Jenkinsfile

pipeline {
  agent {
    kubernetes {
      label 'birenchong-java-gateway'
      yaml '''apiVersion: v1
kind: Pod
spec:
  containers:
  - name: maven
    image: maven:3.6.3-openjdk-17
    command: [\'cat\']
    tty: true
    volumeMounts:
    - mountPath: "/usr/share/maven/conf/settings.xml"
      name: "config-volume"
      subPath: "settings.xml"
    - mountPath: "/root/.sonar/cache"
      name: "data-volume"
      subPath: "java/.sonar/cache"
      readOnly: false
    - mountPath: "/root/.m2"
      name: "data-volume"
      subPath: "java/.m2/caches"
      readOnly: false
    - mountPath: "/var/run/docker.sock"
      name: "volume-0"
      readOnly: false
    - mountPath: "/home/jenkins/agent"
      name: "workspace-volume"
      readOnly: false
  - name: "base"
    image: "kubesphere/builder-base:v3.2.0"
    command: [\'cat\']
    tty: true
    volumeMounts:
    - mountPath: "/home/jenkins/aws"
      name: "aws-data-volume"
      readOnly: false
    - mountPath: "/home/jenkins/send_dingding.sh"
      name: "dingding-script-volume"
      subPath: "send_dingding.sh"
    - mountPath: "/root/.aws/config"
      name: "eks-config-volume"
      subPath: "config"
    - mountPath: "/root/.aws/credentials"
      name: "eks-config-volume"
      subPath: "credentials"
    - mountPath: "/var/run/docker.sock"
      name: "volume-0"
      readOnly: false
    - mountPath: "/home/jenkins/agent"
      name: "workspace-volume"
      readOnly: false
  nodeSelector:
    env: devops
  volumes:
  - name: "aws-data-volume"
    persistentVolumeClaim:
      claimName: "birenchong-aws-data-pvc"
  - name: "data-volume"
    persistentVolumeClaim:
      claimName: "birenchong-java-data-pvc"
  - hostPath:
      path: "/var/run/docker.sock"
    name: "volume-0"
  - emptyDir:
      medium: ""
    name: "workspace-volume"
  - configMap:
      items:
      - key: "MavenSetting.xml"
        path: "settings.xml"
      name: "birenchong-maven-setting"
    name: "config-volume"
  - configMap:
      items:
      - key: "aws-config"
        path: "config"
      - key: "aws-credentials"
        path: "credentials"
      name: "birenchong-eks-config"
    name: "eks-config-volume"
  - configMap:
      items:
      - key: "send_dingding.sh"
        path: "send_dingding.sh"
      name: "birenchong-jenkins-dingding-script"
    name: "dingding-script-volume"
'''
    }

  }
  stages {

    stage('构建') {
      agent none
      steps {
        container('maven') {
          sh 'mvn clean package -DskipTests'
        }

      }
    }

    stage('构建docker镜像并推送') {
      agent none
      steps {
        container('base') {
          sh 'docker build -f Dockerfile -t $REGISTRY/$DOCKERHUB_NAMESPACE/$APP_NAME:SNAPSHOT-$BRANCH_NAME-$BUILD_NUMBER .'
          withCredentials([usernamePassword(credentialsId : env.DOCKER_CREDENTIAL_ID ,passwordVariable : 'DOCKER_PASSWORD' ,usernameVariable : 'DOCKER_USERNAME' ,)]) {
            sh 'echo "$DOCKER_PASSWORD" | docker login $REGISTRY -u "$DOCKER_USERNAME" --password-stdin'
            sh 'docker push  $REGISTRY/$DOCKERHUB_NAMESPACE/$APP_NAME:SNAPSHOT-$BRANCH_NAME-$BUILD_NUMBER'
            sh 'docker rmi  $REGISTRY/$DOCKERHUB_NAMESPACE/$APP_NAME:SNAPSHOT-$BRANCH_NAME-$BUILD_NUMBER'
          }

        }

      }
    }

    stage('配置aws和k8s凭证') {
      agent none
      steps {
        container('base') {
          sh 'cp /home/jenkins/aws/awscliv2.zip .'
          sh 'unzip awscliv2.zip'
          sh './aws/install'
          sh 'aws eks update-kubeconfig --region eu-central-1 --name birenchong-k8s-cluster'
        }

      }
    }

    stage('部署到测试环境') {
      agent none
      when {
        branch 'dev'
      }
      steps {
        container('base') {
          sh 'envsubst < deploy/dev-ol/deployment.yaml | kubectl apply -f -'
        }

      }
    }

    stage('部署到预发布环境') {
      agent none
      when {
        branch 'grey'
      }
      steps {
        container('base') {
          sh 'envsubst < deploy/grey-ol/deployment.yaml | kubectl apply -f -'
        }

      }
    }

    stage('default-6') {
      parallel {
        stage('部署到生产环境') {
          agent none
          when {
            branch 'master'
          }
          steps {
            input(message: '部署到生产环境? ', submitter: 'birenchong')
            container('base') {
              sh 'envsubst < deploy/prod-ol/deployment.yaml | kubectl apply -f -'
            }

          }
        }

        stage('发送到钉钉审核') {
          agent none
          when {
            branch 'master'
          }
          steps {
            container('base') {
              sh 'bash /home/jenkins/send_dingding.sh "构建审核"'
            }
          }
        }

      }
    }

  }
  environment {
    DOCKER_CREDENTIAL_ID = 'harbor-devops-id'
    REGISTRY = 'harbor.birenchong.cn'
    DOCKERHUB_NAMESPACE = 'birenchong'
    APP_NAME = 'birenchong-java-gateway'
  }
  post {
    success {
      container('base') {
        sh 'bash /home/jenkins/send_dingding.sh "构建成功"'
      }
    }

    failure {
      container('base') {
        sh 'bash /home/jenkins/send_dingding.sh "构建失败"'
      }
    }

    aborted {
      container('base') {
        sh 'bash /home/jenkins/send_dingding.sh "取消构建"'
      }
    }
  }

}

将通过deployment.yaml文件部署改为只修改image

sh 'kubectl set image deployment/birenchong-test-java-gateway-v1 -n birenchong-test birenchong-java-gateway=$REGISTRY/$DOCKERHUB_NAMESPACE/$APP_NAME:SNAPSHOT-$BRANCH_NAME-$BUILD_NUMBER'

Dockerfile

FROM openjdk:17-jdk
LABEL maintainer=birenchong

ENV TZ=Asia/Shanghai
ENV JAVA_OPTS=-Djava.security.egd=file:/dev/./urandom

COPY target/*.jar /var/www/java/web/birenchong-gateway.jar

EXPOSE 18080


ENTRYPOINT ["/bin/sh","-c","java -XX:+UseZGC -Xmx3072m -XX:+HeapDumpOnOutOfMemoryError -XX:HeapDumpPath=/var/www/java/gc.hprof -jar /var/www/java/web/birenchong-gateway.jar --spring.config.location=/var/www/java/web/application.yml"]

deployment.yaml

kind: Deployment
apiVersion: apps/v1
metadata:
  name: birenchong-test-java-gateway-v1
  namespace: birenchong-test
  labels:
    app: birenchong-test-java-gateway
    version: v1
  annotations:
    kubesphere.io/creator: admin
spec:
  selector:
    matchLabels:
      app: birenchong-test-java-gateway
      version: v1
  template:
    metadata:
      creationTimestamp: null
      labels:
        app: birenchong-test-java-gateway
        version: v1
      annotations:
        logging.kubesphere.io/logsidecar-config: '{}'
    spec:
      volumes:
        - name: volume-y0tu48
          configMap:
            name: birenchong-test-java-conf
            items:
              - key: birenchong-gateway-application
                path: application.yml
            defaultMode: 420
      containers:
        - name: birenchong-java-gateway
          image: $REGISTRY/$DOCKERHUB_NAMESPACE/$APP_NAME:SNAPSHOT-$BRANCH_NAME-$BUILD_NUMBER
          ports:
            - name: tcp-18080
              containerPort: 18080
              protocol: TCP
          resources:
            limits:
              cpu: 750m
              memory: 3Gi
            requests:
              cpu: 500m
              memory: 2Gi
          volumeMounts:
            - name: volume-y0tu48
              readOnly: true
              mountPath: /var/www/java/web/application.yml
              subPath: application.yml
          lifecycle:
            preStop:
              exec:
                command:
                  - /bin/bash
                  - '-c'
                  - sleep 30
          terminationMessagePath: /dev/termination-log
          terminationMessagePolicy: File
          imagePullPolicy: IfNotPresent
      restartPolicy: Always
      terminationGracePeriodSeconds: 35
      dnsPolicy: ClusterFirst
      nodeSelector:
        env: test
      serviceAccountName: default
      serviceAccount: default
      securityContext: {}
      imagePullSecrets:
        - name: harbor-devops
      schedulerName: default-scheduler
  strategy:
    type: RollingUpdate
    rollingUpdate:
      maxUnavailable: 25%
      maxSurge: 25%
  revisionHistoryLimit: 10
  progressDeadlineSeconds: 600