Upgrade to Pro — share decks privately, control downloads, hide ads and more …

ABS2024: Top 10 Best Practices for YAML Pipelin...

Azure Zurich User Group
PRO
May 20, 2024
Technology
0
160

ABS2024: Top 10 Best Practices for YAML Pipelines in Azure DevOps

⭐️ Top 10 Best Practices for YAML Pipelines in Azure DevOps#
Azure Pipelines definitions can be defined with the new YAML standard since some time. We are sure that many have already created their first pipelines or migrated existing pipelines. So it’s high time to look at the most important best practices from our wealth of experience together. This session will show the top 10 best practices from many customer projects related to YAML pipelines. Among other things, topics such as splitting pipelines (chained builds), using templates, as well as ensuring enterprise specifications and quality assurance will be covered.
🙂 MARC MÜLLER ⚡️ Principal Consultant @ 4tecture GmbH

Azure Zurich User Group
PRO

May 20, 2024
Tweet

More Decks by Azure Zurich User Group

See All by Azure Zurich User Group
Bicep and Terraform Code generation (without AI) by Thomas Hafermalz
azurezurich
PRO
0
24
ABS2024: FinOps in Azure by Francisco Teles
azurezurich
PRO
0
88
ABS2024: Model Platform by Arindam Mitra, Anass Alhyar, Raj Subramani
azurezurich
PRO
0
46
ABS2024: Azure AI Deep Dive with Ausgleichskasse Basel Stadt by Jörg Bieri & Ivan Babic
azurezurich
PRO
0
62
ABS2024: Breaching the Cloud: How to Exploit and Mitigate Common Security Risks by Hans-Peter Weiss & Jan Schneider
azurezurich
PRO
0
75
ABS2024: Building an Enterprise Data Platform with Microsoft Fabric by Gerald Reif & Weili Gao
azurezurich
PRO
0
130
ABS2024: ChatGPT Over Your Own Data by Marco Gerber & Michael Rüefli
azurezurich
PRO
0
63
ABS2024: How Criminals Breach Your Azure Environment by Marco Schmidt & Manuel Meyer
azurezurich
PRO
0
200
ABS2024: Navigating the Azure Cloud at Digitec Galaxus by Olivier Girard & Gerald Schermann
azurezurich
PRO
0
36

Other Decks in Technology

See All in Technology
LeSSに潜む「隠れWF病」とその処方箋
lycorptech_jp
PRO
2
120
「視座」の上げ方が成人発達理論にわかりやすくまとまってた / think_ perspective_hidden_dimensions
shuzon
2
4.1k
フルカイテン株式会社 採用資料
fullkaiten
0
36k
pandasはPolarsに性能面で追いつき追い越せるのか
vaaaaanquish
4
4.6k
ネット広告に未来はあるか?「3rd Party Cookie廃止とPrivacy Sandboxの効果検証の裏側」 / third-party-cookie-privacy
cyberagentdevelopers
PRO
1
130
サイバーエージェントにおける生成AIのリスキリング施策の取り組み / cyber-ai-reskilling
cyberagentdevelopers
PRO
2
200
コンテンツを支える 若手ゲームクリエイターの アートディレクションの事例紹介 / cagamefi-game
cyberagentdevelopers
PRO
1
130
新卒1年目が挑む!生成AI × マルチエージェントで実現する次世代オンボーディング / operation-ai-onboarding
cyberagentdevelopers
PRO
1
170
Jr. Championsになって、強く連携しながらAWSをもっと使いたい!~AWSに対する期待と行動~
amixedcolor
0
190
AWS CDKでデータリストアの運用、どのように設計する?~Aurora・EFSの実践事例を紹介~/aws-cdk-data-restore-aurora-efs
mhrtech
4
650
いまならこう作りたい AWSコンテナ[本格]入門ハンズオン 〜2024年版 ハンズオンの構想〜
horsewin
9
2.1k
AWS CodePipelineでコンテナアプリをデプロイした際に、古いイメージを自動で削除する
smt7174
1
100

Featured

See All Featured
YesSQL, Process and Tooling at Scale
rocio
167
14k
Understanding Cognitive Biases in Performance Measurement
bluesmoon
26
1.4k
Fantastic passwords and where to find them - at NoRuKo
philnash
50
2.8k
The Illustrated Children's Guide to Kubernetes
chrisshort
48
48k
Exploring the Power of Turbo Streams & Action Cable | RailsConf2023
kevinliebholz
27
4.2k
StorybookのUI Testing Handbookを読んだ
zakiyama
26
5.2k
5 minutes of I Can Smell Your CMS
philhawksworth
202
19k
Optimizing for Happiness
mojombo
376
69k
Git: the NoSQL Database
bkeepers
PRO
425
64k
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
aki_iinuma
107
49k
The Pragmatic Product Professional
lauravandoore
31
6.3k
Principles of Awesome APIs and How to Build Them.
keavy
126
17k

Transcript

  1. None

  2. D:\Workspaces\MS\MVP\MVP_FullColor_ForScreen.png

  3. Slide Download https://www.4tecture.ch/events/azurebootcamp2024

  4. None
  5. None

  6. ▪ ▪ ▪ ▪ ▪

  7. None

  8. ▪ ▪ ▪ ▪ ▪ ▪ ▪ ▪

  9. None
  10. None
  11. None
  12. None

  13. ▪ ▪ ▪ ▪

  14. Multi-Stage Yaml Pipeline Stage Job Task Task Job Task Task

    Stage Job Task Task Stage Job Task Task Stage Job Task Task Job Task Task Job Task Task
  15. None

  16. Azure Pipelines Azure Artifacts Service Connection Environments Hosted / private

    Agent Container Jobs Pipeline Secrets Azure KeyVault Azure Repo App Code IaC Azure Resources Version / Branch Compile / Package Deploy Tasks Stages Variables / Secrets Pipeline Infrastructure Execution on target Approvals Checks Deployment Strategy Templates Tests / Test-Results

  17. Platform CD Service CD Base Infrastructure Template Resource Template Resource

    Template Dev/Test Prod Service CI Build Stage PR Stage Testing PreProd Prod Compile Service DB Schema Compile System Tests Infrastructure Artifacts Pipeline Artifacts Task / Job Templates Task / Job Templates Resource Groups, vNets, VMs, Azure SQL, CosmosDB, … App Deployment, DB instance, DB Schema, Managed Identities, Storage, … Deplyoment Verification
  18. None
  19. None
  20. None
  21. None

  22. ▪ ▪ ▪ ▪ ▪ ▪ ▪ ▪ ▪ ▪

  23. Base Infrastructure CD Service CD Base Infrastructure Template Resource Template

    Resource Template Dev/Test Prod Service CI Build Stage PR Stage Testing PreProd Prod Compile Service DB Schema Compile System Tests Infrastructure Artifacts Pipeline Artifacts Task / Job Templates Task / Job Templates Resource Groups, vNets, VMs, Azure SQL, CosmosDB, … App Deployment, DB instance, DB Schema, Managed Identities, Storage, … Deplyoment Verification Secret Provider [Secret Variables, Variable Groups, KeyVault, Managed Identiy] Secret Provider [Secret Variables, Variable Groups, KeyVault, Managed Identiy]

  24. Azure DevOps Variable Groups Pipeline Definition YAML File Pipeline Settings

    Secret Variable Service Connection Task Task Pipelines Agent Runtime Logging Secret Variable Key Vault Link Azure Key Vault Managed Identities Application AppSettings KeyVault Client Get Token by Managed Identity
  25. None
  26. None
  27. None
  28. None
  29. None
  30. None
  31. None
  32. None
  33. None
  34. None
  35. None
  36. None

  37. ▪ ▪ ▪ ▪ ▪

  38. ▪ ▪ ▪ ▪ Source: https://docs.microsoft.com/en-us/azure/devops/pipelines/process/templates?view=azure-devops

  39. ▪ ▪ ▪

  40. None
  41. None
  42. None
  43. None
  44. None

  45. ▪ ▪ ▪ ▪

  46. None
  47. None
  48. None
  49. None
  50. None

  51. ▪ ▪ ▪

  52. None
  53. None
  54. None
  55. None
  56. None
  57. None
  58. None

  59. ▪ ▪ ▪ ▪

  60. None
  61. None
  62. None
  63. None
  64. None

  65. ▪ ▪ ▪ ▪

  66. ▪ ▪ ▪

  67. ▪ ▪ ▪

  68. ▪ ▪ ▪ ▪ ▪ ▪ ▪ ▪ ▪ ▪

    ▪ ▪ ▪ ▪ ▪ ▪ ▪ ▪ ▪ ▪ ▪ ▪ ▪
  69. None
  70. None
  71. None
  72. None

  73. https://dev.azure.com/4tecture-demo/_apis/public/distributedtask/webhooks/prupdated?api-version=6.0-preview

  74. None

  75. Method: POST URI: https://dev.azure.com/4tecture-demo/_apis/public/distributedtask/webhooks/prupdated?api-version=6.0-preview HTTP Version: 1.1 Headers: { Content-Type:

    application/json; charset=utf-8 } Content: { "subscriptionId": "1de80ac8-b9a7-42d0-a2fe-5441c2b7ffc2", "notificationId": 14, "id": "af07be1b-f3ad-44c8-a7f1-c4835f2df06b", "eventType": "git.pullrequest.updated", "publisherId": "tfs", "message": { "text": "Jamal Hartnett marked the pull request as completed", "html": "Jamal Hartnett marked the pull request as completed", "markdown": "Jamal Hartnett marked the pull request as completed" }, "detailedMessage": { "text": "Jamal Hartnett marked the pull request as completed\r\n\r\n- Merge status: Succeeded\r\n- Merge commit: eef717(https://fabrikam.visualstudio.com/DefaultCollection/_apis/git/repositories/4bc14d40-c903-45e2-872e-0462c7748079/commi "html": "Jamal Hartnett marked the pull request as completed\r\n<ul>\r\n<li>Merge status: Succeeded</li>\r\n<li>Merge commit: <a href=\"https://fabrikam.visualstudio.com/DefaultCollection/_apis/git/repositories/4bc14d40-c903-45e2-872e- 0462c7748079/commits/eef717f69257a6333f221566c1c987dc94cc0d72\">eef717</a></li>\r\n</ul>", "markdown": "Jamal Hartnett marked the pull request as completed\r\n\r\n+ Merge status: Succeeded\r\n+ Merge commit: [eef717](https://fabrikam.visualstudio.com/DefaultCollection/_apis/git/repositories/4bc14d40-c903-45e2-872e-0462c7748079 }, "resource": { "repository": { "id": "4bc14d40-c903-45e2-872e-0462c7748079", "name": "Fabrikam", "url": "https://fabrikam.visualstudio.com/DefaultCollection/_apis/git/repositories/4bc14d40-c903-45e2-872e-0462c7748079", "project": { "id": "6ce954b1-ce1f-45d1-b94d-e6bf2464ba2c", "name": "Fabrikam", "url": "https://fabrikam.visualstudio.com/DefaultCollection/_apis/projects/6ce954b1-ce1f-45d1-b94d-e6bf2464ba2c", "state": "wellFormed", "visibility": "unchanged", "lastUpdateTime": "0001-01-01T00:00:00" }, "defaultBranch": "refs/heads/master", "remoteUrl": "https://fabrikam.visualstudio.com/DefaultCollection/_git/Fabrikam" }, "pullRequestId": 1, "status": "completed", "createdBy": { "displayName": "Jamal Hartnett", "url": "https://fabrikam.vssps.visualstudio.com/_apis/Identities/54d125f7-69f7-4191-904f-c5b96b6261c8", "id": "54d125f7-69f7-4191-904f-c5b96b6261c8", "uniqueName": "[email protected]", "imageUrl": "https://fabrikam.visualstudio.com/DefaultCollection/_api/_common/identityImage?id=54d125f7-69f7-4191-904f-c5b96b6261c8" }, "creationDate": "2014-06-17T16:55:46.589889Z", "closedDate": "2014-06-30T18:59:12.3660573Z", "title": "my first pull request", "description": " - test2\r\n", "sourceRefName": "refs/heads/mytopic",

  76. Incoming WebHook as resource with trigger Additional conditions for dynamic

    payload evaluation

  77. Calculate PR specific variables Delete deployment Delete database Delete Identities

  78. None

  79. ▪ ▪ ▪

  80. ▪ ▪ ▪ Pipeline Agent Docker Container Pipeline Job

  81. None
  82. None
  83. None

  84. ▪ ▪ ▪

  85. Pipeline Agent Docker Network Container Pipeline Job Build Container Publish

    Container Container Job Container API App Container SQL Server Deploy DB Run Test Docker Registry
  86. None

  87. Container Resources

  88. Matrix → run test in different environments in parallel Dynamic

    service container selection based on matrix variable

  89. DB schema deployment Run integration / system tests

  90. Docker network container alias Docker network container alias

  91. None

  92. ▪ ▪

  93. None
  94. None
  95. None
  96. None
  97. None
  98. None
  99. None
  100. None
  101. None
  102. None
  103. None
  104. None