Doodba Quality Assurance

BEWARE!, this project is in beta stage. Things are changing quickly.

What?

Tools for checking that your Doodba-based project is cool.

Why?

Because OCA's maintainer quality tools are too addons-repo-focused.

We needed a too Doodba-focused version instead. 😆

How?

Mount your project structure, usually based on the provided scaffolding, on /project in the container. Docker CLI example: -v $(pwd):/project.
Give him access to a Docker socket (beware of the security implications!) with --privileged -v /var/run/docker.sock or with -e DOCKER_HOST=tcp://dockerhost:2375.
Configure through environment variables.
Run any of the bundled scripts.

Example command for test environment, good for CI:

docker container run --rm -it --privileged -e COMPOSE_FILE=test.yaml -v "$PWD:/project:z" -v /var/run/docker.sock:/var/run/docker.sock:z tecnativa/doodba-qa pylint

Example command for devel environment, linting only private addons:

docker container run --rm -it --privileged -v "$PWD:$PWD:z" -v /var/run/docker.sock:/var/run/docker.sock:z -w "$PWD" -e ADDON_CATEGORIES=-p tecnativa/doodba-qa pylint

You most likely want to run this into a CI environment, so just check out the examples directory and you'll get a hint on how to do it.

Environment variables

You can use any of the upstream Docker Compose environment variables.

Besides, you have these too:

`ADDON_CATEGORIES`

Defaults to --private for all jobs.

You can change it per job, using any of --private --extra --core (or -pec).

These flags are used for the addons script available in all Doodba projects. Use this command in your project's folder to understand its usage:

docker-compose run --rm odoo addons --help

`ADMIN_PASSWORD`

Defaults to admin. If set, is used as the DB manager password.

`ARTIFACTS_DIR`

Directory where all the artifacts produced by insider scripts will be extracted.

`ARTIFACTS_UID` and `ARTIFACTS_GID`

UID/GID to be set as owner for artifacts produced by insider scripts.

`BUILD_FLAGS`

Flags to append to docker-compose build. Defaults to --pull --no-cache.

`DESTROY_FLAGS`

Flags to append to docker-compose down. Defaults to -v --rmi local --remove-orphans.

`LINT_DISABLE`

Disables specific linter messages. Its format depends on the underlying linter.

Defaults to manifest-required-author, since it's expected that you will only want to lint private addons, and those are not OCA's.

TODO: Make it work with flake8.

`LINT_ENABLE`

Enables specific linter messages. Its format depends on the underlying linter.

Empty by default.

TODO: Make it work with flake8.

`LINT_MODE`

Right now, only useful for pylint. Valid values:

loose (default) uses MQT standard cfg.
strict uses pull request cfg.
beta uses beta cfg.

`PGPASSWORD`

Used in secrets-setup when you need a specific DB password.

Defaults to odoopassword.

`PYTHONOPTIMIZE`

By default it is "" (disabled) to allow assert statements, which can be OK for tests, although not for production or demos.

`REPOS_FILE`

Path for the repos.yaml file in current scaffolding (not inside the container).

Scripts

You can use sh, docker and docker-compose commands with all of their features.

Besides, there are other scripts bundled, useful to do a CI pipeline:

`addons-install`

Install requested addons.

`build`

Build your project with docker-compose and check odoo works.

Uses BUILD_FLAGS.

`closed-prs`

Know if your repos.yaml definition includes merged or closed pull requests.

Uses the REPOS_FILE and GITHUB_TOKEN environment variables.

`coverage`

Run addons' unit tests and report coverage.

Usually you should run addons-install before.

You will find the HTML report files in ./$ARTIFACTS_DIR/coverage.

`destroy`

Destroy all containers, volumes, local images and networks.

Uses DESTROY_FLAGS.

`flake8`

Lint code with flake8 using MQT.

`networks-autocreate`

Create missing external networks, which are not autocreated by docker compose because it expects them to be present at the time of booting an environment.

Common examples of such networks are inverseproxy_shared or globalwhitelist_shared.

It extracts the required networks from the chosen docker-compose.yaml file.

`pylint`

Lint code with pylint-odoo using MQT.

Some environment variables modify this script's behavior; check them out.

`secrets-setup`

Creates all needed environment files for the official test.yaml environment to work.

Uses ADMIN_PASSWORD and PGPASSWORD.

`shutdown`

Like destroy, but keeping volumes and images.

Other utilities

These tools are not strictly related to Doodba, but they are helpful and are included:

jq
yq

Redesign workflow of doodba-qa

First, goals:

Scaffolding should be small as possible, because it requires most maintenance.
QA dependencies should be included, to make pipelines faster.

Next, current design:

doodba-qa includes all needed dependencies in the image.
All of them are inside the volume /qa, which gets copied and mounted in the doodba project itself before each CI job.
Those dependencies are only for the insider scripts.
Outsider scripts exist to manage images and containers (build, destroy, shutdown...), or perform some operations that require network access (closed-prs).
Insider scripts exist to execute things inside a container. Basically: install, test, coverage, lint.

Problems:

Sharing a volume is not possible or easy on all environments.
Different versions of doodba have different python versions, so it could have different C extensions. Bind-mounting the preinstalled dependencies can lead to errors.

Good ideas from Tecnativa/doodba-scaffolding#13:

Install things using the base image, without nasty hacks.
Provide a .gitlab-ci.yml file that works out of the box.

So, what could we do to improve the situation?

Include QA dependencies in doodba itself: Tecnativa/doodba#192

This would be great because CI builds would be faster (all is included in the base image) and portable (no need to mount shared volumes).

To avoid polluting the odoo production environment, with pip version conflicts or unexpected behaviors, QA dependencies should exist in a separate virtualenv, inside the same container.
Include a tool to easily execute insider scripts in Doodba: Tecnativa/doodba#192
Dismantle all the copy & share mechanisms in Doodba QA. Not needed anymore due to previous point: #9
The Doodba QA image should only contain dependencies needed for Outsider scripts: #9
Doodba Scaffolding should include a ~~.gitlab-ci.yml that benefits from the recently released feature (in Gitlab 11.4) of including an external file, and should get it from the example we have here~~ .travis.yml file that uses Doodba QA to test that empty repository in all possible Odoo versions: Tecnativa/doodba-scaffolding#15

Initially the idea was to use .gitlab-ci.yml from the example, but it turns out that it works better with a custom runner that targets a persistent docker daemon, so it seems legit to use Travis instead, and leave the Gitlab CI integration for integrators.
Enable ~~Gitlab~~ Travis CI in Doodba Scaffolding, ~~now that we are able to use Gitlab CI with GitHub~~: Tecnativa/doodba-scaffolding#15
Enable ~~Gitlab~~ CI in Doodba QA. See previous point. #9

Benefits from this new approach

Doodba Scaffolding and QA would get CI.
CI would work out of the box.
Environment wouldn't matter.
CI would be faster.

Help wanted!

cc @PCatinean

tecnativa / doodba-qa Goto Github PK

doodba-qa's Introduction

Doodba Quality Assurance

What?

Why?

How?

Environment variables

ADDON_CATEGORIES

ADMIN_PASSWORD

ARTIFACTS_DIR

ARTIFACTS_UID and ARTIFACTS_GID

BUILD_FLAGS

DESTROY_FLAGS

LINT_DISABLE

LINT_ENABLE

LINT_MODE

PGPASSWORD

PYTHONOPTIMIZE

REPOS_FILE

Scripts

addons-install

build

closed-prs

coverage

destroy

flake8

networks-autocreate

pylint

secrets-setup

shutdown