- handbook
- Company
- Company
- Board
- Communications
- Decision making
- Guides
- KPIs and OKRs
- principles
- Remote Work
- Security
- Asset Management Policy
- Business Continuity & Disaster Recovery Policy
- Information Security Roles and Responsibilities
- Operations Security Policy
- Risk Management Policy
- Third-Party Risk Management Policy
- Human Resources Security Policy
- Access Control Policy
- Incident Response Plan
- Cryptography Policy
- Information Security Policy and Acceptable Use Policy
- Secure Development Policy
- Data Management Policy
- strategy
- values
- Operations
- Product
- Feedback
- Market Segments
- Metrics
- Node-RED Dashboard
- personas
- Pricing Principles
- Principles
- Responsibilities
- Strategy
- Versioning
- Customer department
- Customer
- Customer Success
- Hubspot
- Marketing
- How we work
- Marketing
- Video
- Customer Stories
- Social Media
- blog
- Community
- Marketing - Website
- Webinars
- FlowFuse Messaging
- Sales
- Engineering & Design Practices
- Design
- Engineering
- Certified Nodes
- contributing
- Front End
- Packaging Guidelines
- Platform Ops
- Deployment
- Incident Response
- Observability
- Production Environment
- FlowFuse Dedicated
- Staging Environment
- Project Management
- Releases
- Security Policy
- tools
- Website A/B Testing
- Internal Operations
- People Ops
# Dependencies within the CI/CD process
This paragraph shows a graphical presentation of dependencies between each build pipeline in our CI/CD process.
graph TB A[NR-File-Nodes package] & C[NR-Project-Nodes package] --> B[NR-launcher package] B ----> X[NodeRed container build] B --> D[LocalFS package] D --> E[Flowfuse package] E & F[K8s package] --> Y[Flowfuse container build] G[File-server package] -----> Z[File-server container build] click A href "https://github.com/FlowFuse/nr-file-nodes/blob/main/.github/workflows/publish.yml" "NR-File-Nodes package" _blank click B href "https://github.com/FlowFuse/nr-launcher/blob/main/.github/workflows/publish.yml" "NR-launcher package" _blank click C href "https://github.com/FlowFuse/nr-project-nodes/blob/main/.github/workflows/publish.yml" _blank click D href "https://github.com/FlowFuse/driver-localfs/blob/main/.github/workflows/publish.yml" _blank click E href "https://github.com/FlowFuse/flowfuse/blob/main/.github/workflows/publish.yml" _blank click F href "https://github.com/FlowFuse/driver-k8s/blob/main/.github/workflows/publish.yml" _blank click G href "https://github.com/FlowFuse/file-server/blob/main/.github/workflows/publish.yml" _blank click X href "https://github.com/FlowFuse/helm/blob/main/.github/workflows/nodered-container.yml" _blank click Y href "https://github.com/FlowFuse/helm/blob/main/.github/workflows/flowforge-container.yml" _blank click Z href "https://github.com/FlowFuse/helm/blob/main/.github/workflows/fileserver-container.yml" _blank
# How does it work?
The CI/CD process is executed by GitHub Actions. Each change pushed to the repositories main
branch initiates the process. Node package publish process is defined in the file .github/workflows/publish.yml
in each repository while container images build steps can be found in .github/workflows/*-containers.yml
files in helm repository.
Each package has its dedicated code repository. Due to the security limitations of GitHub Actions, there is no possibility to access the pipeline from one repository to another. Therefore, there is a need to use a dedicated Github App to access repositories and trigger the build process of the dependent package. The process of creating such GitHub App is described in the GitHub documentation. Because such GitHub App imitates a regular user, it is necessary to include workflow_dispatch
event in the dependent workflow definition.
Example of job responsible for triggering dependent pipeline:
dispatch_container_build:
runs-on: ubuntu-latest
steps:
# This step uses GitHub App to generate a token
# which is used to trigger dependent pipeline
- name: Generate a token
# ID of the step to reference it in the next one
id: generate_token
# Name of the action
uses: tibdex/github-app-token@v1
with:
# GitHub App ID
app_id: $
# GitHub App private key
private_key: $
# This step triggers dependent pipeline located in
# the `helm` repository and defined in the
# `flowforge-container.yml` file
- name: Trigger flowforge container build
# Name of the action
uses: benc-uk/workflow-dispatch@v1
with:
# Name of the workflow to trigger
workflow: flowforge-container.yml
# Name of the repository where
# the dependent workflow is located
repo: flowfuse/helm
# Branch name
ref: main
# Token generated in the previous step
token: $