𝗖𝗜/𝗖𝗗 𝗣ipelines 𝗙or 𝗡𝗢𝗗𝗘𝗝𝗦 𝗙ull 𝗦tack 𝗔pplication

A step-by-step guide to deploying a NodeJS-based Application using Jenkins as a CI/CD tool.

I will be deploying a Banking NodeJS-based Application from scratch, complete with a fully-fledged backend, frontend, and database integration using Jenkins.

🛠️ Deployment Steps

🔹 Step 1 — Create an Ubuntu T2 Large Instance

🔹 Step 2 — Install Jenkins, Docker, and Trivy.

🔹 Step3 — Create an Instance and use mobaXterm or Putty to access the server in Windows OS

🔹 Step4 — Create a Pipeline Project in Jenkins using a Declarative Pipeline

🔹 Step 5 — Create a Sonarqube Container using Docker.

🔹 Step 6 — Install plugins Docker, NodeJs, JDK, Owasp, and Sonar-Scanner.

Step7 — Access the Real World Application

🔹 Step8 — Terminate the AWS EC2 Instance

Now, let’s get started and dig deeper into each of these steps:-

🔹 Step 1 — Launch an AWS T2 Large Instance. Use the image as Ubuntu. You can create a new key pair or use an existing one. Enable HTTP and HTTPS settings in the Security Group.

🔹 Step 3 — Create an Instance and use mobaXterm or Putty to access the server in a Windows machine.

🔹 Step 4 — Install Jenkins, Docker, and Trivy.

🔹 Step 5 — Create a Sonarqube Container using Docker.

To Install Trivy : (Step-2)

sudo apt-get install wget apt-transport-https gnupg lsb-release

wget -qO - https://aquasecurity.github.io/trivy-repo/deb/public.key | gpg --dearmor | sudo tee /etc/apt/sources.list.d/trivy.list-o /usr/share/keyrings/trivy-archive-keyring.gpg

echo "deb [signed-by=/usr/share/keyrings/trivy-archive-keyring.gpg] https://aquasecurity.github.io/trivy-repo/deb $(lsb_release -cs) main"https://aquasecurity.github.io/trivy-repo/deb $(lsb_release -cs) main"

sudo apt-get update

sudo apt-get install trivy

To Install Jenkins :

sudo apt update -y

sudo apt install openjdk-11-jre -y

curl -fsSL https://pkg.jenkins.io/debian-stable/jenkins.io-2023.key | sudo gpg --dearmor -o /usr/share/keyrings/jenkins-archive-keyring.gpg

echo "deb [signed-by=/usr/share/keyrings/jenkins-archive-keyring.gpg]

https://pkg.jenkins.io/debian-stable binary/" | sudo tee /etc/apt/sources.list.d/jenkins.list > /dev/null sudo apt update -y

sudo systemctl start jenkins

sudo systemctl status jenkins

Create a Sonarqube Container using Docker :

sudo apt-get update

sudo apt-get install ca-certificates curl gnupg sudo install -m 0755 -d /etc/apt/keyrings

echo \

echo "deb [arch=$(dpkg --print-architecture)" signed-by=/etc/apt/keyrings/docker.gpg] https://download.dock

echo "deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/trusted.gpg.d/docker.gpg] https://download.docker.com/linux/debian $(. /etc/os-release && echo

"$VERSION_CODENAME") stable" | sudo tee /etc/apt/sources.list.d/docker.list > /dev/null

sudo apt-get update

sudo apt-get install docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin

sudo apt install docker-compose

service docker restart

sudo usermod -aG docker $USER

newgrp docker

sudo chmod 666 /var/run/docker.sock

sudo systemct1 restart docker

# TO INSTALL SONARQUBE USING DOCKER RUN THE BELOW COMMAND

docker run -d --name sonar -p 9000:9000 sonarqube:lts-community

I have used port 8083 to access the Jenkins.

Now, grab your Public IP Address

<EC2 Public IP Address:8083>
sudo cat /var/lib/jenkins/secrets/initialAdminPassword

Unlock Jenkins using an administrative password and install the required plugins.

#TO ACCESS SONARQUBE

<EC2 Public IP Address:9000>

Install Plugin

Goto Manage Jenkins →Plugins → Available Plugins →

Install below plugins

1 → Eclipse Temurin Installer (Install without restart)

2 → SonarQube Scanner (Install without restart)

3 → NodeJS (Install without restart)

4 → Docker (Install without restart)

5 → OWASP (Install without restart)

🔹 Step 7 — Configure the Plugins with the mentioned version.

JDK — 17 & 11

Docker — Latest

OWASP — Renamed as (DC) and version is Dependency-check-6.5.1

Node JS — Version 16

SonarQube — 5.0.1.3006

🔹 Step 8 — Grab the Public IP Address of your EC2 Instance, Sonarqube works on Port 9000, sp <Public IP>:9000. Goto your Sonarqube Server. Click on Administration → Security → Users → Click on Tokens and Update Token → Give it a name → and click on Generate Token.

Click on Update Token

Now, go to Dashboard → Manage Jenkins → Configure System

Click on Apply and Save

The Configure System option is used in Jenkins to configure different server

Global Tool Configuration is used to configure different tools that we install using Plugins

We will install a sonar scanner in the tools.

Create a Job — Label it as Bank, click on Pipeline, and Ok.

Here is the Pipeline Script,

The stage view would look like this, you will see the output like below.

To check the containers use the command as docker ps.

You can see the SonarQube report has been generated and the status shows as passed.

With the help of port 3000 using public IP, we can access our Application on the web.

Access the Bank Application