sap-jenkins-library/resources/metadata/githubbranchprotection.yaml

metadata:
  name: githubCheckBranchProtection
  description: Check branch protection of a GitHub branch
  longDescription: |
    This step allows you to check if certain branch protection rules are fulfilled.

    It can for example be used to verify if certain status checks are mandatory. This can be helpful to decide if a certain check needs to be performed again after merging a pull request.
spec:
  inputs:
    secrets:
      - name: githubTokenCredentialsId
        description: Jenkins 'Secret text' credentials ID containing token to authenticate to GitHub.
        type: jenkins
    params:
      - name: apiUrl
        aliases:
          - name: githubApiUrl
        description: Set the GitHub API url.
        scope:
          - GENERAL
          - PARAMETERS
          - STAGES
          - STEPS
        type: string
        default: https://api.github.com
        mandatory: true
      - name: branch
        description: The name of the branch for which the protection settings should be checked.
        scope:
          - PARAMETERS
          - STAGES
          - STEPS
        type: string
        default: master
        mandatory: true
      - name: owner
        aliases:
          - name: githubOrg
        description: Name of the GitHub organization.
        resourceRef:
          - name: commonPipelineEnvironment
            param: github/owner
        scope:
          - PARAMETERS
          - STAGES
          - STEPS
        type: string
        mandatory: true
      - name: repository
        aliases:
          - name: githubRepo
        description: Name of the GitHub repository.
        resourceRef:
          - name: commonPipelineEnvironment
            param: github/repository
        scope:
          - PARAMETERS
          - STAGES
          - STEPS
        type: string
        mandatory: true
      - name: requiredChecks
        description: List of checks which have to be set to 'required' in the GitHub repository configuration.
        scope:
          - PARAMETERS
          - STAGES
          - STEPS
        type: "[]string"
      - name: requireEnforceAdmins
        description: Check if 'Include Administrators' option is set in the GitHub repository configuration.
        scope:
          - PARAMETERS
          - STAGES
          - STEPS
        type: bool
      - name: requiredApprovingReviewCount
        description: Check if 'Require pull request reviews before merging' option is set with at least the defined number of reviewers in the GitHub repository configuration.
        scope:
          - PARAMETERS
          - STAGES
          - STEPS
        type: int
      - name: token
        aliases:
          - name: githubToken
          - name: access_token
        description: GitHub personal access token as per https://help.github.com/en/github/authenticating-to-github/creating-a-personal-access-token-for-the-command-line.
        scope:
          - GENERAL
          - PARAMETERS
          - STAGES
          - STEPS
        type: string
        mandatory: true
        secret: true
        resourceRef:
          - name: githubTokenCredentialsId
            type: secret
          - type: vaultSecret
            paths:
            - $(vaultPath)/github
            - $(vaultBasePath)/$(vaultPipelineName)/github
            - $(vaultBasePath)/GROUP-SECRETS/github
Add step for GitHub branch protection check (2) (#2016) * add step for GitHub branch protection check * add command to piper command * remove unnecessary parameter * Update resources/metadata/githubbranchprotection.yaml * add groovy part * update generation & go mod tidy * update groovy tests * fix bug with go-github version * Add step to check GitHub branch protection settings * include PR review feedabck Co-authored-by: Sven Merk <33895725+nevskrem@users.noreply.github.com> 2020-09-14 12:05:12 +02:00			`metadata:`
			`name: githubCheckBranchProtection`
			`description: Check branch protection of a GitHub branch`
			`longDescription: \|`
			`This step allows you to check if certain branch protection rules are fulfilled.`

			`It can for example be used to verify if certain status checks are mandatory. This can be helpful to decide if a certain check needs to be performed again after merging a pull request.`
			`spec:`
			`inputs:`
			`secrets:`
			`- name: githubTokenCredentialsId`
			`description: Jenkins 'Secret text' credentials ID containing token to authenticate to GitHub.`
			`type: jenkins`
			`params:`
			`- name: apiUrl`
			`aliases:`
			`- name: githubApiUrl`
			`description: Set the GitHub API url.`
			`scope:`
			`- GENERAL`
			`- PARAMETERS`
			`- STAGES`
			`- STEPS`
			`type: string`
			`default: https://api.github.com`
			`mandatory: true`
			`- name: branch`
			`description: The name of the branch for which the protection settings should be checked.`
			`scope:`
			`- PARAMETERS`
			`- STAGES`
			`- STEPS`
			`type: string`
GitHub steps: convenience updates (#2026) * GitHub steps: convenience updates * update generated files * Update cmd/githubCheckBranchProtection.go Co-authored-by: Christopher Fenner <26137398+CCFenner@users.noreply.github.com> * Update cmd/githubCheckBranchProtection.go Co-authored-by: Christopher Fenner <26137398+CCFenner@users.noreply.github.com> * Update cmd/githubCheckBranchProtection.go Co-authored-by: Christopher Fenner <26137398+CCFenner@users.noreply.github.com> 2020-09-15 17:50:55 +02:00			`default: master`
Add step for GitHub branch protection check (2) (#2016) * add step for GitHub branch protection check * add command to piper command * remove unnecessary parameter * Update resources/metadata/githubbranchprotection.yaml * add groovy part * update generation & go mod tidy * update groovy tests * fix bug with go-github version * Add step to check GitHub branch protection settings * include PR review feedabck Co-authored-by: Sven Merk <33895725+nevskrem@users.noreply.github.com> 2020-09-14 12:05:12 +02:00			`mandatory: true`
			`- name: owner`
			`aliases:`
			`- name: githubOrg`
			`description: Name of the GitHub organization.`
GitHub steps: convenience updates (#2026) * GitHub steps: convenience updates * update generated files * Update cmd/githubCheckBranchProtection.go Co-authored-by: Christopher Fenner <26137398+CCFenner@users.noreply.github.com> * Update cmd/githubCheckBranchProtection.go Co-authored-by: Christopher Fenner <26137398+CCFenner@users.noreply.github.com> * Update cmd/githubCheckBranchProtection.go Co-authored-by: Christopher Fenner <26137398+CCFenner@users.noreply.github.com> 2020-09-15 17:50:55 +02:00			`resourceRef:`
			`- name: commonPipelineEnvironment`
			`param: github/owner`
Add step for GitHub branch protection check (2) (#2016) * add step for GitHub branch protection check * add command to piper command * remove unnecessary parameter * Update resources/metadata/githubbranchprotection.yaml * add groovy part * update generation & go mod tidy * update groovy tests * fix bug with go-github version * Add step to check GitHub branch protection settings * include PR review feedabck Co-authored-by: Sven Merk <33895725+nevskrem@users.noreply.github.com> 2020-09-14 12:05:12 +02:00			`scope:`
			`- PARAMETERS`
			`- STAGES`
			`- STEPS`
			`type: string`
			`mandatory: true`
			`- name: repository`
			`aliases:`
			`- name: githubRepo`
			`description: Name of the GitHub repository.`
GitHub steps: convenience updates (#2026) * GitHub steps: convenience updates * update generated files * Update cmd/githubCheckBranchProtection.go Co-authored-by: Christopher Fenner <26137398+CCFenner@users.noreply.github.com> * Update cmd/githubCheckBranchProtection.go Co-authored-by: Christopher Fenner <26137398+CCFenner@users.noreply.github.com> * Update cmd/githubCheckBranchProtection.go Co-authored-by: Christopher Fenner <26137398+CCFenner@users.noreply.github.com> 2020-09-15 17:50:55 +02:00			`resourceRef:`
			`- name: commonPipelineEnvironment`
			`param: github/repository`
Add step for GitHub branch protection check (2) (#2016) * add step for GitHub branch protection check * add command to piper command * remove unnecessary parameter * Update resources/metadata/githubbranchprotection.yaml * add groovy part * update generation & go mod tidy * update groovy tests * fix bug with go-github version * Add step to check GitHub branch protection settings * include PR review feedabck Co-authored-by: Sven Merk <33895725+nevskrem@users.noreply.github.com> 2020-09-14 12:05:12 +02:00			`scope:`
			`- PARAMETERS`
			`- STAGES`
			`- STEPS`
			`type: string`
			`mandatory: true`
			`- name: requiredChecks`
			`description: List of checks which have to be set to 'required' in the GitHub repository configuration.`
			`scope:`
			`- PARAMETERS`
			`- STAGES`
			`- STEPS`
			`type: "[]string"`
			`- name: requireEnforceAdmins`
			`description: Check if 'Include Administrators' option is set in the GitHub repository configuration.`
			`scope:`
			`- PARAMETERS`
			`- STAGES`
			`- STEPS`
			`type: bool`
			`- name: requiredApprovingReviewCount`
			`description: Check if 'Require pull request reviews before merging' option is set with at least the defined number of reviewers in the GitHub repository configuration.`
			`scope:`
			`- PARAMETERS`
			`- STAGES`
			`- STEPS`
			`type: int`
			`- name: token`
			`aliases:`
			`- name: githubToken`
fetch github token from vault (#2290) Co-authored-by: Oliver Nocon <33484802+OliverNocon@users.noreply.github.com> 2020-11-02 10:04:36 +02:00			`- name: access_token`
Add step for GitHub branch protection check (2) (#2016) * add step for GitHub branch protection check * add command to piper command * remove unnecessary parameter * Update resources/metadata/githubbranchprotection.yaml * add groovy part * update generation & go mod tidy * update groovy tests * fix bug with go-github version * Add step to check GitHub branch protection settings * include PR review feedabck Co-authored-by: Sven Merk <33895725+nevskrem@users.noreply.github.com> 2020-09-14 12:05:12 +02:00			`description: GitHub personal access token as per https://help.github.com/en/github/authenticating-to-github/creating-a-personal-access-token-for-the-command-line.`
			`scope:`
			`- GENERAL`
			`- PARAMETERS`
			`- STAGES`
			`- STEPS`
			`type: string`
			`mandatory: true`
			`secret: true`
			`resourceRef:`
			`- name: githubTokenCredentialsId`
			`type: secret`
fetch github token from vault (#2290) Co-authored-by: Oliver Nocon <33484802+OliverNocon@users.noreply.github.com> 2020-11-02 10:04:36 +02:00			`- type: vaultSecret`
			`paths:`
			`- $(vaultPath)/github`
			`- $(vaultBasePath)/$(vaultPipelineName)/github`
			`- $(vaultBasePath)/GROUP-SECRETS/github`