I am looking for Bluemix API management apis to move apis through different environments as a part of devops process. I also want to setup same set of APIs for multiple tenants where each API proxy to a different backend. I could not find any such APIs documented.
Any workarounds, approaches or suggestions are most welcome.
API Connect (new version of API Management) which is also available on Bluemix includes a new Toolkit focused in scenarios for DevOps. Here it is its documentation and APIs: https://www.ibm.com/support/knowledgecenter/SSMNED_5.0.0/com.ibm.apic.toolkit.doc/rapim_cli_command_summary.html?lang=en
Related
I'm looking for a solution to configure SCIM in Google Workspace (SSO is already configured by Google web app called GitHub Business) to provision users to the GitHub organization.
Unfortunately, it seems that the only way to do that is to use GitHub SCIM API.
Google workspace is not one of officially supported IdPs :/
How can I configure it correctly in Google Workspace?
Should I use some 3rd part app in Google to do that?
I contacted with GitHub support and they suggested to use GitHub SCIM API, but they can't guide me how to configure it by Google Workspace side. I also contacted with Google support, but they were not super helpful and basically didn't suggest any solution.
I am building a web application where users have to provide my web application access to their repositories in GitHub| Bit bucket| Git Lab | any other code hosting platform.
I have implemented it through OAuth2 for which I had to create client applications on all platforms separately.
Initially it was scoped only to GitHub | Bit Bucket but now I want my web application to support all other major platforms as well.
So my current implementation requires me to create client applications for all other plat platforms which is a hectic because We want to give support for On-Premise version control system as well.
Is there a secure and generic way to authorize to version control system ?
One solution is that user directly provide their Personal Access Tokens (Encrypted) to my web application so that my application can save these PAT and use them to pull the repositories in future.
But I wonder if this is a secure enough or a standard method. If not then what might be the appropriate solution to this problem.
You might need to use an Oauth2 provider like:
dexidp/dex, an identity service that uses OpenID Connect to drive authentication for other apps.
Dex acts as a portal to other identity providers through "connectors", which do support your targets
or casdoor, an Identity and Access Management (IAM) / Single-Sign-On (SSO) platform with web UI supporting OAuth 2.0, including some of your targets.
Oauth2 is not the only option, as illustrated by SmartGit
After some reflection I realized that I actually haven’t had authentication problems with SmartGit and Azure DevOps for quite a while, so I spent some time experimenting to figure out just how SmartGit is authenticating to my repos in Azure DevOps.
I ultimately determined that it uses Personal Access Tokens via the Git Credential Manager.
So explicit support of PATs by SmartGit probably isn’t a critical feature after all. When you install Git (on Windows at least), you have the option to install the Git Credential Manager as well.
As long as you do that you should have smooth sailing.
we have 300+ REST APIs for which we are in processing of creating OpenAPI 3 (yaml) specs to be deployed in apigee finally. since the number of api's are bit high, are there any automated ways of validating and specs and deploying them in apigee or other best practices from similar projects
Few options to consider from my experience.
All 300+ API don't need to be hosted as a single API proxy so break your API spec on proxy level.
When making any changes in API spec a good way to keep the review process separate from APIGEE and use the traditional GIT model. Create a repo for API spec in Git/Bitbucket. Here an API designer can make changes in the API spec and submit a PR. In this, you can have validations test for swagger that is available open-source that will check for any validations. Once PR is passed from variations and approved by all the reviewers then you will be sure of quality and format of the API spec.
Next step can be the deployment of the API spec into APIGEE that can be automated using Jenkins CI/CD. I haven't done this part personally but it is possible to do.
Thanks,
Alok
Keep in mind Apigee's limit of a maximum of 50 deployed proxies. http://apigee.googleapis.com/organizations/environments/deployments
You may want to group your APIs into Apigee proxies & utilize proxy endpoints. https://docs.apigee.com/api-platform/reference/api-proxy-configuration-reference#proxyendpoint
Use the Maven Apigee plugin & GitLab CI to have an automated way of deploys.
https://github.com/apigee/apigee-deploy-maven-plugin
please, let me know if you have any questions.
thanks, regards,
I thought I'd read that there was an entire web services API for automating the latest Bluemix DevOps tooling? I don't see anything obvious in the documentation
https://console.ng.bluemix.net/docs/services/ContinuousDelivery/index.html#cd_getting_started
You're right. You can choose to create a toolchain or start from a toolchain template.
You may find this microservices devops toolchain template tutorial helpful.
https://www.ibm.com/devops/method/tutorials/tutorial_toolchain_microservices_cd?task=1
By default, the toolchain comes with these tool integrations:
IBM-hosted Git Repos and Issue Tracking repositories (repos)
Delivery pipelines
IBM Cloud DevOps Insights
The Eclipse Orion Web IDE
Sauce Labs
pagerDuty
Slack
See https://github.com/open-toolchain/sdk/wiki
This is where we are defining the API. Since SO won't let us have a conversation about what you're actual requirements are, feel free to create an issue on the repo to capture them.
I want to use Bluemix DevOps Services from a portal outside of Bluemix.
Are there APIs which can be used to invoke DevOps services.
For example : How can I create a delivery pipeline without using bluemix or hub.jazz interface?
Thanks
This question is answered over on IBM's dWAnswers in this thread.
To put it plainly, no, though you can 'automagically' create pipelines with Bluemix's Deploy to Bluemix feature.