Learn how to install and configure Hygieia audit APIs

Docker Stars Docker Stars

Hygieia audit APIs are a collection of API endpoints that serve to audit CI/CD data gathered by Hygieia collectors. The audit API provides endpoints to audit individual widgets on the Dashboard. In addition to these endpoints, Hygieia also provides a dashboard-level audit API.

The audit API logic adds various audit flags depending on the data. For a detailed listing of the audit flags, see the audit-api module’s model package.

For detailed information on audit APIs, see the Swagger documentation available at http://[your-doman].com/apiaudit/swagger/index.html#.

Hygieia uses Spring Boot to package the APIs as an executable JAR file with dependencies.

Setup Instructions

To configure the Hygieia audit API layer, execute the following steps:

  • Step 1: Run Maven Build

    To package the audit API source code into an executable JAR file, run the maven build from the \Hygieia directory of your source code installation:

    mvn install

    The output file apiaudit.jar is generated in the \api-audit\target folder.

  • Step 2: Set Parameters in the API Properties File

    Set the configurable parameters in the dashboard.properties file to connect to the Dashboard MongoDB database instance, including properties required by the audit API module. To configure the parameters, refer to the API properties file.

    For more information about the server configuration, see the Spring Boot documentation.

  • Step 3: Run the API

    To run the executable file, change directory to ‘api-audit\target’ and then execute the following command from the command prompt:

    java -jar apiaudit.jar --spring.config.location=C:\[path to]\Hygieia\api-audit\api-audit.properties

    Verify API access from the web browser using the url: http://localhost:8080/apiaudit/ping.

    By default, the server starts at port 8080 and uses the context path /api-audit. You can configure these values in the api-audit.properties file for the following properties:

    server.contextPath=/api-audit
server.port=8080

    Note: The ‘jasypt.encryptor.password’ system property is used to decrypt the database password. For more information, refer to Encrypted Properties.

API Properties File

The sample api-audit.properties file lists parameters with sample values to configure the audit API layer. Set the parameters based on your environment setup.

# api-audit.properties
dbname=dashboarddb
dbusername=dashboarduser[MogoDb Database Username, defaults to empty]
dbpassword=dbpassword[MongoDB Database Password, defaults to empty]
dbhost=[Host on which MongoDB is running, defaults to localhost]
dbport=[Port on which MongoDB is listening, defaults to 27017]
dbreplicaset=[False if you are not using MongoDB replicaset]
dbhostport=[host1:port1,host2:port2,host3:port3]
server.contextPath=[Web Context path, if any]
server.port=[Web server port - default is 8080]
logRequest=false
logSplunkRequest=false
serviceAccountOU=SAOU1,SAOU2 [comma separated list of OU setup in LDAP for whitelist of Service Accounts]

# pattern to match the featureID/storyNumber (Jira ID, VersionOne ID, etc) for traceability
featureIDPattern=((?<!([A-Za-z]{1,10})-?)[A-Z]+-\\d+)

All values in the api-audit.properties file are optional. If you have MongoDB installed with no authorization, you must be able to run the API even without the properties file.

Note: If the value of dbusername is empty, then system skips MongoDB authorization.

Docker Image for API

To configure the Hygieia audit API layer, execute the following steps:

  • Step 1: Run Maven Build

    To package the audit API source code into an executable JAR file, run the maven build from the \Hygieia directory of your source code installation:

    mvn clean package -pl api-audit docker:build

  • Step 2: Start MongoDB Docker Container

    Execute the following commands to start MongoDB, switch to db dashbaord, and then add dashboard user:

    docker run -d -p 27017:27017 --name mongodb -v ./mongo:/data/db mongo:latest  mongod --smallfiles

# Connect to MongoDB
docker exec -t -i mongodb bash

# Switch to db dashbaord
use dashboarddb

# Create dashboard user
db.createUser({user: "dashoarduser", pwd: "dbpassword", roles: [{role: "readWrite", db: "dashboarddb"}]})

# To execute from CLI:

mongo 192.168.64.2/admin --eval 'db.getSiblingDB("dashboarddb").createUser({user: "dashboarduser", pwd: "dbpassword", roles: [{role: "readWrite", db: "dashboarddb"}]})'

    For more information on creating Docker image for MongoDB, refer to the Docker Hub Document.

  • Step 3: Set Environment Variables

    Specify the Environment Variables for dashboard properties:

    docker run -t -p 8080:8080 -v ./logs:/hygieia/logs -e "SPRING_DATA_MONGODB_HOST=127.0.0.1" -i hygieia-apiaudit:latest

    To define more properties, refer to the Dockerfile.

  • Step 4: Run the API

    To run the API from Docker, execute the following command from the command prompt:

    docker run -t -p 8080:8080 --link mongodb:mongo -v ./logs:/hygieia/logs -i hygieia-apiaudit:latest

    To verify audit API access from the web browser, take the port mapping and the IP for your docker-machine ip and then verify using url: `http://:/apiaudit/dashboard`

    To list the running containers in the local repository, execute the following command:

    docker ps

Create a New Audit API

The steps to create a new audit API are as follows:

  1. Create a new rest controller or add to an existing controller.
  2. Create a new service interface and new service implementation.
  3. Add new request and response classes.

Note: For common data models used in the audit APIs, refer the core module’s model package.