104 lines
4.8 KiB
Plaintext
104 lines
4.8 KiB
Plaintext
// Declarative Pipeline for building Node.js application and running SonarQube analysis triggered by a push event.
|
|
pipeline {
|
|
// Defines the execution environment. Using 'agent any' to ensure an agent is available.
|
|
agent any
|
|
|
|
// Global environment variable to store the path to the manually installed scanner.
|
|
environment {
|
|
SONAR_SCANNER_PATH = ''
|
|
}
|
|
|
|
stages {
|
|
// Stage 1: Checkout the code (Relies on the initial SCM checkout done by Jenkins)
|
|
stage('Source Checkout') {
|
|
steps {
|
|
echo "Workspace already populated by the initial SCM checkout. Proceeding."
|
|
}
|
|
}
|
|
|
|
// Stage 2: Setup Node.js v20, install pnpm, and MANUALLY install Sonar Scanner
|
|
stage('Setup Environment and Tools') {
|
|
steps {
|
|
sh '''
|
|
echo "Ensuring required utilities and Node.js are installed..."
|
|
sudo apt-get update
|
|
sudo apt-get install -y curl unzip nodejs
|
|
|
|
# 1. Install Node.js v20
|
|
curl -fsSL https://deb.nodesource.com/setup_20.x | sudo -E bash -
|
|
sudo apt-get install -y nodejs
|
|
echo "Node.js version: \$(node -v)"
|
|
|
|
# 2. Install pnpm globally (version 8)
|
|
npm install -g pnpm@8
|
|
echo "pnpm version: \$(pnpm -v)"
|
|
'''
|
|
|
|
// --- MANUALLY INSTALL THE SONAR SCANNER CLI (FIXED GROOVY SCOPE) ---
|
|
script {
|
|
sh """
|
|
echo "Manually downloading and installing Sonar Scanner CLI..."
|
|
|
|
# Download the stable scanner CLI package
|
|
curl -sS -o sonar-scanner.zip \
|
|
"https://binaries.sonarsource.com/Distribution/sonar-scanner-cli/sonar-scanner-cli-4.7.0.2747.zip"
|
|
|
|
unzip -q sonar-scanner.zip -d .
|
|
|
|
# Find the extracted directory name
|
|
def scannerDir = \$(find . -maxdepth 1 -type d -name "sonar-scanner*" | head -n 1)
|
|
|
|
echo "Scanner extracted to: \${scannerDir}"
|
|
|
|
# Set the global environment variable (SONAR_SCANNER_PATH)
|
|
// This allows us to run the scanner by full path in the next stage
|
|
echo "SONAR_SCANNER_PATH=\${scannerDir}/bin" > .scanner_path.env
|
|
"""
|
|
// Load the environment variable set by the shell script
|
|
// This is the correct way to pass shell variables back to Groovy/Jenkins environment
|
|
def scannerPath = readProperties file: '.scanner_path.env'
|
|
env.SONAR_SCANNER_PATH = "${env.WORKSPACE}/${scannerPath.SONAR_SCANNER_PATH}"
|
|
|
|
echo "Global Sonar Path set to: ${env.SONAR_SCANNER_PATH}"
|
|
}
|
|
}
|
|
}
|
|
|
|
// Stage 3: Install dependencies and build the application
|
|
stage('Install and Build') {
|
|
steps {
|
|
sh 'pnpm install'
|
|
sh 'pnpm run build'
|
|
}
|
|
}
|
|
|
|
// Stage 4: Run SonarQube analysis using the plugin's variables and the manual path.
|
|
stage('SonarQube Analysis') {
|
|
steps {
|
|
script {
|
|
// 1. Get the short 8-character commit SHA for project versioning
|
|
def commitShaShort = sh(returnStdout: true, script: 'git rev-parse --short=8 HEAD').trim()
|
|
echo "Commit SHA (short) is: ${commitShaShort}"
|
|
|
|
// 2. Use withSonarQubeEnv to set up the secure variables (HOST and TOKEN)
|
|
// The 'SonarQube-Server' name is used as per your previous log.
|
|
withSonarQubeEnv(installationName: 'SonarQube-Server') {
|
|
// 3. Execute the scanner using the manually determined full path.
|
|
// We rely on the sonar-project.properties file for the project key.
|
|
sh """
|
|
echo "Starting SonarQube Analysis for project version: ${commitShaShort}"
|
|
|
|
\${SONAR_SCANNER_PATH}/sonar-scanner \\
|
|
-Dsonar.projectVersion=${commitShaShort} \\
|
|
-Dsonar.sources=.
|
|
|
|
# SONAR_HOST_URL and SONAR_TOKEN are automatically passed as environment variables
|
|
# by the withSonarQubeEnv block.
|
|
"""
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|