em-annotation-api/Jenkinsfile_nightly at master · hmcts/em-annotation-api · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
#!groovy

properties([
        [
                $class: 'GithubProjectProperty',
                displayName: 'Evidence Management Store App',
                projectUrlStr: 'https://github.com/hmcts/em-annotation-app'
        ],
        pipelineTriggers([cron('H 8 * * 1-5')]), // scheduling to trigger jenkins job.
        parameters([
                string(name: 'SecurityRules',
                        defaultValue: 'http://raw.githubusercontent.com/hmcts/security-test-rules/master/conf/security-rules.conf',
                        description: 'The URL you want to run these tests against'),
        ])
])

@Library("Infrastructure")
import java.util.UUID

def type = "java"
def product = "em"
def component = "anno"

def secrets = [
        's2s-${env}': [
                secret('microservicekey-em-gw', 'FUNCTIONAL_TEST_CLIENT_S2S_TOKEN'),
                secret('microservicekey-ccd-gw', 'FUNCTIONAL_TEST_CCD_GW_SERVICE_SECRET'),
                secret('microservicekey-xui-webapp', 'FUNCTIONAL_TEST_XUI_WEBAPP_SERVICE_SECRET')
        ],
        'rpa-${env}': [
                secret('show-oauth2-token', 'FUNCTIONAL_TEST_CLIENT_OAUTH_SECRET')
        ]
]

static LinkedHashMap<String, Object> secret(String secretName, String envVar) {
    [ $class: 'AzureKeyVaultSecret',
      secretType: 'Secret',
      name: secretName,
      version: '',
      envVariable: envVar
    ]
}

def vaultOverrides = [
        'preview' : 'aat',
        'spreview': 'saat'
]

withNightlyPipeline(type, product, component) {
    // Vars for Kubernetes
    env.IDAM_API_BASE_URI = 'https://idam-api.aat.platform.hmcts.net'
    env.OPEN_ID_API_BASE_URI = 'https://idam-web-public.aat.platform.hmcts.net/o'
    env.OIDC_ISSUER_BASE_URI = 'https://forgerock-am.service.core-compute-idam-aat.internal:8443/openam/oauth2/hmcts'
    env.S2S_BASE_URI = 'http://rpe-service-auth-provider-aat.service.core-compute-aat.internal'
    env.IDAM_WEBSHOW_WHITELIST = 'https://em-show-aat.service.core-compute-aat.internal/oauth2/callback'
    env.DM_STORE_APP_URL = 'http://dm-store-aat.service.core-compute-aat.internal'
    env.CCD_DATA_API_URL = 'http://ccd-data-store-api-aat.service.core-compute-aat.internal'

    env.TEST_URL = "http://em-anno-aat.service.core-compute-aat.internal"
    env.TEST_USER_PASSWORD = 'S!' + UUID.randomUUID().toString().replace('-', '').take(20)

    overrideVaultEnvironments(vaultOverrides)
    loadVaultSecrets(secrets)
    enableMutationTest()
    enableFortifyScan('em-anno-aat')
    enableFullFunctionalTest()
    enableSecurityScan()
    enableSlackNotifications('#em-dev-chat')
  afterAlways('fortify-scan') {
        steps.archiveArtifacts allowEmptyArchive: true, artifacts: '**/Fortify Scan/**/*'
    }
}