-
Notifications
You must be signed in to change notification settings - Fork 103
/
policy-bot.example.yml
138 lines (130 loc) · 5.06 KB
/
policy-bot.example.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
# Options for the http server
server:
# The listen address and port
address: "0.0.0.0"
port: 8080
# The public URL, used for URL generation when the server is behind a proxy
# Can also be set by the POLICYBOT_PUBLIC_URL environment variable.
public_url: http://localhost:8080
# Uncomment the "tls_config" block to enable HTTPS support in the server.
# The cert and key files must be usable by net/http.ListenAndServeTLS().
# tls_config:
# cert_file: /path/to/server.pem
# key_file: /path/to/server.key
# Options for logging output
logging:
# If true, logs are printed in human-readable form. We recommend using
# "false" to output JSON-formatted logs in production
# Can also be set by the POLICYBOT_LOG_TEXT environment variable.
text: false
# Set a minimum logging level threshold
# Choose from: debug, info, warn, error
# Can also be set by the POLICYBOT_LOG_LEVEL environment variable.
level: debug
# Options for emitting metrics. Policy supports both DogStatsD metrics and
# Prometheus metrics.
#
# DogStatsD metrics are disabled by default. Uncomment the 'datadog' block to
# enable emitting metrics to the configured statsd endpoint.
#
# datadog:
# address: 127.0.0.1:8125
# interval: 10s
# tags:
# - "environment:production"
#
#
# Prometheus metrics are always available at the "/api/metrics" endpoint.
# Uncomment the 'prometheus' block to change the behavior of these metrics.
#
# prometheus:
# histogram_quantiles: [0.5, 0.95]
# timer_quantiles: [0.5, 0.95]
# labels:
# environment: production
# Options for the GitHub response cache. When the cache reaches max_size, the
# oldest entries are evicted. Size properties can use any format supported by
# https://github.com/c2h5oh/datasize
#
# cache:
# max_size: "50MB"
# Options for webhook processing workers. Events are dropped if the queue is
# full. The defaults are shown below.
#
# workers:
# workers: 10
# queue_size: 100
# github_timeout: 10s
# Options for connecting to GitHub
github:
# The URL of the GitHub homepage. Can also be set by the GITHUB_WEB_URL
# environment variable.
web_url: "https://github.com"
# The base URL for v3 (REST) API requests. Can also be set by the
# GITHUB_V3_API_URL environment variable.
v3_api_url: "https://api.github.com"
# The base URL for v4 (GraphQL) API requests. Can also be set by the
# GITHUB_V4_API_URL environment variable.
v4_api_url: "https://api.github.com/graphql"
app:
# The integration ID of the GitHub app. Can also be set by the
# GITHUB_APP_INTEGRATION_ID environment variable.
integration_id: 1
# A random string used to validate webhooks. Can also be set by the
# GITHUB_APP_WEBHOOK_SECRET environment variable.
webhook_secret: "app_secret"
# The private key of the GitHub app. Can also be set by the
# GITHUB_APP_PRIVATE_KEY environment variable.
private_key: |
-----BEGIN RSA PRIVATE KEY-----
xxxxx
xxxxx
xxxxx
-----END RSA PRIVATE KEY-----
oauth:
# The client ID of the OAuth app associated with the GitHub app. Can also
# be set by the GITHUB_OAUTH_CLIENT_ID environment variable.
client_id: "client_id"
# The client secret of the OAuth app associated with the GitHub app. Can
# also be set by the GITHUB_OAUTH_CLIENT_SECRET environment variable.
client_secret: "client_secret"
# Options for user sessions
sessions:
# A random string used to sign session cookies. Can also be set by the
# POLICYBOT_SESSIONS_KEY environment variable.
key: "secretsessionkey"
# Options for application behavior. The defaults are shown below.
#
# options:
# # The path to the policy file in a repository. Can also be set by the
# # POLICYBOT_OPTIONS_POLICY_PATH environment variable.
# policy_path: .policy.yml
#
# # The name of an organization repository to look in for a shared policy if
# # a repository does not define a policy file. Can also be set by the
# # POLICYBOT_OPTIONS_SHARED_REPOSITORY environment variable.
# shared_repository: .github
#
# # The path to the policy file in the shared organization repository.
# # Can also be set by the POLICYBOT_OPTIONS_SHARED_POLICY_PATH environment variable.
# shared_policy_path: policy.yml
#
# # The context prefix for status checks created by the bot. Can also be set by the
# # POLICYBOT_OPTIONS_STATUS_CHECK_CONTEXT environment variable.
# status_check_context: policy-bot
#
# # If true, expand teams, organizations, and permissions in the detils UI to
# # a list of users. This option has security implications; see the README.
# # Can also be set by the POLICYBOT_OPTIONS_EXPAND_REQUIRED_REVIEWERS
# # environment variable.
# expand_required_reviewers: false
# Options for locating the frontend files. By default, the server uses appropriate
# paths for the binary distribution and Docker container. For local development,
# uncomment this section to use the alternate paths below.
#
# 'static' is the file system path to the assembled CSS and JS assets.
# 'templates' is the file system path to the Go template files.
#
# files:
# static: build/static
# templates: server/templates