Giter Club home page Giter Club logo

sonarqube-github-integration's Introduction

Build Status

SonarQube and GitHub Integration

SonarQube is an open source platform developed by SonarSource for continuous inspection of code quality to perform automatic reviews with static analysis of code to detect bugs, code smells and security vulnerabilities. Similarly GitHub brings together the world's largest community of developers to discover, share, and build better software. From open source projects to private team repositories, GitHub is an all-in-one platform for collaborative development.

This guide walks you through the process of obtaining the test line coverage of each repository in a GitHub organization.

The following sections are covered in this guide.

What you'll build

Let's consider a sample scenario where a user requires test line coverage of all the repositories in the organization wso2. This guide specifies how Ballerina SonarQube and GitHub endpoints can be used to get a summary of the test line coverage of all repositories in the wso2 organization.

In GitHub, there are numerous organizations that have a collection of repositories relevant to various projects, and SonarQube contains the details regarding those projects; such as test line coverage, code duplications, and bugs.

Therefore, you need obtain the list of repositories in wso2 from GitHub and then send the repository list to SonarQube to obtain the line coverage of each of the repositories.

The test line coverage of a repository is a significant metric that project leads require in order to get an overall understanding of the test coverage in the project.

GitHub-Sonarqube_Integration

In this example, we use the Ballerina GitHub endpoint to get a list of repositories under a specified organization in GitHub, and then pass that list to the Ballerina SonarQube endpoint to get the test line coverage of each repository.

Prerequisites

Tip: For a better development experience, install one of the following Ballerina IDE plugins: VSCode, IntelliJ IDEA

Optional requirements

Developing the program

Before you begin

Understand the package structure

Ballerina is a complete programming language that can have any custom project structure that you wish. Although the language allows you to have any package structure, use the following package structure for this project to follow this guide.

line-coverage-with-sonarqube-github
├── RepositoryLineCoverageApp
│   ├── repository_line_coverage.bal
│   └── tests
│       └── line_coverage_test.bal
├── README.md
├── Ballerina.toml
└── ballerina.conf

Package RepositoryLineCoverageApp contains the main Ballerina program that uses the Ballerina SonarQube and GitHub endpoints. These endpoints are used to fetch a list of repositories from a GitHub organization and then fetch the test line coverage of each of those repositories. It also contains a sub directory test that contains the tests that we write for the program.

Implementation

In this section, this guide walks you through the steps in implementing the above mentioned Ballerina program.

The SonarQube and GitHub endpoints communicate with their respective APIs in order to obtain the data. Since these APIs are protected with authorization tokens, we need to configure both the SonarQube and GitHub endpoints by providing the respective access tokens.

In this guide the access tokens are read from a configuration file. So, provide the SonarQube and GitHub access tokens in the 'ballerina.conf' file under the key names SONARQUBE_TOKEN and GITHUB_TOKEN. Since the Sonarqube endpoint is dynamic, we need to specify it under the key name SONARQUBE_ENDPOINT.

GITHUB_TOKEN=""
SONARQUBE_TOKEN=""
SONARQUBE_ENDPOINT="https://wso2.org/sonar"

Create a main function

First lets write the main function inside the 'repository_line_coverage.bal' file. If you are using an IDE, then this is automatically generated for you. Next define a function getLineCoverageSummary() to get the test line coverage details.

public function main(string... args) { }

function getLineCoverageSummary (int recordCount) returns json|error{ }

Let's start implementing the getLineCoverageSummary() function.

Configure and initialize GitHub client

github4:Client githubEP = new({
    clientConfig: {
        auth: {
            scheme: http:OAUTH2,
            config: {
                grantType: http:DIRECT_TOKEN,
                config: {
                    accessToken: config:getAsString("GITHUB_TOKEN")
                }
            }
        }
    }
});

Here the GitHub access token is read from the configuration file and the GitHub client is initialized.

Configure and initialize Sonarqube client

sonarqube6:SonarQubeConfiguration sonarqubeConfig = {
    baseUrl: config:getAsString("SONARQUBE_ENDPOINT"),
    clientConfig:{
        auth:{
            scheme:http:BASIC_AUTH,
            config: {
                username: config:getAsString("SONARQUBE_TOKEN"),
                password: ""
            }
        }
    }
};

sonarqube6:Client sonarqubeEP = new(sonarqubeConfig);

Similarly, the SonarQube token is read from the configuration file and the SonarQube client is initialized.

Get a GitHub organization

We need to get a specific GitHub organization in order to get all of its repositories.

    github4:Organization organization;
    var gitOrganizationResult = githubEP->getOrganization("wso2");
    if (gitOrganizationResult is error) {
        return gitOrganizationResult;
    } else {
        organization = gitOrganizationResult;
    }

Get the list of repositories

    github4:RepositoryList repositoryList;
    var gitRepostoryResult = githubEP->getOrganizationRepositoryList(organization, recordCount);
    if (gitRepostoryResult is error) {
        return gitRepostoryResult;
    } else {
        repositoryList = gitRepostoryResult;
    }

Get line coverage of each repository from SonarQube

    json summaryJson = [];
    int i = 0;
    foreach github4:Repository repo in repositoryList.getAllRepositories() {
        var sonarqubeProjectResult = sonarqubeEP->getProject(repo.name);
        if (sonarqubeProjectResult is error) {
            summaryJson[i] = { "name": repo.name, "coverage": "Not defined" };
        } else {
            string lineCoverage = sonarqubeEP->getLineCoverage(untaint sonarqubeProjectResult.key);
            if (lineCoverage is error) {
                lineCoverage => "0.0%"
             }  else {
                lineCoverage = lineCoverageResult;
             }
            summaryJson[i] = { "name": repo.name, "coverage":lineCoverage };
        }
        i += 1;
    }

Please refer to the repository_line_coverage.bal for the complete implementation.

Testing

Try it out

After the above steps are completed, use the following command to execute the application.

<SAMPLE_ROOT_DIRECTORY>$ ballerina run RepositoryLineCoverageApp/

Sample output

...
{"name":"carbon-metrics", "coverage":"85.1%"}
...

Writing unit tests

In Ballerina, the unit test cases should be in the same package and the naming convention should be as follows.

  • Test files should contain _test.bal suffix.
  • Test functions should contain test prefix.
    • e.g., testGetLineCoverageSummary()

This guide contains the unit test case for the getLineCoverageSummary() function from the repository_line_coverage.bal.

To run the unit test, go to the sample root directory and run the following command.

<SAMPLE_ROOT_DIRECTORY>$ ballerina test --config ./ballerina.conf repository-line-coverager/

Refer to the line_coverage_test.bal file for the implementation of the test file.

Deployment

Once you are done with the development, you can deploy the service using any of the methods listed below.

Deploying locally

You can deploy the services that you developed above in your local environment. You can create the Ballerina executable archives (.balx) first and run them in your local environment as follows.

Building

<SAMPLE_ROOT_DIRECTORY>$ ballerina build repository-line-coverager/

After build is successful, there will be a .balx file inside the target directory. That executable can be executed as follows.

Running

<SAMPLE_ROOT_DIRECTORY>$ ballerina run <Exec_Archive_File_Name>

sonarqube-github-integration's People

Contributors

anupama-pathirage avatar ballerina-bot avatar chamil321 avatar kalaiyarasiganeshalingam avatar kasun04 avatar keizer619 avatar ldclakmal avatar maheshika avatar maryamzi avatar nadeeshaan avatar natashawso2 avatar praneesha avatar samgnaniah avatar thisaruguruge avatar vijithaekanayake avatar vinok88 avatar vlgunarathne avatar

Watchers

avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.