-
Notifications
You must be signed in to change notification settings - Fork 0
/
azure-pipelines-veracode.yml
171 lines (154 loc) · 5.6 KB
/
azure-pipelines-veracode.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
### Develop Pipeline
### Snapshot Branch Versioning Stategy: X.X.X-SNAPSHOT
### Project :: kmdp-knowledge-asset-repository-service-veracode
# Sets Virtual Machine to Run Pipeline on
pool:
vmImage: 'ubuntu-latest'
# Gets Variables from Azure DevOps Library
variables:
- group: kmdp-platform-variables
- group: kmdp-platform-dev-variables
# ------------------ PIPELINE STEPS ------------------
steps:
# Outputs pipeline steps have started
- script: |
echo Starting Develop Branch Build Pipeline!
echo Project :: kmdp-knowledge-asset-repository-service-veracode
displayName: 'Starting Pipeline Steps'
# Reads Root pom.xml File
# Gets/Sets GAV from POM to Pipeline Variables
- task: PowerShell@2
displayName: 'Get/Set POM Variables'
inputs:
targetType: 'inline'
script: |
[xml]$pomXml = Get-Content .\pom.xml
Write-Host --------------------------------
Write-Host POM Variables:
Write-Host GroupId: $pomXml.project.groupId
Write-Host ArtifactId: $pomXml.project.artifactId
Write-Host Version: $pomXml.project.version
Write-Host --------------------------------
Write-Host Setting GAV to local task variables
$groupId=$pomXml.project.groupId
$artifactId=$pomXml.project.artifactId
$version=$pomXml.project.version
Write-Host --------------------------------
Write-Host Setting GAV to pipeline variables
Write-Host "##vso[task.setvariable variable=projectSnapShotVersion]$version"
Write-Host "##vso[task.setvariable variable=projectGroupId]$groupId"
Write-Host "##vso[task.setvariable variable=projectArtifactId]$artifactId"
# Gets .m2 Settings File from Azure DevOps Library
# Downloads File for use in Pipeline
- task: DownloadSecureFile@1
displayName: 'Downloads Secure .m2 Settings File'
name: settingsxml
inputs:
secureFile: settings-dev.xml
# Write settings file to Build Server
- task: PowerShell@2
displayName: 'Update m2 Settings File'
inputs:
targetType: 'inline'
script: |
New-Item -Type Directory -Force "${HOME}/.m2"
Copy-Item -Force "$(settingsxml.secureFilePath)" "${HOME}/.m2/settings.xml"
# Authenticate to Maven Feed
- task: MavenAuthenticate@0
displayName: 'Maven Authenticate'
inputs:
artifactsFeeds: 'KMD'
# Sets JDK 11 for Pipeline
# Runs Maven Goal: validate
- task: Maven@3
displayName: 'Sets Pipeline to JDK 11'
inputs:
mavenPomFile: 'pom.xml'
goals: 'validate'
options: '-ntp'
javaHomeOption: 'JDKVersion'
jdkVersionOption: '1.11'
# Sets ALM/SLM Versioning Policy on War
# Sets Version Tranformation: preprod
- task: AlmVersioning@4
displayName: 'SLM Update .war Version and Build Number'
inputs:
projectType: java
versionFilePath: kmdp-knowledge-asset-repository-impl/pom.xml
versionTransformation: 'preprod'
# Update Build Number by removing Snapshots
- task: PowerShell@2
displayName: 'Update Build # Remove Snapshot'
inputs:
targetType: 'inline'
script: |
Write-Host AfterSlmBuild: $Env:BUILD_BUILDNUMBER
$buildNumber = $Env:BUILD_BUILDNUMBER
$finalBuildNumber = $buildNumber.replace("-SNAPSHOT","")
Write-Host AfterSLMBuildRemoveSnap: $finalBuildNumber
Write-Host "##vso[build.updatebuildnumber]$finalBuildNumber"
env:
BUILD_BUILDNUMBER: $(build.buildNumber)
# Retrieve SLM preprod version
- task: PowerShell@2
displayName: 'Retrieve SLM Preprod Version'
inputs:
targetType: 'inline'
script: |
Write-Host ALM Version: $env:ALM_VERSION
$projectSlmVersion=$env:ALM_VERSION.replace("-SNAPSHOT","")
Write-Host Project Version: $projectSlmVersion
Write-Host "##vso[task.setvariable variable=projectSlmVersionFinal]$projectSlmVersion"
env:
ALM_VERSION: $(AlmVersioning.Project.Version)
# Runs Maven Goal: versions:set
# Set Version of Deployable War
- task: PowerShell@2
displayName: 'Maven Set Version Deployable War'
inputs:
targetType: 'inline'
script: |
mvn versions:set -pl kmdp-knowledge-asset-repository-impl "-DnewVersion=$env:PROJECT_SLM_VERSION" -ntp
env:
PROJECT_SLM_VERSION: $(projectSlmVersionFinal)
# Runs Maven Goal: deploy
# Deploys to Azure DevOps Artifacts
- task: PowerShell@2
displayName: 'Maven Deploy to Artifacts'
inputs:
targetType: 'inline'
script: |
mvn deploy "-DaltDeploymentRepository=$env:DEPLOY_REPO::default::$env:DEPLOY_REPO_PATH" -ntp
env:
DEPLOY_REPO: $(deploymentRepo)
DEPLOY_REPO_PATH: $(deploymentRepoPath)
# Make veracode directory
- task: PowerShell@2
displayName: 'Make veracode directory'
inputs:
targetType: 'inline'
script: |
mkdir $(build.artifactstagingdirectory)/veracode
# Copy Jars and war File to veracode folder
- task: CopyFiles@2
displayName: 'Copy Files to: $(build.artifactstagingdirectory)'
inputs:
SourceFolder: '$(system.defaultworkingdirectory)'
Contents: |
**/*.jar
**/*.war
TargetFolder: '$(build.artifactstagingdirectory)/veracode'
# Veracode Upload and Scan Task
- task: Veracode@3
inputs:
ConnectionDetailsSelection: 'Endpoint'
AnalysisService: 'KMD-Veracode'
veracodeAppProfile: 'kmdp-knowledge-asset-repository-service'
version: '$(projectSlmVersionFinal)'
filepath: '$(build.artifactstagingdirectory)/veracode'
maximumWaitTime: '360'
# ------------------ END PIPELINE ------------------
# Outputs pipeline steps have ended
- script: |
echo Ending Develop Branch Pipeline!
displayName: 'Ending Pipeline Steps'