I got a small pull request on kubernetes elastic agent plugin gocd/kubernetes-elastic-agents#163 , please let me know if this is a dullicate
*duplicate
Hi @arvindsv @ketan Could you please let me know why this error is coming? I only have configured k8s profile and nothing else, we don't have this error with
GoCD Version: 19.7.0 (9567-727ea9db824eb6971170ac2a886ff1072ff5a235) but recently upgraded to v19.12.0jvm 1 | 2019-12-30 01:14:42,792 ERROR [qtp2013268532-38] VariableReplacer:385 - function ${escape:} type 'escape:' not a valid type
jvm 1 | 2019-12-30 01:14:52,808 ERROR [qtp2013268532-36] VariableReplacer:385 - function ${escape:} type 'escape:' not a valid type
jvm 1 | 2019-12-30 01:15:02,840 ERROR [qtp2013268532-42] VariableReplacer:385 - function ${escape:} type 'escape:' not a valid type
jvm 1 | 2019-12-30 01:15:12,872 ERROR [qtp2013268532-29] VariableReplacer:385 - function ${escape:} type 'escape:' not a valid type
jvm 1 | 2019-12-30 01:15:22,908 ERROR [qtp2013268532-28] VariableReplacer:385 - function ${escape:} type 'escape:' not a valid type
jvm 1 | 2019-12-30 01:15:32,920 ERROR [qtp2013268532-23] VariableReplacer:385 - function ${escape:} type 'escape:' not a valid type
jvm 1 | 2019-12-30 01:15:36,762 INFO [164@MessageListener for ServerPingListener] p.c.g.c.e.k.c.g.c.e.KubernetesPlugin:72 [plugin-cd.go.contrib.elasticagent.kubernetes] - [refresh-pod-state] Pod information successfully synced. All(Running/Pending) pod count is 0.
jvm 1 | 2019-12-30 01:15:42,954 ERROR [qtp2013268532-28] VariableReplacer:385 - function ${escape:} type 'escape:' not a valid type
jvm 1 | 2019-12-30 01:15:52,969 ERROR [qtp2013268532-31] VariableReplacer:385 - function ${escape:} type 'escape:' not a valid type
Hi! Some time ago I developed an elastic agent plugin for AWS EC2. Now I updated it to support latest versions of GoCD and published it on GitHub. It may be useful for some of you https://github.com/continuumsecurity/GoCD-EC2-Elastic-Agent-Plugin
@v-sky -- Many Thanks!
Can you help us list the plugin on GoCD plugins page: https://www.gocd.org/plugins/#elastic-agents
You will need to send a PR to https://github.com/gocd/www.go.cd to list the plugin. (Similar to https://github.com/gocd/www.go.cd/pull/913/files)
Can you help us list the plugin on GoCD plugins page: https://www.gocd.org/plugins/#elastic-agents
You will need to send a PR to https://github.com/gocd/www.go.cd to list the plugin. (Similar to https://github.com/gocd/www.go.cd/pull/913/files)
HI,
We were using password-file based authentication for gocd, now we have changed authentication method to google-auth by using external google-authentiaction plugin. Before installing google-authentication plugin w have deleted password-file authentication configuration from gocd. Now we are able to authenticate through google account but unable to get admin access to gocd. Then we tried to uninstall google-authentication plugin to enter gocd without any authentication but gocd is giving one landing page from where we cant enter to the dashboard itself.
Can anyone please help for this. Our production system is relay on this.
Hi all, with regards gocd helm chart preconfigure script, gocd-server docker image now runs on go(non-root) user since 19.6, our preconfigure script includes installing of additional packages that requires root privileges, anybody encountered or has similar use case and what are your workaround? This can easily solved by maintaining and building our own gocd image but we wanna use the official image on docker hub as much as possible.
Hi @japzio -- You can read more about Running Dockerized GoCD Containers as Non Root at: https://www.gocd.org/2019/06/25/GoCD-non-root-containers.html. It is recommended that package installation should be done as part of Dockerfile and not via preconfigure script.
One easy workaround I can think of is to run the GoCD server pod as root user (0), this can be by setting server.securityContext.runAsUser property to 0 (as documented https://github.com/helm/charts/tree/master/stable/gocd)
@japzio about your 2 materials question - I whitelist a non existant file to the same avail as blacklist */. https://github.com/openSUSE/openSUSE-release-tools/blob/master/gocd/sle15sp2-stagings.gocd.yaml#L115
HI all, I'm seeing
Value '111' of attribute 'schemaVersion' of element 'cruise' is not valid with respect to the corresponding attribute use. Attribute 'schemaVersion' has a fixed value of '134'. when attempting to apply a cruise-config from v18.7.0 to v19.12.0 GoCD. There doesn't seem to be an easy way to upgrade this? Thanks!!
hi all, with regards to gocd helm chart, is there a risk or consequence if we don't set securityContext.fsGroup or it shouldn't be set by default for gocd-server pod?
cc @GaneshSPatil
Hi @japzio,
When the
The owners of the files created inside the container volume are in the specified group.
In the context of Helm Charts and official GoCD Docker images, we do not rely upon the
Hence it's safe to assume that not specifying
When the
fsGroup field is specified, all processes of the container are also part of the specified fsGroup (Note its a supplementary group).The owners of the files created inside the container volume are in the specified group.
In the context of Helm Charts and official GoCD Docker images, we do not rely upon the
runAsGroup or fsGroup for any file system permissions.Hence it's safe to assume that not specifying
securityContext.fsGroup should not have any consequences.
@japzio what's the reason for making it conditional? I've been meaning to do a similar change but haven't had the time to do so. Our use case is that we have a separate pv for our artifacts (which has a lot of files) and when setting fsGroup kube will need to go through each file on the volume and set the correct permissions (which is very slow due to the large number of files).
Hi all, I used to have a script that worked fine in GoCD v18.7.0
<exec command="/bin/bash">
<arg>-c</arg>
<arg>APP=testapp DEV_STACK_ENABLED=true gcoall/gco/ci/deploy.sh</arg>
<runif status="passed" />
</exec>
Error:
/bin/bash: -
: invalid option
Usage: /bin/bash [GNU long option] [option] ...Thoughts? I'm running v19.12.0 now, and tried various alternatives.
This also fails,
<exec command="/bin/bash">
<arg>-c</arg>
<arg>echo $HOME</arg>
<runif status="passed" />
</exec>Same error
[go] Task: /bin/bash -ctook: 0.103sexited: 2
"echo $HOME"
/bin/bash: -
: invalid option
Usage: /bin/bash [GNU long option] [option] ...
/bin/bash [GNU long option] [option] script-file ...
GNU long options:
--debug
--debugger
--dump-po-strings
--dump-strings
--help
--init-file
--login
--noediting
--noprofile
--norc
--posix
--rcfile
--restricted
--verbose
--version
Shell options:
-ilrsD or -c command or -O shopt_option (invocation only)
-abefhkmnptuvxBCHP or -o option
[go] Task status: failed, took: 0.103s, exited: 2
[go] Current job status: failed
I'm running following task to build docker images. I want to push that image to GCR. Artifact pluging for GCR is configured. docker build command is not running.
[go] Task: echo testedtook: 0.103s
[go] Task: lstook: 0.107s
[go] Task: docker build took: 0.40sexited: 125
--tag
django:latest
--file
Dockerfile
.
unknown flag: --tag
See 'docker --help'.
Usage: docker [OPTIONS] COMMAND
A self-sufficient runtime for containers
I am running the dockerized gocd agent and I have bound the host docker socket to the agent as a part of the startup of the agent. The problem I am hitting is when it connect to the agent using docker exec -it and I attempt to run any image inside the agent where I volume mount a directory the directory is empty. I have seen this before where the culprit was a permissions issue, but I am not sure where to begin looking. Any pointers are much appreciated.
Also I am running gocd/gocd-agent-docker-dind:v19.12.0 for the agent and gocd/gocd-server:v19.12.0 for the server docker images
while configuring git. getting error as follows
Please ensure 'git' is executable by the Go Server and on the Go Agents where this material will be used
how to resolve..anyone please help
I'm new to gocd, I try to start an exe in the job use command in Windows 10, and the exe program will open a websocket server. But the job was hanging when the exe started successfully, why? How to get pass the start-exe-cmd job?
Does anyone faced with the same problem before? cause the situation here is very commom I think...
I am trying to use the github pull request builder plugin: https://github.com/ashwanthkumar/gocd-build-github-pull-requests
I am able to install it, and I have configured a material for my private repository.
When gocd, the material, tries to connect to github to fetch the repo, i get the following error:
I am able to install it, and I have configured a material for my private repository.
When gocd, the material, tries to connect to github to fetch the repo, i get the following error:
Modification check failed for material: [url=https://github.com/myorganization/myrepository.git]
Affected pipelines are code-featurebranch.21 Jan, 2020 at 10:42:21 Local Time
The plugin sent a response that could not be understood by Go. Plugin returned with code '500' and the following response: '"Exception (Process exited with an error: 128 (Exit value: 128)) Occurred: [git, clone, --branch\u003ddevelopment, https://github.com/myorganization/myrepository.git, /var/lib/go-server/pipelines/flyweight/92c03516-ed71-4971-a8cb-97b2b2983d2e] - null"'
Is this a known problem? I would really like gocd to integrate well with our workflow and since we are using github pull requests it makes so much sense to get a test-status for each pull request.
Hi guys, I've been trying to add a more secure login than file-based. I've tried both okta and google oauth, but for both of these plugins, the values are being stored encrypted, and are not being decrypted when needed. For example, the urls look like so: client_id=AES:7WtUI1K... which is not what I pasted into the config when setting it up obviously. I know this is wrong, because when I menually paste the correct client ID into the url, it's successful, and redirects me back to the application. However, the client secret being used to verify the token is also encrypted, and I have no control over that, so the login fails back at the application.
Does anyone have any experience with this happening?
Does anyone have any experience with this happening?
Meaning that I can call some GoCD API, so that I can dynamically run a pipeline for certain branch?
Or should just create a pipeline which then I edit, through GoCD API call to switch the material to poll some other branch?
......... Or is this the one? Build Git Feature Branch... Should this work?
