Configure an agent with GitHub
In order to view recipe results and commit changes from a recipe back to GitHub, you'll need to create a GitHub OAuth app and configure the Moderne agent with the appropriate variables.
To assist with that, this guide will:
- You will need administrator access to your organization's GitHub account
- 1.Navigate to the settings page for your organization:
https://github.com/organizations/<YOUR_ORG>/settings/applications - 2.Expand
Developer settingson the bottom left of the page:-
- 3.Click the
New OAuth Appbutton in the upper right of your screen. - 4.
-
- 5.On your newly created application click the
Generate a new client secretbutton:-
- 6.Copy the
Client IDandClient secretfrom this page; they will be used as arguments for the Moderne Agent.
Field | Example |
|---|---|
Application Name | Moderne SaaS |
Homepage URL | https://myorg.moderne.io |
Authorization callback URL | https://myorg.moderne.io |
The following table contains all of the variables/arguments you need to add to your Moderne agent run command in order for it to work with your GitHub instance. Please note that these variables/arguments must be combined with ones found in other steps in the Configuring the Moderne agent guide.
You can configure multiple GitHub OAuth apps by including multiple entries, each with a different
{index}.OCI Container
Executable JAR
Variables:
MODERNE_AGENT_GITHUB_{index}_OAUTH_CLIENTID– The client id configured in GitHub.MODERNE_AGENT_GITHUB_{index}_OAUTH_CLIENTSECRET– The client secret configured in GitHub.MODERNE_AGENT_GITHUB_{index}_URL– The fully-qualified hostname of the running GitHub instance.MODERNE_AGENT_GITHUB_{index}_SKIPSSL– (Optional) Specifies whether or not to skip SSL validation for HTTP connections to this GitHub instance. This must be set totrueif you use a self-signed SSL/TLS certificate. Defaults to false.MODERNE_AGENT_GITHUB_{index}_ALLOWABLE_ORGANIZATIONS_{index}– (Optional) Specifies what organizations you can fork recipe results to. By default, there are no restrictions on which organizations can be committed to. If you want multiple organizations, increase the last index and add one per line.MODERNE_AGENT_GITHUB_{index}_OAUTH_INCLUDEPRIVATEREPOS– (Optional) By default, the OAuth app will only have access to public repositories within your organization(s). To provide the OAuth app access to private repositories, you can set this totrue.MODERNE_AGENT_GITHUB_{index}_SSH_PRIVATEKEY– (Optional) The SSH private key used to establish a SSH connection with GitHub.MODERNE_AGENT_GITHUB_{index}_SSH_PASSPHRASE– (Required if the SSH private key is specified and encrypted with a passphrase) The passphrase used to encrypt the SSH private key.MODERNE_AGENT_GITHUB_{index}_SSH_SSHFILENAME– (Required if the SSH private key is specified) The file name of the private key, which the agent will store locally.MODERNE_AGENT_GITHUB_{index}_SSH_USER– (Required if the SSH private key is specified) The username used for SSH communication with GitHub.MODERNE_AGENT_GITHUB_{index}_SSH_PORT– (Optional) The port used to communicate via SSH with GitHub. Defaults to7999.
Example:
docker run \
# ... Existing variables
-e MODERNE_AGENT_GITHUB_0_OAUTH_CLIENTID=yourClientId \
-e MODERNE_AGENT_GITHUB_0_OAUTH_CLIENTSECRET=yourClientSecret \
-e MODERNE_AGENT_GITHUB_0_URL=https://myorg.github.com \
-e MODERNE_AGENT_GITHUB_0_ALLOWABLE_ORGANIZATIONS_0=moderne \
-e MODERNE_AGENT_GITHUB_0_ALLOWABLE_ORGANIZATIONS_1=openrewrite \
-e MODERNE_AGENT_GITHUB_0_OAUTH_INCLUDEPRIVATEREPOS=true \
# ... Additional variables
Arguments:
--moderne.agent.github[{index}].oauth.clientId– The client id configured in GitHub.--moderne.agent.github[{index}].oauth.clientSecret– The client secret configured in GitHub.--moderne.agent.github[{index}].url– The fully-qualified hostname of the running GitHub instance.--moderne.agent.github[{index}].skipSsl– (Optional) Specifies whether or not to skip SSL validation for HTTP connections to this GitHub instance. This must be set totrueif you use a self-signed SSL/TLS certificate. Defaults to false.--moderne.agent.github[{index}].allowableOrganizations[{index}]– (Optional) Specifies what organizations you can fork recipe results to. By default, there are no restrictions on which organizations can be committed to. If you want multiple organizations, increase the last index and add one per line.--moderne_agent_github[{index}].oauth.includePrivateRepos– (Optional) By default, the OAuth app will only have access to public repositories within your organization(s). To provide the OAuth app access to private repositories, you can set this totrue.--moderne.agent.github[{index}].ssh.privateKey– (Optional) The SSH private key used to establish a SSH connection with GitHub.--moderne.agent.github[{index}].ssh.passphrase– (Required if the SSH private key is specified and encrypted with a passphrase) The passphrase used to encrypt the SSH private key.--moderne.agent.github[{index}].ssh.sshFileName– (Required if the SSH private key is specified) The file name of the private key, which the agent will store locally.--moderne.agent.github[{index}].ssh.user– (Required if the SSH private key is specified) The username used for SSH communication with GitHub.--moderne.agent.github[{index}].ssh.port– (Optional) The port used to communicate via SSH with GitHub. Defaults to7999.
Example:
java -jar moderne-agent-{version}.jar \
# ... Existing arguments
--moderne.agent.github[0].oauth.clientId=yourClientId \
--moderne.agent.github[0].oauth.clientSecret=yourClientSecret \
--moderne.agent.github[0].url=https://myorg.github.com \
--moderne.agent.github[0].allowableOrganizations[0]=moderne \
--moderne.agent.github[0].allowableOrganizations[1]=openrewrite \
--moderne.agent.github[0].oauth.includePrivateRepos=true \
# ... Additional arguments