diff --git a/.gitea/workflows/build.yaml b/.gitea/workflows/build.yaml index d54aa47f..cf890c3d 100644 --- a/.gitea/workflows/build.yaml +++ b/.gitea/workflows/build.yaml @@ -5,10 +5,10 @@ on: pull_request: types: [opened, synchronize, reopened] -name: SonarQube Scan +name: Docker Scan, Lint, & Deploy via Compose jobs: sonarqube: - name: SonarQube Scanning & Status + name: SonarQube Scanning & Quality Gate runs-on: ubuntu-latest steps: - name: Checking out @@ -17,17 +17,18 @@ jobs: fetch-depth: 0 - name: SonarQube Scan + id: sonarqube-scan uses: SonarSource/sonarqube-scan-action@v4.0.0 env: SONAR_HOST_URL: ${{ secrets.SONARQUBE_HOST }} SONAR_TOKEN: ${{ secrets.SONARQUBE_TOKEN }} - - name: SonarQube Quality Gate Check - id: quality-gate - uses: SonarSource/sonarqube-quality-gate-action@v1.1.0 - env: - SONAR_HOST_URL: ${{ secrets.SONARQUBE_HOST }} - SONAR_TOKEN: ${{ secrets.SONARQUBE_TOKEN }} + # - name: SonarQube Quality Gate Check + # id: quality-gate + # uses: SonarSource/sonarqube-quality-gate-action@v1.1.0 + # env: + # SONAR_HOST_URL: ${{ secrets.SONARQUBE_HOST }} + # SONAR_TOKEN: ${{ secrets.SONARQUBE_TOKEN }} docker-compose-dry-run: name: Dry Run Docker Compose @@ -74,10 +75,11 @@ jobs: - name: Merge PR with Tea CLI run: | - tea pr m "${{ gitea.event.pull_request.number }}" + echo "${{ gitea.event.pull_request.number }}" + tea pr m --repo "${{ gitea.repository.name }}" --message "Automatically merged by GitHub Actions" --output table "${{ gitea.event.pull_request.number }}" - name: Deploy Docker Compose Changes - uses: astappiev/docker-compose-remote-action@master + uses: 5eqn/docker-compose-remote-action@v0.0.7 with: ssh_host: 192.168.1.254 ssh_user: gitea-deploy diff --git a/cpt-gen-pipeline.yaml b/cpt-gen-pipeline.yaml deleted file mode 100644 index d946271b..00000000 --- a/cpt-gen-pipeline.yaml +++ /dev/null @@ -1,139 +0,0 @@ -name: Docker Compose PR Check and Deploy - -on: - pull_request: - types: [synchronize, opened, reopened] - branches: - - main - -jobs: - setup-sonarqube: - name: Setup SonarQube Project and Analyze - runs-on: self-hosted - steps: - - name: Checkout Code - uses: actions/checkout@v3 - - - name: Log Current Directory - run: | - echo "Current directory contents:" - ls -la - echo "Working in directory: $(pwd)" - - - name: Create SonarQube Project (if not exists) - uses: cytopia/gocurl@v3 - with: - method: POST - url: ${{ secrets.SONARQUBE_URL }}/api/projects/create - headers: | - Authorization: Basic ${{ secrets.SONARQUBE_TOKEN }} - Content-Type: application/json - query: | - project=${{ gitea.repository.name }} - name=${{ gitea.repository.name }} - continue-on-error: true # Ignore error if project already exists - - - name: Run SonarQube Analysis - env: - SONAR_TOKEN: ${{ secrets.SONARQUBE_TOKEN }} - SONAR_URL: ${{ secrets.SONARQUBE_URL }} - run: | - echo "Starting SonarQube analysis..." - sonar-scanner \ - -Dsonar.projectKey=${{ gitea.repository.name }} \ - -Dsonar.sources=. \ - -Dsonar.language=docker \ - -Dsonar.host.url=$SONAR_URL \ - -Dsonar.login=$SONAR_TOKEN \ - -X - echo "SonarQube analysis completed." - - - name: Fetch SonarQube Project Status - id: fetch-status - uses: cytopia/gocurl@v3 - with: - method: GET - url: ${{ secrets.SONARQUBE_URL }}/api/qualitygates/project_status - headers: Authorization: Basic ${{ secrets.SONARQUBE_TOKEN }} - query: projectKey=${{ gitea.repository.name }} - - - name: Comment on PR with SonarQube Status - uses: cytopia/gocurl@v3 - with: - method: POST - url: ${{ secrets.GITEA_SERVER }}/api/v1/repos/${{ gitea.repository.owner.login }}/${{ gitea.repository.name }}/issues/${{ gitea.pull_request.id }}/comments - headers: | - Authorization: token ${{ secrets.GITEA_TOKEN }} - Content-Type: application/json - body: | - { - "body": "SonarQube Analysis: ${{ steps.fetch-status.outputs.body | fromJson | get('projectStatus.status') }}\n[View in SonarQube](${{ secrets.SONARQUBE_URL }}/dashboard?id=${{ gitea.repository.name }})" - } - - status-check: - name: Validate SonarQube Bot Status - needs: setup-sonarqube - runs-on: self-hosted - steps: - - name: Fetch PR Status - uses: cytopia/gocurl@v3 - with: - method: GET - url: ${{ secrets.GITEA_SERVER }}/api/v1/repos/${{ gitea.repository.owner.login }}/${{ gitea.repository.name }}/pulls/${{ gitea.pull_request.id }}/status - headers: Authorization: token ${{ secrets.GITEA_TOKEN }} - run: | - echo "Validating SonarQube bot status..." - echo ${{ steps.fetch-status.outputs.body }} | jq -e '.statuses[] | select(.creator.login == "gitea-sonarqube-bot" and .status == "success")' || exit 1 - echo "SonarQube bot status validation successful." - - dry-run: - name: Dry Run Docker Compose - runs-on: self-hosted - needs: status-check - steps: - - name: Checkout Code - uses: actions/checkout@v3 - - - name: Validate Docker Compose - run: | - echo "Validating Docker Compose configuration..." - docker compose config -f docker-compose.yml - echo "Docker Compose validation successful." - - manual-approval: - name: Manual Approval - runs-on: self-hosted - needs: dry-run - steps: - - name: Approval Required - run: | - echo "Manual approval step reached. Please approve to proceed." - exit 1 - - merge-and-deploy: - name: Merge and Deploy - runs-on: self-hosted - needs: manual-approval - steps: - - name: Merge Pull Request - uses: cytopia/gocurl@v3 - with: - method: POST - url: ${{ secrets.GITEA_SERVER }}/api/v1/repos/${{ gitea.repository.owner.login }}/${{ gitea.repository.name }}/pulls/${{ gitea.pull_request.id }}/merge - headers: Authorization: token ${{ secrets.GITEA_TOKEN }} - - - name: Deploy Docker Compose Changes - run: | - echo "Deploying Docker Compose changes to host..." - ssh $DOCKER_USER@$DOCKER_HOST " - echo 'Pulling new images...' - cd /path/to/docker/compose/files && - docker compose pull - echo 'Applying changes...' - docker compose up -d --remove-orphans - " - env: - DOCKER_HOST: ${{ secrets.DOCKER_HOST }} - DOCKER_USER: ${{ secrets.DOCKER_USER }} - SSH_KEY: ${{ secrets.DOCKER_SSH_KEY }} - SSH_AUTH_SOCK: /run/ssh-agent.sock diff --git a/rinoa.env-example b/env.example similarity index 100% rename from rinoa.env-example rename to env.example diff --git a/gitea-compose.yml b/gitea-compose.yml deleted file mode 100644 index 301df344..00000000 --- a/gitea-compose.yml +++ /dev/null @@ -1,158 +0,0 @@ -name: gitea - gitea: - container_name: gitea - depends_on: - gitea-db: - condition: service_healthy - required: true - environment: - - USER_UID=${PUID} - - USER_GID=${PGID} - - GITEA__database__DB_TYPE=postgres - - GITEA__database__HOST=gitea-db:5432 - - GITEA__database__NAME=gitea - - GITEA__database__USER=gitea - - GITEA__database__PASSWD=${GITEA_PG_DB_PASSWORD} - - GITEA__mailer__ENABLED=true - - GITEA__mailer__FROM='"Gitea" ' - - GITEA__mailer__PROTOCOL=smtp - - GITEA__mailer__SMTP_ADDR=postal-smtp - - GITEA__mailer__SMTP_PORT=25 - - GITEA__mailer__IS_TLS_ENABLED=faLse - - GITEA__mailer__USER=${POSTAL_SMTP_AUTH_USER} - - GITEA__mailer__PASSWD=${POSTAL_SMTP_AUTH_PASSWORD} - image: gitea/gitea:1.22.2 - labels: - - homepage.group=Code - - homepage.name=Gitea - - homepage.href=https://git.${MY_TLD} - - homepage.icon=gitea.svg - - homepage.description=Private Code Repo - - homepage.widget.type=gitea - - homepage.widget.url=http://gitea:3000 - - homepage.widget.key=${GITEA_HOMEPAGE_API_KEY} - - swag=enable - - swag_port=3000 - - swag_proto=http - - swag_url=git.${MY_TLD} - - swag.uptime-kuma.enabled=true - - swag.uptime-kuma.monitor.url=https://git.${MY_TLD} - networks: - default: null - ports: - - mode: ingress - protocol: tcp - published: "3013" - target: 3000 - - mode: ingress - protocol: tcp - published: "222" - target: 22 - restart: always - volumes: - - source: ${DOCKER_VOLUME_CONFIG}/gitea - target: /data - type: bind - bind: - create_host_path: true - - bind: - create_host_path: true - read_only: true - source: /etc/timezone - target: /etc/timezone - type: bind - - bind: - create_host_path: true - read_only: true - source: /etc/localtime - target: /etc/localtime - type: bind - gitea-db: - container_name: gitea-db - environment: - - POSTGRES_USER=gitea - - POSTGRES_PASSWORD=${GITEA_PG_DB_PASSWORD} - - POSTGRES_DB=gitea - expose: - - 5432 - healthcheck: - interval: 10s - start_period: 20s - test: - - CMD-SHELL - - pg_isready - image: postgres:14 - networks: - default: null - restart: always - volumes: - - source: gitea-pg-db - target: /var/lib/postgresql/data - type: volume - volume: {} - gitea-opengist: - container_name: gitea-opengist - environment: - OG_LOG_LEVEL: warn - OG_EXTERNAL_URL: https://gist.${MY_TLD} - OG_GIT_DEFAULT_BRANCH: "main" - OG_GITEA_CLIENT_KEY: ${OPENGIST_GITEA_CLIENT_KEY} - OG_GITEA_SECRET: ${OPENGIST_GITEA_SECRET} - OG_GITEA_URL: https://git.${MY_TLD} - OG_GITEA_NAME: "Gitea @ Rinoa" - image: ghcr.io/thomiceli/opengist:latest - labels: - homepage.description: Private Code Gists - homepage.group: Code - homepage.href: https://gist.${MY_TLD} - homepage.icon: /icons/opengist.svg - homepage.name: Opengist - swag: enable - swag.uptime-kuma.enabled: "true" - swag.uptime-kuma.monitor.url: https://gist.${MY_TLD} - swag_port: "6157" - swag_proto: http - swag_url: gist.${MY_TLD} - ports: - - "6157:6157" # HTTP port - - "2222:2222" # SSH port, can be removed if you don't use SSH - restart: always - volumes: - - ${DOCKER_VOLUME_CONFIG}/gitea/opengist:/opengist - gitea-runner: - container_name: gitea-runner - depends_on: - gitea: - condition: service_started - environment: - CONFIG_FILE: /config.yaml - DOCKER_HOST: tcp://dockerproxy:2375 - GITEA_INSTANCE_URL: http://gitea:3000 - GITEA_RUNNER_REGISTRATION_TOKEN: "${GITEA_RUNNER_REGISTRATION_TOKEN}" - GITEA_RUNNER_NAME: "gitea-runner-1" - image: gitea/act_runner:latest - networks: - default: null - ports: - - 63604:63604 - restart: always - volumes: - - ${DOCKER_VOLUME_CONFIG}/gitea/act-runner/config.yaml:/config.yaml - gitea-sonarqube-bot: - container_name: gitea-sonarqube-bot - depends_on: - gitea: - condition: service_started - sonarqube: - condition: service_started - image: justusbunsi/gitea-sonarqube-bot:v0.3.5 - environment: - GITEA_SQ_BOT_PORT: 58525 - GITEA_SQ_BOT_CONFIG_PATH: /home/bot/config/config.yaml - ports: - - 58525:58525 - volumes: - - ${DOCKER_VOLUME_CONFIG}/gitea/sonarqube-bot/:/home/bot/config/ -volumes: - gitea-pg-db: - name: gitea-pg-db \ No newline at end of file diff --git a/gitea-env.example b/gitea-env.example deleted file mode 100644 index 51d121c6..00000000 --- a/gitea-env.example +++ /dev/null @@ -1,32 +0,0 @@ -CONFIG_FILE= -DOCKER_HOST= -GITEA__database__DB_TYPE= -GITEA__database__HOST= -GITEA__database__NAME= -GITEA__database__PASSWD= -GITEA__database__USER= -GITEA_INSTANCE_URL= -GITEA__mailer__ENABLED= -GITEA__mailer__FROM= -GITEA__mailer__IS_TLS_ENABLED= -GITEA__mailer__PASSWD= -GITEA__mailer__PROTOCOL= -GITEA__mailer__SMTP_ADDR= -GITEA__mailer__SMTP_PORT= -GITEA__mailer__USER= -GITEA_RUNNER_NAME= -GITEA_RUNNER_REGISTRATION_TOKEN= -GITEA_SQ_BOT_CONFIG_PATH= -GITEA_SQ_BOT_PORT= -OG_EXTERNAL_URL= -OG_GIT_DEFAULT_BRANCH= -OG_GITEA_CLIENT_KEY= -OG_GITEA_NAME= -OG_GITEA_SECRET= -OG_GITEA_URL= -OG_LOG_LEVEL= -POSTGRES_DB= -POSTGRES_PASSWORD= -POSTGRES_USER= -USER_GID= -USER_UID= diff --git a/jitsi-env.example b/jitsi-env.example deleted file mode 100644 index 80603aab..00000000 --- a/jitsi-env.example +++ /dev/null @@ -1,366 +0,0 @@ -ADMIN_DB_PASSWORD= -ADMIN_JWT_SECRET= -AMPLITUDE_ID= -ANALYTICS_SCRIPT_URLS= -ANALYTICS_WHITELISTED_EVENTS= -AUDIO_QUALITY_OPUS_BITRATE= -AUTH_TYPE= -AUTO_CAPTION_ON_RECORD= -AUTOSCALER_SIDECAR_GROUP_NAME= -AUTOSCALER_SIDECAR_HOST_ID= -AUTOSCALER_SIDECAR_INSTANCE_ID= -AUTOSCALER_SIDECAR_KEY_FILE= -AUTOSCALER_SIDECAR_KEY_ID= -AUTOSCALER_SIDECAR_PORT= -AUTOSCALER_SIDECAR_REGION= -AUTOSCALER_SIDECAR_SHUTDOWN_POLLING_INTERVAL= -AUTOSCALER_SIDECAR_STATS_POLLING_INTERVAL= -AUTOSCALER_URL= -BRANDING_DATA_URL= -BRIDGE_AVG_PARTICIPANT_STRESS= -BRIDGE_STRESS_THRESHOLD= -CALLSTATS_CUSTOM_SCRIPT_URL= -CALLSTATS_ID= -CALLSTATS_SECRET= -CHROME_EXTENSION_BANNER_JSON= -CHROMIUM_FLAGS= -COLIBRI_REST_ENABLED= -COLIBRI_WEBSOCKET_PORT= -CONFCODE_URL= -CONFIG_EXTERNAL_CONNECT= -DATABASE_URL= -DEFAULT_LANGUAGE= -DEPLOYMENTINFO_ENVIRONMENT= -DEPLOYMENTINFO_ENVIRONMENT_TYPE= -DEPLOYMENTINFO_REGION= -DEPLOYMENTINFO_SHARD= -DEPLOYMENTINFO_USERREGION= -DESKTOP_SHARING_FRAMERATE_MAX= -DESKTOP_SHARING_FRAMERATE_MIN= -DIALIN_NUMBERS_URL= -DIALOUT_AUTH_URL= -DIALOUT_CODES_URL= -DISABLE_AUDIO_LEVELS= -DISABLE_DEEP_LINKING= -DISABLE_GRANT_MODERATOR= -DISABLE_HTTPS= -DISABLE_KICKOUT= -DISABLE_LOCAL_RECORDING= -DISABLE_POLLS= -DISABLE_PRIVATE_CHAT= -DISABLE_PROFILE= -DISABLE_REACTIONS= -DISABLE_REMOTE_VIDEO_MENU= -DISABLE_START_FOR_ALL= -DOCKER_HOST_ADDRESS= -DROPBOX_APPKEY= -DROPBOX_REDIRECT_URI= -DYNAMIC_BRANDING_URL= -E2EPING_MAX_CONFERENCE_SIZE= -E2EPING_MAX_MESSAGE_PER_SECOND= -E2EPING_NUM_REQUESTS= -ENABLE_AUDIO_PROCESSING= -ENABLE_AUTH= -ENABLE_AUTO_LOGIN= -ENABLE_AUTO_OWNER= -ENABLE_AV_MODERATION= -ENABLE_BREAKOUT_ROOMS= -ENABLE_CALENDAR= -ENABLE_CLOSE_PAGE= -ENABLE_CODEC_OPUS_RED= -ENABLE_COLIBRI_WEBSOCKET= -ENABLE_E2EPING= -ENABLE_END_CONFERENCE= -ENABLE_FILE_RECORDING_SHARING= -ENABLE_HSTS= -ENABLE_HTTP_REDIRECT= -ENABLE_JAAS_COMPONENTS= -ENABLE_JVB_XMPP_SERVER= -ENABLE_LETSENCRYPT= -ENABLE_LIPSYNC= -ENABLE_LIVESTREAMING= -ENABLE_LIVESTREAMING_DATA_PRIVACY_LINK= -ENABLE_LIVESTREAMING_HELP_LINK= -ENABLE_LIVESTREAMING_TERMS_LINK= -ENABLE_LIVESTREAMING_VALIDATOR_REGEXP_STRING= -ENABLE_LOBBY= -ENABLE_LOCAL_RECORDING_NOTIFY_ALL_PARTICIPANT= -ENABLE_LOCAL_RECORDING_SELF_START= -ENABLE_NO_AUDIO_DETECTION= -ENABLE_NOISY_MIC_DETECTION= -ENABLE_OCTO= -ENABLE_OPUS_RED= -ENABLE_PREJOIN_PAGE= -ENABLE_REMB= -ENABLE_REQUIRE_DISPLAY_NAME= -ENABLE_SCTP= -ENABLE_SERVICE_RECORDING= -ENABLE_SIMULCAST= -ENABLE_STATS_ID= -ENABLE_STEREO= -ENABLE_SUBDOMAINS= -ENABLE_TALK_WHILE_MUTED= -ENABLE_TCC= -ENABLE_TRANSCRIPTIONS= -ENABLE_WELCOME_PAGE= -ENABLE_XMPP_WEBSOCKET= -ETHERPAD_DEFAULT_PAD_TEXT= -ETHERPAD_PUBLIC_URL= -ETHERPAD_`= -SKIN_VARIANTS= -ETHERPAD_SKIN_VARIANTS= -ETHERPAD_TITLE= -TITLE= -URL_BASE= -ETHERPAD_URL_BASE= -GC_CLIENT_CERT_URL= -GC_CLIENT_EMAIL= -GC_CLIENT_ID= -GC_GEN_MAX_TH= -GC_GEN_MIN_TH= -GC_INC_SPEED= -GC_INC_STEP_SIZE= -GC_INC_TH= -GC_PRIVATE_KEY= -GC_PRIVATE_KEY_ID= -GC_PROJECT_ID= -GC_TYPE= -GLOBAL_CONFIG= -GLOBAL_MODULES= -GOOGLE_ANALYTICS_ID= -GOOGLE_API_APP_CLIENT_ID= -HIDE_PREJOIN_DISPLAY_NAME= -HIDE_PREJOIN_EXTRA_BUTTONS= -HIDE_PREMEETING_BUTTONS= -HTTP_PORT= -HTTPS_PORT= -INVITE_SERVICE_URL= -JIBRI_BREWERY_MUC= -JIBRI_FINALIZE_RECORDING_SCRIPT_PATH= -JIBRI_HTTP_API_EXTERNAL_PORT= -JIBRI_HTTP_API_INTERNAL_PORT= -JIBRI_PENDING_TIMEOUT= -JIBRI_RECORDER_PASSWORD= -JIBRI_RECORDER_USER= -JIBRI_RECORDING_CONSTANT_RATE_FACTOR= -JIBRI_RECORDING_DIR= -JIBRI_RECORDING_FRAMERATE= -JIBRI_RECORDING_QUEUE_SIZE= -JIBRI_RECORDING_RESOLUTION= -JIBRI_RECORDING_STREAMING_MAX_BITRATE= -JIBRI_RECORDING_VIDEO_ENCODE_PRESET= -JIBRI_REQUEST_RETRIES= -JIBRI_STATSD_HOST= -JIBRI_STATSD_PORT= -JIBRI_STRIP_DOMAIN_JID= -JIBRI_USAGE_TIMEOUT= -JIBRI_WEBHOOK_SUBSCRIBERS= -JIBRI_XMPP_PASSWORD= -JIBRI_XMPP_USER= -JICOFO_AUTH_LIFETIME= -JICOFO_AUTH_PASSWORD= -JICOFO_AUTH_TYPE= -JICOFO_BRIDGE_REGION_GROUPS= -JICOFO_COMPONENT_SECRET= -JICOFO_CONF_INITIAL_PARTICIPANT_WAIT_TIMEOUT= -JICOFO_CONF_MAX_AUDIO_SENDERS= -JICOFO_CONF_MAX_VIDEO_SENDERS= -JICOFO_CONF_SINGLE_PARTICIPANT_TIMEOUT= -JICOFO_CONF_SOURCE_SIGNALING_DELAYS= -JICOFO_CONF_SSRC_REWRITING= -JICOFO_CONF_STRIP_SIMULCAST= -JICOFO_ENABLE_AUTH= -JICOFO_ENABLE_BRIDGE_HEALTH_CHECKS= -JICOFO_ENABLE_HEALTH_CHECKS= -JICOFO_ENABLE_REST= -JICOFO_HEALTH_CHECKS_USE_PRESENCE= -JICOFO_MULTI_STREAM_BACKWARD_COMPAT= -JICOFO_OCTO_REGION= -JIGAGI_SIP_PASSWORD= -JIGAGI_SIP_PORT= -JIGAGI_SIP_SERVER= -JIGAGI_SIP_TRANSPORT= -JIGAGI_SIP_URI= -JIGASI_BREWERY_MUC= -JIGASI_DISABLE_SIP= -JIGASI_ENABLE_SDES_SRTP= -JIGASI_HEALTH_CHECK_INTERVAL= -JIGASI_HEALTH_CHECK_SIP_URI= -JIGASI_PORT_MAX= -JIGASI_PORT_MIN= -JIGASI_SIP_DEFAULT_ROOM= -JIGASI_SIP_KEEP_ALIVE_METHOD= -JIGASI_SIP_URI= -JIGASI_TRANSCRIBER_ADVERTISE_URL= -JIGASI_TRANSCRIBER_RECORD_AUDIO= -JIGASI_TRANSCRIBER_SEND_TXT= -JIGASI_XMPP_PASSWORD= -JIGASI_XMPP_USER= -JVB_ADVERTISE_IPS= -JVB_ADVERTISE_PRIVATE_CANDIDATES= -JVB_AUTH_PASSWORD= -JVB_AUTH_USER= -JVB_BREWERY_MUC= -JVB_DISABLE_STUN= -JVB_MUC_NICKNAME= -JVB_OCTO_BIND_ADDRESS= -JVB_OCTO_REGION= -JVB_OCTO_RELAY_ID= -JVB_PORT= -JVB_STUN_SERVERS= -JVB_WS_DOMAIN= -JVB_WS_SERVER_ID= -JVB_XMPP_AUTH_DOMAIN= -JVB_XMPP_INTERNAL_MUC_DOMAIN= -JVB_XMPP_PORT= -JVB_XMPP_SERVER= -JWT_ACCEPTED_AUDIENCES= -JWT_ACCEPTED_ISSUERS= -JWT_ALLOW_EMPTY= -JWT_APP_ID= -JWT_APP_SECRET= -JWT_ASAP_KEYSERVER= -JWT_AUTH_TYPE= -JWT_ENABLE_DOMAIN_VERIFICATION= -JWT_TOKEN_AUTH_MODULE= -KEYCLOAK_ADMIN_PASSWORD= -KEYCLOAK_ROOT_LOG_LEVEL= -laF_baseUrl= -LDAP_AUTH_METHOD= -LDAP_BASE= -LDAP_BINDDN= -LDAP_BINDPW= -LDAP_FILTER= -LDAP_START_TLS= -LDAP_TLS_CACERT_DIR= -LDAP_TLS_CACERT_FILE= -LDAP_TLS_CHECK_PEER= -LDAP_TLS_CIPHERS= -LDAP_URL= -LDAP_USE_TLS= -LDAP_VERSION= -LETSENCRYPT_DOMAIN= -LETSENCRYPT_EMAIL= -LETSENCRYPT_USE_STAGING= -LOCAL_ADDRESS= -LOG_LEVEL= -MAILER_DSN= -MATOMO_ENDPOINT= -MATOMO_SITE_ID= -MATRIX_UVS_AUTH_TOKEN= -MATRIX_UVS_ISSUER= -MATRIX_UVS_SYNC_POWER_LEVELS= -MATRIX_UVS_URL= -MAX_BRIDGE_PARTICIPANTS= -MAX_PARTICIPANTS= -MERCURE_JWT_SECRET= -MERCURE_PUBLIC_URL= -MICROSOFT_API_APP_CLIENT_ID= -MY_TLD= -NGINX_RESOLVER= -NGINX_WORKER_CONNECTIONS= -NGINX_WORKER_PROCESSES= -OCTO_BRIDGE_SELECTION_STRATEGY= -P2P_PREFERRED_CODEC= -PEOPLE_SEARCH_URL= -PREFERRED_LANGUAGE= -PROSODY_AUTH_TYPE= -PROSODY_ENABLE_RATE_LIMITS= -PROSODY_RATE_LIMIT_ALLOW_RANGES= -PROSODY_RATE_LIMIT_CACHE_SIZE= -PROSODY_RATE_LIMIT_LOGIN_RATE= -PROSODY_RATE_LIMIT_SESSION_RATE= -PROSODY_RATE_LIMIT_TIMEOUT= -PROSODY_RESERVATION_ENABLED= -PROSODY_RESERVATION_REST_BASE_URL= -PUBLIC_URL= -PUBLIC_URL= -registerEmailAdress= -RESOLUTION= -RESOLUTION_MIN= -RESOLUTION_WIDTH= -RESOLUTION_WIDTH_MIN= -SENTRY_ENVIRONMENT= -SENTRY_RELEASE= -SHUTDOWN_REST_ENABLED= -SIP_URI= -START_AUDIO_MUTED= -START_AUDIO_ONLY= -START_BITRATE= -START_SILENT= -START_VIDEO_MUTED= -START_WITH_AUDIO_MUTED= -START_WITH_VIDEO_MUTED= -SUPPRESS_ERRORS_IN_PAD_TEXT= -TESTING_CAP_SCREENSHARE_BITRATE= -TESTING_OCTO_PROBABILITY= -TOKEN_AUTH_URL= -TOOLBAR_BUTTONS= -TRANSLATION_LANGUAGES= -TRANSLATION_LANGUAGES_HEAD= -TURN_CREDENTIALS= -TURN_HOST= -TURN_PORT= -TURNS_HOST= -TURNS_PORT= -TURN_TRANSPORT= -TZ= -USE_APP_LANGUAGE= -VICH_BASE= -VIDEOQUALITY_BITRATE_H264_HIGH= -VIDEOQUALITY_BITRATE_H264_LOW= -VIDEOQUALITY_BITRATE_H264_STANDARD= -VIDEOQUALITY_BITRATE_VP8_HIGH= -VIDEOQUALITY_BITRATE_VP8_LOW= -VIDEOQUALITY_BITRATE_VP8_STANDARD= -VIDEOQUALITY_BITRATE_VP9_HIGH= -VIDEOQUALITY_BITRATE_VP9_LOW= -VIDEOQUALITY_BITRATE_VP9_STANDARD= -VIDEOQUALITY_ENFORCE_PREFERRED_CODEC= -VIDEOQUALITY_PREFERRED_CODEC= -WEBSOCKET_SECRET= -WHITEBOARD_COLLAB_SERVER_PUBLIC_URL= -WHITEBOARD_ENABLED= -XMPP_AUTH_DOMAIN= -XMPP_BOSH_URL_BASE= -XMPP_DOMAIN= -XMPP_GUEST_DOMAIN= -XMPP_INTERNAL_MUC_DOMAIN= -XMPP_INTERNAL_MUC_MODULES= -XMPP_MODULES= -XMPP_MUC_CONFIGURATION= -XMPP_MUC_DOMAIN= -XMPP_MUC_MODULES= -XMPP_PORT= -XMPP_RECORDER_DOMAIN= -XMPP_SERVER= -XMPP_TRUST_ALL_CERTS= -# Allow insecure certificate while connecting Keycloak -# Set this if Keycloak has not a trusted certificate. Dont set this on prod -ALLOW_UNSECURE_CERT=1 - -# Secret for API -# Update this value for your deployment -API_SECRET=J2EQnU25NhmhFebLjHrJGVMl7SpE93ktgVi9h3Fm4aNMBJLYcvR9UdPveMpthokD - -# Timeout for API session -API_TIMEOUT=86400 - -# Postgresql host address -DB_HOST=galaxy-db - -# Postgresql password -# Update this value for your deployment -DB_PASSWD=A$s%o7!^$CapY8dsjJsromXfVbGfL8vt - -# FQDN for this setup -GALAXY_FQDN=app.galaxy-kc.loc - -# Keycloak client ID -KEYCLOAK_CLIENT_ID=galaxy - -# Keycloak address -KEYCLOAK_ORIGIN=https=//ucs-sso-ng.mydomain.corp - -# Keycloak realm -KEYCLOAK_REALM=ucs \ No newline at end of file diff --git a/sonar-project.properties b/sonar-project.properties index c672cb47..68b14a52 100644 --- a/sonar-project.properties +++ b/sonar-project.properties @@ -8,7 +8,7 @@ sonar.inclusions=docker-compose.yml # Disable all other sensors explicitly sonar.iac.enabled=true -sonar.iac.inclusions=**/*.yml,**/*.yaml,**/docker-compose.yml +sonar.iac.inclusions=**/docker-compose.yml sonar.iac.exclusions=**/*.* # Exclude everything not explicitly included sonar.exclusions=**/*.*