Upgrade to Pro — share decks privately, control downloads, hide ads and more …

DevSecOps: The Java Developer's Guide to Automating with Groovy

Jeanne Boyarsky
May 21, 2019
Programming
1
55

DevSecOps: The Java Developer's Guide to Automating with Groovy

from Oracle Code NY

Jeanne Boyarsky

May 21, 2019
Tweet

More Decks by Jeanne Boyarsky

See All by Jeanne Boyarsky
Refactoring to Java 17 and Beyond
boyarsky
1
50
2023-static-analysis.pdf
boyarsky
0
5
Readable Regular Expressions in Java
boyarsky
0
23
Readable Regular Expressions
boyarsky
0
58
Java Idioms for becoming a more powerful developer
boyarsky
0
52
12 Tips for Writing Readable Code
boyarsky
0
130
2022-java17-refactoring.pdf
boyarsky
1
120
Hybrid Scrum: Location May Vary
boyarsky
0
97
2022-DevNexus-Java9-11.pdf
boyarsky
0
170

Other Decks in Programming

See All in Programming
A sighting of sequence function in Practical FP in Scala
philipschwarz
PRO
0
100
第3回 AWSとGitHub勉強会 - GitHub Actionsを使ったCI環境の構築 -
ogiwarat
0
150
Migrating From Spring Boot 2 To Spring Boot 3 - What's Jakarta EE Got To Do with It?
ivargrimstad
0
670
KustoクエリのChatGPT Plugin!
tomokusaba
0
310
「ちょうどよい」フロントエンドアーキテクチャを求めて
ari_mharada
0
160
Help Collisions, Isolate the Worlds
tagomoris
0
100
STORES二年生が得た新しい視点
mitchan
0
130
【PHPカンファレンス沖縄 2023】素朴で考慮漏れのある PHP コードをテストコードとともに補強していく(ライブコーディング補足資料) / #phpcon_okinawa 2023 livecoding supplementary material
okashoi
2
120
理解して導入するWebフレームワーク ~解決すべき課題に着目する~ / Understanding and implementing web frameworks ~focusing on the problems to be solved~
seike460
PRO
3
690
Managing State Beyond ViewModels and Hilt (Updated)
vrallev
3
660
PHP8.2にバージョンアップして もっと型表現を豊かにしよう
akitotsukahara
0
170
A JVM Threading Model for the containerized times
lhespanha
0
1k

Featured

See All Featured
Art Directing for the Web. Five minutes with CSS Template Areas
malarkey
197
11k
Principles of Awesome APIs and How to Build Them.
keavy
119
16k
How GitHub (no longer) Works
holman
300
140k
Building Applications with DynamoDB
mza
87
5.2k
Building an army of robots
kneath
300
41k
YesSQL, Process and Tooling at Scale
rocio
159
13k
Build The Right Thing And Hit Your Dates
maggiecrowley
23
1.7k
Fashionably flexible responsive web design (full day workshop)
malarkey
395
64k
Rails Girls Zürich Keynote
gr2m
90
12k
The World Runs on Bad Software
bkeepers
PRO
59
6k
In The Pink: A Labor of Love
frogandcode
135
21k
Teambox: Starting and Learning
jrom
125
8.1k

Transcript

  1. @jeanneboyarsky
    Jeanne Boyarsky
    Tuesday May 21, 2018
    Oracle Code New York
    DevSecOps: The Java Developer’s Guide
    to Automating with Groovy
    speakerdeck.com/boyarsky

    View Slide

  2. @jeanneboyarsky 2

    View Slide

  3. @jeanneboyarsky
    About Me
    •  16 years as
    Java Developer
    •  Years of
    tooling &
    Groovy
    3

    View Slide

  4. @jeanneboyarsky
    Will cover
    •  Groovy syntax & idioms
    •  Using Groovy from Nexus
    •  Using Groovy from Jenkins
    •  Live demo
    4

    View Slide

  5. @jeanneboyarsky
    Oracle Code One Lab
    https://github.com/boyarsky/OracleCodeOne2018-
    HOL-Automating-Stack-Groovy
    •  Nexus - Groovy
    •  Jenkins - Groovy
    •  Bonus – Java Sonar rule
    5

    View Slide

  6. @jeanneboyarsky
    GROOVY SYNTAX & IDIOMS
    6

    View Slide

  7. @jeanneboyarsky 7
    Groovy
    Java

    View Slide

  8. @jeanneboyarsky
    Java à Groovy
    8
    int lastYear = 2018;
    int year = 2019
    def nextYear = 2020
    Can use Java syntax
    Without semicolon or type

    View Slide

  9. @jeanneboyarsky
    Strings
    9
    def city = ’NYC'
    println 'Here: $city'
    println "Here: $city"
    println "In ${city.class}"
    Java String
    GString
    Here: $city
    Here: NYC
    In class java.lang.String

    View Slide

  10. @jeanneboyarsky
    Multiline string
    10
    def name = 'Jeanne'
    def text = """
    Name
    ______
    $name
    """
    Name
    ______
    Jeanne
    Coming in Java 13 (raw
    string literals) 14? (text
    blocks) with new syntax

    View Slide

  11. @jeanneboyarsky
    What does this print?
    11
    def name = 'Jeanne'
    def text = ’’’
    Name
    ______
    $name
    ’’’
    Name
    ______
    $name

    View Slide

  12. @jeanneboyarsky
    Getters vs properties
    12
    def animal = 'dog'
    println animal.getBytes()
    println animal.bytes

    View Slide

  13. @jeanneboyarsky
    == vs equals()
    def monday ='monday'
    def nextMonday = new String('monday')
    def tuesday ='tuesday'
    println monday == null
    println null == monday
    println monday == tuesday
    println monday == nextMonday
    13
    Can use Java syntax
    True!

    View Slide

  14. @jeanneboyarsky
    What is the truth?
    14
    Value Result
    Null False
    Empty String False
    Empty List False
    1 character String True

    View Slide

  15. @jeanneboyarsky
    Elvis has entered the building
    15
    println Jenkins.instance
    .getItemByFullName(jobName)
    ?.lastBuild
    ?.timestamp
    ?.time

    View Slide

  16. @jeanneboyarsky
    Optional Parens
    16
    def ch = 'abc'.charAt 1
    println ch
    Optional when no
    ambiguity
    Ambiguity:
    •  Zero params
    •  Within println

    View Slide

  17. @jeanneboyarsky
    ArrayList++
    17
    def list = ['cookie', 'chocolate’]
    list << 'candy'
    println list.getClass() class java.util.ArrayList
    println list[1] chocolate
    ArrayList does what now?!

    View Slide

  18. @jeanneboyarsky
    ArrayList++
    18
    println list [cookie, chocolate, candy]
    println list[-1] candy
    println list.min() candy
    list.sort()
    println list [candy, chocolate, cookie]

    View Slide

  19. @jeanneboyarsky
    MetaClass
    def list = [1,3,5,7]
    println list.metaClass.methods
    println
    list.metaClass.methods*.name.sort().unique()
    19
    •  Method signatures
    •  Method names

    View Slide

  20. @jeanneboyarsky
    Streams/lambas
    def list = [1,3,5,7]
    list.stream().filter({n -> n >= 5}).forEach({n ->
    System.out.println(n)})
    println list.grep { num -> num >= 5 }
    println list.grep { it >= 5 }
    20
    “it” implies param
    •  grep vs filter
    •  less plumbing

    View Slide

  21. @jeanneboyarsky
    Countdown!
    (10..1).each{ println "--> $it" }
    println 'Blast off!'
    21

    View Slide

  22. @jeanneboyarsky
    Stream Mapping
    Java Groovy
    filter grep
    map collect
    forEach for
    limit take
    distinct unique
    anyMatch/allMatch any/every
    findFirst find
    22

    View Slide

  23. @jeanneboyarsky
    Lazy?
    23
    Groovy; not lazy Java streams

    View Slide

  24. @jeanneboyarsky
    Functions
    incrementBy = 4;
    def add(num) {
    num + incrementBy
    }
    println add(2)
    24
    no def
    Return optional
    Types optional

    View Slide

  25. @jeanneboyarsky
    Named Params
    def config = new SelectorConfiguration(
    name: ‘selector',
    description: ‘packages',
    )
    25
    Only the default
    constructor exists!

    View Slide

  26. @jeanneboyarsky
    More on Groovy
    http://groovy-lang.org/style-guide.html
    http://docs.groovy-lang.org/next/html/
    documentation/working-with-collections.htm
    http://docs.groovy-lang.org/2.4.7/html/groovy-jdk/
    overview-summary.html
    26

    View Slide

  27. @jeanneboyarsky
    USING GROOVY IN JENKINS
    27

    View Slide

  28. @jeanneboyarsky 28
    println 'Hello Oracle Code One! '
    println GroovySystem.version
    Hello Oracle Code One!
    2.4.11

    View Slide

  29. @jeanneboyarsky 29

    View Slide

  30. @jeanneboyarsky 30
    Jenkins/Hudson split

    View Slide

  31. @jeanneboyarsky 31
    System scripts can
    access object model
    Can’t choose
    Groovy version

    View Slide

  32. @jeanneboyarsky
    Three ways to find methods
    JavaDoc https://javadoc.jenkins.io
    https://javadoc.jenkins.io/plugin
    Groovy def instance = Jenkins.getInstance()
    println instance.metaClass.methods*.name
    .sort().unique()
    println instance.metaClass.methods
    Google Reuse existing scripts
    32

    View Slide

  33. @jeanneboyarsky
    Sample Object model code
    import jenkins.model.Jenkins
    def instance = Jenkins.getInstance()
    def realm = Jenkins.getInstance().securityRealm
    realm.createAccount('olivia', 'olivia')
    instance.save()
    33

    View Slide

  34. @jeanneboyarsky
    Pipeline Syntax Helper
    34

    View Slide

  35. @jeanneboyarsky
    Convert to Pipeline Plugin
    35

    View Slide

  36. @jeanneboyarsky 36

    View Slide

  37. @jeanneboyarsky 37

    View Slide

  38. @jeanneboyarsky
    Script Security Plugin
    38
    ERROR: Build step failed with exception
    org.jenkinsci.plugins.scriptsecurity.sandbox.RejectedAccessExce
    ption: Scripts not permitted to use staticMethod
    jenkins.model.Jenkins getInstance
    Options:
    •  Approve each script manually
    •  Sandbox - whitelist APIs
    •  Authorized Build plugin to run as admin

    View Slide

  39. @jeanneboyarsky
    USING GROOVY IN NEXUS
    39

    View Slide

  40. @jeanneboyarsky 40
    log.info'Hello Oracle Code One! ’
    log.info GroovySystem.version

    View Slide

  41. @jeanneboyarsky
    Nexus Built Ins
    41
    repository
    (RepositoryApi)
    ScriptApi
    blobStore
    (BlobStoreApi)
    core
    (CoreApi)
    security
    (SecurityApi)

    View Slide

  42. @jeanneboyarsky
    And then there is
    42
    container
    GlobalComponentLookupHelper
    selectorManager =
    container.lookup(SelectorManager.class.name)
    securitySystem =
    container.lookup(SecuritySystem.class.name)
    authorizationManager =
    securitySystem.getAuthorizationManager('default')

    View Slide

  43. @jeanneboyarsky
    Eclipse (or IntelliJ)
    43

    View Slide

  44. @jeanneboyarsky
    LIVE DEMO
    44

    View Slide

  45. @jeanneboyarsky
    What we will cover
    Code Examples Walkthrough
    •  Nexus object model
    •  Jenkins object model
    •  Jenkins pipeline
    Demo – Nexus and Jenkins
    45

    View Slide

  46. @jeanneboyarsky 46

    View Slide