Saving and restoring toolchains

If you have an existing toolchain, such as one that is not defined by using Terraform, you can save a backup of your existing toolchain, and then restore a copy into an alternative region. If you use Git Repos and Issue Tracking, you can also mirror your Git repos from the primary region to the alternative region.

To save a toolchain, download and run a script on your local workstation that creates a toolchain template in text form. This template is used to instantiate a copy of the source toolchain. For security reasons, secrets are not included in this toolchain template.

After you create a toolchain by using this template, you must configure your tool integrations. Then, restore secrets from the source toolchain by copying their values from the source toolchain to the target toolchain. Unlike GitLab mirroring, this procedure creates a one-time copy of the toolchain. Any subsequent changes to the source toolchain are not reflected in the copied version of the toolchain.

Because the toolchain template is a copy, when instantiated, it references the source Git repo. To fix this issue, reconfigure the target toolchain with the target repo.

To save and restore a toolchain, complete the following steps:

1. Create a temporary directory on your local workstation.

2. Change directory into the temporary directory.

3. Generate a textual representation of the source toolchain in the temporary directory by using the toolchain-to-template script.

4. Create a temporary blank GitLab project in the target region.

5. Type the following commands to initialize the temporary directory for Git operations and push the contents to the temporary GitLab project:

   a. git init

   b. git add --all

   c. git remote add origin target repository url

   d. git commit -m "add template yaml files"

   e. git push -u origin --all

6. Create a personal access token in the target region with the api, read_user, read_api, read_repository, and write_repository scope.

7. Create a toolchain in the target region by constructing a URL and pasting it into your browser:

   a. Construct a target toolchain URL that contains the temporary repo, personal access token, and target region:

   https://cloud.ibm.com/devops/setup/deploy?repository=<temporary repository>&repository_token=<personal-access-token>&env_id=ibm:yp:<target region>
   

   For example, https://cloud.ibm.com/devops/setup/deploy?repository=https://us-east.git.cloud.ibm.com/user/temp-repo&repository_token=aG7junk9dafiiT6w6&env_id=ibm:yp:us-east.

   b. Replace the source repo URL with the target repo URL that you created when mirroring your Git repos.

   c. Click Create. Because you didn't update your secrets, your pipeline runs but does not succeed.

8. Revoke the personal access token that you created in step 6.

9. Configure pipeline secrets by adding the secure property values that are required by your pipeline.

10. Run your target pipelines to make sure that they are working.

11. If you are mirroring repos, disable commit triggers so that your target pipelines don't run when a change is mirrored from the target repo to the source repo:

    a. Select the Run jobs only when this stage is run manually option for the Input stage of your pipeline.

    b. Verify that your pipelines can be started manually.