Gitaction Board
Gitaction Board - Ultimate Dashboard for GithubActions.
Table of contents
Changelog
Changelog can be found here
Usage
Pull docker image
docker pull ottoopensource/gitactionboard:<docker tag>Run docker image
docker run \
-p <host machine port>:8080 \
-e REPO_OWNER_NAME=<organization/username> \
-e REPO_NAMES=<repo names> \
-it ottoopensource/gitactionboard:<docker tag>Configurations
| Environment variable name | Descriptions | Required | Default value | Example value |
|---|---|---|---|---|
| REPO_OWNER_NAME | Repository owner name. Generally, its either organization name or username | yes | webpack | |
| REPO_NAMES | List of name of repositories you want to monitor | yes | webpack-dev-server, webpack-cli | |
| GITHUB_ACCESS_TOKEN | Access token to fetch data from github. This is required to fetch data from a private repository when github oauth2 is disabled | no | ||
| DOMAIN_NAME | Hostname of github | no | https://api.github.com | |
| CACHE_EXPIRES_AFTER | Duration (in seconds) to cache the fetched data | no | 60 | |
| GITHUB_OAUTH2_CLIENT_ID | Github oauth2 client ID | no | ||
| GITHUB_OAUTH2_CLIENT_SECRET | Gihub oauth2 client secret | no | ||
| BASIC_AUTH_USER_DETAILS_FILE_PATH | File location for basic auth user details | no | /src/.htpasswd | |
| MS_TEAMS_NOTIFICATIONS_WEB_HOOK_URL | Web hook url to send build failure notifications on Microsoft Teams (available from v2.1.0) | no |
Notes
- To create a personal access token follow the instructions present here and choose repo as a scope fot this token.
- To create incoming webhook connection for MS Teams channel follow the instructions present here.
Authentication
From v2.0.0, gitactionboard has out of the box solution for authentication. Currently, there are following authentication mechanism available
Basic Authentication
Basic authentication is the simplest form of authentication. In this mechanism we make use of username and password to login.
In gitactionboard, Basic Authentication can be easily setup using BASIC_AUTH_USER_DETAILS_FILE_PATH environment variable. This file contains
username and password in <username>:<encrypted password using bcrypt> format. We can make use of Apache htpasswd to easily create this file.
You can run the following command to create the file using CLI,
htpasswd -bnBC 10 <username> <password> >> <file location>Github OAuth2
In gitactionboard, Github OAuth2 login can be easily setup using GITHUB_OAUTH2_CLIENT_ID and GITHUB_OAUTH2_CLIENT_SECRET environment variable.
To be able to have a valid client id and client secret from github, we need to create a Github OAuth app first. To create a gihub oauth app, please
follow this link.
Note you need to add Authorization callback URL as <homepage url>/login/oauth2/code/github.
SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_GITHUB_REDIRECT-URI environment variable.
GITHUB_ACCESS_TOKEN to fetch data from github for private repositories.
UI Dashboard
Gitaction Board has in-built UI dashboard to visualize the build status. You can access the following endpoint for the same
http://localhost:<host machine port>
UI Dashboard Configurations
From v2.0.0 onwards, preference page can be used to manage UI dashboard configuration.
Prior to v2.0.0, query params can be used to configure UI dashboard. Please find possible query params below,
| Query param name | Descriptions | Required | Default value | Example value |
|---|---|---|---|---|
| hide-healthy | Hide all the healthy builds from the dashboard | no | false | true |
| max-idle-time | Configure the max idle time (in minutes), after the given time background polling for dashboard will stop | no | 5 | 2 |
| disable-max-idle-time | Disable background polling optimisation configured using max-idle-time | no | false | true |
API
Once server is up, you can access the following endpoints to get the CCtray data.
Data in XML format
Access http://localhost:<host machine port>/v1/cctray.xml to get data in XML format
Sample response
<Projects>
<Project name="hello-world :: hello-world-build-and-deployment :: talisman-checks" activity="Sleeping" lastBuildStatus="Success" lastBuildLabel="206" lastBuildTime="2020-09-18T06:11:41Z" webUrl="https://github.com/johndoe/hello-world/runs/1132386046"/>
<Project name="hello-world :: hello-world-build-and-deployment :: dependency-checks" activity="Sleeping" lastBuildStatus="Success" lastBuildLabel="206" lastBuildTime="2020-09-18T06:14:54Z" webUrl="https://github.com/johndoe/hello-world/runs/1132386127"/>
<Project name="hello-world :: hello-world-checks :: format" activity="Sleeping" lastBuildStatus="Success" lastBuildLabel="206" lastBuildTime="2020-09-18T06:11:41Z" webUrl="https://github.com/johndoe/hello-world/runs/1132386046"/>
<Project name="hello-world :: hello-world-checks :: test" activity="Sleeping" lastBuildStatus="Success" lastBuildLabel="206" lastBuildTime="2020-09-18T06:14:54Z" webUrl="https://github.com/johndoe/hello-world/runs/1132386127"/>
</Projects>Data in JSON format
Access http://localhost:<host machine port>/v1/cctray to get data in JSON format
Sample response
[
{
"name": "hello-world :: hello-world-build-and-deployment :: talisman-checks",
"activity": "Sleeping",
"lastBuildStatus": "Success",
"lastBuildLabel": "206",
"lastBuildTime": "2020-09-18T06:11:41.000Z",
"webUrl": "https://github.com/johndoe/hello-world/runs/1132386046"
},
{
"name": "hello-world :: hello-world-build-and-deployment :: dependency-checks",
"activity": "Sleeping",
"lastBuildStatus": "Success",
"lastBuildLabel": "206",
"lastBuildTime": "2020-09-18T06:14:54.000Z",
"webUrl": "https://github.com/johndoe/hello-world/runs/1132386127"
},
{
"name": "hello-world :: hello-world-checks :: format",
"activity": "Sleeping",
"lastBuildStatus": "Success",
"lastBuildLabel": "206",
"lastBuildTime": "2020-09-18T06:11:41.000Z",
"webUrl": "https://github.com/johndoe/hello-world/runs/1132386046"
},
{
"name": "hello-world :: hello-world-checks :: test",
"activity": "Sleeping",
"lastBuildStatus": "Success",
"lastBuildLabel": "206",
"lastBuildTime": "2020-09-18T06:14:54.000Z",
"webUrl": "https://github.com/johndoe/hello-world/runs/1132386127"
}
]Developers Guide
Prerequisites
- jEnv
- Java 17
- Docker
- Hadolint
- ShellCheck
- Prettier
- talisman
- Node.js v16.13.1
- nvm
- all-contributors cli (only for maintainers)
- conventional-changelog-cli
Tests
Tests are separated into unit and integration test sets. To denote an integration test it needs to be annotated
as @IntegrationTest.
To run only unit tests:
./gradlew testTo run integration tests:
./gradlew integrationTestTo run all the verifications:
./run.sh testTest sets are runs in order, with unit tests first, followed by integration tests. Should there be a failure in the unit tests the task execution stops there, e.g. a prerequisite for running integration tests will be working unit tests.
Formatting
This project uses the following tools to follow specific style guide
- google-java-format-gradle-plugin for Java files
- Prettier for json, js, css, html and md files
- Hadolint for Dockerfile
- ShellCheck for sh files
To run format:
./run.sh formatSecurity Checks
This project uses the following tools to find security vulnerabilities
- org.owasp.dependencycheck to find vulnerable dependencies
- talisman to validate the outgoing changeset for things that look suspicious - such as authorization tokens and private keys.
To run OWASP dependency check:
./run.sh checkRun application locally
This service can be run locally. To run it locally, run the following command:
./run.sh run-locally <github auth token>Commits
This repository follows Conventional Commits. Therefor whenever you are committing the changes make sure use proper type.
Types
- feat for a new feature for the user, not a new feature for build script. Such commit will trigger a release bumping a MINOR version.
- fix for a bug fix for the user, not a fix to a build script. Such commit will trigger a release bumping a PATCH version.
- chore for Update something without impacting the user (ex: bump a dependency in package.json).
- perf for performance improvements. Such commit will trigger a release bumping a PATCH version.
- docs for changes to the documentation.
- style for formatting changes, missing semicolons, etc.
- refactor for refactoring production code, e.g. renaming a variable.
- test for adding missing tests, refactoring tests; no production code change.
- build for updating build configuration, development tools or other changes irrelevant to the user.
NOTE: Add ! just after type to indicate breaking changes
Build docker image
To build docker image run:
./run.sh docker-buildGenerate changelog
- The changelog can be easily generate the changelog by running following command
./run.sh generate-changelog- Once changelog is generated, verify the changelog by updating the correct version and push the changes to github
Release a new Docker image
A new docker image can be published to docker hub using CI/CD. To achieve the same we need to follow the following steps:
-
Generate the changelog, if it's not done already. Steps can be found here.
-
Create a new release version by running following command
./run.sh bump-version <major|minor|patch>- Push the newly created tag to github
git push origin "$(git describe --tags)"NOTE: We are following semantic versioning strategy using io.alcide:gradle-semantic-build-versioning plugin
Contributors ✨
Thanks goes to these wonderful people (emoji key):
 Suman Maity |
 umeshnebhani733 |
 sankita15tw |
 Stefan Greis |
 Shashi |
 Jonas |
 BastianSperrhacke-Otto |
This project follows the all-contributors specification. Contributions of any kind welcome!