Enabling automated 1-click customer deployments with built-in quality and security

Their manual deployment process was unscalable and error-prone. See how they built a one-click CI/CD pipeline with automated quality and security gates.

#1about 5 minutes

The challenge of manual deployments at scale

The manual process of deploying updates to isolated customer security zones becomes error-prone and inefficient as the number of customers grows.

#2about 8 minutes

Structuring the development and testing workflow

The team uses Jira with the X-ray plugin to link user stories to automated Cucumber test cases for both API and UI validation.

#3about 3 minutes

Adopting a contract-first API development approach

Shifting to a contract-first workflow using OpenAPI specifications in Git allows for automated code generation and parallel development with a mock API server.

#4about 6 minutes

Building a comprehensive CI/CD pipeline with GitLab

The CI/CD pipeline automates building, quality scanning, security analysis, and nightly end-to-end testing before publishing Docker images.

#5about 4 minutes

Automating infrastructure deployment on Microsoft Azure

An Ansible playbook automates the creation and configuration of all necessary infrastructure in Microsoft Azure, including resource groups and app services.

#6about 5 minutes

Enforcing quality gates and improving developer experience

A "stop and fix" approach fails the pipeline on quality violations, while a merge request bot and shared base images streamline development and security.

#7about 3 minutes

Key lessons learned from implementing CI/CD automation

Important takeaways include starting small with soft limits, verifying tool documentation, and using an IDE-first approach to prevent standalone tools from being ignored.

#8about 7 minutes

Automating multi-customer deployments with Ansible

An idempotent Ansible playbook automates the rollout of new versions to numerous customer environments by updating configurations and restarting containers.

#9about 2 minutes

Future plans for advancing to a DevSecOps model

The roadmap includes integrating dynamic security scanning, performance testing, and adopting DevSecOps practices like signed images and secure secret management.