LSST DM SQuaRE api.lsst.codes-compliant microservice wrapper for cookiecutter projects.
Regular installation:
pip install -e .
For development and testing:
pip install -e ".[dev]"
make test
Run additional linting with pytest:
make pylint
To make and push the Docker image:
make image
make docker-push
You can run the app locally for development before deploying with Kubernetes.
First, copy test.credentials.template.sh to test.credentials.sh and fill in the environment variables:
SQRBOT_KEEPER_USERNAME: thekeeper.lsst.codesusername for project admin.SQRBOT_KEEPER_PASSWORD: thekeeper.lsst.codespassword for project admin.SQRBOT_LTD_KEEPER_USERNAME: thekeeper.lsst.codesusername to embed in the technote.SQRBOT_LTD_KEEPER_PASSWORD: thekeeper.lsst.codespassword to embed in the technote.SQRBOT_LTD_MASON_AWS_ID: the AWS secret ID to embed in the technote.SQRBOT_LTD_MASON_AWS_SECRET: the AWS secret key to embed in the technote.SQRBOT_USERNAME: GitHub username.- `SQRBOT_GITHUB_TOKEN: GitHub personal access token with these permissions:
public_reporepo:statususerwrite:repo_hook
Next, run the services in four separate shells:
-
make redis— start up the Redis container. -
make server— start up the Flask app. -
make worker— start up the Celery task worker. -
make run— send a testPOST /ccutter/lsst-technote-bootstrap/request.
You'll need to re-run steps 2 – 4 if you change application code (use control-C to stop the server processes).
To see the Celery task queue, start a Flower monitor:
celery -A uservice_ccutter.celery_app flower
-
GET /: returnsOK(used by Google Container Engine Ingress healthcheck) -
GET /ccutter: returns a JSON structure. The keys are the types of projects the service knows how to make with cookiecutter, and the values are what cookiecutter expects to use as cookiecutter.json for that type of project. -
GET /ccutter/<projecttype>: returns a JSON structure for the named project type. -
POST /ccutter/<projecttype>: accepts JSON representing a filled-out cookiecutter.json form. This must be authenticated: the authentication headers should contain a username of the GitHub user that will be doing the project creation and commit, and the password field of the authentication header must contain the corresponding GitHub token. Presuming authentication and authorization succeed, the POST then:- Substitutes additional fields in the JSON depending on the project type.
- Runs cookiecutter to create the project from the template.
- Creates a repository on GitHub for the project.
- Pushes the project content to GitHub
-
If the project creation succeeds in pushing this content, the API call itself is guaranteed to return
200 OK. Prior to the push succeeding, the HTTP error codes you'd expect apply, notably401 Unauthorizedand500 Internal Server Error. In essence, this means that putting the content on GitHub is the point of no return; after that, you have a project but it might require manual intervention. -
Assuming project creation returns a
200 OK, the body of the response is a JSON structure with two fields:github_repocontains the HTTPS clone url of the new repository, andpost_commit_errorcontains eithernullor a string describing any errors that occurred after the project was pushed to GitHub. For a project type like an LSST Technote, there are several post-commit actions which each have the possibility of failure. The point ofpost_commit_erroris to return enough information to the user that it is possible to determine what manual actions must be taken to finish creating the project.
To add a new project type, the developer must do the following:
- Add the GitHub URL for the cookiecutter bootstrap for that type to
uservice_cookiecutter/projecturls.py. - Create a file
<typename>.pyinuservice_cookiecutter/plugins/projecttypes. For each field you want automatically substituted, there must be a function whose name is the field name, and which returns the new value of that field. For instance, ayearfield should probably not really be user-specified, but just substitute the current year (which happens to be already defined inuservice_ccutter.plugins.generic.current_year()). - Some function that will be run each time one of these types is
encountered (that is, a required field) must also set the fields
github_name,github_email, andgithub_repoif they are not in the input JSON. (You may wish to override even if they are.)github_nameis the name of the author, and an arbitrary string.github_emailis the email address of the author, and is also arbitrary.github_repois of the form<github_org>/<github_repo>, e.g.lsst-sqre/uservice-mymicroservice.
github_descriptionandgithub_homepagewill populate those fields on the GitHub repository; ifgithub_descriptiondoes not exist butdescriptiondoes,descriptionwill be used instead.- Write unit tests for your field substitution in
tests. - Add a
finalize_function for work that needs to be done after the push to GitHub, if any.
See uservice_ccutter/plugins/substitute.py for more information on
field substitution.
In your <typename>.py file, field names are mapped verbatim to
function names, except that dashes in field names are replaced with
underscores in function names, due to Python naming requirements.
Functions ending with a single underscore are reserved for use by the
plugin machinery, e.g. finalize_.
A project type may need to perform actions after its GitHub repository
has been created. It does this in a function called finalize_. If a
project type does not have any post-commit actions, it may omit the
function. If project creation does not succeed (that is, the
template-substituted project is not successfully pushed to GitHub),
finalize_ is never called.
If your finalize_ function itself needs to call other functions, those
functions should be named with a single leading underscore, to protect
them from interpretation as field names.
finalize_ itself should return None if everything went well, and a
string describing what failed if it did not completely succeed. It
should not raise an exception.