Workflow Schema
This chapter presents syntax of a workflow schema defined in stages of a branch.
Full schema syntax referenced is available in schema reference.
Overview
The workflow schema attached to a stage is defined in the Python language.
Example:
def stage(ctx):
return {
"parent": "root",
"triggers": {
"interval": "10m",
},
"parameters": [],
"flow_label": "demo-#{flow.seq.shared}",
"jobs": [{
"name": "test",
"steps": [{
"tool": "git",
"checkout": "https://github.com/frankhjung/python-helloworld.git",
"branch": "master"
}, {
"tool": "pytest",
"params": "tests/testhelloworld.py",
"cwd": "python-helloworld"
}],
"environments": [{
"system": "ubuntu-18.04",
"agents_group": "all",
"config": "default"
}]
}],
"notification": {
"slack": {"channel": "kk-results"},
"email": "[email protected]"
}
}
The workflow is defined in a stage function. Its code imperatively
defines various elements of the schema. These elements, such as
triggers or jobs, are described in
the Schema Elements section below.
What is essential from a high-level perspective is that the schema is
dynamically defined. However, ultimately, what is executed is
declarative. The stage function describes which jobs must be
executed, in which environments, the parent stage, and so on. All
of these can be dynamically described, and then the schema declaration
is remembered and executed at the appropriate time. This is in
contrast to Jenkins, where the pipeline code defined in a Jenkinsfile
is executed only when a job is executed. In Kraken, stage Python code
can be executed at any time. The result of the execution of the stage
code is a schema declaration that can be executed later. This way,
when the stage code is saved in Kraken UI, it is immediately executed,
and the generated schema is validated to ensure correctness. There is
no need to execute a job to determine if the syntax is correct. In the
case of Jenkins, the user only learns about Jenkinsfile issues during
its execution.
The stage code can be executed at any time and multiple times. It is executed as soon as it is saved and right before the schema is instantiated and run by a Kraken Agent.
Schema Elements
There are defined several things in the schema:
parentstagetriggersparametersconfigsjobsnotificationtimeout
Parent
Parent allows for defining a chain of dependencies between subsequent
stages. Current stage will be started only when parent stage has been
finished. The value of parent field is a name of a stage. If it is
set to special value root than it means that the stage does not
depend on anything and can be started as the first stage or one of the
first stages, just after triggering a new flow in a branch.
Triggers
Triggers indicate what events may start a stage and create its new
run. There are several events: parent, interval, date, cron,
repo and manual.
Whole flow and its root stages can be also triggered manually in web UI or by a webhook. More about that in Webhooks chapter.
parent
A stage is triggered by completion of a parent stage. It is defined as "parent": True.
Example:
"triggers": {
"parent": True
}
interval
Given stage is triggered specified amount of time after competion of
previous run of this stage. The duration can be specified in a human
readable way e.g. 1d what means one day or 3h 30m what means 3
hours and 30 minutes.
Example, start a new stage run every 10 minutes:
"triggers": {
"interval": "10m"
}
date
Given stage is triggered once, on specified date. The date can be
provided in human readable way, e.g.: 2012-01-19 17:21:00 or Sat Sep 17 23:26:08 CEST 2016.
Example, start a new stage run once on indicate date:
"triggers": {
"date": "2012-01-19 17:21:00"
}
cron
A stage is triggered on specified CRON rule e.g. * * 10 * *. There
are always 5 items. Each item is separated by space. The items meaning
are as follows: minutes, hours, days, months, dow (day of week). The
possible values for each item can be found on
Advanced Python Scheduler web page
Example, start a new stage run always half past nine AM:
"triggers": {
"cron": "30 9 * * *"
}
repo
Example, start a new stage run when there are new commits in master branch of Kraken's repository; check for new commits every 60 minutes.
"triggers": {
"repo": {
"url": "https://github.com/Kraken-CI/kraken/",
"branch": "master",
"interval": "60m"
}
}
Trigger build if there is a new commit to master branch in Kraken repo. Check the repo every 60 minutes.
"triggers": {
"repo": {
"repos": [{
"url": "https://github.com/Kraken-CI/kraken/",
"branch": "master"
}, {
"url": "https://github.com/Kraken-CI/website/",
"branch": "master"
}],
"interval": "60s"
"git_cfg": {
"http.proxy": "https://my-proxy.example.com:8080"
}
}
}
Trigger build if there is a new commit to master branch in any of two indicated repos. Check the repo every 60 seconds. In clone operation set indicated HTTP proxy in Git config.
There is another way of trigger a run based on changes to a repository. Check webhooks chapter for details.
manual
Stage may be configured in a way that it is not automatically started,
even if its parent has completed. This can be achieved by manual
trigger. When it is set to True then in a web UI its run is shown in
blue and awaits user confirmation to start.
Example:
"triggers": {
"manual": True
}
Parameters
When a flow is started manually it is possible to provide values for parameters defined in all stages in given branch. This allows for customizing behaviour of a stage and its jobs.
There can be defined multiple parameters in one stage. Each parameters has the following fields:
name- a string that identifies a parametertype- a type of parameter, for now it can be onlystringdefault- a default value for a parameter, it is requireddescription- a description of a parameter, it used when a parameter is presented in web UI
Default value for a parameter is required. It is used when a flow is started automatically. In that situation it is not possible to provide values for the parameters manually.
Example:
"parameters": [{
"name": "count",
"type": "string",
"default": "10",
"description": "Number of tests to generate"
}]
Then, in a job definition a parameter can be used by enclosing its
name in #{...}, e.g.: #{args.count}.
Using parameter COUNT example:
"jobs": [{
"name": "random tests",
"steps": [{
"tool": "rndtest",
"count": "#{args.count}"
}],
}]
or
"jobs": [{
"name": "random tests",
"steps": [{
"tool": "shell",
"cmd": "echo 'the count is #{args.count}'"
}],
...
}]
More about interpolating variables in string can be found in Schema Data chapter.
Configs
Not implemented yet.
Flow Label
This field allows for setting a custom label format for flows. It is displayed instead of flow database ID which is displayed by default.
Example 1:
"flow_label": "demo-#{flow.seq.shared}",
Here a value of flow.seq.shared sequence is used. It mean that each
new flow will get its incremented numer, e.g. demo-2. This
sequence is shared between CI and DEV flows so the label is uniqe for
both types of flows.
Example 2:
"flow_label": "bld-#{flow.seq.own}",
In this case a flow.seq.own sequence is used. It means that
the sequence is incremented separately for CI and for DEV flows.
More about sequences in Schema Data.
Run Label
This field allows for setting a custom label format for runs. It is displayed instead of run database ID which is displayed by default.
Example 1:
"run_label": "run.#{run.seq.own}",
In this case a run.seq.own sequence is used. It means that
the sequence is incremented separately for CI and for DEV flows for
that run, e.g.: run.42.
More about sequences in Schema Data.
Jobs
Jobs describe what should be done in a stage. A stage can define
multiple jobs and they all are run in parallel.
There are several setting fields in the job:
Name
A name of the job.
Example:
"jobs": [{
"name": "build",
...
}]
Timeout
An initial timeout of the job. It is expressed in seconds.
If there are more than 10 historical succeded jobs then timeout is estimated automatically.
Example:
"jobs": [{
"timeout": 1200,
...
}]
Timeout is set to 1200 seconds, i.e. 20 minutes.
Steps in Job
The steps field of the job defines what an agent should execute. Each step has an indicated tool that directly executes it. Steps are executed in the same order as they are defined.
Common step fields:
tool- a tool name that is executing the step; this is requiredcwd- a current working directory where the step is executed; default is'.'timeout- a timeout in seconds that limits time of step execution; it is guareded by an agent; if it is exceeded then the step is arbitrarly terminated; it is optional - default value is 60 secondsattempts- a number of times the step is retried if if it returns error; default is 1sleep_time_after_attempt- a sleep time between subsequent execution attempts; default is 0when- a condition that indicates if a step should be executed or not, more in Conditional Steps section
Example:
"jobs": [{
"steps": [{
"tool": "shell",
...
}]
}]
Conditional Steps
It is possible to skip the execution of a step. This is controlled by
the when field. The content of this field is a Jinja2
expression. The expression may refer to data that is described in Data in Schema section.
There are a predefined values provided for this field:
prev_ok- a step is executed when the previous step succeeded,always- a step is always executed,never- a step is never executed,was_any_error- a step is executed if there was an error in any of previous steps,was_no_error- a step is executed if there was no errors in all previous steps - this is the default condition,is_ci- a step is executed if this is a CI flow,is_dev- a step is executed if this is a DEV flow.
If the when field is not defined, then the default value for the
condition is was_no_error. This means that the step is executed only
if all previous steps succeeded or were skipped.
It is important to note that when the condition is just is_ci (like
in the example below), then it is run when the flow type is CI
regardless of whether the previous steps succeeded or not. If we want
to take into account the status of the previous steps, then the
condition should be: was_no_errors and is_ci.
Example 1
"jobs": [{
"steps": [{
"tool": "shell",
"when": "is_ci"
...
}]
}]
Here, the step is executed only if this is a CI flow (ie. not a DEV flow).
Example 2
"jobs": [{
"steps": [{
"tool": "shell",
"when": "job.steps[step.index - 1].result.duration > 3"
...
}]
}]
This example demonstrates a more sophisticated expression in the
when field. Here, the step object is used along with its index
field, as well as the job object. As a result, the expression checks
if the duration of the previous step was longer than 3 seconds. If it
is, then the step is executed; otherwise, it is skipped.
More examples can be found at https://github.com/Kraken-CI/workflow-examples/tree/main/conditional-steps/one.py.
Built-in Step Tools
Shell
shell is a tool that executes provided command in a shell.
Fields:
cmd- a command to executescript- or a script code to execute, this is multiline shell codeuser- this field allows for changing user e.g. toroot; by default krakenuseris usedenv- a dictionary with environment variables and their valuesbackground- if set to True then a step is run in background; the background process will be terminated at the end of whole job; default value is Falseshell_exe- an alternative path or command to shell executable, e.g.: zsh or /usr/bin/fishssh-key- a name of a secret that holds SSH username and key for ssh-agent
Examples:
Shell: Hello World
"steps": [{
"tool": "shell",
"cmd": "echo 'Hello World'"
}]
Just say 'Hello World'.
"steps": [{
"tool": "shell",
"cmd": "./run-build.sh",
"cwd": "/build",
"user": "root",
"env": {
"ARCH": "arm64"
"JOBS": "8"
},
"timeout": 1200,
"attempts": 3,
"sleep_time_after_attempt": 10
}]
Run a build script in /build folder as root user. Pass two
environment variables: ARCH and JOBS. The step should fit in 1200
seconds ie. 20 minutes. If the commands returns non zero exit code
then it is repeated up to 3 times. There is a 10 seconds sleep time
period between attempts.
"steps": [{
"tool": "shell",
"cmd": "./run-service.sh",
"background": True
}, {
"tool": "shell",
"cmd": "ps ax"
}]
run-service.sh script is run in background and then the next step is
executed. It should show a list of all processes - ./run-service.sh
should be on the list.
"steps": [{
"tool": "shell",
"script": """
echo 'ABC'
echo 'DEF'
""",
}]
Run a multiline script that contains several commands. It is stored as a script file and executed.
"steps": [{
"tool": "shell",
"cmd": "ls -al",
"shell_exe": "zsh"
}]
Here, instead of /bin/sh, zsh is used as shell executable.
More examples can be found at https://github.com/Kraken-CI/workflow-examples/tree/main/shell.
Git
git is a tool that allows for checking out a Git repository. It clones a
repository indicated by an URK in checkout field and puts it in
destination folder. It also stores Git repository bundle in Kraken
global storage for quiecker subsequent retrieval. If URL is using SSH
protocol and ssh-key field is set then it is used by ssh-agent for
passing a key during Git cloning. If access-token is provided than
it is embedded to URL in git clone instruction (see
GitLab use case).
Fields:
checkout- an URL to the repositorybranch- a branch to checkout,masteris defaultdestination- a destination folder for the repository; it is optionalssh-key- a name of a secret that holds SSH username and key for ssh-agentaccess-token- a name of a secret that contains an access token for GitLab or GitHubgit_cfg- a dictionary with Git config that is passed to -c of the clone command
Example:
"steps": [{
"tool": "git",
"checkout": "https://github.com/Kraken-CI/kraken.git",
"branch": "master"
}]
This clones https://github.com/Kraken-CI/kraken.git and checks out master branch.
"steps": [{
"tool": "git",
"checkout": "https://github.com/Kraken-CI/kraken.git",
"branch": "master",
"git_cfg": {
"http.proxy": "https://my-proxy.example.com:8080"
}
}]
More examples can be found at TODO.
Artifacts
artifacts is a tool that allows for storing and retrieving artifacts in Kraken
global storage. They can be non public so they are only
available internally in Kraken to other stages but only in the same
flow. If they are public then they are also presented in web UI and
can be downloaded by users.
Fields:
action- an action that artifacts tool should execute: eitherdownloadorupload.uploadis default actionpublic- determines if artifacts should be public and available to users in web UI (True) or if they should be only accessible internally to other stages but only in the same flow (False); default value isFalsesource- a path or list of paths that should be archived or retreived. A path can indicate a folder or a file; a path, in case of upload action, can contain globbing signs*or**; a path can be relative or absolutedestination- a path were the artifact(s) should be stored; in case of download action, if the destination folder does not exist then it is created; by default it is'.'report_entry- a destination path of one of uploaded HTML files that will be used as a report entry in Kraken Web UI, on a flow page and a run page
Example:
"steps": [{
"tool": "artifacts",
"source": "a.txt"
}]
Default action is upload so here an a.txt file will be stored in
global storage in root folder which is default.
"steps": [{
"tool": "artifacts",
"action": "download",
"source": "a.txt",
"destination": 'a/b/c"
}]
Here an a.txt file is downloaded from global storage. It is saved to
a/b/c folder. If it does not exist then it is created first.
"steps": [{
"tool": "artifacts",
"source": ["index.html", "log.html"],
"report_entry": "index.html"
}]
In this example a generated report is uploaded to Kraken's
storage. The report consists of two files: index.html and log.html.
report_entry fields indicates which files should be used as a report
entry. The report is available on a flow page and on a run page under
Reports tab.
More examples can be found at https://github.com/Kraken-CI/workflow-examples/tree/main/artifacts and https://github.com/Kraken-CI/workflow-examples/tree/main/reports.
Cache
cache is a tool that allows for caching files. It quite often
happens that during a build there are some dependencies that are
downloaded from an external source over a network. Sometime there is
lots of content to download or the network link is quite slow so in
effect downloading this content may take significant amount of time.
To speed this process it is possible to cache these files after
downloading them. In the following build these files are first
retrieved from cache and then they are updated only if needed.
So cache tool exposes two actions: save and restore. Cached files
are stored under indicted key in Kraken global storage. This key can
be statically set so the content is always the same. The key can be
also set dynamically based on some variables e.g. repository branch or
CI/DEV flow kind.
Fields:
action- an action that the tool should perform; it should be eitherstoreorrestorekey- a key under which files are stored in or restored from cachekeys- a list of key under which files are restored from cachepaths- source paths used instoreactionexpiry- not implemented yet
Example:
"steps": [{
"tool": "cache",
"action": "save",
"key": "one-key",
"paths": [
"abc"
]
}]
Store all files from abc folder in cache under one-key key.
"steps": [{
"tool": "cache",
"action": "restore",
"keys": ["one-key"]
}]
Restore all files under one-key key in cache to abc folder (the
destination folder was remembered during store action).
More examples can be found at https://github.com/Kraken-CI/workflow-examples/tree/main/cache.
Data
data is a tool that allows for storing and retrieving data in JSON
format on the server-side. The data can be attached to various
entities:
- current flow,
- current branch - separatelly for CI flows, for DEV flows and common for both types of flows,
- current project
This means that if data is stored in the current flow, then it is not accessible in the following flow. It is only available to runs and jobs in the current flow. However, if it is stored at the branch level, then it is preserved between flows. Similarly, in the case of a project, such data is available across all branches in the given project.
Fields:
-
file- a file containing data in JSON format forsetandjsonpatchoperations, and JQ expression forjqoperation. -
cwd- the current working directory where the step is executed -
value- the same data as in file field but provided directly; alternative to the file field -
operation- an operation to be performed:setsets (and also overrides) data,jqexecutes a JQ assignment expression on the server-side data,jsonpatchpatches server-side data as described on jsonpatch.com, more details available on RFC 6902;
by default it is
set -
json_pointer- a JSON pointer that indicates the data location (see RFC 6901); if the pointer is/, then the entire data is taken, if a key name is provided, then the data under this key is taken; the default value is/ -
scope- a scope of data:flow- data attached to a flow,branch-ci- data attached to a branch related to CI flows,branch-dev- data attached to a branch related to Dev flows,branch- data attached to a branch,project- data attached to a project;
flowis the default value
The stored data can be used in two ways:
- by accessing the schema context, see Schema Data chapter, Context section,
- by interpolating schema variables, see Schema Data chapter, Interpolation section.
Data Example 1
"steps": [{
"tool": "data",
"value": '{"aaa": "bbb"}'
}]
JSON data that is directly indicated in the value field will be stored on the server-side in the flow scope.
Data Example 2
"steps": [{
"tool": "data",
"file": "generated-data.json",
"operation": "set",
"json_pointer": "/generated-data",
"scope": "branch"
}]
The JSON data stored in the generated-data.json file will be saved
on the server-side within the branch scope, under the generated-data
key. Therefore, the data will be displayed as follows:
{"generated-data": <data from generated-data.json file>}.
Data Example 3
"steps": [{
"tool": "data",
"value": "'.counter += 1",
"operation": "jq",
"scope": "branch-ci"
}]
A counter that is stored in data attached to the branch CI scope will be incremented using a JQ assignment expression. During the first execution, when there is no data on the server-side, the entire path to the indicated field in the JSON data will be created and its value will be assumed to be 0. Therefore, after executing this expression for the first time, the counter will be set to 1.
Data Example 4
"steps": [{
"tool": "data",
"value": '[{"op": "add", "path": "/foo", "value": "bar"}]',
"operation": "jsonpatch",
"scope": "project"
}]
If the data attached to a project was {"aaa": "bbb"}, then after the
execution of this step, it will be updated to {"aaa": "bbb", "foo": "bar"}. The step utilizes a JSON Patch expression that adds the
specified value under the specified path.
More examples can be found on the following GitHub page: https://github.com/Kraken-CI/workflow-examples/tree/main/dynamic-schema.
Pylint
pylint is a tool that allows for static analysis of Python source
code. It wraps around Pylint.
Fields:
pylint_exe- an alternative path or command to pylint, by default this ispylintrcfile- a path to pylint rcfilemodules_or_packages- a path or paths to Python modules or packages that should be checked
Example:
"steps": [{
"tool": "pylint",
"rcfile": "pylint.rc",
"modules_or_packages": "agent/kraken/agent"
}]
Run pylint on a package located in agent/kraken/agent folder using
rcfile pylint.rc from current working directory.
"steps": [{
"tool": "pylint",
"pylint_exe": "poetry run pylint",
"rcfile": "../pylint.rc",
"modules_or_packages": "kraken/server",
"cwd": "kraken/server"
}]
Run pylint but using specific command ie. poetry run pylint on a
package located in kraken/server folder using rcfile from
../pylint.rc from indicated working directory kraken/server.
Pytest
pytest is a tool that allows for running Python tests. It wraps
around pytest. It first collects list of all
available test cases based on passed parameters, then executes them
one by one, reporting results after each test case.
Fields:
pytest_exe-an alternative path or command to pytest, by default this ispytest-3params- parameters passed directly to pytest executablepythonpath- extra paths that are used by Python to look for modules/packages that it wants to load
Example:
"steps": [{
"tool": "pytest",
"cwd": "kraken/agent"
}]
Run pytest in kraken/agent folder.
"steps": [{
"tool": "pytest",
"pytest_exe": "poetry run pytest",
"params": "-vv -m 'not db'",
"cwd": "kraken/server"
}]
Run pytest in kraken/agent folder, using specific command poetry run pytest and passing to it -vv -m 'not db' parameters.
Junit Collect
junit_collect is a tool that allows for collecting test results
stored in indicated files in the XML JUnit
format.
Fields:
file_glob- a glob pattern for searching test result files
Example:
"steps": [{
"tool": "junit_collect",
"file_glob": "**/test-results/test/*.xml"
}]
More examples can be found at https://github.com/Kraken-CI/workflow-examples/tree/main/real-projects/lucene-solr.
Go Test
gotest is a tool that allows for
running Go language tests.
Fields:
go_exe- an alternative path or command togoparams- parameters passed directly togo test
Example:
"steps": [{
"tool": "gotest",
"cwd": "hugo",
"params": "-p 1 ./..."
}]
Run Go tests in hugo folder with special parameters -p 1 ./....
More examples can be found at https://github.com/Kraken-CI/workflow-examples/tree/main/real-projects/hugo.
NgLint
nglint is a tool that allows for
running Angular ng lint, that is performing
static analysis of TypeScript in Angular projects.
It does not have specific fields.
Example:
"steps": [{
"tool": "nglint",
"cwd": "kraken/ui"
}]
Run ng lint in kraken/ui where is Angular project located.
Cloc
cloc is a tool that allows for running counting lines of code. It
wraps around cloc that can analyse
source code in multiple programming languages.
Fields:
not-match-f- the value is passed to--not-match-f=<regex>that allows for filtering out indicated filesexclude-dir- the value is passed to--exclude-dir=<D1>[,D2,]that allows for excluding indicated list of directories
Example:
"steps": [{
"tool": "cloc",
"not-match-f": "(package-lock.json|pylint.rc)",
"exclude-dir": "docker-elk",
"cwd": "kraken"
}]
Run cloc in kraken folder. Exclude docker-elk folder and filter
out indicated two files.
RndTest
rndtest is a tool that allows for generating random test case
results. It is used in Kraken to test its testing and reporting
capabilities.
Fields:
count- a number of expected test cases
Custom Tools
Beside Kraken built-in tools, it is possible to use external, your own, custom tools. They need to be written as python library with specific metadata and they need to fulfil expected protocol of execution.
More about custom tools in Tools chapter.
Environment in Job
environment define the surroundings of a job execution. Each job
has one or more environments defined.
Environment has the following fields:
agents_groupexecutorsystemconfig- not implemented yet
There can be many job instances. For each environment and for each system in environment there is an instance of the job.
Agents Groups
This is a name of agents group that should be used by scheduler for
agent selection. Selected agent from this group will be assigned to
given job and will be used to execute the job. There is a special
built-in group,'all', that gathers all agents.
Executors
This is an executor type that agent will use to execute a job. It can be one of:
'local'- an egent is executing a job directly on current host system where agent is also running'docker'- an agent is executing a job inside of dedicated, just spawned Docker container; after the execution the container is killed and removed'lxd'- an agent is executing a job inside of dedicated, just spawned LXD container; after the execution the container is stopped and removed
Default is 'local'.
Systems
This field can hold an operating system name or list of such names that are used for job execution. If this is a list then the number of job instances is multiplied by numer of systems - each instance has its system.
There is a special system name, 'any', that in case of 'local'
executor ignores system selection by jobs scheduler. In other executor
types 'any' has no special meaning.
The system name has different meaning depending on executor type.
In case of 'local' executor the system name must match with the system
reported by agent wher it is running.
In case of 'docker' executor the system name is a name of Docker
image from Docker Hub or other Docker
registry. Example name: 'ubuntu:20.04'. There are also Docker images
specially crafted for Kraken. The are hosted on Docker Hub:
https://hub.docker.com/u/krakenci. Example: 'krakenci/ubuntu:20.04'.
More about Docker executor in Docker Executor chapter.
In case of 'lxd' executor the system name is a name of LXD image
from https://images.linuxcontainers.org/. Example name:
'ubuntu/focal/amd64'. To get list of all available LXD container
names run lxc image list images: command. More about LXD executor
in LXD Executor chapter.
Examples:
"environments": [{
"agents_group": "all",
"system": "any",
"config": "default"
}]
Pick any agent and use its local host system for job execution.
"environments": [{
"agents_group": "fast",
"system": "ubuntu-18.04",
"config": "default"
}]
Pick an agent from 'fast' group that runs on 'ubuntu-18.04'
operating system.
"environments": [{
"agents_group": "all",
"executor": "docker",
"system": ["maven:3.6.3-jdk-11",
"fedora:32",
"centos:8",
"debian:buster",
"debian:bullseye",
"ubuntu:18.04",
"ubuntu:20.04",
"krakenci/bld-kraken",
"krakenci/ubuntu:20.04",
"krakenci/python:3.8",
"krakenci/maven:3.6.3-jdk-11"],
"config": "default"
}]
Create multiple jobs for each indicated system. For each job pick an
agent from 'all' group and execute the job in spawned Docker
container with indicated system image.
"environments": [{
"agents_group": "lxd",
"executor": "lxd",
"system": "centos/8/amd64",
"config": "default"
}]
Pick an agent form 'lxd' group and execute the job in spawned LXD
container with 'centos/8/amd64' system image.
More examples can be found at:
- https://github.com/Kraken-CI/workflow-examples/tree/main/systems-many-docker
- https://github.com/Kraken-CI/workflow-examples/tree/main/systems-many-lxd
- https://github.com/Kraken-CI/workflow-examples/tree/main/systems-mixed
More about agents, agent's groups and agent's management can be found in Agents chapter.
Notification
notification allows for configuring a notification means that are
used to pass an information about stage's run result. There are
several communication methods supported:
emailslackdiscordgithub
Email
It sends notifications to indicated email address. This requires
setting global configuration of SMTP server. This can be found in
Settings menu at the top, in Notifications tab.
Example:
"notification": {
"email": "[email protected]"
}
Slack
It sends notifications to indicated channel on Slack. This requires
setting global configuration of an access token to Slack service. This
can be found in Settings menu at the top, in Notifications tab.
Example:
"notification": {
"slack": {"channel": "kk-results"}
}
Discord
It sends notifications to indicated channel on Discord. This requires setting a project secret that contains a webhook generated in Discord in selected channel.
Example:
"notification": {
"discord": {"webhook": "#{secrets.discord_webhook}"}
}
GitHub
It sends notifications of stages that were triggered by a GitHub pull
request. It sets results status on PR page on GitHub. This requires
setting a configuration on a project page in Web Hooks tab. There
should be enabled GitHub section and then copied the values or URL and
secret and pasted on GitHub project page, in Settings tab, Webhooks
subtab.
GitHub notification section requires setting one field, credentials.
The credentials are in form <user>:<password> e.g.: john:1q2w3e4r.
To make it safe credentials should be stored and taken from project's
secrets. More about secrets in Secrets chapter. GitHub
credentials can be prepared on your account developer settings page in
GitHub (https://github.com/settings/tokens), in Personal access token
subtab.
More about GitHub integration can be found in Webhooks chapter.
Example:
"notification": {
"github": {"credentials": "#{secrets.gh_status_creds}"}
}
It is also possible to enable all notification means together:
"notification": {
"slack": {"channel": "kk-results"},
"email": "[email protected]",
"github": {"credentials": "#{secrets.gh_status_creds}"}
}