Page MenuHomePhabricator
Create Task
Maniphest T379203

Add CI_RELEASE_TOKEN secret for {name}-maven-release jobs in jenkins
Closed, ResolvedPublic
Actions

Description

As part of the migration of maven releases away from archiva and to gitlab we need to provide the gitlab api token to the release jobs. The release process (via wmf-jvm-parent-pom) expects the environment to provide a CI_RELEASE_TOKEN environment variable containing the appropriate secret. The token should be sourced from the gitlab UI. A token has already been created for jenkins and temporarily stored as a gitlab CI variable, visible to members of the project.

Related Objects
Search...

Event Timeline

EBernhardson created this task.Nov 6 2024, 10:31 PM
EBernhardson added a subscriber: hashar.

@hashar could you help out with this? I've added you as a member to the gitlab repo as well so you should be able to lookup the token to be added.

bking subscribed.Nov 6 2024, 10:50 PM
bking added a subscriber: bd808.Nov 6 2024, 10:56 PM

Small aside: per IRC conversation with @bd808 , I updated the CI/Jenkins Wikitech page with references to Jenkins secrets.

It's lacking a lot of details, if anyone could help me flesh it out it would be appreciated.

bd808 added a comment.Nov 7 2024, 12:30 AM
In T379203#10297995, @bking wrote:

Small aside: per IRC conversation with @bd808 , I updated the CI/Jenkins Wikitech page with references to Jenkins secrets.

It's lacking a lot of details, if anyone could help me flesh it out it would be appreciated.

https://integration.wikimedia.org/ci/manage/credentials/ is the secrets store I know of. T106452: Composer activity from Cloud VPS hosts can be rate limited by GitHub is an example of a past task that uses this system to modify the runtime environment for some Jenkins jobs.

Gehel removed Gehel as the assignee of this task.Nov 12 2024, 2:29 PM
Gehel edited projects, added Data-Platform-SRE (2024.11.09 - 2024.11.29); removed Data-Platform-SRE (2024.09.28 - 2024.10.18).
Gehel moved this task from Backlog - project to Backlog - operations on the Data-Platform-SRE (2024.11.09 - 2024.11.29) board.Nov 12 2024, 4:17 PM
LSobanski moved this task from Incoming to Consultation on the collaboration-services board.Nov 12 2024, 4:25 PM
EBernhardson closed this task as Resolved.Nov 18 2024, 5:21 PM
EBernhardson claimed this task.

Token deployed to maven release jobs. Thanks hashar!

BTullis moved this task from Backlog - operations to Done on the Data-Platform-SRE (2024.11.09 - 2024.11.29) board.Nov 19 2024, 11:27 AM
Gehel moved this task from Done to Reported on the Data-Platform-SRE (2024.11.09 - 2024.11.29) board.Nov 29 2024, 9:30 AM
Gehel edited projects, added Data-Platform-SRE (2023.12.01 - 2023.12.31); removed Data-Platform-SRE (2024.11.09 - 2024.11.29).Jan 10 2025, 2:28 PM
Gehel edited projects, added Data-Platform-SRE (2024.11.09 - 2024.11.29); removed Data-Platform-SRE (2023.12.01 - 2023.12.31).Jan 10 2025, 3:26 PM
Stashbot added a comment.Wed, Nov 12, 6:36 PM

Mentioned in SAL (#wikimedia-releng) [2025-11-12T18:36:11Z] <jnuche> Updated expired release token for wmf-packages in integration Jenkins - T379203

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits