mirror of
https://github.com/woodpecker-ci/woodpecker.git
synced 2024-06-08 00:19:37 +00:00
17b8867b96
The goal here is to make consistent use of configuration environment variables prefixed `WOODPECKER_`. Where several variants existed, this PR aims to remove all but one option, leaving the most explicit. This PR only changes server and agent code, but not documentation, in order to keep the PR digestible. Once we have consensus that this is correct, I'll change docs accordingly. User (rather: admin) facing changes in this PR: - In general, support for all server and agent config environment variables (env vars) starting with `DRONE_` is removed. The according `WOODPECKER_*` variables must be used instead. - The env var `WOODPECKER_HOST` replaces `DRONE_HOST`, and `DRONE_SERVER_HOST`. - The env var `WOODPECKER_AGENT_SECRET` is used to configure the shared secret which agents use to authenticate against the server. It replaces `WOODPECKER_SECRET`, `DRONE_SECRET`, `WOODPECKER_PASSWORD`, `DRONE_PASSWORD`, and `DRONE_AGENT_SECRET`. - The env var `WOODPECKER_DATABASE_DRIVER` replaces `DRONE_DATABASE_DRIVER` and `DATABASE_DRIVER`. - The env var `WOODPECKER_DATABASE_DATASOURCE` replaces `DRONE_DATABASE_DATASOURCE` and `DATABASE_CONFIG`.
504 lines
12 KiB
Go
504 lines
12 KiB
Go
// Copyright 2019 Laszlo Fogas
|
|
//
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
// you may not use this file except in compliance with the License.
|
|
// You may obtain a copy of the License at
|
|
//
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
//
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
// See the License for the specific language governing permissions and
|
|
// limitations under the License.
|
|
|
|
package main
|
|
|
|
import (
|
|
"time"
|
|
|
|
"github.com/urfave/cli"
|
|
)
|
|
|
|
var flags = []cli.Flag{
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_DEBUG",
|
|
Name: "debug",
|
|
Usage: "enable server debug mode",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_HOST",
|
|
Name: "server-host",
|
|
Usage: "server fully qualified url (<scheme>://<host>)",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_SERVER_ADDR",
|
|
Name: "server-addr",
|
|
Usage: "server address",
|
|
Value: ":8000",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_SERVER_CERT",
|
|
Name: "server-cert",
|
|
Usage: "server ssl cert path",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_SERVER_KEY",
|
|
Name: "server-key",
|
|
Usage: "server ssl key path",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GRPC_ADDR",
|
|
Name: "grpc-addr",
|
|
Usage: "grpc address",
|
|
Value: ":9000",
|
|
},
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_LETS_ENCRYPT",
|
|
Name: "lets-encrypt",
|
|
Usage: "enable let's encrypt",
|
|
},
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_QUIC",
|
|
Name: "quic",
|
|
Usage: "enable quic",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_WWW_PROXY",
|
|
Name: "www-proxy",
|
|
Usage: "serve the website by using a proxy (used for development)",
|
|
Hidden: true,
|
|
},
|
|
cli.StringSliceFlag{
|
|
EnvVar: "WOODPECKER_ADMIN",
|
|
Name: "admin",
|
|
Usage: "list of admin users",
|
|
},
|
|
cli.StringSliceFlag{
|
|
EnvVar: "WOODPECKER_ORGS",
|
|
Name: "orgs",
|
|
Usage: "list of approved organizations",
|
|
},
|
|
cli.StringSliceFlag{
|
|
EnvVar: "WOODPECKER_REPO_OWNERS",
|
|
Name: "repo-owners",
|
|
Usage: "List of syncable repo owners",
|
|
},
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_OPEN",
|
|
Name: "open",
|
|
Usage: "enable open user registration",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_DOCS",
|
|
Name: "docs",
|
|
Usage: "link to user documentation",
|
|
Value: "https://woodpecker-ci.github.io/",
|
|
},
|
|
cli.DurationFlag{
|
|
EnvVar: "WOODPECKER_SESSION_EXPIRES",
|
|
Name: "session-expires",
|
|
Usage: "session expiration time",
|
|
Value: time.Hour * 72,
|
|
},
|
|
cli.StringSliceFlag{
|
|
EnvVar: "WOODPECKER_ESCALATE",
|
|
Name: "escalate",
|
|
Usage: "images to run in privileged mode",
|
|
Value: &cli.StringSlice{
|
|
"plugins/docker",
|
|
"plugins/gcr",
|
|
"plugins/ecr",
|
|
},
|
|
},
|
|
cli.StringSliceFlag{
|
|
EnvVar: "WOODPECKER_VOLUME",
|
|
Name: "volume",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_DOCKER_CONFIG",
|
|
Name: "docker-config",
|
|
},
|
|
cli.StringSliceFlag{
|
|
EnvVar: "WOODPECKER_ENVIRONMENT",
|
|
Name: "environment",
|
|
},
|
|
cli.StringSliceFlag{
|
|
EnvVar: "WOODPECKER_NETWORK",
|
|
Name: "network",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_AGENT_SECRET",
|
|
Name: "agent-secret",
|
|
Usage: "server-agent shared password",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_SECRET_ENDPOINT",
|
|
Name: "secret-service",
|
|
Usage: "secret plugin endpoint",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_REGISTRY_ENDPOINT",
|
|
Name: "registry-service",
|
|
Usage: "registry plugin endpoint",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GATEKEEPER_ENDPOINT",
|
|
Name: "gating-service",
|
|
Usage: "gated build endpoint",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_DATABASE_DRIVER",
|
|
Name: "driver",
|
|
Usage: "database driver",
|
|
Value: "sqlite3",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_DATABASE_DATASOURCE",
|
|
Name: "datasource",
|
|
Usage: "database driver configuration string",
|
|
Value: "drone.sqlite",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_PROMETHEUS_AUTH_TOKEN",
|
|
Name: "prometheus-auth-token",
|
|
Usage: "token to secure prometheus metrics endpoint",
|
|
Value: "",
|
|
},
|
|
//
|
|
// resource limit parameters
|
|
//
|
|
cli.Int64Flag{
|
|
EnvVar: "WOODPECKER_LIMIT_MEM_SWAP",
|
|
Name: "limit-mem-swap",
|
|
Usage: "maximum swappable memory allowed in bytes",
|
|
},
|
|
cli.Int64Flag{
|
|
EnvVar: "WOODPECKER_LIMIT_MEM",
|
|
Name: "limit-mem",
|
|
Usage: "maximum memory allowed in bytes",
|
|
},
|
|
cli.Int64Flag{
|
|
EnvVar: "WOODPECKER_LIMIT_SHM_SIZE",
|
|
Name: "limit-shm-size",
|
|
Usage: "docker compose /dev/shm allowed in bytes",
|
|
},
|
|
cli.Int64Flag{
|
|
EnvVar: "WOODPECKER_LIMIT_CPU_QUOTA",
|
|
Name: "limit-cpu-quota",
|
|
Usage: "impose a cpu quota",
|
|
},
|
|
cli.Int64Flag{
|
|
EnvVar: "WOODPECKER_LIMIT_CPU_SHARES",
|
|
Name: "limit-cpu-shares",
|
|
Usage: "change the cpu shares",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_LIMIT_CPU_SET",
|
|
Name: "limit-cpu-set",
|
|
Usage: "set the cpus allowed to execute containers",
|
|
},
|
|
//
|
|
// remote parameters
|
|
//
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_GITHUB",
|
|
Name: "github",
|
|
Usage: "github driver is enabled",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GITHUB_URL",
|
|
Name: "github-server",
|
|
Usage: "github server address",
|
|
Value: "https://github.com",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GITHUB_CONTEXT",
|
|
Name: "github-context",
|
|
Usage: "github status context",
|
|
Value: "continuous-integration/woodpecker",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GITHUB_CLIENT",
|
|
Name: "github-client",
|
|
Usage: "github oauth2 client id",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GITHUB_SECRET",
|
|
Name: "github-secret",
|
|
Usage: "github oauth2 client secret",
|
|
},
|
|
cli.StringSliceFlag{
|
|
EnvVar: "WOODPECKER_GITHUB_SCOPE",
|
|
Name: "github-scope",
|
|
Usage: "github oauth scope",
|
|
Value: &cli.StringSlice{
|
|
"repo",
|
|
"repo:status",
|
|
"user:email",
|
|
"read:org",
|
|
},
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GITHUB_GIT_USERNAME",
|
|
Name: "github-git-username",
|
|
Usage: "github machine user username",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GITHUB_GIT_PASSWORD",
|
|
Name: "github-git-password",
|
|
Usage: "github machine user password",
|
|
},
|
|
cli.BoolTFlag{
|
|
EnvVar: "WOODPECKER_GITHUB_MERGE_REF",
|
|
Name: "github-merge-ref",
|
|
Usage: "github pull requests use merge ref",
|
|
},
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_GITHUB_PRIVATE_MODE",
|
|
Name: "github-private-mode",
|
|
Usage: "github is running in private mode",
|
|
},
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_GITHUB_SKIP_VERIFY",
|
|
Name: "github-skip-verify",
|
|
Usage: "github skip ssl verification",
|
|
},
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_GOGS",
|
|
Name: "gogs",
|
|
Usage: "gogs driver is enabled",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GOGS_URL",
|
|
Name: "gogs-server",
|
|
Usage: "gogs server address",
|
|
Value: "https://github.com",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GOGS_GIT_USERNAME",
|
|
Name: "gogs-git-username",
|
|
Usage: "gogs service account username",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GOGS_GIT_PASSWORD",
|
|
Name: "gogs-git-password",
|
|
Usage: "gogs service account password",
|
|
},
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_GOGS_PRIVATE_MODE",
|
|
Name: "gogs-private-mode",
|
|
Usage: "gogs private mode enabled",
|
|
},
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_GOGS_SKIP_VERIFY",
|
|
Name: "gogs-skip-verify",
|
|
Usage: "gogs skip ssl verification",
|
|
},
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_GITEA",
|
|
Name: "gitea",
|
|
Usage: "gitea driver is enabled",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GITEA_URL",
|
|
Name: "gitea-server",
|
|
Usage: "gitea server address",
|
|
Value: "https://try.gitea.io",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GITEA_CLIENT",
|
|
Name: "gitea-client",
|
|
Usage: "gitea oauth2 client id",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GITEA_SECRET",
|
|
Name: "gitea-secret",
|
|
Usage: "gitea oauth2 client secret",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GITEA_CONTEXT",
|
|
Name: "gitea-context",
|
|
Usage: "gitea status context",
|
|
Value: "continuous-integration/drone",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GITEA_GIT_USERNAME",
|
|
Name: "gitea-git-username",
|
|
Usage: "gitea service account username",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GITEA_GIT_PASSWORD",
|
|
Name: "gitea-git-password",
|
|
Usage: "gitea service account password",
|
|
},
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_GITEA_PRIVATE_MODE",
|
|
Name: "gitea-private-mode",
|
|
Usage: "gitea private mode enabled",
|
|
},
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_GITEA_SKIP_VERIFY",
|
|
Name: "gitea-skip-verify",
|
|
Usage: "gitea skip ssl verification",
|
|
},
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_BITBUCKET",
|
|
Name: "bitbucket",
|
|
Usage: "bitbucket driver is enabled",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_BITBUCKET_CLIENT",
|
|
Name: "bitbucket-client",
|
|
Usage: "bitbucket oauth2 client id",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_BITBUCKET_SECRET",
|
|
Name: "bitbucket-secret",
|
|
Usage: "bitbucket oauth2 client secret",
|
|
},
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_GITLAB",
|
|
Name: "gitlab",
|
|
Usage: "gitlab driver is enabled",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GITLAB_URL",
|
|
Name: "gitlab-server",
|
|
Usage: "gitlab server address",
|
|
Value: "https://gitlab.com",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GITLAB_CLIENT",
|
|
Name: "gitlab-client",
|
|
Usage: "gitlab oauth2 client id",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GITLAB_SECRET",
|
|
Name: "gitlab-secret",
|
|
Usage: "gitlab oauth2 client secret",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GITLAB_GIT_USERNAME",
|
|
Name: "gitlab-git-username",
|
|
Usage: "gitlab service account username",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_GITLAB_GIT_PASSWORD",
|
|
Name: "gitlab-git-password",
|
|
Usage: "gitlab service account password",
|
|
},
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_GITLAB_SKIP_VERIFY",
|
|
Name: "gitlab-skip-verify",
|
|
Usage: "gitlab skip ssl verification",
|
|
},
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_GITLAB_PRIVATE_MODE",
|
|
Name: "gitlab-private-mode",
|
|
Usage: "gitlab is running in private mode",
|
|
},
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_GITLAB_V3_API",
|
|
Name: "gitlab-v3-api",
|
|
Usage: "gitlab is running the v3 api",
|
|
},
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_STASH",
|
|
Name: "stash",
|
|
Usage: "stash driver is enabled",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_STASH_URL",
|
|
Name: "stash-server",
|
|
Usage: "stash server address",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_STASH_CONSUMER_KEY",
|
|
Name: "stash-consumer-key",
|
|
Usage: "stash oauth1 consumer key",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_STASH_CONSUMER_RSA",
|
|
Name: "stash-consumer-rsa",
|
|
Usage: "stash oauth1 private key file",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_STASH_CONSUMER_RSA_STRING",
|
|
Name: "stash-consumer-rsa-string",
|
|
Usage: "stash oauth1 private key string",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_STASH_GIT_USERNAME",
|
|
Name: "stash-git-username",
|
|
Usage: "stash service account username",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_STASH_GIT_PASSWORD",
|
|
Name: "stash-git-password",
|
|
Usage: "stash service account password",
|
|
},
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_STASH_SKIP_VERIFY",
|
|
Name: "stash-skip-verify",
|
|
Usage: "stash skip ssl verification",
|
|
},
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_CODING",
|
|
Name: "coding",
|
|
Usage: "coding driver is enabled",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_CODING_URL",
|
|
Name: "coding-server",
|
|
Usage: "coding server address",
|
|
Value: "https://coding.net",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_CODING_CLIENT",
|
|
Name: "coding-client",
|
|
Usage: "coding oauth2 client id",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_CODING_SECRET",
|
|
Name: "coding-secret",
|
|
Usage: "coding oauth2 client secret",
|
|
},
|
|
cli.StringSliceFlag{
|
|
EnvVar: "WOODPECKER_CODING_SCOPE",
|
|
Name: "coding-scope",
|
|
Usage: "coding oauth scope",
|
|
Value: &cli.StringSlice{
|
|
"user",
|
|
"project",
|
|
"project:depot",
|
|
},
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_CODING_GIT_MACHINE",
|
|
Name: "coding-git-machine",
|
|
Usage: "coding machine name",
|
|
Value: "git.coding.net",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_CODING_GIT_USERNAME",
|
|
Name: "coding-git-username",
|
|
Usage: "coding machine user username",
|
|
},
|
|
cli.StringFlag{
|
|
EnvVar: "WOODPECKER_CODING_GIT_PASSWORD",
|
|
Name: "coding-git-password",
|
|
Usage: "coding machine user password",
|
|
},
|
|
cli.BoolFlag{
|
|
EnvVar: "WOODPECKER_CODING_SKIP_VERIFY",
|
|
Name: "coding-skip-verify",
|
|
Usage: "coding skip ssl verification",
|
|
},
|
|
cli.DurationFlag{
|
|
EnvVar: "WOODPECKER_KEEPALIVE_MIN_TIME",
|
|
Name: "keepalive-min-time",
|
|
Usage: "server-side enforcement policy on the minimum amount of time a client should wait before sending a keepalive ping.",
|
|
},
|
|
}
|