Create
cancel
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in

It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

How we supposed to deploy on private premises with Pipelines?

Hi,

 

in various manuals you take Python product as example and you use PyPi to publish artifact. However that is not the only case that can occur. We have PHP application and we want to deploy directly to our private cloud, like we used to do with Bamboo. Exposing FTP is not an option since it's a nice security breach. What can you advise?

 

Regards,

Alexander

6 answers

We are using Bitbucket pipelines for our repositories, Pull Request, reviews, you know the usual, and pre-flight builds before merging into master. We are using Azure Pipelines to deploy to on-prem and to Azure as well as AWS. 2 tools but the job gets done nicely. 

Hi,

 

thanx for your reply. All suggested approaches assume some service (SSH, SCP, FTP, etc.) should be exposed to outside. That is a security breach. For publicly available webserver using POST is relatively fine, however some servers are not supposed to be available from outside at all.

Let me explain what we expected. For example in Bamboo Cloud build agents were inside the same private network with target servers and so they could access them directly. I tried to build my own container with OpenVPN client built in and connected to our premise on container startup. That however didn't work since running OpenVPN in a container needs escalated privileges and you obviously do not provide those.

So is there any way to use Pipelines safely?

 

Regards,

Alexander

Is there any form of an agent to be ran on the private network  (like Azure DevOps) so that i don't need to expose any kind of port to the internet from my infrastructure ?

I'm looking for this as well.

Hi,

so no suggestions or recommendations?

Regards,

Alxander

0 votes
evzijst Atlassian Team Jun 22, 2016

We don't recommend any particular approach, but a typical way of pushing something into your own (Internet exposed) server would be to have a webserver with some form of authentication that you can POST to from within the Pipelines container. You can make the credentials available to the container through the use of Pipelines variables.

If you want something SSH based, you could SCP the files directly.

Suggest an answer

Log in or Sign up to answer
TAGS
Community showcase
Published in Bitbucket

New improvements to user management in Bitbucket Cloud 👥

Hey Community! We’re willing to wager that quite a few of you not only use Bitbucket, but administer it too. Our team is excited to share that we’ll be releasing improvements throughout this month of...

3,734 views 10 16
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you