Skip to content

Latest commit

 

History

History
83 lines (53 loc) · 5.77 KB

CONTRIBUTING.md

File metadata and controls

83 lines (53 loc) · 5.77 KB
Raw

Contributing

End-to-end testing

This tool supports exports from and imports to GitHub Enterprise Server (GHES).

Every time code is pushed, end-to-end tests run in GitHub Actions against GitHub.com and supported versions of GitHub Enterprise Server.

From time to time, we need to update the access token used for end-to-end tests against GitHub.com.

We also regularly need to add or remove supported GitHub Enterprise Server versions, or re-provision existing GitHub Enterprise Server versions with a new instance and/or new access token. For details, see the "GitHub Enterprise Server support" section below.

Updating the access token used for GitHub.com

Our end-to-end tests require a GitHub.com access token with relevant permissions to access the gh-migrate-project-sandbox organization.

To refresh the token:

  1. Ensure you have admin access to the gh-migrate-project-sandbox organization on GitHub.com.
  2. Navigate to GitHub's "New fine-grained personal access token" UI.
  3. Give the token a unique name, and set as long as an expiration as you can.
  4. Set the resource owner for the token to gh-migrate-project-sandbox, so the token can access its resources.
  5. Set "Repository access" to "All repositories".
  6. In "Repository permissions", add the following permissions:
  • Contents: Read and write
  • Issues: Read-only
  • Metadata: Read-only
  • Pull requests: Read-only
  1. In "Organization permissions", add the following permissions:
  • Projects: Read and write
  1. Create your token, and copy the value to the clipboard.
  2. Navigate to the repository's Actions secrets and update GH_MIGRATE_PROJECT_SANDBOX_TOKEN to the new value.
  3. Navigate to the repository's Dependabot secrets and update GH_MIGRATE_PROJECT_SANDBOX_TOKEN to the new value.

Cleaning up projects on GitHub.com

Running end-to-end tests creates projects on GitHub.com, and there is a maximum limit on how many projects can exist at one time attached to an organization.

When you hit this limit, projects have to be cleaned up, or end-to-end tests will start to fail.

To clean up old projects, set GITHUB_TOKEN to a token with access to the gh-migrate-project-sandbox organization on GitHub.com (see "Updating the access token used for GitHub.com" above for instructions on creating such a token), and then run npm run clean-up-organization-projects.

GitHub Enterprise Server support

This tool supports exports from and imports to GitHub Enterprise Server (GHES).

We only commit to supporting GitHub Enterprise Server releases supported by GitHub. Releases are deprecated roughly a year after release, and once a release is deprecated, we will drop support in this tool.

From time to time, we need to add or remove supported GitHub Enterprise Server versions. We may also need to re-provision existing GitHub Enterprise Server versions with a new instance and/or new access token.

Adding support for a new GitHub Enterprise Server (GHES) version, including automated tests

  1. Deploy a GitHub Enterprise Server (GHES) instance of the required version
  2. Create a personal access token (PAT) with the repo, admin:org, site_admin and project scopes
  3. Seed the GHES instance with data and configure the Actions and Dependabot secrets. You can do this by running npm run seed-github-enterprise-server-instance -- --ghes-access-token TOKEN --ghes-base-url https://ghes.acme.com/api/v3 --dotcom-access-token FOO.
  4. Open .github/workflows/ci.yml and make a copy of an existing job used to test a GHES version (e.g. end_to_end_tests_linux_ghes_311)
  5. Rename the job to an appropriate name for the new version, e.g. end_to_end_tests_linux_ghes_312
  6. Update the GHES version in the job's name
  7. In the "Import project to GHES" step, update the two secrets references to refer to your new secrets
  8. In the "Upload outputs as artifacts", update the name with the new GHES version (e.g. linux-outputs-ghes-312)
  9. Update the needs configuration for the check_release_tag_matches_version job to include the name of your new job

Removing support for a GitHub Enterprise Server (GHES) version

  1. Update the MINIMUM_SUPPORTED_GITHUB_ENTERPRISE_SERVER_VERSION_FOR_EXPORTS and MINIMUM_SUPPORTED_GITHUB_ENTERPRISE_SERVER_VERSION_FOR_IMPORTS variables in src/github-products.ts as appropriate to drop support for the version.
  2. Open .github/workflows/ci.yml and remove the job used to test the GHES version (e.g. end_to_end_tests_linux_ghes_311)
  3. Update the needs configuration for the check_release_tag_matches_version job to remove the job you just removed
  4. Remove the GHES_XXX_ACCESS_TOKEN and GHES_XXX_BASE_URL Actions secrets and Dependabot secrets for the version (e.g. GHES_312_BASE_URL for GitHub Enterprise Server 3.12)

Updating the access token used for a GitHub Enterprise Server version

Our end-to-end tests cover exports from and imports to a number of GitHub Enterprise Server versions.

From time to time, you may need to update this token due to expiry or having reprovisioned the GitHub Enterprise Server instance.

To refresh the token and ensure an instance is ready:

  1. Create a new personal access token (PAT) with the repo, admin:org, project and site_admin scopes
  2. Update the Actions and Dependabot secrets by running npm run seed-github-enterprise-server-instance -- --ghes-access-token TOKEN --ghes-base-url https://ghes.acme.com/api/v3 --dotcom-access-token FOO.