mirror of
https://github.com/google/nomulus
synced 2026-01-05 13:07:04 +00:00
08203033a2
It looks like /usr/bin/python *may* no longer exists in the latest cloud builder git image. I ran the latest image and logged into it to verify that /usr/bin/python3 does exist on 9/25, and again on 9/26 where it re-appeared. I think it is generally a good idea to not rely on it being there going forward.
65 lines
2.3 KiB
YAML
65 lines
2.3 KiB
YAML
# This will sync the configuration files in the internal repo with their
|
|
# corresponding objects in the database.
|
|
#
|
|
# To manually trigger a build on GCB, run:
|
|
# gcloud builds submit --config cloudbuild-sync-db-objects.yaml --substitutions \
|
|
# _INTERNAL_REPO_URL=[URL] ..
|
|
#
|
|
# To trigger a build automatically, follow the instructions below and add a trigger:
|
|
# https://cloud.google.com/cloud-build/docs/running-builds/automate-builds
|
|
#
|
|
# Note that the release process hardens the tags and variables in this file:
|
|
# - The 'latest' tag on docker images will be replaced by their image digests.
|
|
# - The ${_ENV} pattern will be replaced by the actual environment name.
|
|
# Please refer to ./cloudbuild-release.yaml for more details.
|
|
#
|
|
steps:
|
|
# Check out the internal repo.
|
|
- name: 'gcr.io/cloud-builders/git'
|
|
entrypoint: /bin/bash
|
|
args:
|
|
- -c
|
|
- |
|
|
set -e
|
|
git clone https://gerrit.googlesource.com/gcompute-tools
|
|
if [ ! -f /usr/bin/python ]; then
|
|
ln -s /usr/bin/python3 /usr/bin/python
|
|
fi
|
|
./gcompute-tools/git-cookie-authdaemon
|
|
git clone ${_INTERNAL_REPO_URL} nomulus-internal
|
|
# Download and decrypt the nomulus tool credential
|
|
- name: 'gcr.io/$PROJECT_ID/builder:latest'
|
|
entrypoint: /bin/bash
|
|
args:
|
|
- -c
|
|
- |
|
|
set -e
|
|
gcloud secrets versions access latest \
|
|
--secret nomulus-tool-cloudbuild-credential \
|
|
> nomulus_tool_credential.json
|
|
# Configure the TLDs using the stored configuration files in the internal repo
|
|
- name: 'gcr.io/$PROJECT_ID/db_object_updater:latest'
|
|
args:
|
|
- ${_ENV}
|
|
- ./nomulus_tool_credential.json
|
|
- configure_tld
|
|
- nomulus-internal/core/src/main/java/google/registry/config/files/tld/
|
|
# Configure the premium lists using the stored configuration files in the internal repo
|
|
- name: 'gcr.io/$PROJECT_ID/db_object_updater:latest'
|
|
args:
|
|
- ${_ENV}
|
|
- ./nomulus_tool_credential.json
|
|
- update_premium_list
|
|
- nomulus-internal/core/src/main/java/google/registry/config/files/premium/
|
|
# Configure the reserved lists using the stored configuration files in the internal repo
|
|
- name: 'gcr.io/$PROJECT_ID/db_object_updater:latest'
|
|
args:
|
|
- ${_ENV}
|
|
- ./nomulus_tool_credential.json
|
|
- update_reserved_list
|
|
- nomulus-internal/core/src/main/java/google/registry/config/files/reserved/
|
|
|
|
timeout: 7200s
|
|
options:
|
|
machineType: 'E2_HIGHCPU_32'
|