Cloud Native Build

English

简体中文

English

简体中文

Appearance

Custom Deployment Process

About 1346 wordsAbout 4 min

Cloud Native Build supports custom deployment processes through custom deployment environments, approval workflows, and deployment pipelines to achieve automated deployment.

Example operation:

Custom Deployment Environments

Add a .cnb/tag_deploy.yml file in the repository root directory to configure deployment environments. The example below defines three environments: development, staging, and production. Users can select the desired environment type on the page.

# .cnb/tag_deploy.yml
environments:
  # name: Environment name, clicking the deploy button for this environment will trigger the tag_deploy.development event pipeline in .cnb.yml
  - name: development
    description: Development environment
    # Environment variables (passed to the pipeline when triggered, including deployment pipelines and web_trigger pipelines)
    env:
      name: development
      # CNB_BRANCH: Environment variable, in deployment events it's the tag name
      tag_name: $CNB_BRANCH

  - name: staging
    description: Staging environment
    env:
      name: staging
      # CNB_BRANCH: Environment variable, in deployment events it's the tag name
      tag_name: $CNB_BRANCH

  - name: production
    description: Production environment
    # Environment variables (passed to the pipeline when triggered, including deployment pipelines and web_trigger pipelines)
    env:
      name: production
      # CNB_BRANCH: Environment variable, in deployment events it's the tag name
      tag_name: $CNB_BRANCH
    button:
      - name: Create Approval Request
        # If exists, will be used as pipeline title, otherwise default title is used
        description: Automated approval request process
        # Requires defining web_trigger_approval event pipeline in .cnb.yml
        event: web_trigger_approval
        # Permission control - if not configured, users with repository write permission can trigger builds
        # If configured, requires repository write permission AND meeting either roles or users conditions
        permissions:
          # Can configure either roles or users or both - meeting either is sufficient
          roles:
            - owner
            - developer
          users:
            - name1
            - name2
        # Environment variables passed to web_trigger_approval event pipeline
        # Can inherit from parent level env variables, with higher priority
        env:
          name1: value1
          name2: value2

    # Pre-deployment condition checks (supports environment, metadata, and approval workflow checks)
    # All conditions must be met before deployment can proceed
    require:
      # 1 Environment requirement checks

      # 1.1 Requires successful deployment of development environment
      - environmentName: development

      # 1.2 Requires staging environment deployed successfully 30 minutes ago
      - environmentName: staging
        after: 1800

      # 2 Metadata requirement checks

      # 2.1 Key key1 must have a non-empty value
      - annotation: key1

      # 2.2 Key key1 value must equal value1
      - annotation: key1
        expect:
          eq: value1

      # 2.3 Key key2 value must be greater than 1 and less than 10
      - annotation: key2
        expect:
          and:
            gt: 1
            lt: 10
        # Custom button that triggers web_trigger_annotation event when clicked
        # Can define button events related to require conditions (button hides when conditions are met)
        button:
          - name: Generate Metadata
            event: web_trigger_annotation
            # If exists, will be used as pipeline title, otherwise default title is used
            description: Metadata generation process
            # Permission control - if not configured, users with repository write permission can trigger builds
            # If configured, requires repository write permission AND meeting either roles or users conditions
            permissions:
              # Can configure either roles or users or both - meeting either is sufficient
              roles:
                - owner
                - developer
              users:
                - name1
                - name2
            # Environment variables passed to web_trigger_annotation pipeline
            # Can inherit from parent level env variables, with higher priority
            env:
              name1: value1
              name2: value2

      # 3 Approval workflow requirement checks (can customize approval workflow as below)
      # - Approval sequence: Steps 1,2,3 must proceed in order (1 must be approved before 2 can proceed)
      # - Approval actions: Include approve/reject. One approval is sufficient. If rejected, others cannot act until rejection is changed to approval

      # 3.1 Approvers by username - one approval is sufficient
      - approver:
          users:
            - user1
            - user2
            - user3
        title: Test Approval

      # 3.2 Approvers by role - one approval is sufficient
      - approver:
          roles:
            - developer
            - master
        title: Development Approval

      # 3.3 Approvers by username OR role (meeting either users or roles condition) - one approval is sufficient
      - approver:
          users:
            - user4
            - user5
          roles:
            - master
            - owner
        title: Operations Approval

    # Custom deploy buttons (default: shows one deploy button)
    # Use case: When multiple modules (e.g. repository, CI, artifacts) need separate deployments
    # Note: In deployment pipeline, distinguish modules using environment variables
    deploy:
      - name: Deploy Button 1
        description: Deploy button description
        # Environment variables (passed to deployment pipeline), higher priority than parent env
        env:
          name1: value1
          name2: value2
      - name: Deploy Button 2
        description: Deploy button description
        # Environment variables (passed to deployment pipeline), higher priority than parent env
        env:
          name1: value1
          name2: value2

  • name: Required, environment name, must be unique. Example: name: development - clicking deploy button for this environment triggers tag_deploy.development event pipeline in .cnb.yml

  • description: Optional, environment description

  • env: Optional, environment variables passed to deployment pipeline

  • button: Optional, array of objects, custom buttons. Clicking button triggers Cloud Native Build pipeline for specified event.

    • name: Required, button name.
    • description: Optional, button description. If exists, used as pipeline title, otherwise default title.
    • event: Required, custom event, only supports web_trigger events.
    • env: Optional, environment variables passed to web_trigger pipeline, can inherit from parent env with higher priority.
    • permissions: Optional, permission control - requires repository write permission AND meeting either users or roles conditions. If not configured, only repository write permission is needed.
      • users: Optional, Array<String>, username array.
      • roles: Optional, Array<String>, repository role array. ownermaster(i.e., Administrator)、developerreporterguest

  • deploy: Optional, array of objects, custom deploy buttons. Clicking button triggers deployment event (tag_deploy.*).

    • name: Required, button name.
    • description: Optional, button description.
    • env: Optional, environment variables passed to deployment pipeline, higher priority than parent env.

  • require: Optional, array of objects. Pre-deployment conditions that must all be met (environment requirements, metadata requirements, approval workflows).

    1. Environment requirement parameters:

    • environmentName: Required. Environment name.

    • after: Optional. Time in seconds. Indicates environmentName must have been deployed successfully for this duration.

    • description: Optional. Description of require condition.

    • button: Optional. Custom button that triggers specified event when clicked. Button hides when condition is met.

      • name: Required, button name.
      • event: Required, custom event, only supports web_trigger_* events.
      • description: Optional, button description. If exists, used as pipeline title.
      • env: Optional, environment variables passed to web_trigger pipeline.
      • permissions: Optional, permission control - requires repository write permission AND meeting either users or roles conditions. If not configured, only repository write permission is needed.
        • users: Optional, Array<String>, username array.
        • roles: Optional, Array<String>, repository role array. ownermaster(i.e., Administrator)、developerreporterguest
    1. Metadata requirement parameters:

    • annotation: Required. Metadata key.

    • expect: Optional. Requirements for metadata value. Object format supporting eq, ne, gt, lt, gte, lte, and, or, reg operators.

      • eq: Equal to
      • ne: Not equal to
      • gt: Greater than
      • lt: Less than
      • gte: Greater than or equal to
      • lte: Less than or equal to
      • and: AND
      • or: OR
      • reg: Match a regular expression

    • description: Optional. Description of require condition.

    • button: Optional. Custom button that triggers event when clicked. Button hides when condition is met.

      • name: Required, button name.
      • event: Required, custom event, only supports web_trigger_* events.
      • description: Optional, button description. If exists, used as pipeline title.
      • env: Optional, environment variables passed to web_trigger pipeline.
      • permissions: Optional, permission control - requires repository write permission AND meeting either users or roles conditions. If not configured, only repository write permission is needed.
        • users: Optional, Array<String>, username array.
        • roles: Optional, Array<String>, repository role array. ownermaster(i.e., Administrator)、developerreporterguest
    1. Approval workflow parameters:
    • approver: Required, approver definition - one approval from specified users or roles is sufficient.
      • users: Username array.
      • roles: Repository role array. ownermaster(i.e., Administrator)、developerreporterguest
    • title: Optional, approval title like Test Approval.

Custom Deployment Pipelines

The example below defines deployment pipelines for three environments. When selecting development environment on the page, it triggers the tag_deploy.development event. The pipeline performs deployment operations based on the code corresponding to the current tag.

# .cnb.yml
$:
  tag_deploy.development:
    - name: dev
      stages:
        - name: Environment name
          script: echo $name
        - name: Tag name
          script: echo $tag_name
  tag_deploy.staging:
    - name: staging
      stages:
        - name: Environment name
          script: echo $name
        - name: Tag name
          script: echo $tag_name
  tag_deploy.production:
    - name: production
      stages:
        - name: Environment name
          script: echo $name
        - name: Tag name
          script: echo $tag_name

The relationship between pipeline event names and environment types is:

  • tag_deploy.development: development
  • tag_deploy.staging: staging
  • tag_deploy.production: production

Custom Button Web_trigger Events

Custom buttons in tag_deploy.yml can only trigger web_trigger events. In the pipeline configuration below, the web_trigger_annotation event uploads metadata when executed.

# .cnb.yml
$:
  # Events triggered by custom buttons
  web_trigger_annotation:
    - stages:
        - name: Upload Metadata
          image: cnbcool/annotations:latest
          settings:
            data: |
              key1=value1
              key2=value2

Deployment Permissions

Users need repository write permission AND tag push permission to perform deployment operations.

© 2025 cnb.cool