2048 Game on AWS

2048-Game-CICD-AWS

By doing this porject, I have gained hands-on experience with deploying containerized applications on Kubernetes, automating deployments with Jenkins, and enhancing security and code quality with Trivy and SonarQube.

Objectives

Containerize the 2048 Game: Created a Docker image for the 2048 game.
Deploy on Kubernetes: Deployed the Dockerized application to a Kubernetes cluster running on AWS EC2 instances.
Automate with Jenkins: Set up a Jenkins pipeline for continuous integration and deployment.
Enhance Security and Code Quality: Integrated Trivy for security scanning of Docker images and SonarQube for code quality analysis.

Workflow

Dockerization: Create a Dockerfile to build a Docker image for the 2048 game.
Jenkins Pipeline: Configured a Jenkins pipeline to automate the CI/CD process, including building the Docker image, scanning with Trivy, analyzing with SonarQube, and deploying to Kubernetes.
Security and Quality Checks: Use Trivy for security scans and SonarQube for code quality analysis during the CI/CD pipeline.
Deployment: Deploy the 2048 game to the Kubernetes cluster on AWS EC2 and access it via a LoadBalancer service.

Technologies Used

Docker
Kubernetes
AWS EC2
Jenkins
Trivy

SonarQube

Jenkins Pipeline

   pipeline{
      agent any
      tools{
          jdk 'java17'
          nodejs 'node16'
      }
      environment {
          SCANNER_HOME=tool 'sonar-scanner'
      }
      stages {
          stage('clean workspace'){
              steps{
                  cleanWs()
              }
          }
          stage('Checkout from Git'){
              steps{
                  git branch: 'master', url: 'https://github.com/Aj7Ay/2048-React-CICD.git'
              }
          }
          stage("Sonarqube Analysis "){
              steps{
                  withSonarQubeEnv('sonar-server') {
                      sh ''' $SCANNER_HOME/bin/sonar-scanner -Dsonar.projectName=Game \
                      -Dsonar.projectKey=Game '''
                  }
              }
          }
          stage("quality gate"){
             steps {
                  script {
                      waitForQualityGate abortPipeline: false, credentialsId: 'Sonar-token'
                  }
              }
          }
          stage('Install Dependencies') {
              steps {
                  sh "npm install"
              }
          }
          stage('OWASP FS SCAN') {
              steps {
                  dependencyCheck additionalArguments: '--scan ./ --disableYarnAudit --disableNodeAudit', odcInstallation: 'DC'
                  dependencyCheckPublisher pattern: '**/dependency-check-report.xml'
              }
          }
          stage('TRIVY FS SCAN') {
              steps {
                  sh "trivy fs . > trivyfs.txt"
              }
          }
          stage("Docker Build & Push"){
              steps{
                  script{
                     withDockerRegistry(credentialsId: 'docker', toolName: 'docker'){
                         sh "docker build -t 2048 ."
                         sh "docker tag 2048 dev87/2048:latest "
                         sh "docker push dev87/2048:latest "
                      }
                  }
              }
          }
          stage("Trivy Image Scan"){
              steps{
                  sh "trivy image dev87/2048:latest > trivyimagereport.txt"
              }
          }
          stage('Deploy to container'){
              steps{
                  sh 'docker run -d --name 2048 -p 3000:3000 dev87/2048:latest'
              }
          }
          stage('Deploy to kubernets'){
              steps{
                  script{
                      withKubeConfig(caCertificate: '', clusterName: '', contextName: '', credentialsId: 'k8s', namespace: '', restrictKubeConfigAccess: false, serverUrl: '') {
                         sh 'kubectl apply -f deployment.yaml'
                    }
                  }
              }
          }
      }
  }