Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

BCDA-7529: Remove nonsensitive env variables from ops repos #153

Merged
merged 32 commits into from
Jan 17, 2024
Merged

BCDA-7529: Remove nonsensitive env variables from ops repos #153

merged 32 commits into from
Jan 17, 2024

Conversation

alex-dzeda
Copy link
Contributor

🎫 Ticket

https://jira.cms.gov/browse/BCDA-7529

🛠 Changes

Re-configured pulling of variables from environment, so that a volume is attached to docker with the configs. Removal from S3 will be a separate manual process.

ℹ️ Context for reviewers

This assumes that DEPLOYMENT_TARGET is set in all environments.
The non-sensitive values to be pulled in through env files are:
DEBUG
DEPLOYMENT_TARGET (duplicated for reference within a file).
SSAS_DEFAULT_SYSTEM_SCOPE
SSAS_IDLE_TIMEOUT
SSAS_LOG
SSAS_READ_TIMEOUT
SSAS_WRITE_TIMEOUT

✅ Acceptance Validation

Unit-tests pass, and a dev deployment / re-deploy with the S3 variables for the variables listed above works.

🔒 Security Implications

  • This PR adds a new software dependency or dependencies. (godotenv: https://github.com/joho/godotenv )
  • This PR modifies or invalidates one or more of our security controls.
  • This PR stores or transmits data that was not stored or transmitted before.
  • This PR requires additional review of its security implications for other reasons.

If any security implications apply, add Jason Ashbaugh (GitHub username: StewGoin) as a reviewer and do not merge this PR without his approval.

@alex-dzeda
update gorm and pgx dependencies, add idle connection timeout
1ce7596
@alex-dzeda
update config loading
d47bc3d
@alex-dzeda
move imports to systems.go
36aade2
@alex-dzeda
remove forced deployment_target of test in docker-compose.test.yml
dce2808
@alex-dzeda
re-add deployment_target in docker-compose.test.yml
58ebf79
@alex-dzeda
re-add deployment_target in docker-compose.test.yml
5cf670b
@alex-dzeda
add exit message
6bb7d01
@alex-dzeda
remove duplicate panic
ae2d948
@alex-dzeda
remove unreachable line
a5482d1
@alex-dzeda
pass unit test on required var
aa3d37e
@alex-dzeda
update description for failure to load
6a92bed
@alex-dzeda
update description for failure to load
c6311b9
@alex-dzeda
update volumes
34549f7
@alex-dzeda
update description for failure to load
05ddf2d
@alex-dzeda
set default gopath
784c1a4
@alex-dzeda
add additional debug messages
9e51588
@alex-dzeda
copy config file
c9d9557
@alex-dzeda
update directory
d8aa91a
@alex-dzeda
re-configure relative path for file
8b5816d
@alex-dzeda
add additional test
3ba7761
@alex-dzeda
add gopath/goroot addition
8f969eb
@alex-dzeda
add logging for directories
7a0de7a
@alex-dzeda
add printouts for walking
afe7ca7
@alex-dzeda
update log messages to ensure they go to splunk
8201ad9
@alex-dzeda
update logger
01b40d3
@alex-dzeda
post all files checked
d7d5d26
@alex-dzeda
update build and package
fc01dc4
@alex-dzeda
update build and package
ab31982
@alex-dzeda
update packaging
0354e92
@alex-dzeda
update relative path
72f3244
@alex-dzeda
Copy link
Contributor Author

@StewGoin this adds a new software dependency, github.com/joho/godotenv, to read .env files containing only non-sensitive values.

kyeah
kyeah approved these changes Jan 11, 2024
View reviewed changes
Copy link
Contributor

@kyeah kyeah left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Checks out to me. Thanks for digging into this!

laurenkrugen-navapbc
laurenkrugen-navapbc reviewed Jan 12, 2024
View reviewed changes
ops/build_and_package.sh
@@ -34,7 +34,7 @@ go clean
echo "Building ssas..."
go build -ldflags "-X github.com/CMSgov/bcda-ssas-app/ssas/constants.Version=$VERSION" -o ssas ./service/main
echo "Packaging ssas binary into RPM..."
fpm -v $VERSION -s dir -t rpm -n ssas ssas=/usr/local/bin/ssas swaggerui=/etc/sv/ssas
fpm -v $VERSION -s dir -t rpm -n ssas ssas=/usr/local/bin/ssas swaggerui=/etc/sv/ssas cfg/configs/=/go/src/github.com/CMSgov/bcda-ssas-app/ssas/cfg/configs/
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

good catch on this one!

StewGoin
StewGoin approved these changes Jan 17, 2024
View reviewed changes
Copy link

@StewGoin StewGoin left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ok by me.

@alex-dzeda alex-dzeda merged commit c3c780f into master Jan 17, 2024
1 check passed
@alex-dzeda alex-dzeda deleted the alex/bcda-7529 branch January 17, 2024 14:41
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@StewGoin StewGoin StewGoin approved these changes

@kyeah kyeah kyeah approved these changes

@laurenkrugen-navapbc laurenkrugen-navapbc laurenkrugen-navapbc approved these changes

@karinamzalez karinamzalez Awaiting requested review from karinamzalez

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@alex-dzeda @StewGoin @kyeah @laurenkrugen-navapbc