symlink to them, or ignore them completely and build from scratch.
Action is the main entity of Deployer. Actions as part of Pipelines are used to build, install, and deploy processes. However, an Action itself cannot be assigned to a project, that's what Pipelines are for (see below).
As part of Pipelines or in the Deployer's Action Registry, an Action looks like a construction:
{
"title": "UPX Compress",
"desc": "Compress the binary file with UPX.",
"info": "[email protected]",
"tags": [
"upx"
],
"action": {
"PostBuild": {
"supported_langs": [
"Rust",
"Go",
"C",
"Cpp",
"Python",
{
"Other": "any"
}
],
"commands": [
{
"bash_c": "upx <artifact>",
"placeholders": [
"<artifact>"
],
"ignore_fails": false,
"show_success_output": false,
"show_bash_c": false,
"only_when_fresh": false
}
]
}
},
"requirements": [
{
"ExistsAny": [
"/usr/bin/upx",
"~/.local/bin/upx"
]
}
]
}As part of Registries, each Action and each Pipeline are values in a dictionary with the info key (e.g. "[email protected]": { ... }). Thus they can be quickly edited, their contents displayed, added to Pipelines and projects.
For each Action within a Pipeline, a list of requirements can be assigned. These will be checked before each Pipelines run, and if at least one requirement is not met, the Pipeline will not be executed. A requirement can be set in three ways:
[
{
// if one of these paths will be found, the requirement will be considered satisfied
"ExistsAny": [
"path-1",
"path-2"
]
},
{
// if this path exists, the requirement is considered satisfied
"Exists": "path"
},
{
// if this check is passed, the requirement will be considered satisfied (for details, see below - Action `Check`)
"CheckSuccess": {
"command": {
"bash_c": "/usr/bin/python -V",
"ignore_fails": true,
"show_success_output": false,
"show_bash_c": false,
"only_when_fresh": false
},
"success_when_found": "Python 3.",
"success_when_not_found": null
}
},
{
// if a given remote host exists in the Registry, is accessible, and its Deployer version is identical to the version of the running Deployer,
// the requirement will be considered satisfied
"RemoteAccessibleAndReady": "short-name"
}
]There are 3 categories of basic Actions and 10 additional types of Actions:
- Build Actions (
PreBuild,Build,PostBuildandTest) - Install Actions (
Pack,Deliver,Install) DeployActions (ConfigureDeploy,Deploy,PostDeploy)ObserveactionInterruptactionForceArtifactsEnplaceaction to force synchronization of readyartifacts- Action with custom command
Custom - Action of checking the output of the custom command
Check - Action of adding content to the Deployer's storage
AddToStorageand using this contentUseFromStorage - The action of applying a
Patch - Actions of synchronization build folders - from current to remote host
SyncToRemoteand vice versaSyncFromRemote
The concept of a custom command, a command for the terminal shell, is fundamental. The Custom, Observe, and the three main categories of Actions contain one or more custom commands inside.
The command description for Deployer is as follows:
{
"bash_c": "upx <artifact>",
"placeholders": [
"<artifact>"
],
"ignore_fails": false,
"show_success_output": false,
"show_bash_c": false,
"only_when_fresh": false,
"remote_exec": []
}bash_ccontains the text of the command to be executed in the terminalplaceholderscontains a list ofplaceholdersthat can be replaced with project variables and artifacts to perform necessary actions with themignore_failstells Deployer whether to qualify a process output status not equal to zero as normal command behavior or not; if not, Deployer will abort Pipeline execution and exit with status1show_success_outputtells Deployer whether to print the command output always (including when the process exit status is0), or whether to print only on errorshow_bash_ctells the Deployer whether to print the full command text on the screen; this can be useful when the command contains vulnerable variablesonly_when_freshtells Deployer that this action should only be performed on a fresh build (either on the first build, or when explicitly instructed to rebuild from scratch with the-foption)remote_execcontains a list of short hostnames on which this command will need to be executed
When a command is specialized for a particular project, it gains an additional property - replacements:
{
"bash_c": "upx <artifact>",
"placeholders": [
"<artifact>"
],
"replacements": [
[
[
"<artifact>",
{
"title": "target/release/deployer",
"is_secret": false,
"value": {
"Plain": "target/release/deployer"
}
}
]
]
],
"ignore_fails": false,
"show_success_output": false,
"show_bash_c": false,
"only_when_fresh": false
}replacements contains a list of replacements of placeholders in the command with the specified artifacts or variables. Note that the same command can be executed multiple times for different sets of variables, even if specified once in an Action:
{
"bash_c": "upx <artifact>",
"placeholders": [
"<artifact>"
],
"replacements": [
[
[
"<artifact>",
{
"title": "target/release/deployer",
"is_secret": false,
"value": {
"Plain": "target/release/deployer"
}
}
]
],
[
[
"<artifact>",
{
"title": "target/release/another",
"is_secret": false,
"value": {
"Plain": "target/release/another"
}
}
]
]
],
"ignore_fails": false,
"show_success_output": false,
"show_bash_c": false,
"only_when_fresh": false
}In the above example only one placeholder <artifact> is used, but there can be several of them, including different options for executing the command.
Accordingly, if you just want to execute commands that cannot be assigned to one of the three main types of Actions, you should use an Action of type Custom:
{
"title": "List all files and folders",
"desc": "",
"info": "[email protected]",
"tags": [],
"action": {
"Custom": {
"bash_c": "ls",
"ignore_fails": false,
"show_success_output": true,
"show_bash_c": true,
"only_when_fresh": false
}
}
}For Build Actions, specialization in programming languages is specific: depending on whether the set of languages used in the project matches the set specified in the Build Action, Deployer will warn you about using Actions that are incompatible with the project.
In the above example, we see an action that should be executed after the build:
{
"PostBuild": {
"supported_langs": [
"Rust",
"Go",
"C",
"Cpp",
"Python",
{
"Other": "any"
}
],
"commands": [
{
"bash_c": "upx <artifact>",
"placeholders": [
"<artifact>"
],
"ignore_fails": false,
"show_success_output": false,
"show_bash_c": false,
"only_when_fresh": false
}
]
}
}For this group of Actions, the key specialization factor is the target object of the installation. If the characteristics of the project target - hardware or software platform - do not match the characteristics of the Installation Action, a warning will be issued.
We are happy to note that UPX refers to the Packaging Action rather than the Post-Build Action:
{
"title": "UPX Pack",
"desc": "Pack the binary by UPX.",
"info": "[email protected]",
"tags": [
"upx"
],
"action": {
"Pack": {
"target": {
"arch": "x86_64",
"os": "Linux",
"derivative": "any",
"version": "No"
},
"commands": [
{
"bash_c": "upx <af>",
"placeholders": [
"<af>"
],
"ignore_fails": false,
"show_success_output": false,
"show_bash_c": false,
"only_when_fresh": false
}
]
}
}
}archis a string designation for the target hardware architectureosis one of the variants (android|ios|linux|unix-{unix-name}|windows|macos) or any other string designation of the operating system.derivativeis an additional description of the operating system or software platformversionis the version of the operating system or software platform.
If derivative is missing, it is recommended to write any.
For this group of Actions, the key specialization factor is the deployment tulkit - Docker, Docker Compose, Podman, k8s or other containerization or virtualization toolkit. If the wrong tulkit is specified in the project, Deployer will issue a warning.
Here is an example with Docker Compose:
{
"title": "Build Docker Compose Image",
"desc": "Build Docker image with Docker Compose",
"info": "[email protected]",
"tags": [
"docker",
"compose"
],
"action": {
"ConfigureDeploy": {
"deploy_toolkit": "docker-compose",
"tags": [
"docker",
"compose"
],
"commands": [
{
"bash_c": "docker compose build",
"ignore_fails": false,
"show_success_output": false,
"show_bash_c": true,
"only_when_fresh": false
}
]
}
}
}Often projects can be sufficiently templated that the same files are copied between projects, but not modified and only required during build or deployment. Such files can be located in a special folder with relative paths preserved and added to the Deployer repository:
deployer new contentThen a new Action - UseFromStorage - can be added to the Build Pipeline for projects that need to use these files:
{
"title": "Sync content",
"desc": "",
"info": "[email protected]",
"tags": [],
"action": {
"UseFromStorage": "[email protected]"
}
}This will eventually add the content you need to the build folder when the Pipeline is executed.
Time after time, you will start to notice that some projects are overused in other projects as dependencies and need to be published somewhere. Package repositories are the best place for this, but if you don't want to publish your project, you can add it to the Deployer repository as content. Moreover, you can add it automatically using the AddToStorage action:
{
"title": "Add content",
"desc": "",
"info": "[email protected]",
"tags": [],
"action": {
"AddToStorage": {
"short_name": "my-project",
"auto_version_rule": {
"plain_file": "file-with-current-version.txt"
}
}
}
}short_name- string designation of the content, which will be used to place it in the storage and each time it is usedauto_version_rule- a way to automatically determine the version of the content (eitherplain_file- a file that will contain only the version and nothing else, orcmd_stdout- a command that will display only the version and nothing else)
However, sometimes the file needs to be edited in some way - and not so much even the added content from the Deployer repository, but, for example, various files in the build dependencies, e.g. manually forking Python libraries to add the desired functionality, etc., etc. And, as a rule, you want to do it without creating forks and synchronizing changes with the main repository! You can't do it with git patches alone.
For this purpose, Deployer uses the smart-patcher library for patches. Such patches allow source code, complex documents, and even binary files to be modified, allowing you to search for necessary inclusions in the content based on sifting rules and even using scripts in languages such as Python, Lua, and Rhai. For example, the smart-patcher repository has an example with a patch for a Microsoft Word document - and many more examples.
To use smart patches you need to write a patch file first. Example:
{
"patches": [
{
"files": [
{
"just": "test_v5.docx"
}
],
"decoder": {
"python": "../tests/test_v5.py"
},
"encoder": {
"python": "../tests/test_v5.py"
},
"path_find_graph": [],
"replace": {
"from_to": [
"game",
"rock"
]
}
}
]
}The action of a patch looks like this:
{
"title": "Apply patch",
"desc": "",
"info": "[email protected]",
"tags": [],
"action": {
"Patch": {
"patch": "my_path.json"
}
}
}The patch should be located in the build folder when you run Pipeline. A very good practice is to write patches and place them as content in the Deployer repository. Then both the patch file and the scripts will be located side by side and will be added during the build process.
When a patch is applied, Deployer displays the number of times it has been applied in the project. If the patch has not been applied once during the Pipeline process, Deployer will generate an error.
1.6. Actions of synchronization build folders - from current to remote host SyncToRemote and vice versa SyncFromRemote
Sometimes you need to synchronize build files between remote hosts and the current host. For example, when some actions must be performed on one host, and some on another. To do this, you can use the built-in Actions SyncToRemote and SyncFromRemote:
{
"title": "Send build folder to remote",
"desc": "",
"info": "[email protected]",
"tags": [],
"action": {
"SyncToRemote": "remote-pc"
}
}NOTE: Don't have the configuration example you need? Create the action yourself using the
deployer new actioncommand and display it using thedeployer cat action [email protected].
Interrupt is used to manually interrupt the build/deployment of a project. When Deployer reaches this action, it waits for user input to continue when you perform the necessary manual actions.
ForceArtifactsEnplace is used to force artifacts to be synchronized, even when not all artifacts are generated. By default, the artifacts specified in the project configuration are moved to the artifacts folder, but with this action it can be done a little earlier, for example, when the project is recursively built with Deployer:
{
"title": "Force enplace",
"desc": "",
"info": "[email protected]",
"tags": [],
"action": "ForceArtifactsEnplace"
}Observe - An action that is almost identical to Custom. It is used, for example, to start Prometheus, Jaeger or anything else.
And Check - A special action that allows you to check what the command outputs to stdout/stderr :
{
"Check": {
"command": {
"bash_c": "<af>",
"placeholders": [
"<af>"
],
"ignore_fails": true,
"show_success_output": false,
"show_bash_c": false,
"only_when_fresh": false
},
"success_when_found": "some rust regex",
"success_when_not_found": null
}
}success_when_foundtells Deployer that if it finds the specified regular expression, the execution of the command will be considered successfulsuccess_when_not_foundtells Deployer that if it does not find the specified regular expression, the command execution will be considered successful.
Moreover, if both fields are specified, the execution will be considered successful if both options were successful (the first regular expression must find, the second must not find).
This concludes the description of Actions, and we move on to Pipelines.
A Pipeline is an ordered set of Actions that is necessary to achieve a certain goal. For example, when you need to check code quality, check the code with a static analyzer, then build, compress, package it for a certain distribution and upload it to hosting. Or when you need to build an Android application, sign it and install it on an ADB-connected device. The composition of Pipeline can be any, the main example is given in the deploy-config.json file of this repository:
{
"title": "Deployer Pipeline",
"desc": "Default Deployer Pipeline for itself.",
"info": "[email protected]",
"tags": [
"cargo",
"clippy",
"build",
"upx"
],
"actions": [
{
"title": "Lint",
"desc": "Got from `Cargo Clippy`.",
"info": "[email protected]",
"tags": [
"cargo",
"clippy"
],
"action": {
"PreBuild": {
"supported_langs": [
"Rust"
],
"commands": [
{
"bash_c": "cargo clippy",
"ignore_fails": false,
"show_success_output": true,
"show_bash_c": true,
"only_when_fresh": null
}
]
}
}
},
{
"title": "Build",
"desc": "Got from `Cargo Build (Release)`. Build the Rust project with Cargo default settings in release mode",
"info": "[email protected]",
"tags": [
"rust",
"cargo"
],
"action": {
"Build": {
"supported_langs": [
"Rust"
],
"commands": [
{
"bash_c": "cargo build --release",
"ignore_fails": false,
"show_success_output": false,
"show_bash_c": true,
"only_when_fresh": null
}
]
}
}
},
{
"title": "Compress",
"desc": "Got from `UPX Compress`.",
"info": "[email protected]",
"tags": [
"upx"
],
"action": {
"PostBuild": {
"supported_langs": [
"Rust",
"Go",
"C",
"Cpp",
"Python",
{
"Other": "any"
}
],
"commands": [
{
"bash_c": "upx <artifact>",
"placeholders": [
"<artifact>"
],
"replacements": [
[
[
"<artifact>",
{
"title": "target/release/deployer",
"is_secret": false,
"value": {
"Plain": "target/release/deployer"
}
}
]
]
],
"ignore_fails": false,
"show_success_output": false,
"show_bash_c": false,
"only_when_fresh": null
}
]
}
}
},
{
"title": "Install to ~/.cargo/bin",
"desc": "",
"info": "[email protected]",
"tags": [
"cargo"
],
"action": {
"Install": {
"target": {
"arch": "x86_64",
"os": "Linux",
"derivative": "any",
"version": "No"
},
"commands": [
{
"bash_c": "cp -f <artifact> ~/.cargo/bin",
"placeholders": [
"<artifact>"
],
"replacements": [
[
[
"<artifact>",
{
"title": "target/release/deployer",
"is_secret": false,
"value": {
"Plain": "target/release/deployer"
}
}
]
]
],
"ignore_fails": false,
"show_success_output": false,
"show_bash_c": false,
"only_when_fresh": null
}
]
}
}
}
],
"default": true
}In general, a Pipeline contains a list of Actions in the actions field.
In addition, if your Pipelines need to manage conflicting cache versions (for example, when building a project for different target architectures), you can specify an exclusive build tag in the exclusive_exec_tag field. For example, specify x86_64 when adding a Pipeline build for one architecture and aarch64 for another. Then Pipelines will be built in different folders and cache information will be saved in both cases.
One of the most important entities are variables. They are both the keepers of your secrets and the very dynamic entities that can change the outcome of the Pipeline execution. Here is an example of a simple variable:
{
"title": "deployer artifact location",
"is_secret": false,
"value": {
"Plain": "target/release/deployer"
}
}title- the name of the variable (how it will be displayed in the TUI)is_secret- whether the variable is a secret (if it is, the command that contains it will not be shown on the screen)value- the value of the variable itself or information about where and how to get this value from.
There are three types of variables supported now:
Plain- the content of the string is the variableFromEnvFile- the variable will be taken from the specifiedenv-filewith the specified key.FromHCVaultKv2- the variable will be taken from the HashiCorp Vault KV2 repository with the specifiedmount_pathandsecret_path
Examples:
{
"title": "Grafana token",
"is_secret": false,
"value": {
"FromEnvFile": {
"env_file_path": ".env",
"key": "GRAFANA_TOKEN"
}
}
}{
"title": "target/release/deployer",
"is_secret": false,
"value": {
"FromHCVaultKv2": {
"mount_path": "The mount path where your KV2 secrets engine is mounted",
"secret_path": "Path to your secret"
}
}
}Note that you must specify two environment variables before using FromHCVaultKv2 variables: the DEPLOYER_VAULT_ADDR (Vault URL) and DEPLOYER_VAULT_TOKEN (Vault token).
Another important entity is the remote host. The deployer stores all hosts in the Registry (global configuration file - list remote_hosts). The host structure looks like this:
{
"short_name": "localhost",
"ip": "127.0.0.1",
"port": 22,
"username": "username",
"ssh_private_key_file": "/path/to/id_rsa"
}To be able to use a host, before adding it, you must create a key and allow authorization on the remote host using the key.
Deployer is primarily a CLI utility. You can see help for any Deployer command by specifying the -h option. Here are some examples of the most common commands:
deployer new action # create an Action and put in Registry
deployer new pipeline # create a Pipeline and put in Registry
deployer new remote # add new remote host to Registry
deployer init # init project, fill all attributes
deployer with # check compatibility and assign Pipeline to project,
# also specify needed variables and artifacts
deployer build # run default Pipeline
deployer build my-pipe # run specified `my-pipe` Pipeline
deployer build configure,build -o build-folder # run `configure` and `build` Pipelines in a `build-folder`
deployer build -R my-remote my-pipe # run `my-pipe` Pipeline on remote host `my-remote`Deployer has support for a high-end terminal-based customizer, allowing you to forget about manually writing Actions and Pipelines for your projects. Just try to create an Action or Pipeline and Deployer will ask you about everything.
In the Deployer build caches folder, there is a logs folder that contains project log files with the date and time of the build. The information in them repeats information from the terminal screen and does not currently store the entire log of each command execution in the shell.