433 lines
14 KiB
Bash
Executable File
433 lines
14 KiB
Bash
Executable File
#!/bin/bash
|
|
# Release process automation script.
|
|
# Used to create branch/tag, update versions in pom.xml
|
|
# build and push maven artifacts and docker images to Quay.io
|
|
|
|
REGISTRY="quay.io"
|
|
ORGANIZATION="eclipse"
|
|
|
|
# KEEP RIGHT ORDER!!!
|
|
DOCKER_FILES_LOCATIONS=(
|
|
che-server/dockerfiles/che
|
|
)
|
|
|
|
IMAGE="quay.io/eclipse/che-server"
|
|
|
|
sed_in_place() {
|
|
SHORT_UNAME=$(uname -s)
|
|
if [ "$(uname)" == "Darwin" ]; then
|
|
sed -i '' "$@"
|
|
elif [ "${SHORT_UNAME:0:5}" == "Linux" ]; then
|
|
sed -i "$@"
|
|
fi
|
|
}
|
|
|
|
loadMvnSettingsGpgKey() {
|
|
set +x
|
|
mkdir $HOME/.m2
|
|
#prepare settings.xml for maven and sonatype (central maven repository)
|
|
echo $CHE_MAVEN_SETTINGS | base64 -d > $HOME/.m2/settings.xml
|
|
#load GPG key for sign artifacts
|
|
echo $CHE_OSS_SONATYPE_GPG_KEY | base64 -d > $HOME/.m2/gpg.key
|
|
#load SSH key for release process
|
|
echo ${#CHE_OSS_SONATYPE_GPG_KEY}
|
|
mkdir $HOME/.ssh/
|
|
echo $CHE_GITHUB_SSH_KEY | base64 -d > $HOME/.ssh/id_rsa
|
|
chmod 0400 $HOME/.ssh/id_rsa
|
|
ssh-keyscan github.com >> ~/.ssh/known_hosts
|
|
set -x
|
|
export GPG_TTY=$(tty)
|
|
gpg --import $HOME/.m2/gpg.key
|
|
# gpg --import --batch $HOME/.m2/gpg.key
|
|
gpg --version
|
|
}
|
|
|
|
installDebDeps(){
|
|
set +x
|
|
# TODO should this be node 12?
|
|
curl -sL https://deb.nodesource.com/setup_10.x | sudo -E bash -
|
|
sudo apt-get install -y nodejs
|
|
}
|
|
|
|
installMaven(){
|
|
set -x
|
|
mkdir -p /opt/apache-maven && curl -sSL https://downloads.apache.org/maven/maven-3/3.6.3/binaries/apache-maven-3.6.3-bin.tar.gz | tar -xz --strip=1 -C /opt/apache-maven
|
|
export M2_HOME="/opt/apache-maven"
|
|
export PATH="/opt/apache-maven/bin:${PATH}"
|
|
mvn -version || die_with "mvn not found in path: ${PATH} !"
|
|
set +x
|
|
}
|
|
|
|
evaluateCheVariables() {
|
|
echo "Che version: ${CHE_VERSION}"
|
|
# derive branch from version
|
|
BRANCH=${CHE_VERSION%.*}.x
|
|
echo "Branch: ${BRANCH}"
|
|
|
|
if [[ ${CHE_VERSION} == *".0" ]]; then
|
|
BASEBRANCH="main"
|
|
else
|
|
BASEBRANCH="${BRANCH}"
|
|
fi
|
|
echo "Basebranch: ${BASEBRANCH}"
|
|
echo "Release che-parent: ${RELEASE_CHE_PARENT}"
|
|
echo "Version che-parent: ${VERSION_CHE_PARENT}"
|
|
}
|
|
|
|
checkoutProjects() {
|
|
if [[ ${RELEASE_CHE_PARENT} = "true" ]]; then
|
|
checkoutProject git@github.com:eclipse/che-parent
|
|
fi
|
|
checkoutProject git@github.com:eclipse-che/che-server
|
|
}
|
|
|
|
checkoutProject() {
|
|
PROJECT="${1##*/}"
|
|
echo "checking out project $PROJECT with ${BRANCH} branch"
|
|
|
|
if [[ ! -d ${PROJECT} ]]; then
|
|
echo "project not found in ${PROJECT} directory, performing 'git clone'"
|
|
git clone $1
|
|
fi
|
|
|
|
cd $PROJECT
|
|
git checkout ${BASEBRANCH}
|
|
|
|
set -x
|
|
set +e
|
|
if [[ "${BASEBRANCH}" != "${BRANCH}" ]]; then
|
|
git branch "${BRANCH}" || git checkout "${BRANCH}" && git pull origin "${BRANCH}"
|
|
git push origin "${BRANCH}"
|
|
git fetch origin "${BRANCH}:${BRANCH}"
|
|
git checkout "${BRANCH}"
|
|
fi
|
|
set -e
|
|
set +x
|
|
cd ..
|
|
}
|
|
|
|
checkoutTags() {
|
|
if [[ ${RELEASE_CHE_PARENT} = "true" ]]; then
|
|
cd che-parent
|
|
git checkout ${CHE_VERSION}
|
|
cd ..
|
|
fi
|
|
cd che-server
|
|
git checkout ${CHE_VERSION}
|
|
cd ..
|
|
}
|
|
|
|
# check for build errors, since we're using set +e above to NOT fail the build for network errors
|
|
checkLogForErrors () {
|
|
tmplog="$1"
|
|
errors_in_log="$(grep -E "FAILURE \[|BUILD FAILURE|Failed to execute goal" $tmplog || true)"
|
|
if [[ ${errors_in_log} ]]; then
|
|
echo "${errors_in_log}"
|
|
exit 1
|
|
fi
|
|
}
|
|
|
|
# TODO change it to someone else?
|
|
setupGitconfig() {
|
|
git config --global user.name "Mykhailo Kuznietsov"
|
|
git config --global user.email mkuznets@redhat.com
|
|
|
|
# hub CLI configuration
|
|
git config --global pull.rebase true
|
|
git config --global push.default matching
|
|
# replace default GITHUB_TOKEN, that is used by GitHub
|
|
export GITHUB_TOKEN="${CHE_BOT_GITHUB_TOKEN}"
|
|
}
|
|
|
|
commitChangeOrCreatePR() {
|
|
set +e
|
|
aVERSION="$1"
|
|
aBRANCH="$2"
|
|
PR_BRANCH="$3"
|
|
|
|
COMMIT_MSG="chore: Bump to ${aVERSION} in ${aBRANCH}"
|
|
|
|
# commit change into branch
|
|
git commit -asm "${COMMIT_MSG}"
|
|
git pull origin "${aBRANCH}"
|
|
|
|
PUSH_TRY="$(git push origin "${aBRANCH}")"
|
|
# shellcheck disable=SC2181
|
|
if [[ $? -gt 0 ]] || [[ $PUSH_TRY == *"protected branch hook declined"* ]]; then
|
|
# create pull request for main branch, as branch is restricted
|
|
git branch "${PR_BRANCH}"
|
|
git checkout "${PR_BRANCH}"
|
|
git pull origin "${PR_BRANCH}" || true
|
|
git push origin "${PR_BRANCH}"
|
|
lastCommitComment="$(git log -1 --pretty=%B)"
|
|
hub pull-request -f -m "${lastCommitComment}" -b "${aBRANCH}" -h "${PR_BRANCH}"
|
|
fi
|
|
set -e
|
|
}
|
|
|
|
createTags() {
|
|
if [[ $RELEASE_CHE_PARENT = "true" ]]; then
|
|
tagAndCommit che-parent
|
|
fi
|
|
tagAndCommit che-server
|
|
}
|
|
|
|
tagAndCommit() {
|
|
cd $1
|
|
# this branch isn't meant to be pushed
|
|
git checkout -b release-${CHE_VERSION}
|
|
git commit -asm "chore: Release version ${CHE_VERSION}"
|
|
if [ $(git tag -l "$CHE_VERSION") ]; then
|
|
echo "tag ${CHE_VERSION} already exists! recreating ..."
|
|
git tag -d ${CHE_VERSION}
|
|
git push origin :${CHE_VERSION}
|
|
git tag "${CHE_VERSION}"
|
|
else
|
|
echo "[INFO] creating new tag ${CHE_VERSION}"
|
|
git tag "${CHE_VERSION}"
|
|
fi
|
|
git push --tags
|
|
echo "[INFO] tag created and pushed for $1"
|
|
cd ..
|
|
}
|
|
|
|
prepareRelease() {
|
|
if [[ $RELEASE_CHE_PARENT = "true" ]]; then
|
|
pushd che-parent >/dev/null
|
|
# Install previous version, in case it is not available in central repo
|
|
# which is needed for dependent projects
|
|
mvn clean install
|
|
mvn versions:set -DgenerateBackupPoms=false -DnewVersion=${VERSION_CHE_PARENT}
|
|
mvn clean install
|
|
popd >/dev/null
|
|
echo "[INFO] Che Parent version has been updated to ${VERSION_CHE_PARENT}"
|
|
fi
|
|
|
|
pushd che-server >/dev/null
|
|
if [[ $RELEASE_CHE_PARENT = "true" ]]; then
|
|
mvn versions:update-parent -DgenerateBackupPoms=false -DallowSnapshots=false -DparentVersion=[${VERSION_CHE_PARENT}]
|
|
fi
|
|
mvn versions:set -DgenerateBackupPoms=false -DallowSnapshots=false -DnewVersion=${CHE_VERSION}
|
|
echo "[INFO] Che Server version has been updated to ${CHE_VERSION} (parentVersion = ${VERSION_CHE_PARENT})"
|
|
|
|
# Replace dependencies in che-server parent
|
|
sed -i -e "s#<che.version>.*<\/che.version>#<che.version>${CHE_VERSION}<\/che.version>#" pom.xml
|
|
echo "[INFO] Dependencies updated in che-server parent"
|
|
|
|
# TODO pull parent pom version from VERSION file, instead of being hardcoded
|
|
pushd typescript-dto >/dev/null
|
|
sed -i -e "s#<che.version>.*<\/che.version>#<che.version>${CHE_VERSION}<\/che.version>#" dto-pom.xml
|
|
sed -i -e "/<groupId>org.eclipse.che.parent<\/groupId>/ { n; s#<version>.*<\/version>#<version>${VERSION_CHE_PARENT}<\/version>#}" dto-pom.xml
|
|
echo "[INFO] Dependencies updated in che typescript DTO (parent = ${VERSION_CHE_PARENT}, che server = ${CHE_VERSION})"
|
|
popd >/dev/null
|
|
|
|
# run mvn license format, in case some files that have old license headers have been updated
|
|
mvn license:format
|
|
popd >/dev/null
|
|
}
|
|
|
|
releaseCheServer() {
|
|
set -x
|
|
tmpmvnlog=/tmp/mvn.log.txt
|
|
if [[ $RELEASE_CHE_PARENT = "true" ]]; then
|
|
pushd che-parent >/dev/null
|
|
rm -f $tmpmvnlog || true
|
|
set +e
|
|
mvn clean install -ntp -U -Pcodenvy-release -Dgpg.passphrase=$CHE_OSS_SONATYPE_PASSPHRASE | tee $tmpmvnlog
|
|
EXIT_CODE=$?
|
|
set -e
|
|
# try maven build again if we receive a server error
|
|
if grep -q -E "502 - Bad Gateway" $tmpmvnlog; then
|
|
rm -f $tmpmvnlog || true
|
|
mvn clean install -ntp -U -Pcodenvy-release -Dgpg.passphrase=$CHE_OSS_SONATYPE_PASSPHRASE | tee $tmpmvnlog
|
|
EXIT_CODE=$?
|
|
fi
|
|
# check log for errors if build successful; if failed, no need to check (already failed)
|
|
if [ $EXIT_CODE -eq 0 ]; then
|
|
checkLogForErrors $tmpmvnlog
|
|
echo 'Build of che-parent: Success!'
|
|
else
|
|
echo '[ERROR] 2. Build of che-parent: Failed!'
|
|
exit $EXIT_CODE
|
|
fi
|
|
popd >/dev/null
|
|
fi
|
|
|
|
pushd che-server >/dev/null
|
|
rm -f $tmpmvnlog || true
|
|
set +e
|
|
mvn clean install -U -Pcodenvy-release -Dgpg.passphrase=$CHE_OSS_SONATYPE_PASSPHRASE | tee $tmpmvnlog
|
|
EXIT_CODE=$?
|
|
set -e
|
|
# try maven build again if we receive a server error
|
|
if grep -q -E "502 - Bad Gateway" $tmpmvnlog; then
|
|
rm -f $tmpmvnlog || true
|
|
mvn clean install -U -Pcodenvy-release -Dgpg.passphrase=$CHE_OSS_SONATYPE_PASSPHRASE | tee $tmpmvnlog
|
|
EXIT_CODE=$?
|
|
fi
|
|
|
|
# check log for errors if build successful; if failed, no need to check (already failed)
|
|
if [ $EXIT_CODE -eq 0 ]; then
|
|
checkLogForErrors $tmpmvnlog
|
|
echo 'Build of che-server: Success!'
|
|
else
|
|
echo '[ERROR] 2. Build of che-server: Failed!'
|
|
exit $EXIT_CODE
|
|
fi
|
|
set +x
|
|
popd >/dev/null
|
|
}
|
|
|
|
releaseTypescriptDto() {
|
|
pushd che-server/typescript-dto >/dev/null
|
|
./build.sh
|
|
popd >/dev/null
|
|
}
|
|
|
|
buildImages() {
|
|
echo "Going to build docker images"
|
|
set -e
|
|
set -o pipefail
|
|
TAG=$1
|
|
|
|
# stop / rm all containers
|
|
if [[ $(docker ps -aq) != "" ]];then
|
|
docker rm -f "$(docker ps -aq)"
|
|
fi
|
|
|
|
# BUILD IMAGES
|
|
bash "$(pwd)/build/build.sh" --tag:${TAG}
|
|
if [[ $? -ne 0 ]]; then
|
|
echo "ERROR:"
|
|
echo "build of che-server image is failed!"
|
|
exit 1
|
|
fi
|
|
}
|
|
|
|
tagLatestImages() {
|
|
echo y | docker tag "${IMAGE}:$1" "${image}:latest"
|
|
if [[ $? -ne 0 ]]; then
|
|
die_with "docker tag of '${image}' image is failed!"
|
|
fi
|
|
}
|
|
|
|
pushImagesOnQuay() {
|
|
#PUSH THE IMAGE
|
|
echo y | docker push "${IMAGE}:$1"
|
|
if [[ $2 == "pushLatest" ]]; then
|
|
echo y | docker push "${image}:latest"
|
|
fi
|
|
if [[ $? -ne 0 ]]; then
|
|
die_with "docker push of '${image}' image is failed!"
|
|
fi
|
|
}
|
|
|
|
bumpVersions() {
|
|
# infer project version + commit change into ${BASEBRANCH} branch
|
|
echo "${BASEBRANCH} ${BRANCH}"
|
|
if [[ "${BASEBRANCH}" != "${BRANCH}" ]]; then
|
|
# bump the y digit
|
|
[[ ${BRANCH} =~ ^([0-9]+)\.([0-9]+)\.x ]] && BASE=${BASH_REMATCH[1]}; NEXT=${BASH_REMATCH[2]}; (( NEXT=NEXT+1 )) # for BRANCH=7.10.x, get BASE=7, NEXT=11
|
|
NEXTVERSION_Y="${BASE}.${NEXT}.0-SNAPSHOT"
|
|
bumpVersion ${NEXTVERSION_Y} ${BASEBRANCH}
|
|
fi
|
|
# bump the z digit
|
|
[[ ${CHE_VERSION} =~ ^([0-9]+)\.([0-9]+)\.([0-9]+) ]] && BASE="${BASH_REMATCH[1]}.${BASH_REMATCH[2]}"; NEXT="${BASH_REMATCH[3]}"; (( NEXT=NEXT+1 )) # for VERSION=7.7.1, get BASE=7.7, NEXT=2
|
|
NEXTVERSION_Z="${BASE}.${NEXT}-SNAPSHOT"
|
|
bumpVersion ${NEXTVERSION_Z} ${BRANCH}
|
|
}
|
|
|
|
bumpVersion() {
|
|
set -x
|
|
echo "[info]bumping to version $1 in branch $2"
|
|
|
|
if [[ $RELEASE_CHE_PARENT = "true" ]]; then
|
|
pushd che-parent >/dev/null
|
|
git checkout $2
|
|
#install previous version, in case it is not available in central repo
|
|
#which is needed for dependent projects
|
|
|
|
mvn clean install
|
|
mvn versions:set -DgenerateBackupPoms=false -DnewVersion=${CHE_VERSION}
|
|
mvn clean install
|
|
# run mvn license format, in case some files that have old license headers have been updated
|
|
mvn license:format
|
|
commitChangeOrCreatePR ${CHE_VERSION} $2 "pr-${2}-to-${1}"
|
|
popd >/dev/null
|
|
fi
|
|
|
|
pushd che-server >/dev/null
|
|
git checkout $2
|
|
if [[ $RELEASE_CHE_PARENT = "true" ]]; then
|
|
mvn versions:update-parent -DgenerateBackupPoms=false -DallowSnapshots=true -DparentVersion=[${VERSION_CHE_PARENT}]
|
|
fi
|
|
|
|
# compute current version of root pom
|
|
current_root_pom_version=$(grep "<che.version>" pom.xml | sed -r -e "s#.+<che.version>([^<>]+)</che.version>.*#\1#")
|
|
|
|
mvn versions:set -DgenerateBackupPoms=false -DallowSnapshots=true -DnewVersion=$1
|
|
sed -i -e "s#<che.version>.*<\/che.version>#<che.version>$1<\/che.version>#" pom.xml
|
|
pushd typescript-dto >/dev/null
|
|
sed -i -e "s#<che.version>.*<\/che.version>#<che.version>${1}<\/che.version>#" dto-pom.xml
|
|
sed -i -e "/<groupId>org.eclipse.che.parent<\/groupId>/ { n; s#<version>.*<\/version>#<version>${VERSION_CHE_PARENT}<\/version>#}" dto-pom.xml
|
|
popd >/dev/null
|
|
|
|
# update integration tests to new root pom version
|
|
find . -name "pom.xml" -exec sed -i {} -r -e "s@<version>${current_root_pom_version}</version>@<version>$1</version>@g" \;
|
|
|
|
# run mvn license format, in case some files that have old license headers have been updated
|
|
mvn license:format
|
|
commitChangeOrCreatePR $1 $2 "pr-${2}-to-${1}"
|
|
popd >/dev/null
|
|
set +x
|
|
}
|
|
|
|
updateImageTagsInCheServer() {
|
|
pushd che-server >/dev/null
|
|
git checkout ${BRANCH}
|
|
plugin_version="latest"
|
|
sed_in_place -r -e "s#che.factory.default_editor=eclipse/che-theia/.*#che.factory.default_editor=eclipse/che-theia/$plugin_version#g" assembly/assembly-wsmaster-war/src/main/webapp/WEB-INF/classes/che/che.properties
|
|
sed_in_place -r -e "s#che.workspace.devfile.default_editor=eclipse/che-theia/.*#che.workspace.devfile.default_editor=eclipse/che-theia/$plugin_version#g" assembly/assembly-wsmaster-war/src/main/webapp/WEB-INF/classes/che/che.properties
|
|
|
|
if [[ $(git diff --stat) != '' ]]; then
|
|
git commit -asm "chore: Set ${CHE_VERSION} release image tags"
|
|
git pull origin "${BRANCH}" || true
|
|
git push origin "${BRANCH}"
|
|
fi
|
|
popd >/dev/null
|
|
}
|
|
|
|
installMaven
|
|
loadMvnSettingsGpgKey
|
|
installDebDeps
|
|
set -x
|
|
setupGitconfig
|
|
|
|
evaluateCheVariables
|
|
|
|
checkoutProjects
|
|
|
|
if [[ "${BUMP_NEXT_VERSION}" = "true" ]]; then
|
|
bumpVersions
|
|
updateImageTagsInCheServer
|
|
# checkout back to branches to make release from
|
|
checkoutProjects
|
|
fi
|
|
|
|
if [[ "${REBUILD_FROM_EXISTING_TAGS}" = "true" ]]; then
|
|
echo "[INFO] Checking out from existing ${CHE_VERSION} tag"
|
|
checkoutTags
|
|
else
|
|
echo "[INFO] Creating a new ${CHE_VERSION} tag"
|
|
prepareRelease
|
|
createTags
|
|
fi
|
|
releaseCheServer
|
|
releaseTypescriptDto
|
|
|
|
if [[ "${BUILD_AND_PUSH_IMAGES}" = "true" ]]; then
|
|
buildImages ${CHE_VERSION}
|
|
tagLatestImages ${CHE_VERSION}
|
|
pushImagesOnQuay ${CHE_VERSION} pushLatest
|
|
fi
|