Contenu connexe Similaire à Diffy gets enterprise grade (20) Diffy gets enterprise grade1. 1 Copyright ©2014 CollabNet, Inc. All Rights Reserved.ENTERPRISE CLOUD DEVELOPMENT
TeamForge integration with Git/Gerrit
Diffy gets Enterprise gradeDiffy gets Enterprise grade
TeamForge Gerrit IntegrationTeamForge Gerrit Integration
Eryk SzymanskiEryk Szymanski
Dariusz LukszaDariusz Luksza
CollabNet Engineering, Potsdam, GermanyCollabNet Engineering, Potsdam, Germany
3. 3 Copyright ©2014 CollabNet, Inc. All Rights Reserved.
…… and the Enterpriseand the Enterprise
4. 4 Copyright ©2014 CollabNet, Inc. All Rights Reserved.
Enterprise GradeEnterprise Grade
Integration of existing
tools
Security, standards and audit
compliance
Scalability (and manageability at
scale)
5. 5 Copyright ©2014 CollabNet, Inc. All Rights Reserved.
Enterprise GradeEnterprise Grade
SearchabilitySearchability – across TF artifacts, including Code Search across multiple– across TF artifacts, including Code Search across multiple
repositories, gerrit instances and other SCM tools.repositories, gerrit instances and other SCM tools.
Traceability –Traceability – associating the source code with
requirements, issues, documents, tasks and other
artifacts.
RBAC –RBAC – Role Based Access Control – permissions to perform certain
operations are assigned to roles. Management of individual permissions
becomes a matter of simply assigning appropriate roles to the given
users.
6. 6 Copyright ©2014 CollabNet, Inc. All Rights Reserved.ENTERPRISE CLOUD DEVELOPMENT
TeamForge integration with Git/Gerrit
Introducing Gerrit IntegrationIntroducing Gerrit Integration
7. 7 Copyright ©2014 CollabNet, Inc. All Rights Reserved.
TeamForge Gerrit IntegrationTeamForge Gerrit Integration
Our mission:Our mission:
Make Gerrit first-class citizen of TeamForge ecosystemMake Gerrit first-class citizen of TeamForge ecosystem
➔
Multiple Gerrit instances can be controlled by TeamForge.
➔
Make use of TeamForge features:
➔
Enable Source Code Search and Commit Objects.
➔
Use TeamForge RBAC for Access Rights.
➔
Make sure it is secure and audit compliant.
➔
Enable TeamForge-like look and feel (branding).
➔
But keep in mind that Gerrit is also a Git Server.
8. 8 Copyright ©2014 CollabNet, Inc. All Rights Reserved.
TeamForge Git/Gerrit IntegrationTeamForge Git/Gerrit Integration
➔
Managed by TeamForge
➔
Based on modified Gerrit 2.7 (about 70 patches)
➔
Plugins: sync, secure store, history protection, notification
➔
Custom branding
9. 9 Copyright ©2014 CollabNet, Inc. All Rights Reserved.
TeamForge Git/Gerrit IntegrationTeamForge Git/Gerrit Integration
10. 10 Copyright ©2014 CollabNet, Inc. All Rights Reserved.ENTERPRISE CLOUD DEVELOPMENT
TeamForge integration with Git/Gerrit
➢RepoCategory
➢History Protection
➢Notifications
Features:
11. 11 Copyright ©2014 CollabNet, Inc. All Rights Reserved.
TF SCM permissionsTF SCM permissions
12. 12 Copyright ©2014 CollabNet, Inc. All Rights Reserved.
Gerrit Access RightsGerrit Access Rights
13. 13 Copyright ©2014 CollabNet, Inc. All Rights Reserved.
RepoCategory (aka Code Review Policy)RepoCategory (aka Code Review Policy)
ImplementationImplementation::
●
MapMap TeamForge SCM permissions toTeamForge SCM permissions to Gerrit Access Rights.Gerrit Access Rights.
●
Provide pre-definedProvide pre-defined code review policiescode review policies so anyone can start toso anyone can start to
work with Gerrit within a few steps.work with Gerrit within a few steps.
●
Code review policiesCode review policies are applied per repository.are applied per repository.
Motivation:Motivation:
Shield most users from Gerrit’s complexities by using pre-definedShield most users from Gerrit’s complexities by using pre-defined
repo categories and generic TeamForge RBAC model with its SCMrepo categories and generic TeamForge RBAC model with its SCM
permissions.permissions.
Without hiding advanced features for power users.Without hiding advanced features for power users.
15. 15 Copyright ©2014 CollabNet, Inc. All Rights Reserved.
RepoCategoryRepoCategory
●
DefaultDefault: All Gerrit review features are turned off
●
Mandatory ReviewMandatory Review: All code changes have to be reviewed
●
Optional ReviewOptional Review: Review feature is turned on but can be bypassed if necessary
●
CustomCustom: Access rights have to be set manually in Gerrit Web UI and will not be
overridden by TeamForge
●
User-definedUser-defined: Possibility to define your own access rights controlled by TeamForge
Pre defined & user-defined categoriesPre defined & user-defined categories
16. 16 Copyright ©2014 CollabNet, Inc. All Rights Reserved.
History RewriteHistory Rewrite
17. 17 Copyright ©2014 CollabNet, Inc. All Rights Reserved.
History ProtectionHistory Protection
●
DetectsDetects force pushforce push andand branch deletionbranch deletion operationsoperations
●
Creates aCreates a special referencespecial reference pointing to thepointing to the current statecurrent state
●
ThisThis referencereference contains all necessary information such as:contains all necessary information such as:
who made the change,who made the change,
when was it done,when was it done,
what was the branch/ref namewhat was the branch/ref name
what are the old and new commit idswhat are the old and new commit ids
●
Provides the possibility toProvides the possibility to ressurectressurect
●
AA notification emailnotification email is sent automatically to members of theis sent automatically to members of the GerritGerrit ‘Administrators’‘Administrators’
groupgroup, and new entry in the, and new entry in the audit logaudit log is createdis created
●
Can be appliedCan be applied globallyglobally for the wholefor the whole Gerrit ServerGerrit Server oror
locallylocally for a givenfor a given repositoryrepository
18. 18 Copyright ©2014 CollabNet, Inc. All Rights Reserved.
HistoryHistory Protection - The ‘Un-do’ ButtonProtection - The ‘Un-do’ Button
19. 19 Copyright ©2014 CollabNet, Inc. All Rights Reserved.
History Protection - Audit ComplianceHistory Protection - Audit Compliance
20. 20 Copyright ©2014 CollabNet, Inc. All Rights Reserved.
NotificationsNotifications
Motivation:Motivation:
Bring the git push notifications mechanism from the gitmultimailBring the git push notifications mechanism from the gitmultimail
script to TeamForgescript to TeamForge
22. 22 Copyright ©2014 CollabNet, Inc. All Rights Reserved.ENTERPRISE CLOUD DEVELOPMENT
TeamForge integration with Git/Gerrit
Live DemoLive Demo
23. 23 Copyright ©2014 CollabNet, Inc. All Rights Reserved.ENTERPRISE CLOUD DEVELOPMENT
TeamForge integration with Git/Gerrit
Thank you very much.Thank you very much.
Questions?Questions?
Notes de l'éditeur DSDP - Distributed Software Development Platform.
ALM - Application Lifecycle Manangement.
Integrates well with other tools.
No matter which tool set you use you can configure and use it from TeamForge.
Of course it provides it's own tools, such as Project Templates, Planning Folders, Trackers and Discussion Forums.
TeamForge is targeting Enterprise Users
Integration
Security
Scalability
SAS 70 = Statement on Auditing Standards No. 70.
Standard for Information Technology and related processes.
CollabNet is SAS 70-certified vendor and we undergo annual audits by third parties to ensure complance with required regulation controls.
The Federal Risk and Authorization Management Program (FedRAMP) is a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services.
Searchability
Traceability
RBAC
And more, project templates, planing folders,
http://blogs.collab.net/teamforge/gerrit-rebranding-what-if-collabnets-theme-was-orange-yellowish
TF scm permissions are coarse-grained...
.. as opposed to Gerrit Access Rights.
This screenshot does not even show all the Access Rights – actually the whole list is a couple of screens longer
<number>
Bring the vanilla git notification feature back to gerrit.
Bringing the vanilla git notification feature back to gerrit.