Skip to content

A module to connect distributed applications via their REST API using express

License

Notifications You must be signed in to change notification settings

esabelhaus/prestige

Repository files navigation

Prestige

A Server module designed to connect distributed applications via their REST API

Build Status Code Climate

About

Gitlab to Redmine

Create a web hook on Gitlab which points to:

  • http://myhost/sc/tracking?project=PROJECT_IDENTIFIER&key=KEY

  • project_identifier is the url path to the project in redmine

  • key is your personal account API key

This will accept a post commit hook from gitlab and update Redmine issues in the commit messages denoted by: #12345678

It will go through all of the commit messages in the push, looking for issue numbers, then update those issues with the commit message in a format like:

Commit: fcc2fd1d57a61d75b64d212ed56c040903b76612
Message: How well does this work #2376
Author: Eric Sabelhaus

Gitlab to Jenkins

Create a web hook on Gitlab which points to:

If you have the string #build in your commit message of that push, it will initiate a build on that project, rather then setting the CI server to poll your SCM constantly.

Configuration

In the config directory, you will find config/prestige.json.example.

Prestige performs all the specified communications based off this config. The nested objects withinin prestidigitation tell prestige what it needs to know to talk to Jenkins and Redmine (for now, still need to implement Gitlab API in some way). The only required fields are the host and protocol. If you use SSL for Jenkins or Redmine, you must specify all of the ssl fields properly, and the user running Prestige must be able to access the client key/cert and CA files.

The Prestige

install

npm install --save prestige

setup

var express = require('express'),
    app = express(),
    logger = require('morgan'),
    cookieParser = require('cookie-parser'),
    bodyParser = require('body-parser'),
    Prestige = require('prestige');

(function(){
  "use strict";

  app.use(logger('dev'));
  app.use(bodyParser.json());
  app.use(bodyParser.urlencoded({ extended: false }));
  app.use(cookieParser());

  var prestige = new Prestige(app, 'config/prestige.json');

  app.listen(3001);

})();

Configuring SSL

I prefer to use nginx proxying for ssl, it really doesn't add much overhead and its quite simple. I use the following for a server config in /etc/nginx/conf.d/prestige.conf

server {
    listen 1337 ssl;
    server_name [my host];

    ssl_certificate /path/to/cert.pem;
    ssl_certificate_key /path/to/key.key;

    ssl_client_certificate /path/to/ca.pem;
    ssl_verify_client on;
    ssl_verify_depth 3;

    ssl_prefer_server_ciphers On;
    ssl_protocols SSLv3 TLSv1 TLSv1.1 TLSv1.2;
    ssl_ciphers ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS;

    ssl_session_timeout 5m;

    location / {
        try_files $uri @prestige;
    }

    location @prestige {
        # If you use https make sure you disable gzip compression
        # to be safe against BREACH attack
        gzip off;

        proxy_read_timeout 300;
        proxy_connect_timeout 300;
        proxy_redirect off;

        proxy_set_header X-Forwarded-Proto $scheme;
        proxy_set_header Host $http_host;
        proxy_set_header X-Real-IP $remote_addr;

        proxy_set_header SSL_CLIENT_VERIFY $ssl_client_verify;

        proxy_pass http://localhost:3001;
    }
}

The second part of this would be to disable external access to port 3001 via Iptables

Once this is in place, you will be able to perform SSL authentication to prestige over whatever port you set in place of listen 1337 ssl

Contributions

##Fork it, write your code, test early, test often.

code of conduct

I use a combination of Mocha, Chai, and Nock to build out mock endpoints to validate my function calls are properly executed on the intended service to be leveraged. I also use istanbul to validate that 100% code coverage exists before merging a pull request.

Testing

test suite

npm install
npm install -g grunt grunt-cli mocha
grunt

This will run the mocha test suite and jshint to validate no linting errors. Be aware, I am pretty strict on cyclomatic complexity, it will blow up if you have a level higher than 4 in your functions.

test coverage

npm install -g istanbul
istanbul cover _mocha test/path/to/test.js

The test files map to their respective file in the lib/prestige directory, just replace path/to/test.js with the correct path to the test file

Coverage can be done in two ways.

  1. Test a single function
  • This will test for 100% coverage on that function in lib/prestige/
  1. Test the full app functionality
  • This will test the "golden path" to verify prestige as a whole functions correctly

start the app

grunt start

issues

https://github.com/e-sabelhaus/prestige/issues

About

A module to connect distributed applications via their REST API using express

Resources

License

Stars

Watchers

Forks

Packages

No packages published