shipitron
A deployment tool for use with Docker and ECS
Usage
Example config file:
applications:
dummy-app:
repository: [email protected]:outstand/dummy-app
cache_bucket: bucket
build_cache_location: tmp/build-cache.tar.gz
image_name: outstand/dummy-app
build_script: shipitron/build.sh
post_builds:
- ecs_task: dummy-app
container_name: dummy-app
command: echo postbuild
cluster_discovery: _ecs-prod._tcp.example.com
shipitron_task: shipitron
ecs_task_defs:
- dummy-app
ecs_services:
- dummy-app
- Create shipitron.yml file
- Add needed ssh known hosts to
shipitron/<app name>/git_host_key
in consul k/v - Add git ssh deploy key to
shipitron/<app name>/git_deploy_key
in consul k/v - Add docker auth config (
~/.docker/config.json
afterdocker login
) toshipitron/<app name>/docker_auth
in consul k/v - Add deploy ref key to
shipitron/<app name>/deploy_ref_key
docker run -it --rm -v shipitron.yml:/shipitron/config/shipitron.yml outstand/shipitron:<version> deploy <app>
New shipitron config file keys:
registry (specifies an alternate docker registry):
--- applications: foobar: registry: 12345.dkr.ecr.us-east-1.amazonaws.com
skip_push (shipitron will skip pushing the docker images; use if the build script takes care of this):
--- applications: foobar: skip_push: true
Additionally, the build script will receive the named tag in use as
$2
.
Containerized tool support
Shipitron now supports starting other containers as part of the build process. We're using this to use the aws cli to transfer files to/from s3. Shipitron's task definition needs to have a task scoped docker volume added with the name shipitron-home
. This volume will be mounted at /home/shipitron
and should be shared with any new containers:
shipitron_home_volume = FindDockerVolumeName.call!(
container_name: 'shipitron',
volume_search: /shipitron-home/
).volume_name
docker run ... -v #{shipitron_home_volume}:/home/shipitron ...
This allows the containers to share data with each other. ECS will automatically clean up the task scoped container.
If a containerized tool requires access to AWS resources, be sure to pass the AWS_CONTAINER_CREDENTIALS_RELATIVE_URI
to it so it can inherit any task roles.
Development
./build_dev.sh
dev run --rm shipitron_specs
to run specs- Set the application path in the volumes section in
docker-compose.yml
. dev run --rm shipitron deploy <app>
to run client sidedev run --rm shipitron deploy <app> --simulate
to get the arguments forserver_deploy
belowdev run --rm -v /bin/docker:/bin/docker -v /var/run/docker.sock:/var/run/docker.sock shipitron server_deploy --name dummy-app --repository [email protected]:outstand/dummy-app --bucket outstand-shipitron --image-name outstand/dummy-app --region us-east-1 --cluster-name us-east-1-prod-blue --ecs-task-defs dummy-app --ecs-services dummy-app --build-script shipitron/build.sh --post-builds 'ecs_task:dummy-app,container_name:dummy-app,command:echo postbuild' --ecs-task-def-templates LS0tCmZhbWlseTogZHVtbXktYXBwCmNvbnRhaW5lcl9kZWZpbml0aW9uczoKICAtIG5hbWU6IGR1bW15LWFwcAogICAgaW1hZ2U6IG91dHN0YW5kL2R1bW15LWFwcDp7e3RhZ319CiAgICBtZW1vcnk6IDEyOAogICAgZXNzZW50aWFsOiB0cnVlCiAgICBwb3J0X21hcHBpbmdzOgogICAgICAtIGNvbnRhaW5lcl9wb3J0OiA4MAogICAgZW52aXJvbm1lbnQ6CiAgICAgIC0gbmFtZTogU0VSVklDRV84MF9OQU1FCiAgICAgICAgdmFsdWU6IGR1bW15Cg== --ecs-service-templates LS0tCmNsdXN0ZXI6IHt7Y2x1c3Rlcn19CnNlcnZpY2VfbmFtZTogZHVtbXktYXBwCnRhc2tfZGVmaW5pdGlvbjogZHVtbXktYXBwe3tyZXZpc2lvbn19CmRlc2lyZWRfY291bnQ6IHt7Y291bnR9fQojcm9sZToge3tyb2xlfX0KZGVwbG95bWVudF9jb25maWd1cmF0aW9uOgogIG1heGltdW1fcGVyY2VudDogMjAwCiAgbWluaW11bV9oZWFsdGh5X3BlcmNlbnQ6IDUwCg== --debug
to run server side (dummy-app is an example)
Running a dev version in production:
- Update
Shipitron::Client::STARTED_BY
docker push outstand/shipitron:dev
- Update config to use
shipitron_task: shipitron-dev
dev run --rm shipitron deploy <app> --debug
To release a new version:
- Update the version number in
version.rb
andDockerfile.release
and commit the result. ./build_dev.sh
docker run -it --rm -v ~/.gitconfig:/root/.gitconfig -v ~/.gitconfig.user:/root/.gitconfig.user -v ~/.ssh/id_rsa:/root/.ssh/id_rsa -v ~/.gem:/root/.gem -w /shipitron outstand/shipitron:dev rake release
VERSION=<version>
docker build -t outstand/shipitron:$VERSION -f Dockerfile.release .
docker push outstand/shipitron:$VERSION
docker tag outstand/shipitron:$VERSION outstand/shipitron:latest
docker push outstand/shipitron:latest
- Update ECS task definition with new version