sap-jenkins-library/vars/piperPipelineStageSecurity.groovy

import com.sap.piper.ConfigurationHelper
import com.sap.piper.GenerateStageDocumentation
import com.sap.piper.Utils
import groovy.transform.Field

import static com.sap.piper.Prerequisites.checkScript

@Field String STEP_NAME = getClass().getName()

@Field Set GENERAL_CONFIG_KEYS = []
@Field STAGE_STEP_KEYS = [
    /** Executes a WhiteSource scan */
    'whitesourceExecuteScan'
]
@Field Set STEP_CONFIG_KEYS = GENERAL_CONFIG_KEYS.plus(STAGE_STEP_KEYS)
@Field Set PARAMETER_KEYS = STEP_CONFIG_KEYS

/**
 * In this stage important security-relevant checks will be conducted.<br />
 * This is to achieve a decent level of security for your application.
 */
@GenerateStageDocumentation(defaultStageName = 'Security')
void call(Map parameters = [:]) {

    def script = checkScript(this, parameters) ?: this
    def utils = parameters.juStabUtils ?: new Utils()

    def stageName = parameters.stageName?:env.STAGE_NAME

    Map config = ConfigurationHelper.newInstance(this)
        .loadStepDefaults()
        .mixinGeneralConfig(script.commonPipelineEnvironment, GENERAL_CONFIG_KEYS)
        .mixinStageConfig(script.commonPipelineEnvironment, stageName, STEP_CONFIG_KEYS)
        .mixin(parameters, PARAMETER_KEYS)
        .addIfEmpty('whitesourceExecuteScan', script.commonPipelineEnvironment.configuration.runStep?.get(stageName)?.whitesourceExecuteScan)
        .use()

    piperStageWrapper (script: script, stageName: stageName) {

        // telemetry reporting
        utils.pushToSWA([step: STEP_NAME], config)

        if (config.whitesourceExecuteScan) {
            durationMeasure(script: script, measurementName: 'whitesource_duration') {
                whitesourceExecuteScan script: script
            }
        }
    }
}
Project "Piper" Template: framework and structure (#476) * Project "Piper" Template: framework and structure This is the first in a series of Pull-Requests to provide a fully functional Pipeline template into the library. This PR contains: * general Pipeline structure incl. tests * Pipeline initialization incl. tests * Hollow pipeline stages incl. tests * first set of default values * add gitUrls to commonPipelineEnvironment * set correct git information on commonPipelineEnvironment 2019-02-05 16:37:59 +02:00			`import com.sap.piper.ConfigurationHelper`
Piper pipeline - enhance stages (#755) * fill PRVoting stage with content * add prVoting stage incl. tests * add Build stage incl. Tests * add docs pages * add additional unit test stage * add acceptance stage and additional documentation ... * add release stage content * add promote stage * add Security stage, fix defaults for Promote stage * fix issue in doc generation 2019-07-03 10:13:26 +02:00			`import com.sap.piper.GenerateStageDocumentation`
Project "Piper" Template: framework and structure (#476) * Project "Piper" Template: framework and structure This is the first in a series of Pull-Requests to provide a fully functional Pipeline template into the library. This PR contains: * general Pipeline structure incl. tests * Pipeline initialization incl. tests * Hollow pipeline stages incl. tests * first set of default values * add gitUrls to commonPipelineEnvironment * set correct git information on commonPipelineEnvironment 2019-02-05 16:37:59 +02:00			`import com.sap.piper.Utils`
			`import groovy.transform.Field`

			`import static com.sap.piper.Prerequisites.checkScript`

			`@Field String STEP_NAME = getClass().getName()`

			`@Field Set GENERAL_CONFIG_KEYS = []`
Piper pipeline - enhance stages (#755) * fill PRVoting stage with content * add prVoting stage incl. tests * add Build stage incl. Tests * add docs pages * add additional unit test stage * add acceptance stage and additional documentation ... * add release stage content * add promote stage * add Security stage, fix defaults for Promote stage * fix issue in doc generation 2019-07-03 10:13:26 +02:00			`@Field STAGE_STEP_KEYS = [`
			`/** Executes a WhiteSource scan */`
			`'whitesourceExecuteScan'`
			`]`
			`@Field Set STEP_CONFIG_KEYS = GENERAL_CONFIG_KEYS.plus(STAGE_STEP_KEYS)`
Project "Piper" Template: framework and structure (#476) * Project "Piper" Template: framework and structure This is the first in a series of Pull-Requests to provide a fully functional Pipeline template into the library. This PR contains: * general Pipeline structure incl. tests * Pipeline initialization incl. tests * Hollow pipeline stages incl. tests * first set of default values * add gitUrls to commonPipelineEnvironment * set correct git information on commonPipelineEnvironment 2019-02-05 16:37:59 +02:00			`@Field Set PARAMETER_KEYS = STEP_CONFIG_KEYS`

Piper pipeline - enhance stages (#755) * fill PRVoting stage with content * add prVoting stage incl. tests * add Build stage incl. Tests * add docs pages * add additional unit test stage * add acceptance stage and additional documentation ... * add release stage content * add promote stage * add Security stage, fix defaults for Promote stage * fix issue in doc generation 2019-07-03 10:13:26 +02:00			`/**`
			`* In this stage important security-relevant checks will be conducted.<br />`
			`* This is to achieve a decent level of security for your application.`
			`*/`
			`@GenerateStageDocumentation(defaultStageName = 'Security')`
Project "Piper" Template: framework and structure (#476) * Project "Piper" Template: framework and structure This is the first in a series of Pull-Requests to provide a fully functional Pipeline template into the library. This PR contains: * general Pipeline structure incl. tests * Pipeline initialization incl. tests * Hollow pipeline stages incl. tests * first set of default values * add gitUrls to commonPipelineEnvironment * set correct git information on commonPipelineEnvironment 2019-02-05 16:37:59 +02:00			`void call(Map parameters = [:]) {`

			`def script = checkScript(this, parameters) ?: this`
			`def utils = parameters.juStabUtils ?: new Utils()`

			`def stageName = parameters.stageName?:env.STAGE_NAME`

			`Map config = ConfigurationHelper.newInstance(this)`
			`.loadStepDefaults()`
			`.mixinGeneralConfig(script.commonPipelineEnvironment, GENERAL_CONFIG_KEYS)`
			`.mixinStageConfig(script.commonPipelineEnvironment, stageName, STEP_CONFIG_KEYS)`
			`.mixin(parameters, PARAMETER_KEYS)`
Piper pipeline - enhance stages (#755) * fill PRVoting stage with content * add prVoting stage incl. tests * add Build stage incl. Tests * add docs pages * add additional unit test stage * add acceptance stage and additional documentation ... * add release stage content * add promote stage * add Security stage, fix defaults for Promote stage * fix issue in doc generation 2019-07-03 10:13:26 +02:00			`.addIfEmpty('whitesourceExecuteScan', script.commonPipelineEnvironment.configuration.runStep?.get(stageName)?.whitesourceExecuteScan)`
Project "Piper" Template: framework and structure (#476) * Project "Piper" Template: framework and structure This is the first in a series of Pull-Requests to provide a fully functional Pipeline template into the library. This PR contains: * general Pipeline structure incl. tests * Pipeline initialization incl. tests * Hollow pipeline stages incl. tests * first set of default values * add gitUrls to commonPipelineEnvironment * set correct git information on commonPipelineEnvironment 2019-02-05 16:37:59 +02:00			`.use()`

			`piperStageWrapper (script: script, stageName: stageName) {`

			`// telemetry reporting`
			`utils.pushToSWA([step: STEP_NAME], config)`

Piper pipeline - enhance stages (#755) * fill PRVoting stage with content * add prVoting stage incl. tests * add Build stage incl. Tests * add docs pages * add additional unit test stage * add acceptance stage and additional documentation ... * add release stage content * add promote stage * add Security stage, fix defaults for Promote stage * fix issue in doc generation 2019-07-03 10:13:26 +02:00			`if (config.whitesourceExecuteScan) {`
			`durationMeasure(script: script, measurementName: 'whitesource_duration') {`
			`whitesourceExecuteScan script: script`
			`}`
			`}`
Project "Piper" Template: framework and structure (#476) * Project "Piper" Template: framework and structure This is the first in a series of Pull-Requests to provide a fully functional Pipeline template into the library. This PR contains: * general Pipeline structure incl. tests * Pipeline initialization incl. tests * Hollow pipeline stages incl. tests * first set of default values * add gitUrls to commonPipelineEnvironment * set correct git information on commonPipelineEnvironment 2019-02-05 16:37:59 +02:00			`}`
			`}`