From 0d92c74b0711c50d815704e95d1689daae2a475a Mon Sep 17 00:00:00 2001
From: Rajagopalan Ranganathan <rarangan@redhat.com>
Date: Wed, 22 May 2024 16:40:43 +0100
Subject: [PATCH] Create Jenkinsfile

---
 Jenkinsfile | 53 +++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 53 insertions(+)
 create mode 100644 Jenkinsfile

diff --git a/Jenkinsfile b/Jenkinsfile
new file mode 100644
index 0000000..992507f
--- /dev/null
+++ b/Jenkinsfile
@@ -0,0 +1,53 @@
+def secrets = [
+    [path: params.VAULT_PATH_SVC_ACCOUNT_EPHEMERAL, engineVersion: 1, secretValues: [
+        [envVar: 'OC_LOGIN_TOKEN_DEV', vaultKey: 'oc-login-token-dev'],
+        [envVar: 'OC_LOGIN_SERVER_DEV', vaultKey: 'oc-login-server-dev']]],
+    [path: params.VAULT_PATH_QUAY_PUSH, engineVersion: 1, secretValues: [
+        [envVar: 'QUAY_USER', vaultKey: 'user'],
+        [envVar: 'QUAY_TOKEN', vaultKey: 'token']]],
+    [path: params.VAULT_PATH_RHR_PULL, engineVersion: 1, secretValues: [
+        [envVar: 'RH_REGISTRY_USER', vaultKey: 'user'],
+        [envVar: 'RH_REGISTRY_TOKEN', vaultKey: 'token']]]
+]
+
+def configuration = [vaultUrl: params.VAULT_ADDRESS, vaultCredentialId: params.VAULT_CREDS_ID, engineVersion: 1]
+
+pipeline {
+    agent { label 'rhel8' }
+    options {
+        timestamps()
+    }
+    environment {
+        // --------------------------------------------
+        // Options that must be configured by app owner
+        // --------------------------------------------
+        APP_NAME="kessel"  // name of app-sre "application" folder this component lives in
+        COMPONENT_NAME="spicedb-operator"  // name of app-sre "resourceTemplate" in deploy.yaml for this component
+        IMAGE="quay.io/cloudservices/kessel-spicedb-operator"  // image location on quay
+        RUN_PLATSEC=true // optional step to run vulnerability checks
+        CICD_URL="https://raw.githubusercontent.com/RedHatInsights/cicd-tools/main"
+    }
+    stages {
+        stage('Build the PR commit image') {
+            steps {
+                withVault([configuration: configuration, vaultSecrets: secrets]) {
+                    sh './build_deploy.sh'
+                }
+                
+                sh 'mkdir -p artifacts'
+            }
+        }
+    }
+    post {
+        always{
+            withVault([configuration: configuration, vaultSecrets: secrets]) {
+                sh '''
+                    curl -s $CICD_URL/bootstrap.sh > .cicd_bootstrap.sh
+                    source ./.cicd_bootstrap.sh
+
+                    source "${CICD_ROOT}/post_test_results.sh"
+                '''
+            }
+        }
+    }
+}