Automating With CircleCi
13 min readI’ve been playing around with CircleCi 2.0 for the last month or two on various projects and wanted to share what I have learned during that time. A project I will be starting soon will be using create-react-app & the static build will be deployed to Now using the now-cli
. So this article will show a method for automating this with CircleCi using workflows.
Getting Started
While create-react-app
does it’s thing go make some coffee or watch this YouTube video…tis my favorite time of year!
A few minor notes can be found in the README on the repository about some of the configuration that has changed with react@16
as well as create-react-app
& jest
.
I use some devDependencies that I like in my stack, use them or don’t totally up to you:
Explanation the devDependencies & their configuration can be found in the README since I wanted to focus more on the CircleCi setup with this article.
Circle CI 2.0
I had never used CircleCi prior to 2.0; however, the documentation just in the last 2 months has gotten increasingly better & there are many examples on GitHub for one to look at. To add a configuration to your project you will need to add the following:
The first thing we must do is state what version of CircleCi we are using:
With CircleCi we can create jobs that will run specific segments of our build,test, or deployment process. These jobs as of 2.0 can then be ran in a workflow meaning we can run jobs in series or parallel depending on the requirements of those jobs. There is a general starting pattern that will be the same for each job we create:
NOTE: If you are new or unfamiliar with YAML syntax I would highly encourage you to use a YAML validator. If your code editor does not have an extension CircleCi provides a link to the following site. I am using the vscode-yaml-validation extension with Visual Studio Code.
The first job we will need setup is telling CircleCi to go get the code from GitHub & install the project dependencies. We will create a job called checkout_code
and use one of the many pre-built docker
images provided by CircleCi, find a list here. CircleCi operates by spinning up a container environment that your code can be ran in. If you are working on a team chances are everyone’s machines are slightly different with what versions of software they are running, etc, etc. Using continuous integration services like CircleCi, Travis CI, or the many many others your team can rest assured that the code is operating in the same environment every time it is tested, built, & deployed which means less surprises!
We will also want to specify the working directory for the environment. By default the file structure on CircleCi will look like this now:
Working in the Workspace with Workflows
CircleCi 2.0 gives us workflows and to make use of this feature we will use two commands attach_workspace
& persist_to_workspace
. At the beginning of any job in which we want to use the current workspace data in the container we will add:
Adding this command lets the current job have access to any persisted data from jobs ran before it. So having access to, for instance, the ./node_modules
directory from here on out would probably be a pretty good thing.
When persisting data we will add at the end of the job:
Now when we move on to a job that attaches the workspace we will have ~/circleci-deployment/node_modules
. If you are wondering why node_modules
is inside of circleci-deployment/
remember at the beginning of each job we state the working_directory
and that .
denotes the current directory we are located.
By using these commands in specific jobs we can now run certain jobs in parallel instead of running all jobs in series.
NOTE: When persisting to the workspace keep in mind that you cannot persist concurrently running jobs, this can only be done in series.
Caching
Caching can significantly cut down on the time it takes CircleCi to run the entire process from start to finish. The first process we tell CircleCi to do is to restore_cache
. This step will look to see if a cache exists in the working directory. If it does not this step will be skipped and CircleCi will run yarn install
to install the dependencies and then save_cache
to node_modules
in the working directory.
We tell CircleCi to save using a specific key
for the save_cache
step to use with restore_cache
. Should a cache exist when the checkout_code
job is ran it will first look for a specific yarn.lock
on the current branch, or it will look for a cache on any build on this branch, or finally the most recent cache from any branch. By setting up restore_cache
in this manner CircleCi will search for the most recent & specific cache. In the event nothing has changed yarn install
will not need to pull in new or updated dependencies, no wasted time! However let’s say we are currently using [email protected]
and we update to react@16
before pushing to our new branch: react-16-woot-woot
. First CircleCi will look for a yarn.lock
on this branch, but it’s a new branch so no dice and since it’s a new branch there are no prior builds so it reverts to the most recent cache from the most recent branch. When restoring the cache the diff will show that react
has changed and when running yarn install
yarn will go fetch and update only react
in our dependencies in the container instead of fetching all our dependencies that are listed saving a lot of time (remember how long installing create-react-app
took!).
Using Node Security Platform
I found this one day while aimlessly roaming the net and gave it a try. Similar to Snyk it will scan your dependencies looking for vulnerabilities. The package can be used by running yarn install -D nsp
and adding nsp check
to your scripts. I like using this with continuous integration because I can fail a build prior to releasing to production if a vulnerability is found. I can then check to see if this vulnerability is truly something I should be concerned about and begin work on a fix.
Many thanks to Mark Erikson for showing me how to use
yarn why
to find out why a dependency is being used and to the Yarn team for this nifty feature!
In the below I check to see if this is the production branch and check for vulnerabilities; any other branch regardless if there is a fail will pass the step with || true
for sake of getting $@#% done (I can always go look at the logs before pushing to production to see if nsp has been catching issues. A quick aside, you can write bash
directly into your YAML or reference an external script command: bash ./some_script.sh
.
For more information on Node Security Platform visit their website.
Testing
From the create-react-app
docs we must pass CI=true
when running the build and test script; and we will run the test:coverage
script to generate the coverage data needed by CodeCov. Notice we don’t persist the workspace here because we have no need for any of the data generated by this job in any following jobs. However we do need access the node_modules
thus we attach the workspace. Then we store our artifacts & test results in the container before finishing the job.
Building
I ran into a bit of a problem when deploying initially and it dealt with the PUBLIC_URL
environment variable from create-react-app
. When running locally this will be set to the path on your local machine (i.e. /chucknorris/my-project/build
). When running on CI this will end up being the path for the container. It presents a pretty sweet CORS related problem because our deployment instance from Zeit is https://someUrl-hash.now.sh
and our assets even though deployed and in the cloud do not correlate with this url.
The fix I found was to set PUBLIC_URL
at the time of the build process; by doing this I could then alias the deployment instance to whatever I had set that env var to be later on in the deployment job.
NOTE: use
now.sh
if you do not have a domain or you will be asked to purchase the domain by Zeit and the CI will hang at this prompt. If you have your own domain already just supply it as shown.
Deploying
Before writing the deployment job we will need to get the NOW_TOKEN
from Zeit and supply it as an environment variable to CircleCi.
NOTE: You will need to create an account with Zeit and can do so very easily. If you are new to Zeit’s Now platform checkout this article!
Visit Zeit & login to your account. Click on your avatar and navigate to Account Settings > Tokens. Copy the token and then navigate to CircleCi. From your homepage find the project deployment and click on it. Now click on the gear in the right corner. You should see Environment Variables in the left hand side bar, click this. Now you can add the token as an environment variable to your deployment. At build time this will be injected in place of NOW_TOKEN
authenticating the process with Zeit.
In the deployment job we must install now
globally to the container so it has access to this command.
I am currently still working on figuring out how to cache the global install since we don’t need to install this command every time we run the deployment job.
CircleCi gives us a deploy
command which works similarly to run. We will check which branch we are currently on and based on that we will know how to alias the deployment.
In the above command we tell now
to deploy (now deploy
is the default command when calling now
) the ./build directory
. We then authenticate via the CLI with the NOW_TOKEN
. We will name the deployment so that our instance comes back looking like: https://circleci-deployment-1gaff324r.now.sh
and lastly we will explicitly tell now
this is a static deployment with --static
.
NOTE: If you omit
--static
now
will default to anode
deployment because it sees apackage.json
& will run thebuild
&start
scripts from this file.
The above command once again authenticates with Zeit, but will now take https://circleci-deployment-1gaff324r.now.sh
and point it to https://circleci-deployment-beta.now.sh
a little friendlier url to show your team or customer when in development. If you have your own domain like my-domain.com
you can use that as well.
Writing the Workflow
After our deployment
job we can now begin writing the workflow for CircleCi to use. Below is what the general format will look like:
We will want to use some added bells and whistles in our workflow like requires
& filters
.
When using requires
we are setting the jobs to run in series and should, for example, checkout_code
fail the entire build will fail and stop. You can require any job as long as it was before the current job you are requiring it on. I really only want to build & deploy to Zeit when on specific branches. So if I had a branch like feat/button I don’t want to build & deploy this I only want to test that it is not breaking the code base. This is where the filters
option comes into play. You can provide it with options like branches
and tags
and to those options two more options only
and ignore
. So in my example I am only ever wanting to build & deploy when on development
, master
, or the production
branch. You can see what the workflow looks like here on the development
branch and see that the same workflow fails on the production
branch because there is currently a vulnerability here. By using the workflows we can have 3 of our jobs running concurrently because these jobs don’t depend on one another, and we can choose which jobs will fail the deployment
job.
Wrap Up
Now you have seen some of the new firepower that CircleCi 2.0 can provide you with when automating your tests, build, & deployment process. For more information and to get started with CircleCi’s examples visit the 2.0 Documentation. You can find the complete config.yaml
file in this gist and checkout the other code at the repository. As stated at the beginning this is only one of many ways you can configure things and you should experiment and find out what will work best for your project needs.
Many thanks to Macklin Underwood for his post.
Related Articles
How to build a Telegram Bot with NodeJS
My experience in building a bot for the popular Telegram Messenger Platform.
Deploying With Now
How to deploy with Zeit's Now platform.
Cody is a Christian, USN Veteran, Jayhawk, and an American expat living outside of Bogotá, Colombia. He is currently looking for new opportunities in the tech industry.