New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Self-hosted shield.io instance #3044
Comments
Excellent idea! Proposal: if we host the "shields.jenkins.io" (I'll refer to it with this name for clarity but it can be chaneged of course!) service on the same VM as ci.jenkins.io, we would not even need any token:
I guess we have to evaluate the requirements for this services:
|
Additional doc on self-hosting shield.io: https://github.com/badges/shields/blob/master/doc/releases.md#shields-server |
As I didn't managed to join shield.io discord server, I've opened a discussion to ask about requirements. |
…2648) https://docs.google.com/document/d/11Nr8QpqYgBiZjORplL_3Zkwys2qK1vEvK-NYyYa4rzg/edit?disco=AAAAYXxgRHI provides more context for the adoption request. We believe it may be cheaper and easier to adopt this plugin than to remove the plugin from ci.jenkins.io and update the many repositories that refer to it. Help desk jenkins-infra/helpdesk#3013 suggests that we should consider removing the plugin because it is not actively maintained. Help desk jenkins-infra/helpdesk#3044 proposes steps to replace the use of this plugin with something hosted elsewhere on Jenkins infrastructure. One of the existing maintainers needs to approve the adoption request. Existing maintainers are: * @thomas-dee * @mgedmin * @christiangalsterer * @jglick
As @MarkEWaite and @darinpope adopted the plugin, it doesn't have to be removed from ci.jenkins.io. |
Related to "Consider removing embeddable-build-status plugin" and since ci.jenkins.io is blocking access to
../api/json
path for security reason, I'm proposing to self-host a shield.io instance instead of putting in place a token to authorize shield.io access to these urls.The token solution would need a patch on shield.io server codebase to add this token for ci.jenkins.io requests, but since there aren't that much uses I don't think it worth it for them.
The self-hosted instance wouldn't need a token as we could whitelist it on ci.jenkins.io
WDYT?
The text was updated successfully, but these errors were encountered: