Added Docker and Jenkins File With Devsecops tools

.env

@@ -0,0 +1,6 @@
+MYSQL_HOST=172.31.28.241
+MYSQL_USER=root
+MYSQL_PASSWORD=root@@123
+MYSQL_NAME=hms
+MYSQL_ROOT_PASSWORD=root@@123
+MYSQL_PORT=3306

1

@@ -0,0 +1,33 @@
+services:
+  # Use a more descriptive service name
+  frontend:
+    build: ./Doctor-Patient-Portal  # Build the frontend image from the current directory
+    ports:
+      - "8083:8083"
+       # Map container port 8085 to host port 8080 (standard HTTP)
+    environment:
+      - MYSQL_HOST=${MYSQL_HOST}  # Use the service name of the database container
+      - MYSQL_NAME=${MYSQL_NAME} # Standard MySQL port  # Add other environment variables from .env (see note)
+      - MYSQL_PASSWORD=${MYSQL_PASSWORD}
+      - MYSQL_USER=${MYSQL_USER}
+    depends_on:
+      - db  # Ensure database is ready before starting frontend
+
+
+
+  # Use a more descriptive service name
+  db:
+    image: mysql:8.0  # Build the database image from the directory named 'db'
+    ports:
+      - "3306:3306"
+    environment:
+      - MYSQL_ROOT_PASSWORD=${MYSQL_ROOT_PASSWORD}  # Consider using a stronger password
+      - MYSQL_NAME=${MYSQL_NAME}
+      - MYSQL_PASSWORD=${MYSQL_PASSWORD}
+    volumes:
+      - ./init.sql:/docker-entrypoint-initdb.d/init.sql
+    healthcheck:
+      test: ["CMD","mysqladmin","ping"]
+      interval: 10s
+      timeout: 5s
+      retries: 3

Doctor-Patient-Portal/1

@@ -0,0 +1,10 @@
+FROM openjdk:17-alpine AS builder
+RUN apk add --no-cache ca-certificates && update-ca-certificates
+WORKDIR /app
+RUN apk add --no-cache maven
+COPY . .
+RUN mvn clean package -DskipTests=true
+FROM tomcat:9-alpine
+COPY --from=builder /app/target/*.war /usr/local/tomcat/webapps/
+EXPOSE 8080
+CMD ["catalina.sh", "run"]

Doctor-Patient-Portal/Dockerfile

@@ -0,0 +1,10 @@
+FROM openjdk:17-alpine AS builder
+RUN apk add --no-cache ca-certificates && update-ca-certificates
+WORKDIR /app
+RUN apk add --no-cache maven
+COPY . .
+RUN mvn clean package -DskipTests=true
+FROM tomcat:9-alpine
+COPY --from=builder /app/target/*.war /usr/local/tomcat/webapps/
+EXPOSE 8080
+CMD ["catalina.sh", "run"]

Doctor-Patient-Portal/Jenkinsfile

@@ -0,0 +1,115 @@
+pipeline {
+    agent any
+
+    tools {
+        jdk 'jdk'
+        maven 'maven'
+    }
+
+    environment {
+        SCANNER_HOME= tool 'sonar-scanner'
+    }
+
+    stages {
+        stage('Git Checkout') {
+            steps {
+                echo 'git login'
+                git branch: 'main', changelog: false, poll: false, url: 'https://github.com/17J/Doctor-Patient-Portal-AdvanceJavaWebProject.git'
+            }
+        }
+        stage('Compile') {
+            steps {
+                dir('/var/lib/jenkins/workspace/doctor-portal/Doctor-Patient-Portal/') {
+                sh "mvn compile"
+                }
+            }
+        }
+        stage('Test') {
+            steps {
+                dir('/var/lib/jenkins/workspace/doctor-portal/Doctor-Patient-Portal/') {
+                sh "mvn test -DskipTests=true"
+                }
+            }
+        }
+        stage('File System Scan') {
+            steps {
+                sh "trivy fs --format table -o trivy-fs-report.html ."
+            }
+        }
+        stage('SonarQube Analsyis') {
+            steps {
+                withSonarQubeEnv('sonar-scanner') {
+                    sh ''' $SCANNER_HOME/bin/sonar-scanner -Dsonar.projectName=doctor -Dsonar.projectKey=doctor \
+                            -Dsonar.java.binaries=. '''
+                }
+            }
+        }
+        stage('Quality Gate') {
+            steps {
+                script {
+                  waitForQualityGate abortPipeline: false, credentialsId: 'sonar-cred' 
+                }	
+            }
+        }
+        stage('Build') {
+            steps {
+                dir('/var/lib/jenkins/workspace/doctor-portal/Doctor-Patient-Portal/') {
+                sh "mvn package -DskipTests=true"
+                }
+            }
+        }
+        stage('Build & Tag Docker Image') {
+            steps {
+               script {
+                   withDockerRegistry(credentialsId: 'docker-cred', toolName: 'docker') {
+                       dir('/var/lib/jenkins/workspace/doctor-portal/Doctor-Patient-Portal/') {
+                        sh "docker build -t maind ."
+                        sh "docker tag maind 17rj/doctor-patient"
+                }
+
+
+                    }
+               }
+            }
+        }
+        stage('Docker Image Scan') {
+            steps {
+                sh "trivy image --format table -o trivy-image-report.html  17rj/doctor-patient "
+            }
+        }
+        stage('Docker Image Push') {
+            steps {
+               script {
+                   withDockerRegistry(credentialsId: 'docker-cred', toolName: 'docker') {
+                       dir('/var/lib/jenkins/workspace/doctor-portal/Doctor-Patient-Portal/') {
+                        sh "docker push  17rj/doctor-patient:latest"
+                          }
+
+                    }
+               }
+            }
+        }
+        stage('Deploy To Kubernetes') {
+            steps {
+               withKubeConfig(caCertificate: '', clusterName: 'main-eks17', contextName: '', credentialsId: 'kube-cred', namespace: 'webapps', restrictKubeConfigAccess: false, serverUrl: 'https://4D4C6465D0EABEF232FFC5BE0AA9F3B3.gr7.us-east-1.eks.amazonaws.com') {
+                dir('/var/lib/jenkins/workspace/doctor-portal/K8s/') {
+                     sh "kubectl apply -f fullstack-db.yml -n webapps"
+                     sh "kubectl apply -f fullstack-service-deployment.yml -n webapps"
+                     sleep 60
+                }
+               }
+            }
+        }
+        stage('Verify To Kubernetes') {
+            steps {
+               withKubeConfig(caCertificate: '', clusterName: 'main-eks17', contextName: '', credentialsId: 'kube-cred', namespace: 'webapps', restrictKubeConfigAccess: false, serverUrl: 'https://4D4C6465D0EABEF232FFC5BE0AA9F3B3.gr7.us-east-1.eks.amazonaws.com') {
+
+                     sh "kubectl get pods -n webapps"
+                     sh "kubectl get svc -n webapps"
+
+
+               }
+            }
+        }
+    }
+}

Doctor-Patient-Portal/pom.xml

@@ -54,4 +54,19 @@
 		</plugins>
 		<finalName>Doctor-Patient-Portal</finalName>
 	</build>
+	<properties>
+                    <maven.compiler.source>1.7</maven.compiler.source>
+                    <maven.compiler.target>1.7</maven.compiler.target>
+        </properties>
+	<distributionManagement> 
+           <repository>
+            <id>maven-releases</id>
+            <url>http://34.207.189.118:8081/repository/maven-releases/</url>
+           </repository>
+          <snapshotRepository>
+            <id>maven-snapshots</id>
+            <url>http://34.207.189.118:8081/repository/maven-snapshots/</url>  
+          </snapshotRepository>
+       </distributionManagement>
+
 </project>

Doctor-Patient-Portal/src/main/java/com/hms/db/DBConnection.java

@@ -15,7 +15,7 @@ public static Connection getConn() {
 			Class.forName("com.mysql.cj.jdbc.Driver");
 
 			//step:2- create a connection
-			conn = DriverManager.getConnection("jdbc:mysql://localhost:3306/hospital","root","wasim");
+			conn = DriverManager.getConnection("jdbc:mysql://localhost:3306/hms","root","root@@123");
 
 		} catch (Exception e) {
 			e.printStackTrace();