cray
Gitea organizationThe Version Control Service (VCS) includes a web interface for repository management, pull requests, and a visual view of all repositories and organizations. The following URL is for the VCS web interface:
https://vcs.ext.system.domain.com
(ncn-mw#
) To look up the external system domain name, run the following command:
kubectl get secret site-init -n loftsman -o jsonpath='{.data.customizations\.yaml}' | base64 -d | grep "external:"
Example output:
external: ext.system.domain.com
On cluster nodes, the VCS service can be accessed through the gateway. VCS credentials for the crayvcs
user are required before cloning a repository (see
VCS Administrative User).
(ncn#
) To clone a repository in the cray
organization, use the following command:
git clone https://api-gw-service-nmn.local/vcs/cray/REPO_NAME.git
cray
Gitea organizationThe VCS UI uses Keycloak to authenticate users on the system. However, users from external authentication sources are not automatically associated with permissions in the cray
Gitea organization. As a result, users configured via Keycloak can log in and create organizations and repositories of their own, but they cannot modify the cray
organization
that is created during system installation, unless they are given permissions to do so.
The crayvcs
Gitea admin
user that is created during CSM installation can log in to the UI via Keycloak. To allow users other than crayvcs
to have access to repositories in
the cray
organization, use the following procedure:
Log in to VCS as the crayvcs
user on the system.
URL: https://vcs.SHASTA_CLUSTER_DNS_NAME
Navigate to the cray
organization owners page.
URL: https://vcs.SHASTA_CLUSTER_DNS_NAME/vcs/cray/teams/owners
Enter the username of the user who should have access to the organization in the Search user...
text field, and click the Add Team Member
button.
IMPORTANT The
Owner
role has full access to all repositories in the organization, as well as administrative access to the organization, including the ability to create and delete repositories.
For granting non-administrative access to the organization and its repositories, create a new team at the following URL:
https://vcs.SHASTA_CLUSTER_DNS_NAME/vcs/org/cray/teams/new
Select the permissions appropriately, and then navigate to the following URL to add members to the newly created team:
https://vcs.SHASTA_CLUSTER_DNS_NAME/vcs/org/cray/teams/NEWTEAM