Jenkinsfile_nightly

#!groovy

properties([
    // H allow predefined but random minute see https://en.wikipedia.org/wiki/Cron#Non-standard_characters
    pipelineTriggers([cron('H 08 * * 1-5')])
])

@Library("Infrastructure")

def type = "java"
def product = "bulk-scan"
def component = "orchestrator"

def channel = '#bsp-build-notices'

env.TESTCONTAINERS_HUB_IMAGE_NAME_PREFIX = 'hmctspublic.azurecr.io/imported/'

def secrets = [
  's2s-${env}': [
    secret('microservicekey-bulk-scan-orchestrator', 'S2S_SECRET')
  ],
  'bulk-scan-${env}': [
    secret('fortify-on-demand-username', 'FORTIFY_USER_NAME'),
    secret('fortify-on-demand-password', 'FORTIFY_PASSWORD'),
    secret('launch-darkly-sdk-key', 'LAUNCH_DARKLY_SDK_KEY'),
    secret('launch-darkly-offline-mode', 'LAUNCH_DARKLY_OFFLINE_MODE')
  ]
]

static LinkedHashMap<String, Object> secret(String secretName, String envVar) {
  [ $class: 'AzureKeyVaultSecret',
    secretType: 'Secret',
    name: secretName,
    version: '',
    envVariable: envVar
  ]
}

withNightlyPipeline(type, product, component) {
  loadVaultSecrets(secrets)
  // enableMutationTest() Disabled for now as also disabled in gradle
  enableFortifyScan('bulk-scan-aat')
  enableSlackNotifications(channel)
  afterSuccess('fortify-scan') {
    steps.archiveArtifacts allowEmptyArchive: true, artifacts: '**/Fortify Scan/**/*'
  }
}