1. Environmental planning
This tutorial uses four virtual machines (VMS) running centos7.x as servers.
role | IP |
Docker Swarm Manager | |
Docker Swarm Worker | |
Docker Swarm Worker | |
Docker/Jenkins/Harbor/Gitlab | |
Docker/ Docker-compose installation (for all servers)
2.1 Uninstalling the old Dokcer
sudo yum remove docker docker-common container-selinux docker-selinux docker-engine
2.2 Installing dependency packages
sudo yum install -y yum-utils device-mapper-persistent-data lvm2
2.3 Adding aliyun YUM Source
This tutorial uses Aliyun Docker yum sources. You can also use netease 163, Tsinghua and other yum sources.
sudo yum-config-manager --add-repo http://mirrors.aliyun.com/docker-ce/linux/centos/docker-ce.repo
2.4 Update and install Docker CE
sudo yum makecache fast
sudo yum -y install docker-ce
2.5 start the Docker
sudo service docker start
2.6 Adding Ali Cloud Image Accelerator
Ali Cloud image acceleration address can be obtained here [cr.console.aliyun.com/cn-hangzhou…] . Xxxx.mirror.aliyncs.com can be replaced with the corresponding accelerator address.
sudo mkdir -p /etc/docker
sudo tee /etc/docker/daemon.json <<-'EOF'
"registry-mirrors": ["https://xxxx.mirror.aliyuncs.com"]
#Reload the configuration and restart the Docker
sudo systemctl daemon-reload
sudo systemctl restart docker
2.7 installation Docker – Compose
Docker – compose the latest version of website document [docs.docker.com/compose/ins…]. , version 1.25.5 is used
Sudo curl - L "https://github.com/docker/compose/releases/download/1.25.5/docker-compose-$(uname - s) - $(uname -m)" - o /usr/local/bin/docker-compose sudo chmod +x /usr/local/bin/docker-composeCopy the code
Verify that the installation is successful
3.Docker Swarm cluster installation
There are 129,130,131 services, among which 129 are manager nodes,130 and 131 are worker nodes.
3.1 Modifying Docker Startup Parameters
vim /lib/systemd/system/docker.service
#ExecStart=/usr/bin/dockerd -H fd:// --containerd=/run/containerd/containerd.sockExecStart=/usr/bin/dockerd --containerd=/run/containerd/containerd.sock vim /etc/docker/daemon.json { "registry-mirrors": ["https://bvmsud8x.mirror.aliyuncs.com"], "hosts": [" ", "Unix: / / / var/run/docker. The sock"]} systemctl daemon - reload systemctl restart dockerCopy the code
3.2 Installing docker Swarm
3.2.1 Enabling corresponding Ports (or disabling the firewall)
#TCP port 2377 Cluster management port
#TCP and UDP port 7946 Communication port between nodes
#TCP and UDP port 4789 Overlay Network communication port
firewall-cmd --zone=public --add-port=2377/tcp --permanent
firewall-cmd --zone=public --add-port=7946/tcp --permanent
firewall-cmd --zone=public --add-port=7946/udp --permanent
firewall-cmd --zone=public --add-port=4789/tcp --permanent
firewall-cmd --zone=public --add-port=4789/udp --permanent
firewall-cmd --reload
3.2.2 manager node
Do it on the Manager node
# is the IP address of the current running machine. This parameter is mandatory if there are multiple nicsDocker swarm init --advertise-addr the code
The result is as follows:
3.2.3 the worker nodes
Execute on the worker node
After the manager node executes the command, you can see the following command from the printed information to add the worker node
docker swarm join --token SWMTKN-1-0a3ulzft9wrjbf8to4akangmajva2qptkrilmrofh8c35k3roh-ebei8ptaulxr88vnls5iq4qlc
3.2.4 Verification Is successful
Docker node lsCopy the code
Docker private warehouse Harbor installation
Harbor download address [github.com/goharbor/ha…]
The 2.0.0 offline version is used in this article.
4.1 Download the installation package and decompress it
Wget tar - ZVXF at https://github.com/goharbor/harbor/releases/download/v2.0.0/harbor-offline-installer-v2.0.0.tgz Hharbor - offline installer - v2.0.0 TGZCopy the code
4.2 installation harbor
Modify the harbor.yml file
hostname: 192.1682.132. Install machine IP address
# # https port for harbor, default is 443
# port: 443
# # The path of cert and key files for nginx
# certificate: /your/certificate/path
# private_key: /your/private/key/path
Start the
#Loading harbor Configuration
#Install the harborSh docker-compose up -d Starts docker-compose stop Stops docker-compose restart and restartsCopy the code
4.3 Verifying the Installation
Default user name password admin Harbor12345
4.4 Configuring the Docker Private Server Address
Modify daemon.json, add Docker private SERVER IP configuration.
Vim/etc/docker/daemon. Json "insecure - registries:" [] ""Copy the code
5. Jenkins installation based on Docker
5.1 Custom Jenkins Docker image
5.1.1 Define a Dockerfile and Create an image
You can add the required environment to the image as needed.
FROM jenkins/jenkins:lts
MAINTAINER Trazen <trazen@126.com>
USER root
RUN echo '' > /etc/apt/sources.list.d/jessie-backports.list \
&& echo "deb http://mirrors.aliyun.com/debian jessie main contrib non-free" > /etc/apt/sources.list \
&& echo "deb http://mirrors.aliyun.com/debian jessie-updates main contrib non-free" >> /etc/apt/sources.list \
&& echo "deb http://mirrors.aliyun.com/debian-security jessie/updates main contrib non-free" >> /etc/apt/sources.list
#Update the source and install the missing packages
RUN apt-get update && apt-get install -y libltdl7
ARG dockerGid=999
RUN echo "docker:x:${dockerGid}:jenkins" >> /etc/group USER jenkins
RUN /bin/cp /usr/share/zoneinfo/Asia/Shanghai /etc/localtime && echo 'Asia/Shanghai' >/etc/timezone
#Build the Docker image
docker build -t trazen/jenkins:lts .
Copy the code
5.1.2 definition docker – compose. Yml
In this tutorial, Jenkins builds the required JDK, Maven and other environments directly mount the host’s existing environment directory. Can also be installed in the container corresponding functions.
version: '3'
image: 'trazen/jenkins:lts'
container_name: jenkins
restart: always
- '8080:8080'
- '50000:50000'
- '/home/jenkins/data:/var/jenkins_home' # Host Jenkins data directory mount
- '/usr/local/bin/docker-compose:/usr/local/bin/docker-compose' Host docker-compose
- '/usr/bin/docker:/usr/bin/docker' Docker in docker
- '/var/run/docker.sock:/var/run/docker.sock'
- '/etc/localtime:/etc/localtime:ro'
- '/ opt/jdk1.8.0 _161: / var/local/jdk1.8.0 _161' # Host JDK mount
- '/ opt/jdk1.8.0 _161 / bin/Java: / usr/bin/jdk1.8.0 _161 / Java'
- '/usr/bin/mv:/usr/bin/mv'
- '/ opt/apache maven - 3.6.3: / var/local/apache maven - 3.6.3' # Mount maven
- '/ opt/apache maven - 3.6.3 / conf/Settings. The XML: / var/jenkins_home/m2 / Settings. The XML'
- '/opt/repository:/var/local/repository'
5.1.3 Defining the startup script start_jenkins.sh
#! /bin/bash
#Creating a data directory
mkdir -p /home/jenkins/data
chown -R 1000:1000 /home/jenkins/data
#Start the Jenkins
docker-compose up -d
5.1.4 Jenkins plug-in installation
The name of the | instructions |
Blue Ocean | PipelineUI |
DingTalk | |
Docker Swarm Plugin | Docker swarm |
Folders Plugin | |
GitLab Plugin | |
Localization: Chinese (Simplified) | |
Pipeline Maven Integration | |
Pipeline | |
Groovy Postbuild | |
Pipeline Utility Steps | pipelinemaven pom |
Pipeline: Shared Groovy Libraries | groovy library |
Git Parameter | git |
Dashboard View | |
Generic Webhook Trigger Plugin | |
Gitlab Hook Plugin | Gitlab Hook |
Matrix Authorization Strategy Plugin | |
SSH Agent Plugin | |
SSH Credentials Plugin | |
SSH Pipeline Steps | |
Workspace Cleanup Plugin | |
Pipeline Utility Steps |
5.2 Creating A Jenkins Slave Mirror
5.2.1 Define the Jenkins slave Dockfile file
The secondary image is mainly used to build the Java language Maven project environment, and you can customize the installation of other compilation environment in Dockerfile
FROM openjdk:8-jdk
LABEL MAINTAINER="Trazen <trazen@126.com>"
## # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #
# argumentsARG user=jenkins ARG group=jenkins ARG uid=1000 ARG gid=1000 ARG JENKINS_AGENT_HOME=/home/${user} ARG JNLP_SLAVE_VERSION = 3.28
## # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #
# environments
ENV DEBIAN_FRONTEND noninteractive
ENV DIND_COMMIT 52379fa76dee07ca038624d639d9e14f4fb719ff
## # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #
# create jenkins user
RUN groupadd -g ${gid} ${group} \
&& useradd -d "${JENKINS_AGENT_HOME}" -u "${uid}" -g "${gid}" -m -s /bin/bash "${user}"
RUN mkdir ${JENKINS_AGENT_HOME}/.jenkins
## # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #
#Update aliyun's Stretch version package source
RUN mv /etc/apt/sources.list /etc/apt/sources.list.bak && \
echo "deb http://mirrors.163.com/debian/ buster main non-free contrib" > /etc/apt/sources.list && \
echo "deb http://mirrors.163.com/debian/ buster-updates main non-free contrib" >> /etc/apt/sources.list && \
echo "deb http://mirrors.163.com/debian/ buster-backports main non-free contrib" >> /etc/apt/sources.list && \
echo "deb-src http://mirrors.163.com/debian/ buster main non-free contrib" >> /etc/apt/sources.list && \
echo "deb-src http://mirrors.163.com/debian/ buster-updates main non-free contrib" >> /etc/apt/sources.list && \
echo "deb-src http://mirrors.163.com/debian/ buster-backports main non-free contrib" >> /etc/apt/sources.list && \
echo "deb http://mirrors.163.com/debian-security/ buster/updates main non-free contrib" >> /etc/apt/sources.list && \
echo "deb-src http://mirrors.163.com/debian-security/ buster/updates main non-free contrib" >> /etc/apt/sources.list
## # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #
# install required packages
# - build-essential: provide make and gcc which will be used in "npm install"
# - sshpass: allow ssh to other servers
# - bzip2: used by installing firefox
# - gnome-keyring: required by keytar
# - libsecret-1-dev: required by npm install rebuild keytar
# - dbus-x11: includes dbus-launch
# - libdbus-glib-1-2: used by firefox
# - libx11-dev libxkbfile-dev: required by theia
# - xvfb: required by cypress
# - iptables: required by docker
RUN apt-get update && apt-get install --no-install-recommends -y \
openssh-server \
vim curl wget rsync pax build-essential sshpass zip jq locales \
## # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #
# configure locale
RUN echo "en_US.UTF-8 UTF-8" >> /etc/locale.gen \
&& /usr/sbin/locale-gen
## # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #
# install jnlp slave jarRUN curl --create-dirs -fsSLo /usr/share/jenkins/slave.jar https://repo.jenkins-ci.org/public/org/jenkins-ci/main/remoting/${JNLP_SLAVE_VERSION}/remoting-${JNLP_SLAVE_VERSION}.jar \ && chmod 755 /usr/share/jenkins \ && chmod 644 /usr/share/jenkins/slave.jar
## # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #
# install dockerRUN set -eux; \ groupadd docker; \ useradd -g docker docker; \ usermod -aG docker ${user}; \ if ! wget -O docker.tgz "Http://$/ ${DOCKER_CHANNEL} {DOCKER_ARCH} / docker - ${DOCKER_VERSION}.tgz"; then \ echo >&2 "error: failed to download 'docker-${DOCKER_VERSION}' from '${DOCKER_CHANNEL}' for '${DOCKER_ARCH}'"; \ exit 1; \ fi; \ \ tar --extract \ --file docker.tgz \ --strip-components 1 \ --directory /usr/local/bin/ \ ; \ rm docker.tgz; \ \ dockerd --version; \ docker --version; \ wget -O /usr/local/bin/dind "https://raw.githubusercontent.com/docker/docker/${DIND_COMMIT}/hack/dind"; \ chmod +x /usr/local/bin/dind
## # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #
# Clean apt cache
RUN rm -rf /var/lib/apt/lists/*
## # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #
# the new "openjdk:8-jdk" base image put Java in "/usr/local/openjdk-8" folder
# we need a symlink
RUN mkdir -p /usr/java \
&& ln -s /usr/local/openjdk-8 /usr/java/openjdk-8 \
&& ln -s /usr/local/openjdk-8 /usr/java/default
## # # # # # # # # #
# Maven3.6.3
## # # # # # # # # #ENV MAVEN_VERSION = 3.6.3 RUN curl - fsSL | tar XZF - C /usr/share \ && mv /usr/share/apache-maven-$MAVEN_VERSION /usr/share/maven \ && ln -s /usr/share/maven/bin/mvn /usr/bin/mvn ENV MAVEN_HOME=/usr/share/maven
## # # # # # # # # #
# Docker Compose
## # # # # # # # # #The RUN curl - - o L/usr/local/bin/docker - compose && \ chmod + x /usr/local/bin/docker-compose && \ rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/*
## # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #
# define volume
VOLUME "${JENKINS_AGENT_HOME}" "/tmp" "/run" "/var/run"
# switch back to root user
USER root
## # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #
# expose and entrypoint
COPY setup-entrypoint /usr/local/bin/setup-entrypoint
RUN chmod +x /usr/local/bin/setup-entrypoint
ENTRYPOINT ["/usr/local/bin/setup-entrypoint"]
5.2.2 Defining the container script setup-entryPoint
#! /bin/bash
set -ex
## # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #
# Use for testing (not as Jenkins agent):
# docker run <image/id> <command>
# Use as SSH agent:
# docker run <image/id> [<public key>]
# Or provide in environment variables :
# Use as regular JNLP agent:
# docker run <image/id> [options] -url http://jenkins [SECRET] [AGENT_NAME]
# Optional environment variables :
# * JENKINS_TUNNEL : HOST:PORT for a tunnel to route TCP traffic to jenkins host, when jenkins can't be directly accessed over network
# * JENKINS_URL : alternate jenkins URL
# * JENKINS_SECRET : agent secret, if not set as an argument
# * JENKINS_AGENT_NAME : agent name, if not set as an argument
# * JENKINS_AGENT_WORKDIR : agent work directory, if not set by optional parameter -workDir
# Use as JNLP agent run in Docker Swarm:
# docker run <image/id>
# Required environment variables :
# * DOCKER_SWARM_PLUGIN_JENKINS_AGENT_SECRET : jenkins secret if run as swarm agent
# * DOCKER_SWARM_PLUGIN_JENKINS_AGENT_JAR_URL : jenkins url if run as swarm agent
# * DOCKER_SWARM_PLUGIN_JENKINS_AGENT_JNLP_URL : jenkins jnlp url if run as swarm agentwrite_key() { mkdir -p "${JENKINS_AGENT_HOME}/.ssh" echo "$1" > "${JENKINS_AGENT_HOME}/.ssh/authorized_keys" chown -Rf jenkins:jenkins "${JENKINS_AGENT_HOME}/.ssh" chmod 0700 -R "${JENKINS_AGENT_HOME}/.ssh" } echo "============ Environment Variables Start ====================================" env echo "============ Environment Variables End = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = ="
## # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #
# start docker-in-dockerExec "$(which dind) dockerd \" - the host = Unix: / / / var/run/docker. The sock \ - host = TCP: / / &
## # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #
# determine which mode to run, default is jnlpSTART_MODE=JNLP if [ -n "$DOCKER_SWARM_PLUGIN_JENKINS_AGENT_JNLP_URL" ]; then START_MODE=SWARM elif [ -n "$JENKINS_SLAVE_SSH_PUBKEY" ]; then START_MODE=SSH elif [ $# -gt 0 ]; then echo "============ Command Line Start ====================================" echo $@ echo "============ Command Line End ======================================" if [[ $1 == ssh-* ]]; then # only one parameter and it starts with "ssh-", so it's a SSH public key START_MODE=SSH elif [[ $1 == "/usr/sbin/sshd" ]]; then # docker plugin may start container with this command: # /usr/sbin/sshd -D -p 22 -o AuthorizedKeysCommand=/root/authorized_key -o AuthorizedKeysCommandUser=root START_MODE=SSH elif [[ $1 == "sh" ]]; then # if `docker run` only has one arguments, we assume user is running alternate # command like `bash` to inspect the image START_MODE=COMMAND fi fi echo ">>>>>> Docker container will be started in $START_MODE mode. <<<<<<"
## # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #
# start mode: command
# user run own command like bash
if [ "$START_MODE" = "COMMAND" ]; then
exec "$@"
## # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #
# start mode: jnlp
elif [ "$START_MODE" = "JNLP" ]; then
# if -tunnel is not provided, try env vars
case "$@" in
*"-tunnel "*) ;;
if [ ! -z "$JENKINS_TUNNEL" ]; then
fi ;;
# if -workDir is not provided, try env vars
if [ ! -z "$JENKINS_AGENT_WORKDIR" ]; then
case "$@" in
*"-workDir"*) echo "Warning: Work directory is defined twice in command-line arguments and the environment variable" ;;
if [ -n "$JENKINS_URL" ]; then
if [ -n "$JENKINS_NAME" ]; then
if [ -z "$JNLP_PROTOCOL_OPTS" ]; then
echo "Warning: JnlpProtocol3 is disabled by default, use JNLP_PROTOCOL_OPTS to alter the behavior"
# if java home is defined, use it
if [ "$JAVA_HOME" ]; then
# if both required options are defined, do not pass the parameters
if [ -n "$JENKINS_SECRET" ]; then
case "$@" in
*"${JENKINS_SECRET}"*) echo "Warning: SECRET is defined twice in command-line arguments and the environment variable" ;;
if [ -n "$JENKINS_AGENT_NAME" ]; then
case "$@" in
*"${JENKINS_AGENT_NAME}"*) echo "Warning: AGENT_NAME is defined twice in command-line arguments and the environment variable" ;;
#TODO: Handle the case when the command-line and Environment variable contain different values.
#It is fine it blows up for now since it should lead to an error anyway.
exec $JAVA_BIN $JAVA_OPTS $JNLP_PROTOCOL_OPTS -cp /usr/share/jenkins/slave.jar hudson.remoting.jnlp.Main -headless $TUNNEL $URL $WORKDIR $OPT_JENKINS_SECRET $OPT_JENKINS_AGENT_NAME "$@"
## # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #
# start mode: jnlp in swarm
elif [ "$START_MODE" = "SWARM" ]; then
# this container is started with Jenkins Docker Swarm Plugin, need to start slave
curl --connect-timeout 20 --max-time 60 -o slave.jar $DOCKER_SWARM_PLUGIN_JENKINS_AGENT_JAR_URL && \
exec java -jar slave.jar -jnlpUrl $DOCKER_SWARM_PLUGIN_JENKINS_AGENT_JNLP_URL \
-noReconnect -workDir $JENKINS_AGENT_HOME
## # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #
# start mode: ssh
elif [ "$START_MODE" = "SSH" ]; then
# this container is started with ssh?
if [[ $JENKINS_SLAVE_SSH_PUBKEY == ssh-* ]]; then
if [[ $# -gt 0 ]]; then
if [[ $1 == ssh-* ]]; then
write_key "$1"
shift 1
exec "$@"
# ensure variables passed to docker container are also exposed to ssh sessions
env | grep _ >> /etc/environment
# start SSHd
ssh-keygen -A
exec /usr/sbin/sshd -D -e "${@}"
#Build the Docker image
docker build -t trazen/jenkins_slave_java .
5.3 Integration of Jenkins and Docker Swarm
The integration of Jenkins and Docker Swarm relies on the Jenkins Docker Swarm Plugin. The following figure shows the architecture diagram in this paper. Jenkins Master is installed separately in a Docker environment and also installed in Docker Swarm. Docker Swarm is the Jenkins dynamic Slave node. Compared with the traditional Jenkins Master Slave architecture, it not only saves server resources but also makes full use of idle resources.
5.3.1 Integration Configuration
5.4.2 Dynamic Jenkins Slave test based on pipeline
Create a new pipeline task. The pileline script is as follows:
pipeline {
agent {
label 'jnlp-slave-java'
stages {
stage('Hello') {
steps {
echo 'Hello World'
sh 'mvn -v'
sh 'docker images'
sleep 20}}}}Copy the code
6. Release SpringBoot project to Docker Swarm cluster based on pipeline
6.1 SpringBoot Demonstration project
public class DemoController {
public Object test(a){
return "springboot demo!"; }}Copy the code
FROM openJDK :8-jre MAINTAINER Trazen<trazen@126.com> # Set time zone ENV TZ=Asia/Shanghai RUN cp /usr/share/zoneinfo/$TZ /etc/localtime \ && echo $TZ > /etc/timezone COPY target/*.jar /app.jar EXPOSE 18080 # JVM parameter ENV JAVA_OPTS=" -xMS256m -Xmx2g" ENTRYPOINT [ "sh", "-c", "java $JAVA_OPTS -Djava.security.egd=file:/dev/./urandom -jar /app.jar" ]Copy the code
version: "3.8"
image: "${DOCKER_IMAGE_URL}"
- "18080:18080"
- /opt/logs:/opt/logs
- TZ=Asia/Shanghai
mode: replicated
Specifies the number of container copies when mode is replicated
replicas: 1
# This service assigns a virtual IP(VIP)
endpoint_mode: vip
# failed restart
condition: on-failure
# Resource constraints
Set the container to use at most 20% of the CPU
cpus: "0.2"
Set the container to use a maximum of 2M of memory
memory: "2G"
- hxcloud_network
external: true
name: hxcloud_network
6.2 Creating pipeline Tasks
Create a pipeline task as follows
Pipeline script:
def remote = [:]
remote.name = "root"
remote.host = ""
remote.allowAnyHosts = true
pipeline {
agent any
environment {
/ / git address
// Harbor warehouse address
/ / mirror namespace
// Mirror name
// Package the environment
//swarm Management node shell directory
options {
// At most one pipeline is allowed to run at a time
// Keep the latest 7 build logs and 1 artifact
buildDiscarder(logRotator(numToKeepStr: '7'.artifactNumToKeepStr: '1'.daysToKeepStr: '5'))
parameters {
gitParameter name: 'BRANCH_TAG'.type: 'PT_BRANCH_TAG'.branchFilter: 'origin/(release.*)'.defaultValue: 'master'.selectedValue: 'DEFAULT'.sortMode: 'ASCENDING_SMART'.description: 'Select your branch or tag.'
stages {
stage('Get code') {
steps {
echo "start fetch code from ${REPOSITORY}"
checkout([$class: 'GitSCM'.branches: [[name: "${params.BRANCH_TAG}"]],
doGenerateSubmoduleConfigurations: false.extensions:[].gitTool: 'Default'.submoduleCfg:[].userRemoteConfigs: [[url: "${REPOSITORY}".credentialsId: 'gitlab-trazen',]]
stage('Maven build') {
steps {
withMaven(maven : 'maven3.6.3'){
script {
sh 'mvn clean install -e -U -Dmaven.test.skip=true -P${PROFILE}'
def pom = readMavenPom file:'pom.xml'
print pom.version
env.version = pom.version
stage('Build & Publish Docker images') {
steps {
script {
echo "start build docker image ${HARBOR_URL}"
docker.withRegistry('http://${HARBOR_URL}'.'harbor-tuyong') {def imageUrl = "${DOCKER_NAMESPACE}/${DOCKER_NAME}:${env.version}"
def customImage = docker.build(imageUrl);
stage ('Published to Docker Swarm') {
steps {
echo "run in Docker Swarm"
withCredentials([sshUserPrivateKey(credentialsId: 'ssh-129'.keyFileVariable: 'identity'.passphraseVariable: ' '.usernameVariable: 'userName')]){
script {
remote.user = userName
remote.identityFile = identity
sshCommand remote: remote, command: "sudo mkdir ${SWARM_SHELL_FOLDER}/${DOCKER_NAME}-${PROFILE}"
sshPut remote: remote, from: "docker-compose.yml".into: "${SWARM_SHELL_FOLDER}/${DOCKER_NAME}-${PROFILE}"
echo ${DOCKER_NAME} image address: ${IMAGE_URL}
sshCommand remote: remote, command: "${SWARM_SHELL_FOLDER}/deploy-swarm.sh ${DOCKER_NAME} ${IMAGE_URL} ${COMPOSE_FOLDER}"
catch (exc) {
echo 'Publishing to Docker Swarm failed! '
throw exc
sshCommand remote: remote, command: "sudo rm -rf ${SWARM_SHELL_FOLDER}/${DOCKER_NAME}-${PROFILE}"
post {
failure {
echo 'Build failed'
echo "${log_url}"
dingtalk (
robot: '43f773e2-a2bc-4fdd-80b0-e8c58f552d62'.type: 'LINK'.title: 'Build failed
'.text: [
"Project information: ${currentBuild. FullDisplayName}".${currentbuild.result}."Build time: ${currentBuild. DurationString}".${DOCKER_NAMESPACE}/${DOCKER_NAME}:${env.version}"].messageUrl: "${log_url}".picUrl: 'http://www.iconsdb.com/icons/preview/soylent-red/x-mark-3-xxl.png'
success {
echo 'Build successful'
dingtalk (
robot: '43f773e2-a2bc-4fdd-80b0-e8c58f552d62'.type: 'LINK'.title: 'Build successful
'.text: [
"Project information: ${currentBuild. FullDisplayName}".${currentbuild.result}."Build time: ${currentBuild. DurationString}".${DOCKER_NAMESPACE}/${DOCKER_NAME}:${env.version}"].messageUrl: "${log_url}".picUrl: 'http://icons.iconarchive.com/icons/paomedia/small-n-flat/1024/sign-check-icon.png')}}}Copy the code
6.3 Releasing scripts and Initializing the Environment
6.3.1 Docker Swarm Defines the release script for the active Docker Swarm node
#! /usr/bin/env bash
cd $(dirname $0)
set -e
export APP_NAME=$1
docker stack deploy -c .$COMPOSE_FILE_FOLDER/docker-compose.yml $APP_NAME
Copy the code
6.3.2 Docker Swarm User-defined network
Create a private network for publishing projects.
