GitHub Enterprise Integration with AWS

GitHub Enterprise
How COOKPAD uses GitHub Enterprise to build COOKPAD 
Integration with AWS

View Slide

Naoto Takai
Cowboy Coder

View Slide

ghe-cleanup-repos

View Slide

We’re Hiring
to make everyday cooking fun.

View Slide

20M UU/month
1.3M recipes

View Slide

10 deploys/day
4.4K pull reqs

View Slide

✓Intel Core i7 2600K
✓16 GB Memory
✓80 licenses
✓300+ repositories
Github Enterprise
VMWare ESXi
Helper
NAS
+

View Slide

Before GitHub Enterprise era...

View Slide

We used Git with SSH
Developer
Git Server CI Server
App Server
1. push
2. pull
3. tag
4. pull
5. deploy
LAN
AWS

View Slide

We does not use github.com
for main project
‣Our security policy
‣Concerns about service availability

View Slide

✗ Our code base is growing
✗ Hard to track changes in the code base
✗ Review was very hard (w/ Review Board)

View Slide

View Slide

We are using GitHub Enterprise
since April 2012
but it was a bit diﬃcult for our environments...

View Slide

Our servers are on AWS,
but GitHub Enterprise does not work on it.
‣Need to communicate with the servers
on AWS such as LDAP, SMTP, etc...
‣Need to access from external network.
‣Without changing deploy process

View Slide

GitHub
Accessing AWS:
LAN
AWS
LDAP
SMTP

View Slide

GitHub
Accessing AWS:
LAN
AWS DIRECT ACCESS
LDAP
SMTP

View Slide

GitHub
LDAP
SMTP
Accessing AWS:
LAN
AWS
Helper
Gateway
SSH Tunnel (autossh)
GitHub Enterprise does not support SSH tunneling

View Slide


View Slide

Access from External:
LAN
AWS
GitHub
Internet
Developer
Developer

View Slide

LAN
AWS
GitHub
Internet
Developer
Developer
DIRECT ACCESS

View Slide

Developer
LAN
AWS
GitHub
Gateway
Reverse
Proxy
Internet
Developer
Tips
‣ DNS lookup
Helper

View Slide

Developer
Access from External (SSH):
LAN
AWS
GitHub
Gateway
Internet
Developer
Tips: SSH con g hack
Host github-enterprise
Hostname gateway
CheckHostIP no
StrictHostKeyChecking no
port 2222
Helper

View Slide


View Slide

Developer
Git Server CI Server
App Server
1. push
2. pull
3. tag
4. pull
5. deploy
LAN
AWS
Deploy Process (old):

View Slide

Deploy Process (new):
Developer GitHub
Gateway
CI Server
Helper
LAN
AWS
App Server Git Server
3. pull
4. tag
1. push
2. push
5. pull
6. deploy
✓We can deploy app even if GitHub Enterprise is down.
✓All commits are mirrored in the git server.

View Slide

Commit Mirroring:
GitHub Git Server
AWS
LAN
push

View Slide

Commit Mirroring:
GitHub Git Server
AWS
LAN
push
DIRECT ACCESS

View Slide

Commit Mirroring:
GitHub Git Server
AWS
LAN
clone pusher
service hook
pull
push

View Slide

require 'sinatra'
require 'json'
post '/update' do
payload = JSON.parse(params[:payload])
project = payload['repository']['name']
cmd = "cd #{project} "
"&& git remote prune origin " +
"&& git fetch -q " +
"&& git push -q --mirror git-server"
`#{cmd}`
end

View Slide

Bonus: Chrome Extension

View Slide

Favicon Hack
http://os0x.github.com/2012/04/16/favicon-on-canvas/

View Slide

Logo Hack

View Slide

cross-browser is still problem...
We want to use “user JavaScript”

View Slide

We’re Hiring
to make everyday cooking fun.

View Slide

GitHub Enterprise Integration with AWS

GitHub Enterprise Integration with AWS

Naoto Takai

More Decks by Naoto Takai

Other Decks in Technology

Featured

Transcript