RubyGems - shipit-engine - Versions diffs - 0.31.0 → 0.35.0 - Mend

shipit-engine 0.31.0 → 0.35.0

Files changed (411) hide show

checksums.yaml +4 -4
data/README.md +17 -4
data/Rakefile +4 -2
data/app/assets/images/magic-solid.svg +1 -0
data/app/assets/javascripts/shipit/repositories_search.js.coffee +60 -0
data/app/assets/javascripts/shipit/{search.js.coffee → stack_search.js.coffee} +0 -0
data/app/assets/stylesheets/_pages/_deploy.scss +2 -3
data/app/assets/stylesheets/_pages/_repositories.scss +148 -0
data/app/assets/stylesheets/_pages/_stacks.scss +19 -3
data/app/assets/stylesheets/merge_status.scss +0 -3
data/app/assets/stylesheets/shipit.scss +1 -0
data/app/controllers/concerns/shipit/active_model_serializers_patch.rb +1 -0
data/app/controllers/concerns/shipit/api/cacheable.rb +1 -0
data/app/controllers/concerns/shipit/api/paginable.rb +3 -2
data/app/controllers/concerns/shipit/api/rendering.rb +5 -4
data/app/controllers/concerns/shipit/authentication.rb +3 -2
data/app/controllers/concerns/shipit/pagination.rb +2 -1
data/app/controllers/shipit/api/base_controller.rb +11 -6
data/app/controllers/shipit/api/ccmenu_controller.rb +2 -1
data/app/controllers/shipit/api/commits_controller.rb +2 -1
data/app/controllers/shipit/api/deploys_controller.rb +6 -3
data/app/controllers/shipit/api/hooks_controller.rb +6 -5
data/app/controllers/shipit/api/locks_controller.rb +5 -4
data/app/controllers/shipit/api/merge_requests_controller.rb +37 -0
data/app/controllers/shipit/api/outputs_controller.rb +2 -1
data/app/controllers/shipit/api/release_statuses_controller.rb +3 -2
data/app/controllers/shipit/api/rollbacks_controller.rb +34 -0
data/app/controllers/shipit/api/stacks_controller.rb +32 -5
data/app/controllers/shipit/api/tasks_controller.rb +6 -5
data/app/controllers/shipit/api_clients_controller.rb +4 -3
data/app/controllers/shipit/ccmenu_url_controller.rb +4 -3
data/app/controllers/shipit/commit_checks_controller.rb +2 -1
data/app/controllers/shipit/commits_controller.rb +2 -1
data/app/controllers/shipit/deploys_controller.rb +4 -3
data/app/controllers/shipit/github_authentication_controller.rb +4 -3
data/app/controllers/shipit/merge_requests_controller.rb +31 -0
data/app/controllers/shipit/merge_status_controller.rb +31 -30
data/app/controllers/shipit/release_statuses_controller.rb +3 -2
data/app/controllers/shipit/repositories_controller.rb +74 -0
data/app/controllers/shipit/rollbacks_controller.rb +3 -2
data/app/controllers/shipit/shipit_controller.rb +2 -1
data/app/controllers/shipit/stacks_controller.rb +24 -9
data/app/controllers/shipit/status_controller.rb +2 -1
data/app/controllers/shipit/tasks_controller.rb +7 -6
data/app/controllers/shipit/webhooks_controller.rb +26 -6
data/app/helpers/shipit/chunks_helper.rb +3 -2
data/app/helpers/shipit/deploys_helper.rb +4 -3
data/app/helpers/shipit/github_url_helper.rb +9 -0
data/app/helpers/shipit/merge_status_helper.rb +1 -0
data/app/helpers/shipit/shipit_helper.rb +1 -1
data/app/helpers/shipit/stacks_helper.rb +5 -0
data/app/helpers/shipit/tasks_helper.rb +1 -0
data/app/jobs/shipit/background_job/unique.rb +1 -0
data/app/jobs/shipit/background_job.rb +4 -0
data/app/jobs/shipit/cache_deploy_spec_job.rb +1 -0
data/app/jobs/shipit/chunk_rollup_job.rb +4 -0
data/app/jobs/shipit/clear_git_cache_job.rb +1 -0
data/app/jobs/shipit/continuous_delivery_job.rb +2 -1
data/app/jobs/shipit/create_on_github_job.rb +7 -1
data/app/jobs/shipit/create_release_statuses_job.rb +1 -0
data/app/jobs/shipit/deferred_touch_job.rb +4 -0
data/app/jobs/shipit/deliver_hook_job.rb +2 -1
data/app/jobs/shipit/destroy_job.rb +1 -0
data/app/jobs/shipit/destroy_repository_job.rb +24 -0
data/app/jobs/shipit/destroy_stack_job.rb +3 -2
data/app/jobs/shipit/emit_event_job.rb +2 -1
data/app/jobs/shipit/fetch_commit_stats_job.rb +1 -0
data/app/jobs/shipit/fetch_deployed_revision_job.rb +1 -0
data/app/jobs/shipit/github_sync_job.rb +15 -10
data/app/jobs/shipit/mark_deploy_healthy_job.rb +1 -0
data/app/jobs/shipit/perform_commit_checks_job.rb +1 -0
data/app/jobs/shipit/perform_task_job.rb +5 -92
data/app/jobs/shipit/process_merge_requests_job.rb +32 -0
data/app/jobs/shipit/purge_old_deliveries_job.rb +1 -0
data/app/jobs/shipit/reap_dead_tasks_job.rb +21 -0
data/app/jobs/shipit/refresh_check_runs_job.rb +1 -0
data/app/jobs/shipit/refresh_github_user_job.rb +1 -0
data/app/jobs/shipit/refresh_merge_request_job.rb +11 -0
data/app/jobs/shipit/refresh_statuses_job.rb +1 -0
data/app/jobs/shipit/setup_github_hook_job.rb +1 -0
data/app/jobs/shipit/update_estimated_deploy_duration_job.rb +1 -0
data/app/jobs/shipit/update_github_last_deployed_ref_job.rb +5 -4
data/app/models/concerns/shipit/deferred_touch.rb +4 -3
data/app/models/shipit/anonymous_user.rb +15 -2
data/app/models/shipit/api_client.rb +3 -2
data/app/models/shipit/application_record.rb +2 -1
data/app/models/shipit/check_run.rb +41 -4
data/app/models/shipit/command_line_user.rb +5 -0
data/app/models/shipit/commit.rb +42 -24
data/app/models/shipit/commit_checks.rb +15 -13
data/app/models/shipit/commit_deployment.rb +6 -5
data/app/models/shipit/commit_deployment_status.rb +5 -4
data/app/models/shipit/commit_message.rb +1 -0
data/app/models/shipit/delivery.rb +4 -3
data/app/models/shipit/deploy.rb +23 -28
data/app/models/shipit/deploy_spec/bundler_discovery.rb +1 -0
data/app/models/shipit/deploy_spec/capistrano_discovery.rb +1 -0
data/app/models/shipit/deploy_spec/file_system.rb +20 -7
data/app/models/shipit/deploy_spec/kubernetes_discovery.rb +1 -0
data/app/models/shipit/deploy_spec/lerna_discovery.rb +13 -4
data/app/models/shipit/deploy_spec/npm_discovery.rb +5 -4
data/app/models/shipit/deploy_spec/pypi_discovery.rb +1 -0
data/app/models/shipit/deploy_spec/rubygems_discovery.rb +1 -0
data/app/models/shipit/deploy_spec.rb +38 -7
data/app/models/shipit/deploy_stats.rb +2 -1
data/app/models/shipit/duration.rb +5 -2
data/app/models/shipit/ephemeral_commit_checks.rb +1 -0
data/app/models/shipit/github_hook.rb +2 -1
data/app/models/shipit/github_status.rb +2 -1
data/app/models/shipit/hook.rb +34 -7
data/app/models/shipit/membership.rb +3 -2
data/app/models/shipit/merge_request.rb +304 -0
data/app/models/shipit/output_chunk.rb +7 -2
data/app/models/shipit/provisioning_handler/base.rb +30 -0
data/app/models/shipit/provisioning_handler/unregistered_provisioning_handler.rb +35 -0
data/app/models/shipit/provisioning_handler.rb +32 -0
data/app/models/shipit/pull_request.rb +28 -266
data/app/models/shipit/pull_request_assignment.rb +10 -0
data/app/models/shipit/record.rb +18 -0
data/app/models/shipit/release_status.rb +4 -3
data/app/models/shipit/repository.rb +71 -6
data/app/models/shipit/review_stack.rb +130 -0
data/app/models/shipit/review_stack_provisioning_queue.rb +39 -0
data/app/models/shipit/rollback.rb +6 -0
data/app/models/shipit/stack.rb +127 -45
data/app/models/shipit/status/common.rb +7 -6
data/app/models/shipit/status/group.rb +2 -1
data/app/models/shipit/status/missing.rb +2 -1
data/app/models/shipit/status/unknown.rb +2 -1
data/app/models/shipit/status.rb +3 -2
data/app/models/shipit/task.rb +98 -12
data/app/models/shipit/task_definition.rb +1 -0
data/app/models/shipit/task_execution_strategy/base.rb +20 -0
data/app/models/shipit/task_execution_strategy/default.rb +109 -0
data/app/models/shipit/team.rb +6 -3
data/app/models/shipit/undeployed_commit.rb +1 -0
data/app/models/shipit/unlimited_api_client.rb +1 -0
data/app/models/shipit/user.rb +19 -8
data/app/models/shipit/variable_definition.rb +1 -0
data/app/models/shipit/webhooks/handlers/check_suite_handler.rb +1 -0
data/app/models/shipit/webhooks/handlers/handler.rb +1 -0
data/app/models/shipit/webhooks/handlers/membership_handler.rb +1 -0
data/app/models/shipit/webhooks/handlers/pull_request/assigned_handler.rb +74 -0
data/app/models/shipit/webhooks/handlers/pull_request/closed_handler.rb +68 -0
data/app/models/shipit/webhooks/handlers/pull_request/edited_handler.rb +74 -0
data/app/models/shipit/webhooks/handlers/pull_request/label_capturing_handler.rb +127 -0
data/app/models/shipit/webhooks/handlers/pull_request/labeled_handler.rb +106 -0
data/app/models/shipit/webhooks/handlers/pull_request/opened_handler.rb +83 -0
data/app/models/shipit/webhooks/handlers/pull_request/reopened_handler.rb +88 -0
data/app/models/shipit/webhooks/handlers/pull_request/review_stack_adapter.rb +103 -0
data/app/models/shipit/webhooks/handlers/pull_request/unlabeled_handler.rb +107 -0
data/app/models/shipit/webhooks/handlers/push_handler.rb +5 -1
data/app/models/shipit/webhooks/handlers/status_handler.rb +1 -0
data/app/models/shipit/webhooks.rb +11 -0
data/app/serializers/concerns/shipit/conditional_attributes.rb +1 -0
data/app/serializers/shipit/anonymous_user_serializer.rb +1 -0
data/app/serializers/shipit/command_line_user_serializer.rb +1 -0
data/app/serializers/shipit/commit_serializer.rb +1 -0
data/app/serializers/shipit/deploy_serializer.rb +8 -1
data/app/serializers/shipit/hook_serializer.rb +1 -0
data/app/serializers/shipit/merge_request_serializer.rb +21 -0
data/app/serializers/shipit/pull_request_serializer.rb +6 -8
data/app/serializers/shipit/review_stack_serializer.rb +7 -0
data/app/serializers/shipit/rollback_serializer.rb +1 -0
data/app/serializers/shipit/short_commit_serializer.rb +1 -0
data/app/serializers/shipit/stack_serializer.rb +8 -6
data/app/serializers/shipit/tail_task_serializer.rb +11 -2
data/app/serializers/shipit/task_serializer.rb +2 -17
data/app/serializers/shipit/user_serializer.rb +6 -1
data/app/validators/ascii_only_validator.rb +1 -0
data/app/validators/subset_validator.rb +2 -1
data/app/views/layouts/merge_status.html.erb +1 -1
data/app/views/layouts/shipit.html.erb +1 -1
data/app/views/shipit/_variables.html.erb +1 -1
data/app/views/shipit/ccmenu/project.xml.builder +2 -1
data/app/views/shipit/deploys/show.html.erb +2 -2
data/app/views/shipit/merge_requests/_merge_request.html.erb +29 -0
data/app/views/shipit/{pull_requests → merge_requests}/index.html.erb +2 -2
data/app/views/shipit/merge_requests/merge_requests/_pull_request.html.erb +29 -0
data/app/views/shipit/merge_requests/merge_requests/index.html.erb +20 -0
data/app/views/shipit/merge_status/_merge_queue_button.html.erb +3 -3
data/app/views/shipit/merge_status/backlogged.html.erb +1 -1
data/app/views/shipit/merge_status/failure.html.erb +1 -1
data/app/views/shipit/merge_status/locked.html.erb +1 -1
data/app/views/shipit/merge_status/success.html.erb +2 -2
data/app/views/shipit/repositories/_header.html.erb +19 -0
data/app/views/shipit/repositories/index.html.erb +31 -0
data/app/views/shipit/repositories/new.html.erb +23 -0
data/app/views/shipit/repositories/settings.html.erb +53 -0
data/app/views/shipit/repositories/show.html.erb +30 -0
data/app/views/shipit/stacks/_banners.html.erb +15 -1
data/app/views/shipit/stacks/_header.html.erb +8 -2
data/app/views/shipit/stacks/_stack.html.erb +8 -0
data/app/views/shipit/stacks/all_tasks.html.erb +28 -0
data/app/views/shipit/stacks/index.html.erb +3 -2
data/app/views/shipit/stacks/new.html.erb +1 -1
data/app/views/shipit/stacks/settings.html.erb +5 -5
data/app/views/shipit/stacks/show.html.erb +1 -1
data/app/views/shipit/tasks/_task_output.html.erb +1 -1
data/app/views/shipit/tasks/show.html.erb +1 -1
data/config/initializers/inflections.rb +2 -1
data/config/locales/en.yml +3 -3
data/config/routes.rb +25 -7
data/config/secrets.development.example.yml +24 -0
data/config/secrets.development.shopify.yml +20 -9
data/db/migrate/20200226211925_add_index_to_tasks_status.rb +5 -0
data/db/migrate/20200427135152_add_pull_request_head_sha_to_commit.rb +5 -0
data/db/migrate/20200615181558_add_rollback_once_aborted_to.rb +5 -0
data/db/migrate/20200706145406_add_review_stacks.rb +12 -0
data/db/migrate/20200804144639_rename_pull_request_to_merge_request.rb +7 -0
data/db/migrate/20200804161512_rename_commits_pull_request_id_to_merge_request_id.rb +5 -0
data/db/migrate/20200813134712_recreate_shipit_pull_requests.rb +22 -0
data/db/migrate/20200813194056_create_pull_request_assignments.rb +8 -0
data/db/migrate/20201001125502_add_provision_pr_stacks_flag_to_repositories.rb +7 -0
data/db/migrate/20201008145809_add_retry_attempt_to_tasks.rb +5 -0
data/db/migrate/20201008152744_add_max_retries_to_tasks.rb +5 -0
data/db/migrate/20210325194053_remove_stacks_branch_default.rb +5 -0
data/db/migrate/20210504200438_add_github_updated_at_to_check_runs.rb +5 -0
data/db/migrate/20210823075617_change_check_runs_github_updated_at_default.rb +5 -0
data/lib/shipit/cast_value.rb +1 -0
data/lib/shipit/command.rb +19 -17
data/lib/shipit/commands.rb +23 -9
data/lib/shipit/csv_serializer.rb +1 -0
data/lib/shipit/deploy_commands.rb +1 -0
data/lib/shipit/engine.rb +9 -2
data/lib/shipit/environment_variables.rb +2 -1
data/lib/shipit/first_parent_commits_iterator.rb +1 -0
data/lib/shipit/flock.rb +9 -1
data/lib/shipit/github_app.rb +15 -12
data/lib/shipit/github_http_cache_middleware.rb +1 -0
data/lib/shipit/null_serializer.rb +1 -0
data/lib/shipit/octokit_check_runs.rb +3 -2
data/lib/shipit/octokit_iterator.rb +4 -3
data/lib/shipit/paginator.rb +3 -2
data/lib/shipit/review_stack_commands.rb +8 -0
data/lib/shipit/rollback_commands.rb +1 -0
data/lib/shipit/same_site_cookie_middleware.rb +29 -0
data/lib/shipit/simple_message_verifier.rb +3 -2
data/lib/shipit/stack_commands.rb +39 -9
data/lib/shipit/stat.rb +1 -0
data/lib/shipit/task_commands.rb +9 -0
data/lib/shipit/version.rb +2 -1
data/lib/shipit.rb +61 -17
data/lib/snippets/publish-lerna-independent-packages +35 -34
data/lib/snippets/publish-lerna-independent-packages-legacy +39 -0
data/lib/snippets/release-gem +5 -1
data/lib/tasks/cron.rake +13 -2
data/lib/tasks/dev.rake +3 -2
data/lib/tasks/shipit.rake +15 -14
data/lib/tasks/teams.rake +1 -0
data/test/controllers/api/base_controller_test.rb +3 -2
data/test/controllers/api/ccmenu_controller_test.rb +9 -8
data/test/controllers/api/commits_controller_test.rb +3 -2
data/test/controllers/api/deploys_controller_test.rb +32 -14
data/test/controllers/api/hooks_controller_test.rb +8 -7
data/test/controllers/api/locks_controller_test.rb +7 -6
data/test/controllers/api/{pull_requests_controller_test.rb → merge_requests_controller_test.rb} +17 -16
data/test/controllers/api/outputs_controller_test.rb +3 -1
data/test/controllers/api/release_statuses_controller_test.rb +2 -1
data/test/controllers/api/rollback_controller_test.rb +113 -0
data/test/controllers/api/stacks_controller_test.rb +71 -16
data/test/controllers/api/tasks_controller_test.rb +13 -12
data/test/controllers/api_clients_controller_test.rb +5 -4
data/test/controllers/ccmenu_controller_test.rb +4 -3
data/test/controllers/commit_checks_controller_test.rb +4 -3
data/test/controllers/commits_controller_test.rb +3 -2
data/test/controllers/deploys_controller_test.rb +32 -21
data/test/controllers/github_authentication_controller_test.rb +1 -0
data/test/controllers/merge_requests_controller_test.rb +32 -0
data/test/controllers/merge_status_controller_test.rb +7 -6
data/test/controllers/release_statuses_controller_test.rb +3 -2
data/test/controllers/repositories_controller_test.rb +71 -0
data/test/controllers/rollbacks_controller_test.rb +9 -8
data/test/controllers/stacks_controller_test.rb +41 -19
data/test/controllers/status_controller_test.rb +1 -0
data/test/controllers/tasks_controller_test.rb +32 -19
data/test/controllers/webhooks_controller_test.rb +33 -17
data/test/dummy/app/assets/config/manifest.js +3 -0
data/test/dummy/config/application.rb +7 -2
data/test/dummy/config/database.yml +9 -0
data/test/dummy/config/environments/development.rb +3 -4
data/test/dummy/config/environments/test.rb +2 -5
data/test/dummy/config/secrets_double_github_app.yml +79 -0
data/test/dummy/db/schema.rb +59 -17
data/test/dummy/db/seeds.rb +2 -1
data/test/fixtures/payloads/check_suite_master.json +4 -32
data/test/fixtures/payloads/invalid_pull_request.json +117 -0
data/test/fixtures/payloads/provision_disabled_pull_request.json +454 -0
data/test/fixtures/payloads/pull_request_assigned.json +480 -0
data/test/fixtures/payloads/pull_request_closed.json +454 -0
data/test/fixtures/payloads/pull_request_labeled.json +461 -0
data/test/fixtures/payloads/pull_request_opened.json +454 -0
data/test/fixtures/payloads/pull_request_reopened.json +454 -0
data/test/fixtures/payloads/pull_request_unlabeled.json +454 -0
data/test/fixtures/payloads/pull_request_with_no_repo.json +454 -0
data/test/fixtures/payloads/push_master.json +1 -1
data/test/fixtures/payloads/push_not_master.json +1 -1
data/test/fixtures/shipit/commits.yml +31 -3
data/test/fixtures/shipit/hooks.yml +1 -0
data/test/fixtures/shipit/merge_requests.yml +141 -0
data/test/fixtures/shipit/pull_request_assignments.yml +3 -0
data/test/fixtures/shipit/pull_requests.yml +10 -131
data/test/fixtures/shipit/repositories.yml +5 -0
data/test/fixtures/shipit/stacks.yml +235 -14
data/test/fixtures/shipit/statuses.yml +9 -0
data/test/fixtures/shipit/tasks.yml +4 -1
data/test/fixtures/shipit/users.yml +7 -0
data/test/fixtures/timeout +2 -1
data/test/helpers/api_helper.rb +1 -0
data/test/helpers/fixture_aliases_helper.rb +1 -0
data/test/helpers/hooks_helper.rb +2 -1
data/test/helpers/json_helper.rb +20 -12
data/test/helpers/links_helper.rb +4 -3
data/test/helpers/payloads_helper.rb +5 -0
data/test/helpers/queries_helper.rb +3 -2
data/test/jobs/cache_deploy_spec_job_test.rb +2 -1
data/test/jobs/chunk_rollup_job_test.rb +16 -1
data/test/jobs/deliver_hook_job_test.rb +1 -0
data/test/jobs/destroy_repository_job_test.rb +27 -0
data/test/jobs/destroy_stack_job_test.rb +1 -0
data/test/jobs/emit_event_job_test.rb +2 -1
data/test/jobs/fetch_commit_stats_job_test.rb +1 -0
data/test/jobs/fetch_deployed_revision_job_test.rb +1 -0
data/test/jobs/github_sync_job_test.rb +3 -1
data/test/jobs/mark_deploy_healthy_job_test.rb +1 -0
data/test/jobs/perform_task_job_test.rb +12 -11
data/test/jobs/{merge_pull_requests_job_test.rb → process_merge_requests_job_test.rb} +19 -18
data/test/jobs/purge_old_deliveries_job_test.rb +1 -0
data/test/jobs/reap_dead_tasks_job_test.rb +68 -0
data/test/jobs/refresh_github_user_job_test.rb +1 -0
data/test/jobs/refresh_status_job_test.rb +1 -0
data/test/jobs/unique_job_test.rb +1 -0
data/test/jobs/update_github_last_deployed_ref_job_test.rb +1 -0
data/test/lib/shipit/deploy_commands_test.rb +16 -0
data/test/lib/shipit/task_commands_test.rb +17 -0
data/test/middleware/same_site_cookie_middleware_test.rb +52 -0
data/test/models/api_client_test.rb +1 -0
data/test/models/commit_checks_test.rb +1 -0
data/test/models/commit_deployment_status_test.rb +4 -3
data/test/models/commit_deployment_test.rb +2 -1
data/test/models/commits_test.rb +96 -19
data/test/models/delivery_test.rb +2 -1
data/test/models/deploy_spec_test.rb +110 -65
data/test/models/deploy_stats_test.rb +1 -0
data/test/models/deploys_test.rb +219 -36
data/test/models/duration_test.rb +1 -0
data/test/models/github_hook_test.rb +1 -0
data/test/models/hook_test.rb +47 -10
data/test/models/membership_test.rb +1 -0
data/test/models/{pull_request_test.rb → merge_request_test.rb} +53 -37
data/test/models/pull_request_assignment_test.rb +16 -0
data/test/models/release_statuses_test.rb +1 -0
data/test/models/rollbacks_test.rb +1 -0
data/test/models/shipit/check_run_test.rb +125 -5
data/test/models/shipit/provisioning_handler/base_test.rb +33 -0
data/test/models/shipit/provisioning_handler/unregistered_provisioning_handler_test.rb +49 -0
data/test/models/shipit/provisioning_handler_test.rb +64 -0
data/test/models/shipit/pull_request_test.rb +52 -0
data/test/models/shipit/repository_test.rb +6 -1
data/test/models/shipit/review_stack_provision_status_test.rb +77 -0
data/test/models/shipit/review_stack_provisioning_queue_test.rb +63 -0
data/test/models/shipit/review_stack_test.rb +91 -0
data/test/models/{stacks_test.rb → shipit/stacks_test.rb} +82 -16
data/test/models/shipit/webhooks/handlers/pull_request/assigned_handler_test.rb +45 -0
data/test/models/shipit/webhooks/handlers/pull_request/closed_handler_test.rb +192 -0
data/test/models/shipit/webhooks/handlers/pull_request/edited_handler_test.rb +47 -0
data/test/models/shipit/webhooks/handlers/pull_request/label_capturing_handler_test.rb +209 -0
data/test/models/shipit/webhooks/handlers/pull_request/labeled_handler_test.rb +332 -0
data/test/models/shipit/webhooks/handlers/pull_request/opened_handler_test.rb +238 -0
data/test/models/shipit/webhooks/handlers/pull_request/reopened_handler_test.rb +282 -0
data/test/models/shipit/webhooks/handlers/pull_request/review_stack_adapter_test.rb +107 -0
data/test/models/shipit/webhooks/handlers/pull_request/unlabeled_handler_test.rb +324 -0
data/test/models/shipit/{wehbooks → webhooks}/handlers_test.rb +1 -0
data/test/models/status/group_test.rb +1 -0
data/test/models/status/missing_test.rb +1 -0
data/test/models/status_test.rb +1 -0
data/test/models/task_definitions_test.rb +9 -8
data/test/models/tasks_test.rb +81 -1
data/test/models/team_test.rb +4 -2
data/test/models/undeployed_commits_test.rb +1 -0
data/test/models/users_test.rb +13 -5
data/test/serializers/shipit/pull_request_serializer_test.rb +29 -0
data/test/test_command_integration.rb +3 -2
data/test/test_helper.rb +49 -31
data/test/unit/anonymous_user_serializer_test.rb +14 -0
data/test/unit/command_test.rb +16 -10
data/test/unit/commands_test.rb +1 -0
data/test/unit/commit_serializer_test.rb +16 -0
data/test/unit/csv_serializer_test.rb +3 -2
data/test/unit/deploy_commands_test.rb +77 -20
data/test/unit/deploy_serializer_test.rb +17 -0
data/test/unit/environment_variables_test.rb +5 -4
data/test/unit/github_app_test.rb +3 -3
data/test/unit/github_apps_test.rb +416 -0
data/test/unit/github_url_helper_test.rb +6 -0
data/test/unit/rollback_commands_test.rb +2 -1
data/test/unit/shipit_deployment_checks_test.rb +77 -0
data/test/unit/shipit_helper_test.rb +17 -0
data/test/unit/shipit_task_execution_strategy_test.rb +47 -0
data/test/unit/shipit_test.rb +15 -0
data/test/unit/user_serializer_test.rb +14 -0
data/test/unit/variable_definition_test.rb +1 -0
metadata +325 -182
data/app/controllers/shipit/api/pull_requests_controller.rb +0 -36
data/app/controllers/shipit/pull_requests_controller.rb +0 -30
data/app/jobs/shipit/merge_pull_requests_job.rb +0 -31
data/app/jobs/shipit/refresh_pull_request_job.rb +0 -10
data/app/views/shipit/pull_requests/_pull_request.html.erb +0 -29
data/test/controllers/pull_requests_controller_test.rb +0 -31
data/test/fixtures/shipit/output_chunks.yml +0 -47
data/test/models/output_chunk_test.rb +0 -20

data/lib/shipit/csv_serializer.rb CHANGED Viewed

@@ -1,3 +1,4 @@
+# frozen_string_literal: true
 module Shipit
   module CSVSerializer
     extend self

data/lib/shipit/deploy_commands.rb CHANGED Viewed

@@ -1,3 +1,4 @@
+# frozen_string_literal: true
 module Shipit
   class DeployCommands < TaskCommands
     def steps

data/lib/shipit/engine.rb CHANGED Viewed

@@ -1,3 +1,4 @@
+# frozen_string_literal: true
 module Shipit
   class Engine < ::Rails::Engine
     isolate_namespace Shipit
@@ -9,6 +10,8 @@ module Shipit
       Shipit::Engine.routes.default_url_options[:host] = Shipit.host
       Pubsubstub.redis_url = Shipit.redis_url.to_s
+      Rails.application.secrets.deep_symbolize_keys!
       app.config.assets.paths << Emoji.images_path
       app.config.assets.precompile += %w(
         favicon.ico
@@ -32,12 +35,16 @@ module Shipit
       ActiveModel::Serializer.include(Engine.routes.url_helpers)
       if Shipit.github.oauth?
-        OmniAuth::Strategies::GitHub.configure path_prefix: '/github/auth'
-        app.middleware.use OmniAuth::Builder do
+        OmniAuth::Strategies::GitHub.configure(path_prefix: '/github/auth')
+        app.middleware.use(OmniAuth::Builder) do
           provider(:github, *Shipit.github.oauth_config)
         end
       end
+      if Shipit.enable_samesite_middleware?
+        app.config.middleware.insert_after(::Rack::Runtime, Shipit::SameSiteCookieMiddleware)
+      end
       app.config.after_initialize do
         ActionController::Base.include(Shipit::ActiveModelSerializersPatch)
       end

data/lib/shipit/environment_variables.rb CHANGED Viewed

@@ -1,3 +1,4 @@
+# frozen_string_literal: true
 module Shipit
   class EnvironmentVariables
     NotPermitted = Class.new(StandardError)
@@ -35,7 +36,7 @@ module Shipit
       allowed, disallowed = @env.partition { |k, _| allowed_variables.include?(k) }.map(&:to_h)
       error_message = "Variables #{disallowed.keys.to_sentence} have not been whitelisted"
-      raise NotPermitted.new(error_message) unless disallowed.empty?
+      raise NotPermitted, error_message unless disallowed.empty?
       allowed
     end

data/lib/shipit/first_parent_commits_iterator.rb CHANGED Viewed

@@ -1,3 +1,4 @@
+# frozen_string_literal: true
 module Shipit
   class FirstParentCommitsIterator < OctokitIterator
     def each

data/lib/shipit/flock.rb CHANGED Viewed

@@ -1,3 +1,4 @@
+# frozen_string_literal: true
 require 'English'
 require 'timeout'
 require 'pathname'
@@ -10,14 +11,21 @@ module Shipit
     def initialize(path)
       @path = Pathname.new(path)
+      @acquired = false
     end
     def lock(timeout:)
+      return yield if @acquired
       path.parent.mkpath
       path.open('w') do |file|
         if retrying(timeout: timeout) { file.flock(File::LOCK_EX | File::LOCK_NB) }
           file.write($PROCESS_ID.to_s)
-          return yield
+          @acquired = true
+          begin
+            yield
+          ensure
+            @acquired = false
+          end
         else
           raise TimeoutError, "Couldn't acquire lock for #{path} in #{timeout} seconds"
         end

data/lib/shipit/github_app.rb CHANGED Viewed

@@ -1,3 +1,4 @@
+# frozen_string_literal: true
 module Shipit
   class GitHubApp
     include Mutex_m
@@ -31,9 +32,9 @@ module Shipit
       end
     end
-    DOMAIN = 'github.com'.freeze
+    DOMAIN = 'github.com'
     AuthenticationFailed = Class.new(StandardError)
-    API_STATUS_ID = 'brv1bkgrwx7q'.freeze
+    API_STATUS_ID = 'brv1bkgrwx7q'
     GITHUB_EXPECTED_TOKEN_LIFETIME = 60.minutes
     GITHUB_TOKEN_RAILS_CACHE_LIFETIME = 50.minutes
@@ -41,8 +42,9 @@ module Shipit
     attr_reader :oauth_teams, :domain, :bot_login
-    def initialize(config)
+    def initialize(organization, config)
       super()
+      @organization = organization
       @config = (config || {}).with_indifferent_access
       @domain = @config[:domain] || DOMAIN
       @webhook_secret = @config[:webhook_secret].presence
@@ -51,7 +53,7 @@ module Shipit
       oauth = (@config[:oauth] || {}).with_indifferent_access
       @oauth_id = oauth[:id]
       @oauth_secret = oauth[:secret]
-      @oauth_teams = Array.wrap(oauth[:teams] || oauth[:teams])
+      @oauth_teams = Array.wrap(oauth[:teams])
     end
     def login
@@ -91,10 +93,11 @@ module Shipit
     end
     def fetch_new_token
+      cache_key = @organization.nil? ? '' : "#{@organization.downcase}:"
       # Rails can add 5 minutes to the cache entry expiration time when any TTL is provided,
       # so our TTL setting can be lower, and TTL + expires_in should be lower than the GitHub token expiration.
       Rails.cache.fetch(
-        'github:integration:access-token',
+        "github:integration:#{cache_key}access-token",
         expires_in: GITHUB_TOKEN_RAILS_CACHE_LIFETIME,
         race_condition_ttl: 4.minutes,
       ) do
@@ -132,7 +135,7 @@ module Shipit
     end
     def url(*path)
-      @url ||= "https://#{domain}".freeze
+      @url ||= "https://#{domain}"
       path.empty? ? @url : File.join(@url, *path.map(&:to_s))
     end
@@ -173,22 +176,22 @@ module Shipit
           logger: Rails.logger,
           serializer: NullSerializer,
         )
-        builder.use GitHubHTTPCacheMiddleware
-        builder.use Octokit::Response::RaiseError
-        builder.adapter Faraday.default_adapter
+        builder.use(GitHubHTTPCacheMiddleware)
+        builder.use(Octokit::Response::RaiseError)
+        builder.adapter(Faraday.default_adapter)
       end
     end
     def app_id
-      @app_id ||= @config.fetch(:app_id)
+      @config.fetch(:app_id)
     end
     def installation_id
-      @installation_id ||= @config.fetch(:installation_id)
+      @config.fetch(:installation_id)
     end
     def private_key
-      @private_key ||= @config.fetch(:private_key)
+      @config.fetch(:private_key)
     end
     def authentication_payload

data/lib/shipit/github_http_cache_middleware.rb CHANGED Viewed

@@ -1,3 +1,4 @@
+# frozen_string_literal: true
 module Shipit
   class GitHubHTTPCacheMiddleware < Faraday::Middleware
     def call(request_env)

data/lib/shipit/null_serializer.rb CHANGED Viewed

@@ -1,3 +1,4 @@
+# frozen_string_literal: true
 module Shipit
   module NullSerializer
     extend self

data/lib/shipit/octokit_check_runs.rb CHANGED Viewed

@@ -1,8 +1,9 @@
+# frozen_string_literal: true
 module OctokitCheckRuns
   def check_runs(repo, sha, options = {})
-    paginate "#{Octokit::Repository.path repo}/commits/#{sha}/check-runs", options.reverse_merge(
+    paginate("#{Octokit::Repository.path(repo)}/commits/#{sha}/check-runs", options.reverse_merge(
       accept: 'application/vnd.github.antiope-preview+json',
-    )
+    ))
   end
 end

data/lib/shipit/octokit_iterator.rb CHANGED Viewed

@@ -1,13 +1,14 @@
+# frozen_string_literal: true
 module Shipit
   class OctokitIterator
     include Enumerable
-    def initialize(relation = nil)
+    def initialize(relation = nil, github_api: nil)
       if relation
         @response = relation.get(per_page: 100)
       else
-        yield Shipit.github.api
-        @response = Shipit.github.api.last_response
+        data = yield github_api
+        @response = github_api.last_response if data.present?
       end
     end

data/lib/shipit/paginator.rb CHANGED Viewed

@@ -1,6 +1,7 @@
+# frozen_string_literal: true
 module Shipit
   class Paginator
-    def initialize(resources, controller, order: {id: :desc}, max_page_size: 100, default_page_size: 30)
+    def initialize(resources, controller, order: { id: :desc }, max_page_size: 100, default_page_size: 30)
       @order = order
       @controller = controller
       @since = controller.params[:since].presence
@@ -15,7 +16,7 @@ module Shipit
     end
     def links
-      links = {first: link_to(since: nil, page_size: (page_size if page_size != @default_page_size))}
+      links = { first: link_to(since: nil, page_size: (page_size if page_size != @default_page_size)) }
       links[:next] = link_to(since: to_a.last.id) unless last_page?
       links
     end

data/lib/shipit/review_stack_commands.rb ADDED Viewed

@@ -0,0 +1,8 @@
+# frozen_string_literal: true
+require 'shipit/stack_commands'
+module Shipit
+  class ReviewStackCommands < Shipit::StackCommands
+  end
+end

data/lib/shipit/rollback_commands.rb CHANGED Viewed

@@ -1,3 +1,4 @@
+# frozen_string_literal: true
 module Shipit
   class RollbackCommands < DeployCommands
     def steps

data/lib/shipit/same_site_cookie_middleware.rb ADDED Viewed

@@ -0,0 +1,29 @@
+# frozen_string_literal: true
+module Shipit
+  class SameSiteCookieMiddleware
+    COOKIE_SEPARATOR = "\n"
+    def initialize(app)
+      @app = app
+    end
+    def call(env)
+      status, headers, body = @app.call(env)
+      if headers && headers['Set-Cookie'] &&
+         Rack::Request.new(env).ssl?
+        set_cookies = headers['Set-Cookie'].split(COOKIE_SEPARATOR).compact
+        set_cookies.map! do |cookie|
+          cookie << '; Secure' if cookie !~ /;\s*secure/i
+          cookie << '; SameSite=None' unless cookie.match?(/;\s*samesite=/i)
+          cookie
+        end
+        headers['Set-Cookie'] = set_cookies.join(COOKIE_SEPARATOR)
+      end
+      [status, headers, body]
+    end
+  end
+end

data/lib/shipit/simple_message_verifier.rb CHANGED Viewed

@@ -1,8 +1,9 @@
+# frozen_string_literal: true
 module Shipit
   class SimpleMessageVerifier < ActiveSupport::MessageVerifier
-    def initialize(secret, options = {})
+    def initialize(secret, **options)
       options[:serializer] ||= ToS
-      super(secret, options)
+      super(secret, **options)
     end
     private

data/lib/shipit/stack_commands.rb CHANGED Viewed

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+# rubocop:disable Lint/MissingSuper
 require 'pathname'
 require 'fileutils'
@@ -7,26 +9,36 @@ module Shipit
       @stack = stack
     end
+    def env
+      super.merge(@stack.env)
+    end
     def fetch
       create_directories
-      if Dir.exist?(@stack.git_path)
+      if valid_git_repository?(@stack.git_path)
         git('fetch', 'origin', '--tags', @stack.branch, env: env, chdir: @stack.git_path)
       else
+        @stack.clear_git_cache!
         git_clone(@stack.repo_git_url, @stack.git_path, branch: @stack.branch, env: env, chdir: @stack.deploys_path)
       end
     end
     def fetched?(commit)
-      git_dir = File.join(@stack.git_path, '.git')
-      if Dir.exist?(git_dir)
+      if valid_git_repository?(@stack.git_path)
         git('rev-parse', '--quiet', '--verify', "#{commit.sha}^{commit}", env: env, chdir: @stack.git_path)
       else
-        Command.new('test', '-d', git_dir, env: env, chdir: @stack.deploys_path)
+        # When the stack's git cache is not valid, the commit is
+        # NOT fetched. To keep the interface of this method
+        # consistent, we must return a Shipit::Command whose #success?
+        # method returns false - has a non-zero exit status. We utilize
+        # the POSIX 'test' command with no arguments which should
+        # always have an exit status of 1.
+        Command.new('test', env: env, chdir: @stack.deploys_path)
       end
     end
     def fetch_deployed_revision
-      with_temporary_working_directory(commit: @stack.commits.last) do |dir|
+      with_temporary_working_directory(commit: @stack.commits.reachable.last) do |dir|
         spec = DeploySpec::FileSystem.new(dir, @stack.environment)
         outputs = spec.fetch_deployed_revision_steps!.map do |command_line|
           Command.new(command_line, env: env, chdir: dir).run
@@ -42,7 +54,7 @@ module Shipit
     end
     def with_temporary_working_directory(commit: nil)
-      commit ||= @stack.last_deployed_commit.presence || @stack.commits.last
+      commit ||= @stack.last_deployed_commit.presence || @stack.commits.reachable.last
       if !commit || !fetched?(commit).tap(&:run).success?
         @stack.acquire_git_cache_lock do
@@ -55,18 +67,30 @@ module Shipit
       Dir.mktmpdir do |dir|
         git(
           'clone', @stack.git_path, @stack.repo_name,
-          '--origin', 'cache',
+          '--recursive', '--origin', 'cache',
           chdir: dir
         ).run!
         git_dir = File.join(dir, @stack.repo_name)
-        git('checkout', commit.sha, chdir: git_dir).run! if commit
+        git('checkout', '--config', 'advice.detachedHead=false', commit.sha, chdir: git_dir).run! if commit
         yield Pathname.new(git_dir)
       end
     end
+    def valid_git_repository?(path)
+      path.exist? &&
+        !path.empty? &&
+        git_cmd_succeeds?(path)
+    end
+    def git_cmd_succeeds?(path)
+      git("rev-parse", "--git-dir", chdir: path)
+        .tap(&:run)
+        .success?
+    end
     def git_clone(url, path, branch: 'master', **kwargs)
-      git('clone', *modern_git_args, '--recursive', '--branch', branch, url, path, **kwargs)
+      git('clone', '--quiet', *modern_git_args, '--recursive', '--branch', branch, url, path, **kwargs)
     end
     def modern_git_args
@@ -77,5 +101,11 @@ module Shipit
     def create_directories
       FileUtils.mkdir_p(@stack.deploys_path)
     end
+    private
+    def github
+      Shipit.github(organization: @stack.repository.owner)
+    end
   end
 end

data/lib/shipit/stat.rb CHANGED Viewed

@@ -1,3 +1,4 @@
+# frozen_string_literal: true
 module Shipit
   module Stat
     extend self

data/lib/shipit/task_commands.rb CHANGED Viewed

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+# rubocop:disable Lint/MissingSuper
 module Shipit
   class TaskCommands < Commands
     delegate :fetch, :fetched?, to: :stack_commands
@@ -52,6 +54,7 @@ module Shipit
       [
         git(
           'clone',
+          '--quiet',
           '--local',
           '--origin', 'cache',
           @stack.git_path,
@@ -85,5 +88,11 @@ module Shipit
         @task.working_directory
       end
     end
+    private
+    def github
+      Shipit.github(organization: @stack.repository.owner)
+    end
   end
 end

data/lib/shipit/version.rb CHANGED Viewed

@@ -1,3 +1,4 @@
+# frozen_string_literal: true
 module Shipit
-  VERSION = '0.31.0'.freeze
+  VERSION = '0.35.0'
 end

data/lib/shipit.rb CHANGED Viewed

@@ -1,3 +1,4 @@
+# frozen_string_literal: true
 require 'active_support/all'
 require 'active_model_serializers'
 require 'state_machines-activerecord'
@@ -23,7 +24,6 @@ require 'safe_yaml/load'
 require 'securecompare'
 require 'redis-objects'
-require 'redis-namespace'
 require 'octokit'
 require 'faraday-http-cache'
@@ -42,12 +42,14 @@ require 'shipit/simple_message_verifier'
 require 'shipit/command'
 require 'shipit/commands'
 require 'shipit/stack_commands'
+require 'shipit/review_stack_commands'
 require 'shipit/task_commands'
 require 'shipit/deploy_commands'
 require 'shipit/rollback_commands'
 require 'shipit/environment_variables'
 require 'shipit/stat'
 require 'shipit/github_http_cache_middleware'
+require 'shipit/same_site_cookie_middleware'
 require 'shipit/cast_value'
 require 'shipit/line_buffer'
@@ -57,10 +59,22 @@ SafeYAML::OPTIONS[:deserialize_symbols] = false
 module Shipit
   extend self
+  GithubOrganizationUnknown = Class.new(StandardError)
+  TOP_LEVEL_GH_KEYS = [:app_id, :installation_id, :webhook_secret, :private_key, :oauth, :domain]
   delegate :table_name_prefix, to: :secrets
-  attr_accessor :disable_api_authentication, :timeout_exit_codes
-  attr_writer :internal_hook_receivers, :task_logger, :preferred_org_emails
+  attr_accessor :disable_api_authentication, :timeout_exit_codes, :deployment_checks
+  attr_writer(
+    :internal_hook_receivers,
+    :preferred_org_emails,
+    :task_execution_strategy,
+    :task_logger,
+  )
+  def task_execution_strategy
+    @task_execution_strategy ||= Shipit::TaskExecutionStrategy::Default
+  end
   self.timeout_exit_codes = [].freeze
@@ -68,6 +82,10 @@ module Shipit
     ENV['SHIPIT_DISABLE_AUTH'].present?
   end
+  def enable_samesite_middleware?
+    ENV['SHIPIT_ENABLE_SAMESITE_NONE'].present?
+  end
   def app_name
     @app_name ||= secrets.app_name || Rails.application.class.name.split(':').first || 'Shipit'
   end
@@ -76,7 +94,7 @@ module Shipit
     secrets.redis_url.present? ? URI(secrets.redis_url) : nil
   end
-  def redis(namespace = nil)
+  def redis
     @redis ||= Redis.new(
       url: redis_url.to_s.presence,
       logger: Rails.logger,
@@ -84,17 +102,41 @@ module Shipit
       reconnect_delay: 0.5,
       reconnect_delay_max: 1,
     )
-    return @redis unless namespace
-    Redis::Namespace.new(namespace, redis: @redis)
   end
-  def github
-    @github ||= GitHubApp.new(secrets.github)
+  def github(organization: github_default_organization)
+    # Backward compatibility
+    # nil signifies the single github app config schema is being used
+    if github_default_organization.nil?
+      config = secrets.github
+    else
+      config = github_app_config(organization)
+      raise GithubOrganizationUnknown, organization if config.nil?
+    end
+    @github ||= {}
+    @github[organization] ||= GitHubApp.new(organization, config)
+  end
+  def github_default_organization
+    return nil unless secrets&.github
+    org = secrets.github.keys.first
+    TOP_LEVEL_GH_KEYS.include?(org) ? nil : org
+  end
+  def github_organizations
+    return [nil] unless github_default_organization
+    secrets.github.keys
+  end
+  def github_app_config(organization)
+    github_config = secrets.github.deep_transform_keys(&:downcase)
+    github_organization = organization.downcase.to_sym
+    github_config[github_organization]
   end
   def legacy_github_api
     if secrets&.github_api.present?
-      @legacy_github_api ||= github.new_client(access_token: secrets.github_api['access_token'])
+      @legacy_github_api ||= github.new_client(access_token: secrets.github_api[:access_token])
     end
   end
@@ -122,6 +164,10 @@ module Shipit
     secrets.default_merge_method || 'merge'
   end
+  def update_latest_deployed_ref
+    secrets.update_latest_deployed_ref
+  end
   def enforce_publish_config
     secrets.enforce_publish_config.presence
   end
@@ -147,7 +193,7 @@ module Shipit
   end
   def env
-    {'SHIPIT' => '1'}.merge(secrets.env || {})
+    { 'SHIPIT' => '1' }.merge(secrets.env || {})
   end
   def shell_paths
@@ -155,13 +201,11 @@ module Shipit
   end
   def revision
-    @revision ||= begin
-      if revision_file.exist?
-        revision_file.read
-      else
-        `git rev-parse HEAD`
-      end.strip
-    end
+    @revision ||= if revision_file.exist?
+      revision_file.read
+    else
+      %x(git rev-parse HEAD)
+    end.strip
   end
   def default_inactivity_timeout