Can someone elaborately explain how I can use bitbucket runners for my CICD and how safe is the process?
I somewhere found that the runners communicate to bitbucket on https, and I'm not clear of how the SSL certificates are verified and how can I be sure that this communication is via an encrypted channel.
My use case:
1. When a commit is done on a particular branch(eg: main), I want bitbucket pipelines to run.
2 . It should pull the code on the remote server(from main branch) where bitbucket runner is configured and execute a script after the code is pulled.
I am also not clear if runners would solve my above use case.
Thanks in advance!
Hi Divya,
Pipelines will communicate through our Stargate API over HTTPS to establish an initial bridging connection with your runner (so that it can communicate to your private IP address).
Once it has established a connection - it uses websocket rather than HTTPS to maintain the connection between client/server - this is secured with SSL. WebSockets are very secure when used over an encrypted SSL connection.
Pipelines will maintain the connection between your local Runner and the Bitbucket Cloud UI via this websocket where commands are sent to be executed by either the container running on a Kubernetes pod (Pipelines) or self-hosted infrastructure (Runners).
The build status updates are then returned back in the same manner based on the success or failure of those command executions.
You can cause builds to trigger upon branch push by using the branches tag, this will detect when a git push is made to a branch and will trigger a build accordingly - for information on this please see our documentation:
I'm unsure of what you mean by "pull the code on the remote server(from main branch) where bitbucket runner is configured" - is this a repository hosted outside of Bitbucket Cloud?
Cheers!
- Ben (Bitbucket Cloud Support)
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.