安装
新增 jenkins 的 yum 源
wget -O /etc/yum.repos.d/jenkins.repo http://pkg.jenkins-ci.org/redhat/jenkins.repo rpm --import http://pkg.jenkins-ci.org/redhat/jenkins-ci.org.key安装
yum list "*jenkins*" # 查找可安装的jenkins版本 yum install jenkins # 安装按照规约修改jenkins的安装目录、存储目录
mkdir /data/software/jenkins/ chown -R jenkins:jenkins /data/software/jenkins/ mkdir /data/store/jenkins/ mv /usr/lib/jenkins/jenkins.war /data/software/jenkins/ usermod -m -d /data/store/jenkins jenkins # 修改jenkins用户的主目录为 /data/store/jenkins修改配置
vi /etc/sysconfig/jenkins修改以下变量:
JENKINS_HOME="/data/store/jenkins" # 即jenkins用户的主目录 JENKINS_PORT="20020" JENKINS_AJP_PORT="20022"修改 init.d 脚本
vi /etc/init.d/jenkins修改内容如下:
. /etc/profile.d/xxx.sh candidates=" $JAVA_HOME/bin/java ... " JENKINS_WAR="/data/software/jenkins/jenkins.war"启动
systemctl daemon-reload sudo /etc/init.d/jenkins restart systemctl restart jenkins.service
nginx 反向代理配置示例
upstream jenkins {
server 192.168.115.80:8080;
}
server {
listen *:80;
server_name ci.test.me;
server_tokens off;
root /notExisted;
client_max_body_size 20m;
ignore_invalid_headers off; # 否则会 : 405 not a valid crumb was include in the request
access_log /var/log/nginx/jenkins_access.log;
error_log /var/log/nginx/jenkins_error.log;
location / {
proxy_pass http://jenkins;
proxy_set_header Host $host; # ??? $http_host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
}
}
405 not a valid crumb was include in the request
常用插件
- Ant Plugin
- Credentials Plugin
- CVS Plugin
- External Monitor Job Type Plugin
- Javadoc Plugin
Parameterized Trigger plugin
可以使一个job在运行前或运行后调用另外一个job。示例:
# job1. 更新SVN
# job2. 打包并使用SSH部署:
mvn -f ../../job1/workspace/pom.xml clean package
# job3. 运行sonar:
mvn -f ../../job1/workspace/pom.xml \
-Dsonar.jdbc.username=xxx \
-Dsonar.jdbc.password=xxx \
clean \
compile \
sonar:sonar
# job4. 发布快照:
mvn -f ../../job1/workspace/pom.xml \
-Dmaven.test.skip=true \
-am \
--projects subModule1/subModule11,submodel2 \
clean \
deploy
- Jenkins Subversion Plug-in
- Jenkins Translation Assistance plugin
- LDAP Plugin Jenkins 1.480 之后就包含在发布版本中了。下面示例如何使用使用域账户登录
1. Jenkins LDAP全局配置
Jenkins -> Manage Jenkins -> Configure Global Security :
* 选中“Enable security”
* Access Control/Security Realm 部分,选择:"LDAP":
Server : ldap://10.1.10.2:389
root DN : DC=TCGROUP,DC=LOCAL
User search filter : mail={0}
Manager DN : 域管理员的@eetop.com电子邮箱地址
Manager Password : 域管理员的域账户密码
(其他字段留空即可)
* Access Control/Authorization 部分
选择 “Project-base Matrix Authorization Strategy”
在下面就可以为所有project设置默认账户的权限了。(账户名就是 [email protected])
2. Jenkins单个project/job的权限控制
Jenkins -> 点击单个job名 -> 点击左侧 "Configure" -> 右侧最上面,
选中“Enable project-based security”。之后就可以设置权限控制的矩阵表了。
(账户名就是 [email protected])
- Mailer
- Maven Project Plugin
- PAM Authentication Plugin
- Publish Over SSH
- SSH Credentials Plugin
- Multiple SCMs Plugin
- Grails Plugin
升级
RPM可以不用重装的。查看 /etc/init.d/jenkins 可以找到war包的路径。下载新的war包替换即可。
参考 : 线上环境Servlet应用目录结构总结