Ci with variable environment

marfrelen · December 1, 2023, 11:06am

Hello everyone. I don’t know if this is the right way to save code lines or if there is another possibility to run different environments with the same deploy stage.

stages:
- deploy

My case. I want to deploy the staging system and the production system in the same way. To do this, I wrote a rule block to define the envioronment in a environment variable which is initialized like this:

workflow:
  rules:
  - if: $CI_COMMIT_BRANCH =~ /^release\//
    variables:
      ENVIRONMENT_NAME: staging
    when: always
  - if: $CI_COMMIT_BRANCH == "main"
    variables:
      ENVIRONMENT_NAME: production
    when: always
  - when: never

And the deployment stage looks like this:

deploy:
  stage: deploy
  image: ubuntu:22.04
  rules:
  - when: manual
  environment:
    name: $ENVIRONMENT_NAME
  before_script:
  - echo "${ENVIRONMENT_NAME}"
  # ssh config
  - test -z "${SSH_PRIVATE_KEY}" && exit 1
  - test -f "${SSH_PRIVATE_KEY}" && exit 1
  - test -z "${SSH_USER}" && exit 1
  - test -z "${SSH_HOST}" && exit 1
  - test -z "${SSH_PORT}" && exit 1
  - test -z "${SSH_FOLDER}" && exit 1
  - test -z "${SSH_KNOWN_HOSTS}" && exit 1
   <…>

The rest of the stage is not important for my question which follows now:

When I push to the main branch, everything is working fine and as expected. But if I push in any release branch, the ci variables are missing.

The test to check if the SSH_PRIVATE_KEY is available fails, but the private key variable is available for all stages.

So I’m a bit confused that the variables are available for the main branch (production environment) but not for the release branch (staging environment).

I think it has anything to do with my workflow part but I’m not sure.
I’m not so fimilar with the gitlab ci yaml and maybe it is nonsense to use a variable for the environment name.

Hope anyone can help me.
If I solve this issue on my own, I will share you the solution right here

Kind regards and thank you very much,

Markus

paula.kokic · December 1, 2023, 2:08pm

Hey Markus,

Are your release branches protected? If not, is the reason. Your CI variable SSH_PRIVATE_KEY is labeled as protected, which means it will be available only in protected branches (which probably your main branch is, and that’s why it works there).

So, the solution would be either to protect your release branches, or to remove protected checkbox from your CI variables. The rest looks pretty fine.

Hope this helps!

marfrelen · December 2, 2023, 12:51pm

Hey,

thank you very much
I’ll try it out this evening and give you feedback.

Best,
Markus

marfrelen · December 2, 2023, 6:49pm

It works!

merci!

GreenStoines7 · December 8, 2023, 3:58pm

marfrelen:

Hello everyone. I don’t know if this is the right way to save code lines or if there is another possibility to run different environments with the same deploy stage.
stages:
- deploy
My case. I want to deploy the staging system and the production system in the same way. To do this, I wrote a rule block to define the envioronment in a environment variable which is initialized like this:
workflow:
  rules:
  - if: $CI_COMMIT_BRANCH =~ /^release\//
    variables:
      ENVIRONMENT_NAME: staging
    when: always
  - if: $CI_COMMIT_BRANCH == "main"
    variables:
      ENVIRONMENT_NAME: production
    when: always
  - when: never
And the deployment stage looks like this:
deploy:
  stage: deploy
  image: ubuntu:22.04
  rules:
  - when: manual
  environment:
    name: $ENVIRONMENT_NAME
  before_script:
  - echo "${ENVIRONMENT_NAME}"
  # ssh config
  - test -z "${SSH_PRIVATE_KEY}" && exit 1
  - test -f "${SSH_PRIVATE_KEY}" && exit 1
  - test -z "${SSH_USER}" && exit 1
  - test -z "${SSH_HOST}" && exit 1
  - test -z "${SSH_PORT}" && exit 1
  - test -z "${SSH_FOLDER}" && exit 1
  - test -z "${SSH_KNOWN_HOSTS}" && exit 1
   <…>
The rest of the stage is not important for my question which follows now:

When I push to the main branch, everything is working fine and as expected. But if I push in any release branch, the ci variables are missing.

The test to check if the SSH_PRIVATE_KEY is available fails, but the private key variable is available for all stages.

image1137×76 5.45 KB

So I’m a bit confused that the variables are available for the main branch (production environment) but not for the release branch (staging environment).

I think it has anything to do with my workflow part but I’m not sure.
I’m not so fimilar with the gitlab ci yaml and maybe it is nonsense to use a variable for the environment name.
Markus

Are your release branches secure? SSH_PRIVATE_KEY is for protected branches like your main one; it might not work elsewhere.

Topic		Replies	Views
Using environment variables in the build stage GitLab CI/CD	3	3297	January 16, 2023
How can I set the stage environment from a condition GitLab CI/CD ci	5	17651	February 21, 2024
How to get ENV variable set on build step based on deploy ENV GitLab CI/CD pipelines	4	22133	July 20, 2021
Environments and variables GitLab CI/CD ci , documentation , pipelines	2	1980	February 15, 2024
Pipeline variables based on branch GitLab CI/CD ci	0	1409	February 22, 2020

Ci with variable environment

Related topics