Jenkinsfile_nightly

#!groovy

properties([
  // H allow predefined but random minute see https://en.wikipedia.org/wiki/Cron#Non-standard_characters
  pipelineTriggers([cron('H 08 * * 1-5')])
])

@Library("Infrastructure")

def type = "java"
def product = "reform-scan"
def component = "notification-service"

env.TESTCONTAINERS_HUB_IMAGE_NAME_PREFIX = 'hmctspublic.azurecr.io/imported/'

def secrets = [
  'reform-scan-${env}': [
    secret('fortify-on-demand-username', 'FORTIFY_USER_NAME'),
    secret('fortify-on-demand-password', 'FORTIFY_PASSWORD'),
    secret('launch-darkly-sdk-key', 'LAUNCH_DARKLY_SDK_KEY'),
    secret('launch-darkly-offline-mode', 'LAUNCH_DARKLY_OFFLINE_MODE')
  ]
]

static LinkedHashMap<String, Object> secret(String secretName, String envVar) {
  [$class     : 'AzureKeyVaultSecret',
   secretType : 'Secret',
   name       : secretName,
   version    : '',
   envVariable: envVar
  ]
}

withNightlyPipeline(type, product, component) {
  loadVaultSecrets(secrets)
  enableFortifyScan('reform-scan-aat')
  enableSlackNotifications('#bsp-build-notices')
  afterSuccess('fortify-scan') {
    steps.archiveArtifacts allowEmptyArchive: true, artifacts: '**/Fortify Scan/**/*'
  }
}