WAI
Status Update
No update yet.
Comments
sn...@google.com
sn...@google.com
Thank you for reporting this issue. I will need some time to review this to come up with a solution for you. I hope to update this thread by Thursday at the latest.
sn...@google.com
It looks like this feature isn't available. I tried through the Cloud Console UI as well but only had options of repos from within selected project.
I have forwarded this request to the GCB engineering team to evaluate it further. The public can indicate interest by "starring" this thread to increase general awareness and participation level. But I cannot guarantee if or when it would be implemented, but stay tuned here for further updates.
I have forwarded this request to the GCB engineering team to evaluate it further. The public can indicate interest by "starring" this thread to increase general awareness and participation level. But I cannot guarantee if or when it would be implemented, but stay tuned here for further updates.
sa...@gmail.com
Svirangrop
am...@hughes.com
Team,
Any ETA for this fix ?
Any ETA for this fix ?
hi...@gmail.com
1st attempt: First the console UI does not support connecting the build trigger to source repos outside of current project. I attempted with gcloud command:
2nd attempt: I granted the cloud build service account "cloud build service account" , "source repository reader" roles in the source repo in another project then executed the gcloud command to add a trigger:
$ gcloud beta builds triggers create cloud-source-repositories --repo=tcsplayground/usbank/master// --branch-pattern=".*" --build-config="cloudbuild.yaml" I used format [PROJECT_ID]/[REPO]/+[BRANCH]: but all failed. I can't seem to get the repo fully qualified identifier right.
3rd attempt: use the following URL to create a trigger in projectA to connect to cloud source repo-1 in projectB:
https://cloud.google.com/cloud-build/docs/api/reference/rest/v1/projects.triggers/create?apix_params=%7B%22projectId%22%3A%22projectA%22%2C%22resource%22%3A%7B%22id%22%3A%22trigger-01%22%2C%22description%22%3A%22test01%22%2C%22name%22%3A%22trigger-01%22%2C%22triggerTemplate%22%3A%7B%22projectId%22%3A%22projectB%22%2C%22repoName%22%3A%22repo-1%22%2C%22dir%22%3A%22%2F%22%2C%22branchName%22%3A%22master%22%7D%2C%22filename%22%3A%22cloudbuild.yaml%22%7D%7D
all attempts failed. I suspect build triggers connecting to a cloud source repo in another project is a missing feature.
2nd attempt: I granted the cloud build service account "cloud build service account" , "source repository reader" roles in the source repo in another project then executed the gcloud command to add a trigger:
$ gcloud beta builds triggers create cloud-source-repositories --repo=tcsplayground/usbank/master// --branch-pattern=".*" --build-config="cloudbuild.yaml" I used format [PROJECT_ID]/[REPO]/+[BRANCH]: but all failed. I can't seem to get the repo fully qualified identifier right.
3rd attempt: use the following URL to create a trigger in projectA to connect to cloud source repo-1 in projectB:
all attempts failed. I suspect build triggers connecting to a cloud source repo in another project is a missing feature.
ar...@archaeo.biz
It looks like projectId inside
ID of the project that owns the Cloud Source Repository. If omitted, the project ID requesting the build is assumed.
Steps to reproduce:
- create repo-1 inside project-1
- create repo-2 inside project-2
- grant
roles/source.reader(or evenroles/owner) to project-1 accounts inside project-2 project IAM permissions:
serviceAccount:${project_number.project-1}@cloudbuild.gserviceaccount.com
serviceAccount:service-${project_number.project-1}@sourcerepo-service-accounts.iam.gserviceaccount.com
serviceAccount:service-${project_number.project-1}@gcp-sa-cloudbuild.iam.gserviceaccount.com
serviceAccount:${project_number.project-1}@cloudservices.gserviceaccount.com
- run commands
gcloud beta builds triggers create cloud-source-repositories --trigger-config project-2-repo-1-trigger.json --project project-1
gcloud beta builds triggers create cloud-source-repositories --trigger-config project-2-repo-2-trigger.json --project project-1
with content
project-2-repo-1-trigger.json:
{
"description": "project-2-repo-1-trigger",
"disabled": true,
"filename": "cloudbuild.yaml",
"name": "project-2-repo-1-trigger",
"triggerTemplate": {
"branchName": "^master$",
"projectId": "repo-2",
"repoName": "repo-1"
}
}
project-2-repo-2-trigger.json:
{
"description": "project-2-repo-2-trigger",
"disabled": true,
"filename": "cloudbuild.yaml",
"name": "project-2-repo-2-trigger",
"triggerTemplate": {
"branchName": "^master$",
"projectId": "repo-2",
"repoName": "repo-2"
}
}
Expected outcome:
- project-2-repo-1-trigger fails, because repo-1 does not exist in project-2 (only in project-1)
- project-2-repo-2-trigger succeeds (repo-2 exists in project-2)
Actual outcome:
- project-2-repo-1-trigger succeeds (ignoring projectId field and using local repo-1 instead)
- project-2-repo-2-trigger fails (ignoring projectId field and looking for repo-2 locally, which does not exist)
This looks more like a bug than a feature request, at least according to API specs.
an...@tryon.technology
Hello,
I am wondering if there are any updates on this ticket?
We are experiencing the same issue. By adding a trigger template for source repo from another project, the Cloud Build Trigger UI shows a warning that there is no repo or we don't have access to it.
We would like to clarify: What is the behaviour of projectId field in triggerTemplate. How it should be used?
I am wondering if there are any updates on this ticket?
We are experiencing the same issue. By adding a trigger template for source repo from another project, the Cloud Build Trigger UI shows a warning that there is no repo or we don't have access to it.
We would like to clarify: What is the behaviour of projectId field in triggerTemplate. How it should be used?
th...@telepass.com
Hello,
Same issue here! Do you have any news or a roadmap about it?
Thank you very much,
Thomas
Same issue here! Do you have any news or a roadmap about it?
Thank you very much,
Thomas
al...@poli.ufrj.br
This limitation is really annoying because if I was using GitHub this would be possible ¬¬
Makes no sense sepparating projects between dev / prd if you cant use same repo when building your CI/CD pipeline with Cloud Build and Cloud Source!
Any news when this feature is comming?
Makes no sense sepparating projects between dev / prd if you cant use same repo when building your CI/CD pipeline with Cloud Build and Cloud Source!
Any news when this feature is comming?
la...@gmail.com
Hello there,
I'm experiencing the same issue here!
Do you have any updates on this ticket?
Thanks,
Lawrence
I'm experiencing the same issue here!
Do you have any updates on this ticket?
Thanks,
Lawrence
de...@plusserver.com
Hi there,
same issue for us. It would be great to have the possibility to trigger repositorys from other projects.
As this issue has been open for some time now: Is there possibly a workaround i am missing?
Best regards
Marcel
same issue for us. It would be great to have the possibility to trigger repositorys from other projects.
As this issue has been open for some time now: Is there possibly a workaround i am missing?
Best regards
Marcel
jr...@gmail.com
Would love to see this too! Or direction on how to accomplish this with a central project acting as the secure repo and multiple projects / cloud builds using the secure repo for deployment.
st...@gmail.com
yeah, not having this just derailed a solution I was designing...echoing earlier comments, it does not make sense to suggest as best practice for organizations to break up their projects by environment if we can't even have a separate project for source code to trigger out builds to these other projects...hoping this gets done, but I don't see any activity from Google on this.
[Deleted User] <[Deleted User]>
Hi,
Is there any progress on it ? We are implementing CICD pipelines using Cloud build and it works in case of External repo like Github Bitbucket connectivity. I wonder why Google repo service does not provide such functionality!
I think Cloud Repos should be under organization tenant, not under project; to make it accessible across all projects of organization.
Regards,
Usama Bin Masood
Is there any progress on it ? We are implementing CICD pipelines using Cloud build and it works in case of External repo like Github Bitbucket connectivity. I wonder why Google repo service does not provide such functionality!
I think Cloud Repos should be under organization tenant, not under project; to make it accessible across all projects of organization.
Regards,
Usama Bin Masood
[Deleted User] <[Deleted User]>
At the very least can we get an update to the documentation to make clear this isn't possible?
de...@google.com
ba...@google.com
gc...@timantrob.us
Hi,
It appears that there has been some recent activity on this specific issue which is very welcome.
I would also vote for this feature of cross-project CSR access for Cloud Build triggers. From my perspective having repos under the organisation may present problems for a multi-tenant managed services scenario where you would want access to repos scoped to within specific folders for example. However, the basic principle of having a GCB trigger in one project leverage a CSR repo in a different project - obviously secured with the appropriate IAM permissions - would be super useful.
It appears that there has been some recent activity on this specific issue which is very welcome.
I would also vote for this feature of cross-project CSR access for Cloud Build triggers. From my perspective having repos under the organisation may present problems for a multi-tenant managed services scenario where you would want access to repos scoped to within specific folders for example. However, the basic principle of having a GCB trigger in one project leverage a CSR repo in a different project - obviously secured with the appropriate IAM permissions - would be super useful.
dm...@gmail.com
I experience the same issue. After 3 years it is not fixed...
mr...@gmail.com
+1
ku...@ibm.com
This is a really important requirement, as many customers want to use stand alone Cloud source repositories
de...@kraftheinz.com
Hello GCP Team,
Any update on this thread please ?
Any update on this thread please ?
ma...@gmail.com
We use a common "resources" project to contain all our mirror Bitbucket repos and would like to be able configure build triggers in our "dev" and "prod" projects that use the common set of mirrored repos in our "resources" project. So, we would very much like this issue to be addressed. The build trigger definition should allow me to point to any source repo in any project and, given the fact that the service account configured in the same trigger is allowed read access to that repo, it should be able to trigger from changes to the repo.
ds...@q6cyber.com
+1
We want to be able to share a single repository to our dev and prod projects.
We want to be able to share a single repository to our dev and prod projects.
[Deleted User] <[Deleted User]>
+1 I don't understand why this was not thought of during implementation. /facepalm.
ch...@gmail.com
Does anyone have an update on this issue?
[Deleted User] <[Deleted User]>
Is there any update on this issue? I managed to configure triggers using Terraform, but the warning message appears on Google Cloud UI: "This repo doesn't exist or you don't have access to it", this only affects automatic builds as I'm able to manually run the triggers. It would be great to have support for this.
bg...@symbiotic.com
Hello GCP Team,
Any update on this thread please?
Any update on this thread please?
va...@google.com
su...@google.com
ba...@google.com
su...@google.com
Hello,
We have an update from the Engineering team.As of now the team has recommended that users can consider using GitHub, GitHub Enterprise, or Bitbucket Server. If there are feature gaps which prevent Users from moving to the native integration (including lack of GA-level support for GitLab.com, GitLab Enterprise Edition, or Bitbucket Cloud), we'd request users to raise feature requests to be filed outlining the specific needs.
Thank you for your trust and continued support to improve Google Cloud Platform products.
su...@google.com
ba...@google.com
[Deleted User] <[Deleted User]>
Comment has been deleted.
Description
What you would like to accomplish:
I would like to create cloud build trigger that will use source repository commit from other project in the same organization.
How this might work:
Eg. I have Project A and project B
1. I give cloud-build service account from project A cloud-build service role in project B
2. I create cloud build trigger in project A which points to branch in google source repo in project B
3. When I push to that branch in project B a build in project A triggers and does what I describe in cloud-build.yaml
An alternative would be having some sort of source repositories sharing
If applicable, reasons why alternative solutions are not sufficient:
Having builds in project B that runs actions on project A is a hack not a propper solution.
Having to separate remotes one for project A one for project B is too high risk that someone pushes code to the wrong remote.
Other information (workarounds you have tried, documentation consulted, etc):
We currently have all cloud builds in project A to deploy to projects A and B