Build your first component
This topic tells you how to use Tanzu Supply Chain to build a component.
CautionTanzu Supply Chain is currently in beta and is not intended for production use. It is intended only for evaluation purposes for the next generation Supply Chain. For the current Supply Chain solution, see the Supply Chain Choreographer documentation.
Prepare
Build a SupplyChain resource if you do not already have one. For how to build one, see Build your first SupplyChain.
Get started
In Build your first Supply Chain, you built a SupplyChain resource that retrieves the source code from a Git repository, and builds and packages it as a Carvel package. The SupplyChain resource then initiates a pull request to transfer the Carvel package to a GitOps repository, which enables the installation of the built package on the Run clusters.
This topic tells you how to create a component that you can use in your SupplyChain resource for unit-testing your Maven apps. You will create a component called maven-unit-tester, which will run unit tests on the source pulled by the source-git-provider stage.
Run:
tanzu supplychain component get source-git-provider-1.0.0 --show-details
Example output:
...
📤 Outputs
git
├─ digest: $(resumptions.check-source.results.sha)
├─ type: git
└─ url: $(resumptions.check-source.results.url)
source
├─ digest: $(pipeline.results.digest)
├─ type: source
└─ url: $(pipeline.results.url)
...
Create a Tekton Pipeline
The first step for creating a Component resource is to make a Tekton Pipeline resource that includes the logic the component uses. In this case, maven-unit-tester:
- Obtains the source code extracted by the
source-git-providercomponent. - Uses the source code as input.
- Runs the unit test command on the source repository.
Tekton Pipeline:
- Defines
parametersthat a developer can provide by using the workload. - Creates a shared
workspaceto store intermediate files, such as the source code from thesource-git-providerstage. - Provides tasks that run the unit-testing logic.
To create a Tekton Pipeline:
-
Define
parametersas shown in the following YAML:--- apiVersion: tekton.dev/v1 kind: Pipeline metadata: name: maven-unit-tester-1.0.0 spec: description: Test maven application using mvn test command params: - description: url of source registry image name: source-url type: string - description: sub directory in source to become root dir for build name: sub-path default: "." type: string - description: The test command to run in my task name: testcmd type: string - description: The test command to run in my task name: workload-name type: string -
Define a Tekton workspace as shown in the following YAML:
workspaces: - name: shared-data -
Add two tasks to the
Pipelineresource. Task 1 pulls the output fromsource-git-providerand puts it in the workspaceshared-datathat was defined in thePipelineresource earlier. Task 2 runs the unit tests and records the output as a Tekton Result.See the following example YAML:
tasks: # task 1 pulls the output from source-git-provider and puts it in a workspace called shared-data - name: fetch-source params: - name: url value: $(params.source-url) taskRef: kind: Task name: fetch-tgz-content-oci workspaces: - name: store workspace: shared-data # task 2 runs the unit tests - name: test runAfter: - fetch-source params: - name: sub-path value: $(params.sub-path) - name: testcmd value: $(params.testcmd) - name: workload-name value: $(params.workload-name) taskSpec: params: - name: sub-path - name: testcmd - name: workload-name results: - description: Error message if things failed name: message type: string steps: - name: test image: maven env: - name: HOME value: /tekton/home/ script: |- #!/usr/bin/env sh set -eu ls -al $(workspaces.store.path) cd $(workspaces.store.path)/$(params.sub-path) set +e $(params.testcmd) testval=$? set -e if [ $testval -ne 0 ]; then echo "Unit tests stage failed. Please run 'tanzu workload logs $(params.workload-name)' to see the run logs for more details." | tee "$(results.message.path)" exit $testval fi stepTemplate: computeResources: {} securityContext: allowPrivilegeEscalation: false capabilities: drop: - ALL runAsNonRoot: true runAsUser: 1001 seccompProfile: type: RuntimeDefault workspaces: - name: store workspace: shared-data -
Add the version of the pipeline in the name of the YAML file and the name of the pipeline. This enables you to create new versions of the pipelines without interfering with the old one.
-
Store the
Pipelineresource in thepipelinesdirectory created by the CLI asmaven-unit-tester-1.0.0.yaml, as shown in the following YAML:--- apiVersion: tekton.dev/v1 kind: Pipeline metadata: name: maven-unit-tester-1.0.0 spec: description: Test maven application using mvn test command params: - description: url of source registry image name: source-url type: string - description: sub directory in source to become root dir for build name: sub-path default: "." type: string - description: The test command to run in my task name: testcmd type: string - description: The test command to run in my task name: workload-name type: string workspaces: - name: shared-data # My tasks starts here tasks: # task 1 pulls the output from source-git-provider and puts it in a workspace called shared-data - name: fetch-source params: - name: url value: $(params.source-url) taskRef: kind: Task name: fetch-tgz-content-oci workspaces: - name: store workspace: shared-data # task 2 runs the unit tests - name: test runAfter: - fetch-source params: - name: sub-path value: $(params.sub-path) - name: testcmd value: $(params.testcmd) - name: workload-name value: $(params.workload-name) taskSpec: params: - name: sub-path - name: testcmd - name: workload-name results: - description: Error message if things failed name: message type: string steps: - name: test image: maven env: - name: HOME value: /tekton/home/ script: |- #!/usr/bin/env sh set -eu ls -al $(workspaces.store.path) cd $(workspaces.store.path)/$(params.sub-path) set +e $(params.testcmd) testval=$? set -e if [ $testval -ne 0 ]; then echo "Unit tests stage failed. Please run 'tanzu workload logs $(params.workload-name)' to see the run logs for more details." | tee "$(results.message.path)" exit $testval fi stepTemplate: computeResources: {} securityContext: allowPrivilegeEscalation: false capabilities: drop: - ALL runAsNonRoot: true runAsUser: 1001 seccompProfile: type: RuntimeDefault workspaces: - name: store workspace: shared-data
Create a SupplyChain Component
The section describes how to write a Component manifest that defines the following:
-
Configuration for a
Componentthat is exposed as part of the Developer API. This is the configuration that a platform engineer can override at aSupplyChainlevel or that a developer can provide by using theWorkloadif a platform engineer does not override it at theSupplyChainlevel. -
Inputs, which is a list of namedOutputsfrom a previous stage in aSupplyChainresource that the currentComponentresource depends on. -
Outputs, which are named outputs from this component that anotherComponentresource can use asInputs. -
The Pipeline Run Definition section, which defines the work performed by this component.
spec.pipelineRunis used to create a TektonPipelineRunand has many similarities. -
Define the
Componentresource configuration as shown in the following YAML:--- apiVersion: supply-chain.apps.tanzu.vmware.com/v1alpha1 kind: Component metadata: name: maven-unit-tester-1.0.0 spec: description: Execute a maven unit test command using the mvn CLI config: - path: spec.test.cmd schema: description: | Unit testing mvn command to run required: - cmd type: string default: "mvn test" example: "mvn test" -
Define
Componentinputs and outputs. In this case, the output of thesource-git-providercomponent is used as an input for themaven-unit-testercomponent:inputs: - name: source type: source -
Define
ComponentPipelineRundetails. ThePipelineresource created earlier is referenced here. The values are passed from theWorkloadandInputsto satisfy the parameters for thePipelineresource. See the following example YAML:pipelineRun: params: - name: source-url value: $(inputs.source.url) - name: sub-path value: $(workload.spec.source.subPath) - name: testcmd value: $(workload.spec.test.cmd) - name: workload-name value: $(workload.metadata.name) pipelineRef: name: maven-unit-tester-1.0.0 taskRunTemplate: podTemplate: securityContext: fsGroup: 1000 runAsGroup: 1000 runAsUser: 1001 workspaces: - name: shared-data volumeClaimTemplate: spec: accessModes: - ReadWriteOnce resources: requests: storage: 1Gi -
Store the
Componentresource in thecomponentsdirectory created by the CLI asmaven-unit-tester-1.0.0.yaml. See the following example YAML:--- apiVersion: supply-chain.apps.tanzu.vmware.com/v1alpha1 kind: Component metadata: name: maven-unit-tester-1.0.0 spec: description: Execute a maven unit test command using the mvn CLI inputs: - name: source type: source config: - path: spec.test.cmd schema: description: | Unit testing mvn command to run required: - cmd type: string default: "mvn test" example: "mvn test" pipelineRun: params: - name: source-url value: $(inputs.source.url) - name: sub-path value: $(workload.spec.source.subPath) - name: testcmd value: $(workload.spec.test.cmd) - name: workload-name value: $(workload.metadata.name) pipelineRef: name: maven-unit-tester-1.0.0 taskRunTemplate: podTemplate: securityContext: fsGroup: 1000 runAsGroup: 1000 runAsUser: 1001 workspaces: - name: shared-data volumeClaimTemplate: spec: accessModes: - ReadWriteOnce resources: requests: storage: 1Gi
Install the component
You can now use the make install target created by the tanzu supplychain CLI to install the new Component and Pipeline resources to see if they reconcile.
Install the component by running:
NAMESPACE=mysupplychains make install
This command also displays any errors that Tekton throws.
Next Steps
Add your new Component to a SupplyChain. For instructions, see Add stages to your Supply Chain.
Useful links
