[GHC DevOps Group] A solution for storing build artifacts
Karpov, Mark
mark.karpov at tweag.io
Tue Mar 20 15:14:11 UTC 2018
Hello,
I'd like to share a solution for storing build artifacts we've come up
with. The solution is to use S3 to store N last artifacts per job on Circle
CI and also on AppVeyor. Auth info can be stored in environment variables
if we're careful to use the following settings:
* For Circle CI, there is "Pass secrets to builds from forked pull
requests", which should be set to "off". This way only pull requests from
the same repo will have access to sensitive environment variables.
* For AppVeyor, similarly, there is "Enable secure variables in pull
requests from the same repository only" (should be enabled).
Then we can put the key that AWS uses for authentication in an environment
variable and either
* Use AWS CLI utility and do some bash coding around it.
* Create a little application that will handle uploading to S3 with all the
necessary logic.
By the logic I mean that we perhaps should do some clean-up, such as
deletion of old files.
Let me know if this sounds good to you, and if so, I could start on this.
Cheers,
Mark
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.haskell.org/pipermail/ghc-devops-group/attachments/20180320/dac7b20c/attachment.html>
More information about the Ghc-devops-group
mailing list