Try   HackMD

Integrate SonarQube and GitLab CI via Docker

在開始這篇文章前,你 可能 需要有基本的 Linux 跟 Docker 基礎,才比較好嚼

Install Linux Ubuntu 20.4

已經有很詳細的中文文章,我就不花時間廢話了,點我

註:建議 Memory 給到 16G UP

Install Docker

官方的教學淺顯易懂,點我
下面是擷取官方的重點

Set up the repository

  1. Update the apt package index and install packages to allow apt to use a repository over HTTPS:






sudo apt-get update
sudo apt-get install \
    ca-certificates \
    curl \
    gnupg \
    lsb-release
  1. Add Docker’s official GPG key:
curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo gpg --dearmor -o /usr/share/keyrings/docker-archive-keyring.gpg
  1. Use the following command to set up the stable repository. To add the nightly or test repository, add the word nightly or test (or both) after the word stable in the commands below. Learn about nightly and test channels.



echo \
"deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/docker-archive-keyring.gpg] https://download.docker.com/linux/ubuntu \
$(lsb_release -cs) stable" | sudo tee /etc/apt/sources.list.d/docker.list > /dev/null

Install Docker Engine

Update the apt package index, and install the latest version of Docker Engine and containerd, or go to the next step to install a specific version:



sudo apt-get update
sudo apt-get install docker-ce docker-ce-cli containerd.io

Install PostgreSQL

這邊先啟動 SonarQube 要使用的 External DB

使用 Embedded DB 會有諸多限制,單純實驗用

很簡單,就照著官方 Docker Image 文件操作即可,如果你有特別的需求也是可以抓 Dockerfile 來自己產 Image






docker run --name postgres --restart always \
    -e POSTGRES_USER=sonar \
    -e POSTGRES_PASSWORD=sonar \
    -v postgresql_data:/var/lib/postgresql/data \
    -d postgres:latest

Install SonarQube

這時候你的 DB 應該已經順利啟動

docker ps

Image Not Showing Possible Reasons
  • The image file may be corrupted
  • The server hosting the image is unavailable
  • The image path is incorrect
  • The image format is not supported
Learn More →

再來起 SonarQube 服務,第一次啟動會花不少時間在 DB 建表
有額外的插件(jar) 就丟進 sonarqube_extensions 裡,SonarQube 啟動會自動安裝
因為 Community-Edition 沒有提供 Branch 功能,所以這裡我會丟免付費版本的 Branch 套件: sonarqube-community-branch-plugin.jar









docker run --name sonarqube --restart always \
    -e SONAR_JDBC_URL=jdbc:postgresql://postgres:5432/sonar \
    -e SONAR_JDBC_USERNAME=sonar \
    -e SONAR_JDBC_PASSWORD=sonar \
    -v sonarqube_data:/opt/sonarqube/data \
    -v sonarqube_extensions:/opt/sonarqube/extensions \
    -v sonarqube_logs:/opt/sonarqube/logs \
    -d sonarqube:latest

Install GitLab Runner

如果你的 GitLab 已經有可以使用的 Runner,那你可以跳過這個步驟
官方文件在 這裡





docker run --name gitlab-runner --restart always \
    -v /srv/gitlab-runner/config:/etc/gitlab-runner \
    -v /var/run/docker.sock:/var/run/docker.sock \
    -d gitlab/gitlab-runner:latest

Register Runner

  1. Run the register command based on the mount type:




docker run --rm \ 
    -v /srv/gitlab-runner/config:/etc/gitlab-runner \
    -it gitlab/gitlab-runner \
    register
  1. Enter your GitLab instance URL (also known as the gitlab-ci coordinator URL).
https://your-gitlab-location/

Image Not Showing Possible Reasons
  • The image file may be corrupted
  • The server hosting the image is unavailable
  • The image path is incorrect
  • The image format is not supported
Learn More →

  1. Enter the token you obtained to register the runner.
your-registration-token

Image Not Showing Possible Reasons
  • The image file may be corrupted
  • The server hosting the image is unavailable
  • The image path is incorrect
  • The image format is not supported
Learn More →

  1. Enter a description for the runner. You can change this value later in the GitLab user interface.
your-description // e.g. SonarQube
  1. Enter the tags associated with the runner, separated by commas. You can change this value later in the GitLab user interface.
your-tages // e.g. Docker,SonarQube
  1. Provide the runner executor. For most use cases, enter docker.
docker
  1. If you entered docker as your executor, you’ll be asked for the default image to be used for projects that do not define one in .gitlab-ci.yml.
sonarqube:latest

Import Projects from GitLab

按照 文件 一步一步來,應該沒啥問題

你可以跳過這個步驟,直接設定單個 GitLab Project,只是我認為大量匯入,之後會比較方便

Set up a Project

終於到了建立 SonarQube 分析專案的步驟了
前面我們建立了 GitLab Runner 並且註冊 GitLab Project 都是為了讓 GitLab CI 運作

這裡選 GitLab CI 去執行分析工作

Image Not Showing Possible Reasons
  • The image file may be corrupted
  • The server hosting the image is unavailable
  • The image path is incorrect
  • The image format is not supported
Learn More →

接下來 SonarQube 會按步驟幫助你建立 SonarQube 跟 GitLab CI 的關係

sonar-project.properties

排除多個指定資料夾

sonar.exclusions=bin/**,template/**

.gitlab-ci.yml

如果需要在 branch 使用, 要移除 only 區塊

Analysis Reports

報告的規則、問題解決流程、分析數據,官方 都有一一解釋

docker-compose

分別起 container 實在太麻煩,你可以直接用 docker-compose 一次啟動這些服務

Install docker-compose

官方安裝手冊

sudo curl -L "https://github.com/docker/compose/releases/download/1.29.2/docker-compose-$(uname -s)-$(uname -m)" -o /usr/local/bin/docker-compose

sudo chmod +x /usr/local/bin/docker-compose

create docker-compose

GitLab Runner 相對比較獨立,於是沒放進 docker-compose
預期他會在其他地方,如:GKE, K8S



































version: "3.7"

services:
  sonarqube:
    image: sonarqube:latest
    container_name: sonarqube
    depends_on:
      - db
    environment:
      SONAR_JDBC_URL: jdbc:postgresql://db:5432/sonar
      SONAR_JDBC_USERNAME: sonar
      SONAR_JDBC_PASSWORD: sonar
    volumes:
      - sonarqube_data:/opt/sonarqube/data
      - sonarqube_extensions:/opt/sonarqube/extensions
      - sonarqube_logs:/opt/sonarqube/logs
    ports:
      - "9000:9000"
  db:
    image: postgres:latest
    container_name: db
    environment:
      POSTGRES_USER: sonar
      POSTGRES_PASSWORD: sonar
    volumes:
      - postgresql:/var/lib/postgresql
      - postgresql_data:/var/lib/postgresql/data

volumes:
  sonarqube_data:
  sonarqube_extensions:
  sonarqube_logs:
  postgresql:
  postgresql_data:

run docker-compose

docker-compose up -d
tags: SonarQube Docker Linux GitLab
Last changed by 
Knowhow-dm2
dm2 frontend
0
746

Read more

Cocos Creator & PixiJS Comparison

pixi彈性化較大, 較能適應系統面彈性需求(直橫版, 風格換皮之類)cocos 暫無概念, 保守看待(可能需要拆分多專案處理)

Apr 25, 2024
TypeScript Coding Style

一律標上,但即便是 public(default)也要標上

Feb 20, 2024
新手村

人資系統 NuEIP 點我前往 <font color = #FF0000>上下班打卡</font>、行政通知、公司組織圖等等 通訊軟體 Mattermost 官網下載 公司通訊軟體 開發軟體 TortoiseSVN 官網下載

Nov 8, 2023
ES6 circular dependency

快速檢查 circular dependency 透過 madge 套件 列出文字版內容只列出透過相對路徑 import 的 module (src 可替換成其他路徑或指定檔案)npx madge src --extensions ts 只列出循環依賴的項目--circular 讀取 tsconfig (可解析 alias)--ts-config ./tsconfig.json 將循環依賴關係圖像化(輸出 svg 或 dot)

Mar 21, 2023
Read more from Knowhow-dm2
Published on HackMD