Prow is a Kubernetes based CI/CD system.
Prow provides GitHub automation in the form of policy enforcement, chat-ops via /foo style commands, and automatic PR merging.
See also:
Repository permissions:
- Actions: Read-Only (Only needed when using the merge automation
tide
) - Administration: Read-Only (Required to fetch teams and collaborateurs)
- Checks: Read-Only (Only needed when using the merge automation
tide
) - Contents: Read (Read & write needed when using the merge automation
tide
) - Issues: Read & write
- Metadata: Read-Only
- Pull Requests: Read & write
- Projects: Admin when using the
projects
plugin, none otherwise - Commit statuses: Read & write
Organization permissions:
- Members: Read-Only (Read & write when using
peribolos
) - Projects: Admin when using the
projects
plugin, none otherwise
Subscribe to events:
- All events.
Webhook secret:
openssl rand -hex 20
GitHub App private key:
Click generate private key
after GitHub App created.
Name | Version |
---|---|
terraform | >= 1.2 |
Name | Version |
---|---|
kubernetes | n/a |
No modules.
Name | Description | Type | Default | Required |
---|---|---|---|---|
domain | The top-level domain of prow service | string |
n/a | yes |
github_appid | The id of Github APP | string |
n/a | yes |
github_cert | The private key cert pem of Github APP | string |
n/a | yes |
hmac_token | The hmac token of Github webhook secret | string |
n/a | yes |
kube_client_certificate | The client certificate of Kubernetes cluster | string |
n/a | yes |
kube_client_key | The client key of Kubernetes cluster | string |
n/a | yes |
kube_cluster_ca_certificate | The cluster ca certificate of Kubernetes cluster | string |
n/a | yes |
kube_host | The hostname of Kubernetes cluster | string |
n/a | yes |
minio_root_password | The password of minio | string |
n/a | yes |
minio_root_user | The user of minio | string |
n/a | yes |
plugin_config_raw | The raw config of plugin | string |
n/a | yes |
prow_config_raw | The raw config of prow | string |
n/a | yes |
No outputs.