@skele10 Correct, however on August 13th GitHub changed what is allowed for logging in and I receive this message now for Materials:
STDERR: remote: Support for password authentication was removed on August 13, 2021. Please use a personal access token instead.
STDERR: remote: Please see https://github.blog/2020-12-15-token-authentication-requirements-for-git-operations/ for more information.
STDERR: fatal: unable to access 'https://github.com/my-repo': The requested URL returned error: 403
Hey Folks, is there a way to install multiple agents on windows? I tried silent setup but the installer detects existing agent and exists...
Install using Generic zip is the answer :) : https://docs.gocd.org/current/installation/install/agent/zip.html
I tried locally and have few questions regarding how-to,
- Can we configure a pipeline without git dependency / material? We have a pipeline which runs on a schedule and the pipeline is just pure shell script (and it does not depend on any code from any repo).
- How to configure multi-branch pipeline? For example, we have an frontend repo with different branch for different environment, like dev, prod, … so that when triggering the pipeline manually, we can select which branch to trigger from.
- Here is a complex scenarios which we trying to resolve. We have 2 repo, 1 for frontend and 2 for backend. The backend pipeline will be dependent on frontend pipeline. Whenever the frontend pipeline build is successful, it should trigger backend pipeline. Also if there is any change in backend repo, it should trigger backend pipeline. I’m able to configure this by adding multiple dependencies for backend pipeline. The complexity here is, we generated random key when building frontend (For eg.: KEY=hash-BUILD-1), and the same needs to be passed to backend pipeline.
a. How to trigger backend pipeline with custom build parameter (KEY)? From pipeline 1 it should pass parameter and value for pipeline 2 build.
b. How to persist param value (KEY) in backend pipeline, so that subsequent build from backend repo (commits, poll scm) trigger will use the param value (KEY) which is already set. Param value changes only when frontend pipeline creates a new build.
For #1: No, you need to have a material. But, it can be a dummy material, with polling turned off. So, it'll only trigger on timer.
For #3: The way to pass information between pipeline instances in usually via artifacts. You'd publish an artifact (can be any file) in the frontend pipeline with that key / param. You can then fetch that artifact from the upstream (frontend) pipeline in the downstream pipeline (backend) and use it. If you ever re-run the backend pipeline instance, it'll get that artifact again and use it. That same version of the artifact. You can verify the versions in the VSM.
- As part of UAT or Production build, we do git tag and push it through build pipeline script. Is there a way to ignore such commits? Usually we add like
[skip]in git commit message and CI/CD pipeline will ignore it. Anything similar in GoCD?
1 reply
nixos-rebuild build --flake git+ssh://some.remote/user/flake
Hi all, I see someone asked about this in June as well, but in the hope that at some point someone from gocd might read this. Since I updated to the latest gocd version, and did the same for go-agent, I keep hitting:
2021-09-16 08:37:02,448 ERROR [scheduler-2] RemotingClient:166 - Server responded to action `ping` with: status[403 Forbidden], body[]
2021-09-16 08:37:02,449 ERROR [scheduler-2] AgentHTTPClientController:114 - Error occurred when agent tried to ping server:
java.lang.RuntimeException: org.apache.http.client.ClientProtocolException: The server returned status code 403. Possible reasons include:
- This agent has been deleted from the configuration
- This agent is pending approval
- There is possibly a reverse proxy (or load balancer) that has been misconfigured. See https://docs.gocd.org/21.2.0/installation/configure-reverse-proxy.html#agents-and-reverse-proxies for details.
at com.thoughtworks.go.agent.RemotingClient.post(RemotingClient.java:118)
at com.thoughtworks.go.agent.RemotingClient.ping(RemotingClient.java:74)
at com.thoughtworks.go.agent.AgentHTTPClientController.ping(AgentHTTPClientController.java:109)
at jdk.internal.reflect.GeneratedMethodAccessor9.invoke(Unknown Source)
at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
at java.base/java.lang.reflect.Method.invoke(Unknown Source)
at org.springframework.scheduling.support.ScheduledMethodRunnable.run(ScheduledMethodRunnable.java:65)
at org.springframework.scheduling.support.DelegatingErrorHandlingRunnable.run(DelegatingErrorHandlingRunnable.java:54)
at java.base/java.util.concurrent.Executors$RunnableAdapter.call(Unknown Source)
at java.base/java.util.concurrent.FutureTask.runAndReset(Unknown Source)
at java.base/java.util.concurrent.ScheduledThreadPoolExecutor$ScheduledFutureTask.run(Unknown Source)
at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown Source)
at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source)
at java.base/java.lang.Thread.run(Unknown Source)
Caused by: org.apache.http.client.ClientProtocolException: The server returned status code 403. Possible reasons include:
- This agent has been deleted from the configuration
- This agent is pending approval
- There is possibly a reverse proxy (or load balancer) that has been misconfigured. See https://docs.gocd.org/21.2.0/installation/configure-reverse-proxy.html#agents-and-reverse-proxies for details.
at com.thoughtworks.go.agent.RemotingClient.validateResponse(RemotingClient.java:141)
at com.thoughtworks.go.agent.RemotingClient.post(RemotingClient.java:114)
... 13 common frames omittedI deployed the latest helm chart, and I've tried an existing go-agent, as well as using the provided go agent daemonset. Both hit this same error. I configured my k8s instance with valid ssl certificates etc., so the suggestions w/r/t reverse proxies doesn't seem to make sense.
1 reply
jvm 1 | 2021-09-16 17:15:08,016 WARN [Thread-78] PluginSettingsMetadataLoader:63 - Failed to fetch plugin settings metadata for plugin cd.go.contrib.elasticagent.kubernetes. Maybe the plugin does not implement plugin settings and view? + huge stack trace of course, and I no longer see any of the failed remote agent "ping" requests, even though the agents keep printing they get 403's
jvm 1 | 2021-09-17 08:03:55,172 INFO [qtp1374887279-28] RequestLog:28 - 10.42.0.1 - - [17/Sep/2021:08:03:55 +0000] "POST /go/remoting/api/agent/ping HTTP/1.1" 403 0 1
jvm 1 | 2021-09-17 08:04:00,182 INFO [qtp1374887279-29] RequestLog:28 - 10.42.0.1 - - [17/Sep/2021:08:04:00 +0000] "POST /go/remoting/api/agent/ping HTTP/1.1" 403 0 1
[pid 2927458] 1631866185.681554 <... read resumed>"POST /go/remoting/api/agent/ping HTTP/1.1\r\nHost: ***\r\nX-Request-ID: d537cf703cb517a52982aa86744f7083\r\nX-Real-IP: 10.42.0.1\r\nX-Forwarded-For: 10.42.0.1\r\nX-Forwarded-Host: ***\r\nX-Forwarded-Port: 443\r\nX-Forwarded-Proto: https\r\nX-Scheme: https\r\nContent-Length: 428\r\nAccept: application/vnd.go.cd+json\r\nX-Agent-GUID: 3f2771f3-1fd2-4093-a896-4bba33ae9ca2\r\nAuthorization: c2lyAYi0TfYXcaKuEd80oCjhoam9f3vEwm3zySsTrPE=\r\nContent-Type: application/json; charset=UTF-8\r\nUser-Agent: Apache-HttpClient/4.5.13 ("..., 8192) = 1047
[pid 2927458] 1631866185.683503 writev(421, [{iov_base="HTTP/1.1 403 Forbidden\r\nDate: Fri, 17 Sep 2021 08:09:45 GMT\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nX-UA-Compatible: chrome=1\r\nContent-Length: 0\r\n\r\n", iov_len=204}], 1 <unfinished ...>
[pid 2927458] 1631866185.684559 write(48, "2021-09-17 08:09:45,684 INFO [qtp1374887279-40] RequestLog:28 - 10.42.0.1 - - [17/Sep/2021:08:09:45 +0000] \"POST /go/remoting/api/agent/ping HTTP/1.1\" 403 0 3\n", 161 <unfinished ...>
[pid 2927458] 1631866185.685155 write(1, "2021-09-17 08:09:45,684 INFO [qtp1374887279-40] RequestLog:28 - 10.42.0.1 - - [17/Sep/2021:08:09:45 +0000] \"POST /go/remoting/api/agent/ping HTTP/1.1\" 403 0 3\n", 161 <unfinished ...>sudo apt install --reinstall -o Dpkg::Options::="--force-confask,confnew,confmiss") , and the helm provided agent deployment is also not working. at least I got something working now. If someone finds this on google perhaps they will find it useful, if you've updated. Best just purge the existing agents completely, don't try to update them, and don't try to use the agents that are prepared by helm.
I am trying to configure go cd behind nginx reverse proxy. I followed the documentation, but when I access gocd using url domain.com/go, its giving a 404 page (the browser url now is /go/pipelines) . My nginx config file is
location /go/ {
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_http_version 1.1;
proxy_pass http://localhost:8153/go;
client_max_body_size 10000m;
}Is there any other changes I need to do to make this working?
3 replies
Hey everybody! I am quite new to GoCD, love it so far! I had a question about webhooks. Can somebody point me to the documentation to the feature this PR introduced gocd/gocd#8023 ?
More specifically, I am looking for the payload config_repo webhook is expecting. Basically, my code is hosted on codecommit (not on GitHub/BitBucket etc). So my plan was to intercept codecommit trigger, convert it into one of the expected payloads to trigger webhook.
I was able to get it to work mostly, but I encountered an issue. Looks like GoCD only triggers the pipeline for branch configured in Config Repo. So, I was planning to mask the branch and convert it to whichever is configured before sending the payload. If I can get what payload GoCD is expecting, maybe I could get it to refresh the material for other branches too?
Hi everyone!
We recently deployed GoCD in our Kubernetes cluster (using gocd helm chart), one server + 3 agents
There's an issue when I try to run a test pipeline that only runs a simple command. It fails without printing any output that'd help me figure out what's happening
[go] Start to prepare test-0/1/test/1/test on revo-gocd-agent-59c54bcd68-bt5q7 [/go]
[go] Start to build test-0/1/test/1/test on revo-gocd-agent-59c54bcd68-bt5q7 [/go]
[go] Task: env took: 0.1s
[go] Task status: failed, took: 0.1s
[go] Current job status: failedI tried to run it in a couple of different ways, like /bin/bash -c hostname or using git|pluggable scm materials, but had no success in making in work
Can you please help me understand what I did wrong?
The pipeline is configured as below:
format_version: 10
pipelines:
test-0:
group: testGroup
label_template: ${COUNT}
lock_behavior: none
display_order: -1
materials:
my-material:
scm: my-material
stages:
- test:
fetch_materials: true
keep_artifacts: false
clean_workspace: false
approval:
type: success
allow_only_on_success: false
jobs:
test:
timeout: 0
tasks:
- exec:
command: env
run_if: passedAny help would be much appreciated
config.xml. Settings the secrets again seems to resolve the issue. However, is it weird that no errors are generated when trying to decrypt the values, instead just the command fails.
we are seeing issues with our agents.
we are seeing this error frequently, and I'm not sure how to proceed. This host was restarted 30 minutes before:
```Error performing command: --- Command ---
git rev-parse --abbrev-ref HEAD
--- Environment ---
{}
--- INPUT ----
--- EXIT CODE (128) ---
--- STANDARD OUT ---
--- STANDARD ERR ---
STDERR: fatal: Not a git repository (or any of the parent directories): .git
```
Error on the server
jvm 1 | Caused by: java.security.cert.CertificateException: Could not parse certificate: java.io.IOException: Empty input
jvm 1 | at java.base/sun.security.provider.X509Factory.engineGenerateCertificate(Unknown Source)
jvm 1 | at java.base/java.security.cert.CertificateFactory.generateCertificate(Unknown Source)
jvm 1 | at io.fabric8.kubernetes.client.internal.CertUtils.createTrustStore(CertUtils.java:101)
jvm 1 | at io.fabric8.kubernetes.client.internal.CertUtils.createTrustStore(CertUtils.java:79)
jvm 1 | at io.fabric8.kubernetes.client.internal.SSLUtils.trustManagers(SSLUtils.java:115)
jvm 1 | at io.fabric8.kubernetes.client.internal.SSLUtils.trustManagers(SSLUtils.java:94)
jvm 1 | at io.fabric8.kubernetes.client.utils.HttpClientUtils.createHttpClient(HttpClientUtils.java:82)
jvm 1 | ... 23 common frames omitted
jvm 1 | Caused by: java.io.IOException: Empty input
jvm 1 | ... 30 common frames omitted
jvm 1 | 2021-10-29 05:52:44,389 ERROR [159@MessageListener for CreateAgentListener] JMSMessageListenerAdapter:87 - Exception thrown in message handling by listener com.thoughtworks.go.server.messaging.elasticagents.CreateAgentListener@270e222e
jvm 1 | java.lang.RuntimeException: The plugin sent a response that could not be understood by Go. Plugin returned with code '500' and the following response: 'Failed to handle request cd.go.elastic-agent.create-agent'
Has anyone else faced this issue before, if yes how to solve this.
Hii team,
I'm trying to setup gocd agent with ECS-EC2 aws service.
Facing issue with fetching artifacts from s3 of Access denied.
The ECS setup are working properly in 3 different region where as facing issue in mumbai region EC2.
same role is attached on EC2 servers for all regions.
S3 bucket is configured(with IAM user having full access of EC2,S3) in Mumbai region
Although the aws cli command(aws s3 ls) is giving proper output when manually executed on container on EC2 server . While getting Access denied while fetching artifact through pipeline.
Is it something wrt access of GoCD server, S3 plugin, Agent server. Can't find any link yet.
Can someone help with this.
Error --->
[cd.go.artifact.s3] Failed pull source file: com.amazonaws.services.s3.model.AmazonS3Exception: Access Denied (Service: Amazon S3; Status Code: 403; Error Code: AccessDenied;
Hey guys,
I faced some issues while playing around with the latest GoCD server version available on GoCD download page (latest stable). I'm using it locally on my OSX and getting this error:
jvm 1 | Caused by: java.lang.RuntimeException: java.lang.RuntimeException: org.eclipse.jgit.api.errors.RefNotFoundException: Ref master cannot be resolved
jvm 1 | at com.thoughtworks.go.server.initializers.ApplicationInitializer.onApplicationEvent(ApplicationInitializer.java:156)
jvm 1 | at com.thoughtworks.go.server.initializers.ApplicationInitializer.onApplicationEvent(ApplicationInitializer.java:49)
jvm 1 | at org.springframework.context.event.SimpleApplicationEventMulticaster.doInvokeListener(SimpleApplicationEventMulticaster.java:172)
jvm 1 | at org.springframework.context.event.SimpleApplicationEventMulticaster.invokeListener(SimpleApplicationEventMulticaster.java:165)
jvm 1 | at org.springframework.context.event.SimpleApplicationEventMulticaster.multicastEvent(SimpleApplicationEventMulticaster.java:139)
jvm 1 | at org.springframework.context.support.AbstractApplicationContext.publishEvent(AbstractApplicationContext.java:393)
jvm 1 | at org.springframework.context.support.AbstractApplicationContext.publishEvent(AbstractApplicationContext.java:347)
jvm 1 | at org.springframework.context.support.AbstractApplicationContext.finishRefresh(AbstractApplicationContext.java:883)
jvm 1 | at org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:545)
jvm 1 | at org.springframework.web.context.ContextLoader.configureAndRefreshWebApplicationContext(ContextLoader.java:443)
jvm 1 | at org.springframework.web.context.ContextLoader.initWebApplicationContext(ContextLoader.java:325)
jvm 1 | at org.springframework.web.context.ContextLoaderListener.contextInitialized(ContextLoaderListener.java:107)
jvm 1 | at org.eclipse.jetty.server.handler.ContextHandler.callContextInitialized(ContextHandler.java:1067)
jvm 1 | at org.eclipse.jetty.servlet.ServletContextHandler.callContextInitialized(ServletContextHandler.java:572)
jvm 1 | at org.eclipse.jetty.server.handler.ContextHandler.contextInitialized(ContextHandler.java:996)
jvm 1 | at org.eclipse.jetty.servlet.ServletHandler.initialize(ServletHandler.java:746)
jvm 1 | at org.eclipse.jetty.servlet.ServletContextHandler.startContext(ServletContextHandler.java:379)
jvm 1 | at org.eclipse.jetty.webapp.WebAppContext.startWebapp(WebAppContext.java:1449)
jvm 1 | at org.eclipse.jetty.webapp.WebAppContext.startContext(WebAppContext.java:1414)
jvm 1 | at org.eclipse.jetty.server.handler.ContextHandler.doStart(ContextHandler.java:910)
jvm 1 | at org.eclipse.jetty.servlet.ServletContextHandler.doStart(ServletContextHandler.java:288)
jvm 1 | at org.eclipse.jetty.webapp.WebAppContext.doStart(WebAppContext.java:524)
jvm 1 | at org.eclipse.jetty.util.component.AbstractLifeCycle.start(AbstractLifeCycle.java:73)
jvm 1 | at org.eclipse.jetty.deploy.bindings.StandardStarter.processBinding(StandardStarter.java:46)
jvm 1 | at org.eclipse.jetty.deploy.AppLifeCycle.runBindings(AppLifeCycle.java:188)
jvm 1 | at org.eclipse.jetty.deploy.DeploymentManager.requestAppGoal(DeploymentManager.java:517)
jvm 1 | at org.eclipse.jetty.deploy.DeploymentManager.addApp(DeploymentManager.java:157)
jvm 1 | at com.thoughtworks.go.server.Jetty9Server.startHandlers(Jetty9Server.java:179)
jvm 1 | at com.thoughtworks.go.server.Jetty9Server.start(Jetty9Server.java:129)
jvm 1 | at com.thoughtworks.go.server.GoServer.startServer(GoServer.java:62)
jvm 1 | ... 14 more
jvm 1 | Caused by: java.lang.RuntimeException: org.eclipse.jgit.api.errors.RefNotFoundException: Ref master cannot be resolved
jvm 1 | at com.thoughtworks.go.service.ConfigRepository.cleanAndResetToMaster(ConfigRepository.java:377)
jvm 1 | at com.thoughtworks.go.service.ConfigRepository.initialize(ConfigRepository.java:93)