GSoC 2022 Project proposal: Jenkins Configuration as Code (JCasC) drift detector

Jmm · January 25, 2022, 3:07pm

Hello,

Please find hereafter another GSoC Project proposal. Questions, comments, suggestions are welcome.

/- Jmm

Goal: Report differences between a Jenkins active configuration and a given JCasC definition.

Context:
A well designed Configuration Process will only allow updating Jenkins via Configuration as Code. It will thus periodically and “blindly” overwrite the controller to make sure that the configuration code is equivalent to the running one. This is the recommended practice (best if the interval is kept very short).

But experience shows that compromises need to be made. These exceptions range from interactively validating touchy configuration change on Production, to allowing a developer to experiment the best parameters for a feature, or to an emergency interactive configuration change.

This is typically the case when trying to reach the ideal Configuration Process maturity level.

Another use case is to be able to compare the configuration of two Jenkins controllers (ex: Test vs. Production)

Project proposal:

This project intents to create the tooling, similar to the terraform plan command, to:

Show what configuration elements would be created or changed if the supplied JCasC file was applied to the given Jenkins system.
- Ability to configure the details displayed for sensitive elements (credentials, sensitive configuration, etc)
- Ability to opt out above mentioned sensitive elements. These elements may be absent or encrypted in the supplied JCasC file.
Generate a JCasC yaml with only the detected delta.
Give a boolean result whether the controller’s configuration is equivalent to the supplied JCasC configuration (did the configuration drift?)

pushker001 · January 21, 2023, 4:48pm

@Jmm i would like to work on this project what thinks I need to do regarding project if you guide me this would be very beneficial to me

Jmm · January 24, 2023, 5:01pm

Ooops ! This message slipped under the radar screens. I apologize for this.

In order to get to speed for an efficient mentoring, the first and probably most important thing to do is to become very proficient on JCasC (practical and hands-on experience). Another need-to-know is the use of the CLI (various flavour). The third preparation work is to work on your own on several architectural ideas to solve the drift detection as well as project plans and scopes ideas. The contributors will work on their own interpretation of the problem, but the more we thought about this beforehand the better we can guide them (pointing to forgotten topics or questions, hint for exploration paths, etc).

krisstern · January 25, 2023, 3:19am

@Jmm I think @pushker001 wants to contribute as a contributor rather than a mentor.

Jmm · January 25, 2023, 11:18am

Mmmh… You might be right. I might mix the handle with somebody else… E-INFO-OVERLOAD…

@pushker001 Could you clarify what kind of guidance you would like?

/- Jmm

krisstern · January 25, 2023, 11:20am

@pushker001 For any contributer-related questions, please head to our Gitter channel at jenkinsci/gsoc-sig - Gitter. There we will be better to answer your queries better.

pushker001 · January 27, 2023, 4:39pm

As Jim tells us to explore the Jenkins I watched the improve the plugin tutorial now what next I was trying to solve the random issue but faced difficulty in solving it can you guide me regarding this

krisstern · January 27, 2023, 5:29pm

@pushker001 What issue has you been working on? Could you share a link with us?

pushker001 · January 28, 2023, 6:36am

github.com/jenkinsci/configuration-as-code-plugin

Don't show a stack trace on boot error, do a user friendly error instead

opened 02:50PM - 02 Feb 22 UTC

timja

bug

### Jenkins and plugins versions report - ### What Operating System are yo…u using (both controller, and any agents involved in the problem)? - ### Reproduction steps - Put invalid config in a jenkins.yaml and restart it - Jenkins fails to load with a big stacktrace https://gitter.im/jenkinsci/configuration-as-code-plugin?at=61fa665aced11857f98d53c6 ### Expected Results - A clear error message is displayed, possibly with the option to expand it to see the full error Jenkins has moved away from showing stacktraces to users, and hides them by default now on error pages, we should follow to match that ### Actual Results - A giant stacktrace that scares users and makes it hard for them to see what is wrong ### Anything else? _No response_

krisstern · January 29, 2023, 12:53am

@pushker001 So I would suggest to do some investigation further, such as going back to the source of the original problematic stack trace at configuration-as-code-plugin/ConfigurationAsCode.java at aa06e58d11e3b5fbe2baea92523d53bdd5b1f0d1 · jenkinsci/configuration-as-code-plugin · GitHub. There is an example of this stack trace at https://gitter.ems.host/_matrix/media/v1/download/systemausfall.org/XdRIDoidqzBALOsKszsHRAce, which has been given at jenkinsci/configuration-as-code-plugin - Gitter. Then, do some research about how other more modern plugins would handle this type of error and try to imitate it.

pushker001 · January 29, 2023, 4:49pm

how do check how other modern plugins are handling this issue

pushker001 · January 29, 2023, 5:17pm

I explore the plugin mask password plugin as you told me and explore the source code as you have given me the original problematic stack trace at configuration as a code plugin I search the
keyword related to it and found this

github.com

jenkinsci/mask-passwords-plugin/blob/6f755ed51422449b06189989503ea9e877631686/src/main/java/com/michelin/cio/hudson/plugins/passwordparam/PasswordParameterDefinition.java

/*
 * The MIT License
 *
 * Copyright (c) 2004-2009, Sun Microsystems, Inc.
 * Copyright (c) 2011, Manufacture Française des Pneumatiques Michelin, Romain Seguy
 *
 * Permission is hereby granted, free of charge, to any person obtaining a copy
 * of this software and associated documentation files (the "Software"), to deal
 * in the Software without restriction, including without limitation the rights
 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 * copies of the Software, and to permit persons to whom the Software is
 * furnished to do so, subject to the following conditions:
 *
 * The above copyright notice and this permission notice shall be included in
 * all copies or substantial portions of the Software.
 *
 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER

This file has been truncated. show original

line no 56

krisstern · January 29, 2023, 5:51pm

Hi @pushker001 Good start! I think a good example of a more modern way to handle the ConfiguratorException is the Git plugin: git-plugin/GitLabConfigurator.java at 5edc26da3bd4962bdb8599ef1cbc40d335cd1129 · jenkinsci/git-plugin · GitHub. If you compare this to the source code we will need to update you can see that maybe we don’t really need to show all the unknownKeys. One way I would suggest you approach the problem is to try and reproduce the error yourself, then you can play with ways to generate a more modern stack trace like the one shown in Git.

lakshmishreea122003 · January 30, 2023, 12:46pm

I also tried to work on the same issue and came up with a PR Fixes #1846 by displaying a user-friendly error message instead of a stack trace on boot error by lakshmishreea122003 · Pull Request #2199 · jenkinsci/configuration-as-code-plugin · GitHub but some checks were unsuccessful. Please may I know if there is a way to modify what I have done to pass all checks or else I shall do some research about how other more modern plugins would handle this type of error and try to imitate it as advised by @krisstern .

i-am-yuvi · February 24, 2023, 10:57am

Hey @Jmm @krisstern I’m interested in this project & also would like to contribute to it

krisstern · February 26, 2023, 1:29am

Hi @i-am-yuvi Thanks for your interest in the project! You may start by browsing through the issues tracker for the relevant repo at Issues · jenkinsci/configuration-as-code-plugin · GitHub to see if you can submit some pull requests for at least one or two of these issues before official GSoC applicaiton form opens next month on March 20th. If you have any further questions you can pose them on our GSoC Gitter channel at https://app.gitter.im/#/room/#jenkinsci_gsoc-sig:gitter.im, where most of our conversations regarding GSoC are hosted.

krisstern · March 22, 2023, 5:13pm

Please note that this project idea is being withdrawn. If you have prepared a proposal for this project idea, please consider preparing a new proposal for one of the remaining project ideas still on offer. For details please see IMPORTANT NOTICE: Project Ideas withdrawal.

Topic		Replies	Views
[GSOC 2023 PROPOSAL] DivvSaxena Jenkins Configuration as Code (JCasC) drift detector GSoC	1	531	March 8, 2023
Jenkins GSoC 2023 Office Hours: March 9, 2023 \| Project idea presentations GSoC meeting	0	529	March 10, 2023
IMPORTANT NOTICE: Project Ideas withdrawal GSoC	0	624	March 22, 2023
GSOC contribution application GSoC	0	582	March 6, 2023
Documentation office hours - Jan 24, 2022 Community meeting , sig-docs	0	459	January 26, 2022

GSoC 2022 Project proposal: Jenkins Configuration as Code (JCasC) drift detector

Related topics