Hypothetical Scenario: The travel processing application is now in production, it faces frequent periods of high stress and strain as it serves thousands of users who want to book their trips during holidays and special events. The development team knows how vital it is to have a strong and dependable CI/CD pipeline to ensure the application can cope with the varying demand and stay fast and secure. The team also has to comply with industry audit and compliance requirements that apply to the software delivery process, such as security scans, dependency management, secret protection, manual approvals, and audit trails. The team also needs to generate and maintain a software bill of materials (SBOM) for the application, which is a list of software components that make up the application, including their origins, versions, licenses, and dependencies. An SBOM helps the team to identify and manage the risks associated with the software supply chain, such as vulnerabilities, license violations, or outdated components.
- Quality Assurance: this pipeline ensures code quality and security, reducing the likelihood of critical issues.
- Comprehensive Testing: Extensive testing, including integration, security, end-to-end and performance checks, guarantees a robust application.
- Adaptability: The pipeline is built using templates and conditional parameters. This design allows the team to easily modify or extend pipeline stages to accommodate evolving project requirements.
- Demonstration: Developers can see the full CI/CD process in action, making it easier for new team members to learn and adapt.
- Reusable Template: The pipeline serves as a reusable template for other projects within the enterprise, promoting consistency and best practices across the organization.
As mentioned before this repository builds on a copy of the SAP-samples/cap-sflight application, the repository already has working github actions, inside which is a node.js.yml file which contains many of the steps used in the BUILD stage of the advanced pipeline.
The lint settings are as provided in the CAP-SFLIGHT sample
I see a lot of code in the wild that doesn't use linting, a bit of a pet hate, when I do a code review the first thing I normally do is check the lint results, often if the lint hasn't been run it will return 1000s of issues, most of them very easy to fix warnings, once you remove you are left with just errors. Code that isn't linting is often very hard to reason with, that is hard to follow and find issues, this creates a lot of unnecessary complexity, often it is either the developer is unfamiliar with a language or framework, experimenting as they go, under tight deadlines and told don't do what is not needed, or often the developer(s) have personal preferences and habits that differ from the linting rules SAP CAP and or SAPUI5 provide (NIH not-invented-here).
- linting can improve the code quality and consistency by enforcing a common set of coding standards across the team and company, similar to SAP Code Inspector (SCI/ATC/SLIN etc) in ABAP, set up rules and ensure they adopted before code can be transported.
- linting can reduce the number of errors or bugs by detecting and preventing syntax or logic errors, highlighting potential code smells and or security issues.
- linting enhances the collaboration and communication among developers by providing, clear and concise feedback on changes, it failed cause you used tabs and not spaces.
- including linting in a pipeline can save the time and resources which would otherwise be need to review manually.
see CDS Lint & ESLint.
Back to the Top
With unit tests
- You can isolate and identify and fix bugs easily.
- You can improve the design and structure of your code and make it more readable and maintainable.
- You get instant feedback and visibility on the test outcomes and code quality metrics.
In the pipeline the existing unit tests from the copied application were used, to get the test results and code coverage to show in the azure pipeline run summary, a couple of minor changes were added. In the main package.json to ignore the wdi5 test files from the unit test and to output the unit test results to the junit format, and for the code coverage gave some settings for acceptable coverage and where to put the coverage results, the following changes were made.
// File: package.json
"jest": {
...
"modulePathIgnorePatterns": [
"<rootDir>/azure-pipelines/e2e"
],
"collectCoverage": true,
"collectCoverageFrom": [
"./srv/**"
],
"coverageDirectory": "./test-results/coverage",
"coverageThreshold": {
"global": {
"lines": 69,
"functions": 59,
"statements": -54
}
}
},
"jest-junit": {
"suiteNameTemplate": "{filepath}",
"outputDirectory": "./test-results/junit",
"outputName": "TEST-cap_server.xml"
},
In the pipeline yaml to Review test results
PublishTestResults@2 - Publish test results v2 task was used.
# File: azure-pipelines/azure-pipelines-advanced.yml
- task: PublishTestResults@2
displayName: Publish Test Results
inputs:
testResultsFormat: "JUnit"
testResultsFiles: "**/TEST-*.xml"
mergeTestResults: false
Code coverage helps you determine the proportion of your project's code that is actually being tested by tests such as unit tests. To increase your confidence of the code changes, and guard effectively against bugs, your tests should exercise - or cover - a large proportion of your code.
PublishCodeCoverageResults@1 - Publish code coverage task was used.
# File: azure-pipelines/azure-pipelines-advanced.yml
- task: PublishCodeCoverageResults@1
displayName: Publish Code Coverage Results
inputs:
codeCoverageTool: Cobertura
summaryFileLocation: $(System.DefaultWorkingDirectory)/test-results/coverage/cobertura-coverage.xml
see CDS Testing.
Back to the Top
With integration tests
- You can verify that your code works as expected and meets the functional and non-functional requirements.
- You can get immediate feedback and visibility on the test outcomes and identify any issues or risks.
- You can automate the testing process and save time and resources.
- You can check that your code integrates well with other components and systems and does not cause any conflicts or errors.
In the pipeline I reused the existing OPA5 Karma tests, for both the applications I added the karma-coverage and karma-junit-reporter npm modules. To do so is a simple command.
npm install --prefix ./app/travel_processor karma-coverage karma-junit-reporter --save-dev
To get the output of the tests to be published into the test results and coverage results as mentioned above, in the karma.conf.js the reporters were added and as well and the results configured to use the same directories as unit tests use. Note there is no custom code in the Fiori apps so no coverage results.
// File: app/travel_processor/karma.conf.js
config.set({
..
reporters: config.ci ? ['progress', 'junit', 'coverage'] : ["progress"],
junitReporter: {
outputDir: '"../../../../test-results/junit',
outputFile: 'TEST-travel_processor.xml',
suite: '',
useBrowserName: true
},
coverageReporter: {
type: 'html',
dir: '../../../../test-results/coverage'
},
..
});
see SAPUI5 Test Automation.
To get the project to build in a pipeline I added the mbt npm package to the project, could easily have added the command in the yaml. Below shows a simple command to use the mta-sqlite.yaml as the build file, to avoid the hassle of turning on and off HANA Cloud in Free Tier, @cap-js/sqlite was used instead of HANA.
# package.json
"build:cf:sqlite": "cp mta-sqlite.yaml mta.yaml && mbt build && rm mta.yaml"# File: azure-pipelines/azure-pipelines-advanced.yml
npm install mbt
npm run build:cf:sqlite
To share the MTAR file between stages see Publish and download pipeline Artifacts
# File: azure-pipelines-advanced.yml
steps:
- publish: $(System.DefaultWorkingDirectory)/bin/WebApp
artifact: WebApp
steps:
- download: current
artifact: WebApp
The deploy depends on the success of the build stage, it uses the SAP Piper cfcli docker image to give the pipeline the Cloud Foundry CLI capability needed for deploying. The following declares the container cfcli which points to the ppiper/cf-cli docker image.
# File: azure-pipelines/azure-pipelines-advanced.yml
containers:
- container: cfcli
image: "ppiper/cf-cli"
options: --user 0:0 --privileged
Then in the deploy job the vmimage makes use of the cfcli container which provides the Cloud Foundry CLI to perform the cf deploy command.
# File: azure-pipelines/azure-pipelines-advanced.yml
- stage: Deploy
displayName: Deploy to DEV
variables:
- group: cloudfoundry-variables
dependsOn:
- Build
jobs:
- job: deploy
pool:
vmImage: "ubuntu-latest"
container: cfcli
steps:
- checkout: none
- download: current
artifact: WebApp
- bash: |
cf login -u "$(CF-USER)" -p "$(CF-PASSWORD)" -a "$(CF-API)" -o "$(CF-ORG)" -s "$(CF-SPACE)"
cf deploy $(Pipeline.Workspace)/WebApp/*.mtar -fNote above the use of the cloudfoundry-variables variable group.
Variable groups store values and secrets that you might want to be passed into a YAML pipeline or make available across multiple pipelines. You can share and use variable groups in multiple pipelines in the same project.
3 variable groups have been created for the different values and secrets needed in the advanced pipeline.
see Add & use variable groups.
Back to the Top
In this stage and further on we introduce and use templates and conditional parameters. Azure DevOps templates are a way of defining reusable content, logic, and parameters in YAML pipelines. They can help you speed up development, secure your pipeline, and avoid repeating the same code in multiple places. You can use conditions to specify when a template, a stage, a job, or a step should run or not. Conditions are written as expressions in YAML pipelines.
# File: templates/npm-steps.yml
parameters:
- name: runTest
type: boolean
default: false
steps:
- script: npm install
- ${{ if eq(parameters.runTest, true) }}:
- script: npm test
This template defines a parameter called runTest that is a boolean value and defaults to false, if true the step is run, else skipped. It also defines two steps that run npm install and npm test commands. The second step only runs if the parameter runTest is true.
# File: azure-pipelines.yml
jobs:
- job: Linux
pool:
vmImage: 'ubuntu-latest'
steps:
- template: templates/npm-steps.yml # Template reference
parameters:
runTest: true # Override the default value of the parameter
This YAML file uses the template with the parameter runTest set to true. This means that both steps in the template will run for the Linux job.
See Template usage reference
Back to the Top
Snyk is a popular security platform and tool that specializes in identifying and mitigating security vulnerabilities and issues in software applications and their dependencies. It provides a comprehensive approach to security by focusing on open-source libraries and third-party components, helping organizations proactively manage and remediate vulnerabilities.
Snyk is one of many security scan extensions that are available in the Azure Devops marketplace, Snyk is very easy to sign up for free and get running, a Snyk Api token is needed to integrate a task in your pipeline.
Benefits of using such as tool -
Vulnerability Detection: Identifies security vulnerabilities and issues within your code and dependencies.
Early Detection: Scans code during development, catching vulnerabilities before they reach production.
Automatic Remediation: Provides actionable steps to fix vulnerabilities and can even automate the remediation process.
Dependency Security: Ensures the security of third-party dependencies and open-source libraries.
Compliance: Helps maintain compliance with security standards and regulations.
Shift Left Security: Integrates security earlier in the development process.
Continuous Monitoring: Supports ongoing security monitoring as code changes are pushed.
Enhanced Security Awareness: Increases security awareness among developers.
Improved Code Quality: Addresses not just security but also code quality issues.
Customizable and Integratable: This is common, the service can be tailored to specific enterprise needs and then integrated into CI/CD pipelines.
Cost Savings: Prevents costly security breaches and downtime.
The SnykSecurityScan task simple to use. See Example of a Snyk task to test a node.js (npm)-based application
# File: azure-pipelines/azure-pipelines-advanced.yml
- stage: Scan
displayName: Security Scan
dependsOn:
- Deploy
jobs:
- job: scan
steps:
- template: templates/steps/snykSecurityScan.yml
parameters:
runJob: variables['securityscan.enabled']The Scan task is in a template found at azure-pipelines/templates/steps/snykSecurityScan.yml
# File: azure-pipelines/templates/steps/snykSecurityScan.yml
parameters:
- name: runJob
type: string
default: false
steps:
- task: SnykSecurityScan@1
condition: eq(${{ parameters.runJob }}, 'true')
inputs:
serviceConnectionEndpoint: "Snyk API" #Service Connection name in project settings
testType: "app"
monitorWhen: "never"
failOnIssues: true
projectName: "$(Build.Repository.Name)"
Register a service connection in the Project Settings and give it the Snyk API token you created.
Here is an example of a known vulnerability in scan results.
Back to the Top
End-to-end testing (E2E testing) is a software testing methodology that evaluates the entire application from start to finish to ensure that all components and integrations work together as expected. It simulates real-world user scenarios to verify that the software behaves correctly in a production-like environment. End-to-end testing is typically performed on a complete, integrated system to validate its functionality, performance, and reliability.
Benefits of End-to-End Testing:
- Improved Quality: E2E testing ensures that the software meets user requirements and behaves correctly, enhancing its overall quality and reliability.
- Early Issue Detection: By detecting issues early in the development cycle, E2E testing reduces the cost and effort required to fix defects.
- Enhanced User Experience: It helps create a better user experience by identifying and resolving usability and functionality issues.
- Increased Confidence: Running E2E tests before deployment provides confidence that the application works as expected, reducing the risk of post-deployment issues.
- Reduced Manual Testing: Automation of E2E tests can significantly reduce the need for manual testing, making the testing process more efficient.
Different Types of End-to-End Testing:
- UI Testing: UI testing focuses on the user interface of your application. It verifies that the user interface elements are correctly rendered and that user interactions produce the expected results.
- API Testing: API testing involves testing the interactions between different components of your application through APIs (Application Programming Interfaces). This ensures that data is correctly transmitted and processed between services. Tools like Postman, REST Assured, or automated scripting in programming languages (e.g., Python) can be used for API testing.
- Load Testing: Load testing assesses your application's performance under a specific load, typically by simulating a large number of concurrent users or requests.
- Cross-Browser/Compatibility Testing: This type of testing ensures that your application works consistently across different web browsers and versions. Tools like BrowserStack and Sauce Labs can help with cross-browser testing.
- Performance Testing: Besides load testing, performance testing also includes stress testing, scalability testing, and endurance testing to evaluate the system's performance under different conditions
Below show a couple of examples, UI, Cross-Browser and Performance Testing.
wdi5 is designed to run cross-platform end-to-end tests on a UI5 application, with selectors compatible to OPA5.
- Automated Testing: wdi5 test run in a pipeline, ensures that the application works as expected in different environments and devices.
- Early Bug Detection: By catching bugs and issues early, you can reduce the cost and effort required to fix them compared to finding them in later stages.
- Parallel Execution wdi5 supports parallel test execution, allowing you to run tests concurrently on multiple browser instances, which significantly reduces testing time and speeds up your CI/CD pipeline.
Some really good instructions for Using the test library with SAP Build Workzone, standard edition with the latest version of wdi5.
Above shows the wdi5 tests running parallel both in Edge and Chrome browsers at same time.
To write wdi5 test code is very similar to how you write Opa5 integration test code.
// File: azure-pipelines/e2e/webapp/test/e2e/Journey.test.js
it("should create a travel request", async () => {
let beginDate = new Date();
let endDate = new Date(Date.now() + 6.048e+8);
await FioriElementsFacade.execute((Given, When, Then) => {
Then.onTheMainPage.iSeeThisPage();
Then.onTheMainPage.onTable().iCheckAction("Create", { enabled: true });
// Click on Create button
When.onTheMainPage.onTable().iExecuteAction("Create");
Then.onTheDetailPage.iSeeObjectPageInEditMode();
When.onTheDetailPage.iGoToSection("General Information");
// Value help Agency ID
When.onTheDetailPage
.onForm({ section: "Travel", fieldGroup: "TravelData" })
.iOpenValueHelp({ property: "to_Agency_AgencyID" });
When.onTheDetailPage.onValueHelpDialog().iSelectRows({ 0: "070006" });To run wdi5 call a script in the package.json, check the file .env.template for needed environment variables.
"scripts": {
"wdi5:headless": "wdio run ./wdio.conf.js --headless",
"wdi5:edge:headless": "wdio run ./wdio.edge.conf.js --headless",
"wdi5:browserstack": "wdio run ./wdio.browserstack.conf.js"Below is the job template, PublishHtmlReport@1 publishes the wdio-timeline-reporter.
# File: azure-pipelines/templates/steps/wdi5-test.yml
- name: scriptName
type: string
default: wdi5:headless
- name: runJob
type: string
default: false
jobs:
- job: WDI5Tests
condition: eq(${{ parameters.runJob }}, 'true')
pool:
vmImage: ${{ parameters.vmImage }}
# vmImage: macOS-latest
steps:
- pwsh: |
npm install --omit=dev
npm run ${{ parameters.scriptName }}
workingDirectory: $(System.DefaultWorkingDirectory)/azure-pipelines/e2e
env:
wdi5_username: $(wdi5_username)
wdi5_password: $(wdi5_password)
BASE_URL: $(URL_LPD)
displayName: WDI5 test
- task: PublishHtmlReport@1
condition: succeededOrFailed()
inputs:
reportDir: "$(System.DefaultWorkingDirectory)/test-results/e2e/timeline-report.html"
tabName: "WDI5 Tests"
Above is the timeline report for the wdi5 can be configured to take screenshots and videos.
This job uses BrowserStack to run our WDI5 BTP Workzone tests across a variety of devices and browsers, eg iPhone, Android, iPad etc.
- Cross-Browser and Cross-Platform Testing: One of the primary advantages of using BrowserStack is its ability to simulate a wide variety of web browsers, browser versions, and operating systems. This ensures that your application works consistently across different browser and platform combinations.
- Device and OS Coverage: BrowserStack provides access to a vast number of real mobile devices and operating systems, allowing you to test your mobile applications on a wide range of devices. This is particularly valuable for mobile app E2E testing, where device fragmentation can be a challenge.
- Screenshots and Video Recording: BrowserStack provides features to capture screenshots and record video during test executions. This can be valuable for debugging and documenting issues.
- Geographic Testing: You can perform E2E tests from different geographic locations, helping you identify and address potential performance and latency issues that users in different regions might experience.
- Parallel Testing: BrowserStack allows you to run E2E tests in parallel on multiple browser and device combinations, significantly reducing test execution time. This is crucial for speeding up your CI/CD pipeline.
https://www.browserstack.com/ offers a free trial, which gives 100 minutes of automated browser testing, you can sign up and get an Access Key and Username.
Go to the market place and find BrowserStack Azure DevOps Extension here you will find the instructions Integrate BrowserStack Automate with Azure Pipelines.
The instructions show you step by step how create a service connection providing the Access Key and Username.
The instructions also guide you through using the two tasks they provide.
BrowserStackConfig@0 the configuration task, link to the service end point and provide the steps and environment variables necessary for running the wdio.browserstack.conf.js file.
The following shows how to configure the wdio.conf.js to use Browserstack Service.
BrowserStackResults@1 is used to show the "BrowserStack" run results.
PublishPipelineArtifact@1 is used to store the webdriver logs as an artifact of the pipeline run.
# File: azure-pipelines/templates/steps/browserstack-test.yml
parameters:
- name: scriptName # the script to run
type: string
default: ''
- name: runJob # run the job
type: string
default: false
jobs:
- job: browserstack
condition: eq(${{ parameters.runJob }}, 'true')
steps:
- task: BrowserStackConfig@0
inputs:
BrowserStackServiceEndPoint: "BrowserStack" # The service connection we created
- script: |
npm install
npm run ${{ parameters.scriptName }}
workingDirectory: $(System.DefaultWorkingDirectory)/azure-pipelines/e2e # where tests are
env:
wdi5_username: $(wdi5_username) # needed to authenticate BTP
wdi5_password: $(wdi5_password) # needed to authenticate BTP
BASE_URL: $(URL_LPD)
BROWSERSTACK_BUILD_NAME: $(BROWSERSTACK_BUILD_NAME)
displayName: "Run BrowserStack"
- task: PublishPipelineArtifact@1 #save the logs
condition: succeededOrFailed()
inputs:
targetPath: "$(System.DefaultWorkingDirectory)/e2e/logs"
artifactType: "pipeline"
artifactName: "logs"
displayName: "Publish wdi5 logs"
- task: BrowserStackResults@1 # report on tests
condition:
inputs:
browserstackProduct: "automate"Below you can see the Browserstack summary for WDI5 BTP Workzone Launchpad tests being successfully run across a 6 different browsers and devices.
You can drill down from the pipeline report and go directly to the browserstack and see the detailed result of each run, if you have configured you can see a video replay of the e2e individual tests.
This task runs k6 performance tests against the application deployed to the BTP Workzone Standard Launchpad, testing this way allows you truly simulate at scale how users would interact with the application under such conditions.
k6 is a free and open-source testing tool for load and performance testing of APIs, microservices, and websites.
Why k6?
- k6 tests are written in JavaScript which means a familiar low barrier to entry for developers.
- k6 is open source, which means it is free to use and can be customized as needed. This can be particularly useful for small teams or individual developers who may not have the budget for a commercial performance testing tool like LoadRunner.
- k6 collects a wide range of performance metrics during testing, including response times, error rates, and resource utilization. These metrics can be used to identify performance issues and ensure that SLAs are being met.
- k6 allows developers to set thresholds for performance metrics. If a threshold is exceeded during testing, k6 can automatically fail the test, indicating that the SLA has not been met.
- k6 has integrations with a wide range of tools, including Grafana, InfluxDB, and Jenkins etc. This can make it easier to analyse and visualize test results and integrate into DevOps workflows.
- k6 has many converters, making it easy to convert existing JMeter, Postman, Swagger/OpenAPI and HAR files into k6 tests.
- k6 is very lightweight which means it can be run from any location, by anyone, very handy for determine location based issues.
The following provides comprehensive instructions Load testing with Azure Pipelines showing how to create simple k6 tests and run them in an Azure DevOps Pipeline.
To run go to the market place and find the k6 Load Testing extension and get it.
Below is the template used to call the k6 script.
k6-load-test@0 task accepts a filename, in the pipeline it points to capsflightLaunchpad.js here the code is set to authenticate a user to use the BTP Launchpad and run load tests for 90 seconds ramping up and down to 10 virtual users, for proper testing adjust the numbers to something more relevant to an enterprise scenario. The code performs the creation of a Travel Process request and deletes it, In the code the URL and APPID need to point to your BTP Launchpad and the APPID the html5 repository gives your app.
# File: azure-pipelines/templates/steps/performance-test.yml
parameters:
- name: filename
type: string
default: ''
- name: runJob
type: string
default: false
jobs:
- job: k6loadtest
condition: eq(${{ parameters.runJob }}, 'true')
steps:
- task: k6-load-test@0
inputs:
filename: ${{ parameters.filename }} # file with tests
env:
K6_USERNAME: $(K6_USERNAME) # BTP Workzone User
K6_PASSWORD: $(K6_PASSWORD) # BTP Workzone Password
- task: PublishHtmlReport@1 # Publisth the report
condition: succeededOrFailed()
inputs:
reportDir: "$(System.DefaultWorkingDirectory)/result.html"
tabName: "K6 Performance Results"k6 code is very easy to write, below shows the code to simulate the creation of a Travel request calling the BTP Workzone app using HTTP calls only .
export let options = {
stages: [
{ target: 10, duration: "30s" }, // Linearly ramp up from 1 to 10 VUs (virtual users) during first minute
{ target: 10, duration: "30s" }, // Hold at 10 VUs for the next 30 seconds
{ target: 0, duration: "30s" } // Linearly ramp down from 10 to 0 VUs over the last 30 seconds
// // Total execution time will be ~90 seconds
],
thresholds: {
"http_req_duration": ["p(95)<500"], // We want the 95th percentile of all HTTP request durations to be less than 500ms
"http_req_duration{staticAsset:yes}": ["p(99)<250"], // Requests with the staticAsset tag should finish even faster eg SAPUI5 CDN
}
};Above is the setup for the test, 3 stages of 30 seconds, the first stage we ramp up to 10 virtual users, we hold at 10 for 30 seconds and then ramp down for 30 seconds.
Looking at the report, for the 90 seconds the performance test ran, the test performed 3684 requests, the fastest request being 29.46 miliseconds, maximum request time was 3.2 seconds, 95% of all requests came in at 132.70 milliseconds. In the thresholds we set the 95% of all calls needed to be less than 500ms which they were so it passed. k6 is very handy for testing the application-autoscaler settings.
Above shows a simple example of how to visulalize the k6 results in the Pipeline run results. For other ways see Ways to visualize k6 results.
This job allows you to integrate your Azure Devops pipeline with the SAP Cloud Transport Management Service (CTMS). It uploads the Multi Target Application archive (mtar) created in the Build stage and then imports it into the target CTMS Nodes queue ready for import.
The benefits of including CTMS into your CI/CD pipeline.
- Enterprise-ready change and release management process
- Audit trail of changes and transports
- Separation of concerns between developers and operators
The prerequisites:
- You have an instance of Cloud Transport Management
- Set Up the Environment to Transport Content Archives directly in an Application
.
This provides the Client_ID and CLIENT_SECRET values needed for calling the TMS API file upload service.
The following is the configuration block in the main pipeline. Set uploadToCtms.enabled to "true" to enable.
# File: azure-pipelines/azure-pipelines-advanced.yml
- stage: Upload
displayName: Upload to TMS queue
dependsOn:
- E2E_tests
variables:
- group: ctms-variables
jobs:
- template: templates/jobs/uploadToCtms.yml
parameters:
runJob: variables['uploadToCtms.enabled']
ctmsNode: QAS_MTA #The Node you want the MTAR to be added to Above shares a variable group ctms_variables shown below.
| KEY | Value |
|---|---|
| CLIENT_ID | comes from the Service Instance Service Key |
| CLIENT_SECRET | comes from the Service Instance Service Key |
| TMS_API | https://transport-service-app-backend.ts.cfapps.\<region>.hana.ondemand.com/v2 |
| TOKEN_URL | https://<myctmsinstance>.authentication.<region>.hana.ondemand.com/oauth/token |
The pipeline calls a template azure-pipelines/templates/jobs/uploadToCtms.yml which downloads the MTAR artifact created in the build stage and uses it to call TMS_API authenticated using the TOKEN_URL with the CLIENT_ID and CLIENT_SECRET provided via the shared environment variables.
# File: azure-pipelines/templates/jobs/uploadToCtms.yml
parameters:
- name: ctmsNode #The node you want to load the *.mtar file
type: string
default: QAS_MTA
- name: runJob #Run the job or not
type: string
default: true
jobs:
- job: uploadToCtms
condition: eq(${{ parameters.runJob }}, 'true')
steps:
- checkout: self
- script: npm install
displayName: NPM install
- download: current
artifact: WebApp
- script: npm run ctmsupload
workingDirectory: $(System.DefaultWorkingDirectory)/azure-pipelines/ctms
env:
TMS_API: $(TMS_API) #ctms-variables
TOKEN_URL: $(TOKEN_URL) #ctms-variables
CLIENT_ID: $(CLIENT_ID) #ctms-variables
CLIENT_SECRET: $(CLIENT_SECRET) #ctms-variables
CTMS_NODE: ${{ parameters.ctmsNode }} #The Node to upload
USER_NAME: $(Build.RequestedForEmail) #Email address of the GIT committer
DESCRIPTION: "$(Build.DefinitionName): $(Build.SourceVersionMessage)" #RepoName - GIT Message
MTA_PATH: "$(Pipeline.Workspace)/WebApp" #Where to find the MTAR file
displayName: Upload to CTMSJob log shows 'Transport request 463 was created in Node QAS_MTA'.
QAS_MTA CTMS Node note the Transport Description is made up of the "pipeline name" and the "commit message" and the Owner is the person who made the commit.
NOTE the Transport Description is the name of the project - and the git commit that triggered the build.