https://github.com/hmcts/civil-sdt

SDT - Secure Data Transfer
https://github.com/hmcts/civil-sdt

hmcts jenkins-cft jenkins-cft-a-c

Last synced: about 1 month ago
JSON representation

SDT - Secure Data Transfer

• Host: GitHub
• URL: https://github.com/hmcts/civil-sdt
• Owner: hmcts
• License: mit
• Created: 2022-10-18T08:21:07.000Z (about 2 years ago)
• Default Branch: master
• Last Pushed: 2024-11-14T19:29:23.000Z (about 1 month ago)
• Last Synced: 2024-11-14T20:27:36.270Z (about 1 month ago)
• Topics: hmcts, jenkins-cft, jenkins-cft-a-c
• Language: Java
• Homepage:
• Size: 7.01 MB
• Stars: 1
• Watchers: 73
• Forks: 0
• Open Issues: 20
• Metadata Files:
  • Readme: README.md
  • Contributing: .github/CONTRIBUTING.md
  • License: LICENSE

Awesome Lists containing this project

README

        
# Civil SDT application

[![Build Status](https://travis-ci.org/hmcts/civil-sdt.svg?branch=master)](https://travis-ci.org/hmcts/civil-sdt)

## Purpose

The purpose of this application is to securly transfer data

## What's inside

This application with a minimal setup. It contains:

 * application skeleton

 * setup script to prepare project

 * common plugins and libraries

 * docker setup

 * swagger configuration for api documentation ([see how to publish your api documentation to shared repository](https://github.com/hmcts/reform-api-docs#publish-swagger-docs))

 * code quality tools already set up

 * integration with Travis CI

 * Hystrix circuit breaker enabled

 * MIT license and contribution information

 * Helm chart using chart-java.

The application exposes health endpoint (http://localhost:4550/health) and metrics endpoint

(http://localhost:4550/metrics).

## Plugins

The application contains the following plugins:

  * checkstyle

    https://docs.gradle.org/current/userguide/checkstyle_plugin.html

    Performs code style checks on Java source files using Checkstyle and generates reports from these checks.

    The checks are included in gradle's *check* task (you can run them by executing `./gradlew check` command).

  * pmd

    https://docs.gradle.org/current/userguide/pmd_plugin.html

    Performs static code analysis to finds common programming flaws. Included in gradle `check` task.

  * jacoco

    https://docs.gradle.org/current/userguide/jacoco_plugin.html

    Provides code coverage metrics for Java code via integration with JaCoCo.

    You can create the report by running the following command:

    ```bash

      ./gradlew jacocoTestReport

    ```

    The report will be created in build/reports subdirectory in your project directory.

  * io.spring.dependency-management

    https://github.com/spring-gradle-plugins/dependency-management-plugin

    Provides Maven-like dependency management. Allows you to declare dependency management

    using `dependency 'groupId:artifactId:version'`

    or `dependency group:'group', name:'name', version:version'`.

  * org.springframework.boot

    http://projects.spring.io/spring-boot/

    Reduces the amount of work needed to create a Spring application

  * org.owasp.dependencycheck

    https://jeremylong.github.io/DependencyCheck/dependency-check-gradle/index.html

    Provides monitoring of the project's dependent libraries and creating a report

    of known vulnerable components that are included in the build. To run it

    execute `gradle dependencyCheck` command.

  * com.github.ben-manes.versions

    https://github.com/ben-manes/gradle-versions-plugin

    Provides a task to determine which dependencies have updates. Usage:

    ```bash

      ./gradlew dependencyUpdates -Drevision=release

    ```

## Setup

Located in `./bin/init.sh`. Simply run and follow the explanation how to execute it.

## Notes

Since Spring Boot 2.1 bean overriding is disabled. If you want to enable it you will need to set `spring.main.allow-bean-definition-overriding` to `true`.

JUnit 5 is now enabled by default in the project. Please refrain from using JUnit4 and use the next generation

## Building and deploying the application

### Building the application

The project uses [Gradle](https://gradle.org) as a build tool. It already contains

`./gradlew` wrapper script, so there's no need to install gradle.

To build the project execute the following command:

```bash

  ./gradlew build

```

### Running the application

Create the image of the application by executing the following command:

```bash

  ./gradlew assemble

```

Create docker image:

```bash

  docker-compose build

```

Run the distribution (created in `build/install/civil-sdt` directory)

by executing the following command:

```bash

  docker-compose up

```

This will start the API container exposing the application's port

(set to `4550` in this app).

In order to test if the application is up, you can call its health endpoint:

```bash

  curl http://localhost:4550/health

```

You should get a response similar to this:

```

  {"status":"UP","diskSpace":{"status":"UP","total":249644974080,"free":137188298752,"threshold":10485760}}

```

### Alternative script to run application

To skip all the setting up and building, just execute the following command:

```bash

./bin/run-in-docker.sh

```

For more information:

```bash

./bin/run-in-docker.sh -h

```

Script includes bare minimum environment variables necessary to start api instance. Whenever any variable is changed or any other script regarding docker image/container build, the suggested way to ensure all is cleaned up properly is by this command:

```bash

docker-compose rm

```

It clears stopped containers correctly. Might consider removing clutter of images too, especially the ones fiddled with:

```bash

docker images

docker image rm 

```

There is no need to remove postgres and java or similar core images.

### Other

Hystrix offers much more than Circuit Breaker pattern implementation or command monitoring.

Here are some other functionalities it provides:

 * [Separate, per-dependency thread pools](https://github.com/Netflix/Hystrix/wiki/How-it-Works#isolation)

 * [Semaphores](https://github.com/Netflix/Hystrix/wiki/How-it-Works#semaphores), which you can use to limit

 the number of concurrent calls to any given dependency

 * [Request caching](https://github.com/Netflix/Hystrix/wiki/How-it-Works#request-caching), allowing

 different code paths to execute Hystrix Commands without worrying about duplicating work

## License

This project is licensed under the MIT License - see the [LICENSE](LICENSE) file for details