-
Notifications
You must be signed in to change notification settings - Fork 30
Home
Welcome to the compliance-backend wiki! Here you will find developer documentation for working with the codebase.
The microservice uses ActiveRecord for Object-Relational Mapping on top of a PostgreSQL database. The defined models are being used by all the other services across the codebase. Data about systems together with its table structure is provided by an external service.
The REST API exposes the database for clients, including the insights-client command-line utility and our frontend application. It uses ActionController::API and relies on an external RBAC service and has to run behind an API gateway that provides among others authentication.
The content required for security compliance is provided by a static web server running next to this service and an import job is responsible for periodically synchronizing it with our database. Without this content, the application is not functional.
The heart of the application is the background workers responsible for parsing OpenSCAP reports uploaded by insights-client.