github-events

command
v0.0.0-...-af3d2d8 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Oct 9, 2018 License: Apache-2.0, CC-BY-4.0 Imports: 12 Imported by: 0

README

Reacting to GitHub Events

In response to a pull request event, the sample app legit Service will add (looks pretty legit) to the PR title.

A GitHub webhook will be created on a repository and a Knative Service will be deployed to receive the webhook's event deliveries and forward them into a Channel, through a Bus, and out to the consumer via a Subscription. The Flow resource takes care of provisioning the webhook, the Service, the Channel, and the Subscription.

Prerequisites

You will need:

  • A Kubernetes cluster with Knative serving installed. Follow the installation instructions if you need to create one.
  • Docker installed and running on your local machine, and a Docker Hub account configured (you'll use it for a container registry).
  • Knative eventing core installed on your Kubernetes cluster. You can install with: 
    kubectl apply --filename https://storage.googleapis.com/knative-releases/eventing/latest/release.yaml
  • A domain name that allows GitHub to call into the cluster: Follow the assign a static IP address and configure a custom domain instructions.

Configuring Knative

To use this sample, you'll need to install the stub ClusterBus and the github EventSource:

# Installs ClusterBus
kubectl apply --filename https://storage.googleapis.com/knative-releases/eventing/latest/release-clusterbus-stub.yaml
# Installs EventSource
kubectl apply --filename https://storage.googleapis.com/knative-releases/eventing/latest/release-source-github.yaml

Granting permissions

Because the github EventSource needs to create a Knative Service, you'll need to provision a special ServiceAccount with the necessary permissions.

The auth.yaml file provisions a service account, and creates a role which can create a Knative Service in the default namespace. In a production environment, you might want to limit the access of this service account to only specific namespaces.

kubectl apply --filename auth.yaml

Building and deploying the sample

  1. Create a personal access token to GitHub repo that the GitHub source can use to register webhooks with the GitHub API. Also decide on a token that your code will use to authenticate the incoming webhooks from GitHub (accessToken).

    The token can be named anything you find convenient. This sample requires full repo control to be able update the title of the Pull Request. The Source requires admin:repo_hook, this allows it to create webhooks into repos that your account is allowed to do so. Copy and save this token; GitHub will force you to generate it again if misplaced.

    Here I named my token "EventingSample" and have selected the recommended scopes:

    GitHub UI

    Update githubsecret.yaml with those values. If your generated access token is 'asdfasfdsaf' and you choose your secretToken as 'personal_access_token_value', you'd modify githubsecret.yaml like so:

    apiVersion: v1
kind: Secret
metadata:
  name: githubsecret
type: Opaque
stringData:
  githubCredentials: >
    {
      "accessToken": "asdfasfdsaf",
      "secretToken": "personal_access_token_value"
    }

    Hint: you can makeup a random accessToken with:

    head -c 8 /dev/urandom | base64

    Then, apply the githubsecret using kubectl:

    kubectl apply --filename githubsecret.yaml

  2. Use Docker to build the sample code into a container. To build and push with Docker Hub, run the following commands, replacing {username} with your Docker Hub username. Run the following commands from the root directory of the knative/docs repo:

    # Build the container on your local machine
# Note: The relative path points to the _root_ of the `knative/docs` repo
docker build -t {username}/github-events --file=Dockerfile ../../../

# Push the container to docker registry
docker push {username}/github-events

  3. After the build has completed and the container is pushed to Docker Hub, you can deploy the function into your cluster. Ensure that the container image value in function.yaml matches the container you built in the previous step. Apply the configuration using kubectl:

    kubectl apply --filename function.yaml

  4. Check that your service is running using:

    kubectl get ksvc --output "custom-columns=NAME:.metadata.name,READY:.status.conditions[2].status,REASON:.status.conditions[2].message"
NAME              READY     REASON
legit             True      <none>

    Note: ksvc is an alias for services.serving.knative.dev. If you have an older version (version 0.1.0) of Knative installed, you'll need to use the long name until you upgrade to version 0.1.1 or higher. See Checking Knative Installation Version to learn how to see what version you have installed.

  5. Update the resource inside flow.yaml to the org/repo of your choosing. Note that the personal access token must be valid for the chosen org/repo.

    Then create the flow sending GitHub Events to the service:

    kubectl apply --filename flow.yaml

  6. Create a PR for the repo you configured the webhook for, and you'll see that the Title will be modified with the suffix (looks pretty legit)

Understanding what happened

TODO: similar to k8s-events.

Cleaning up

To clean up the function, Flow, auth, and secret:

kubectl delete --filename function.yaml
kubectl delete --filename flow.yaml
kubectl delete --filename auth.yaml
kubectl delete --filename githubsecret.yaml

And then delete the personal access token created from GitHub.

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.