Bulletproof, Military Grade Security – Visualizing the Access Control Mechanisms of Your SCM Solution

Who-can-access-What

Why visualize? Access control is probably not the most sexy or intuitive part of any SCM (source code management) solution. However, understanding how access control mechanisms work is crucial for any enterprise that has to protect its intellectual property. What makes things tricky is that any SCM solution on the planet claims to have proper, powerful, “military grade”, “bulletproof” access controls in place. Looking at the specifics, there are huge differences that can give you a competitive business advantage (or disadvantage). A framework that helps you to visualize the differences in the fine print is a way better approach to …

Read More »

Feature Hat-trick: Three new Git features for TeamForge in a week

hattrick

The rule of three The rule of three also seems to apply to new TeamForge Git features. Last week, I blogged about the top three Git features coming with the new TeamForge 8.0 release.  In the same post, I already announced that another three Git features will be released immediately after the launch, so let’s inspect how this hat-trick looks like.   1. Assign an entire TeamForge Team to a Code Review with One click TeamForge 8.0 introduced teams as a native concept. If you like to add all team members to a Gerrit change (Git Code Review) at once, you can …

Read More »

Top 3 Git Features coming in TeamForge 8.0

gerritlogo

CollabNet just released TeamForge 8.0 and with it some significant new features for our Git/Gerrit integration. Without further ado, let’s have a look into the top three. Define Git permissions globally: Site-wide role support for Gerrit As described in detail in my previous blog post, TeamForge project roles control access to all tools integrated in your development process, no matter whether you use Git, Subversion or both, how many servers you use or what your favorite issue tracker is. What happens if you like to define permissions across TeamForge projects on a global basis? Let’s say you have a group …

Read More »

Unexpected Pitfalls of CI/CD Automation: What Your PCI-DSS Guy Will Not Tell You, Part 2

As I promised in my last blog post, I would like to continue the topic of PCI-DSS 3.0, which has been in effect since January 2014. As the January 2015 deadline for meeting the 3.0 requirements rapidly approaches, many companies are working to address areas of the standard that were somewhat neglected in the 2.0 version, such as development tools and processes. It is important to continue developing a better understanding of the standard and its effect on use of development technologies in highly regulated industries. Let’s take a closer look at additional PCI-DSS 3.0 requirements. In my last blog …

Read More »

Here at last – How to permanently delete/recycle projects in Gerrit

delete_repo

If you are using CollabNet’s TeamForge Git Integration, you may have felt the need to delete few or more repositories hosted on Gerrit for various reasons: a) You want to delete repositories and all code reviews associated with it because you do not need the code any more and confuse users with its existance b) You just want to create a Git repository with the same name all over again after deleting the original one, IOW recycle the project name c) You want to save disk space If you simply deleted the Git repository from TeamForge’s Web UI, you would …

Read More »

CollabNet Gerrit Notifications – For all who miss the good ol’ git push notifications

gerritcollabnet

The main feature of our latest TeamForge-Git-Integration (8.0.6) is a brand new notification plugin for Gerrit. This is exciting news to anybody who was used to the git push notifications of the git multimail script. It will also make sure you never miss an accidental git history rewrite again – even if you are not a Gerrit Administrator. This blog post explains the motivation behind this new feature and how to configure it. Motivation Gerrit is a very powerful Git server implementation. It introduces unmatched code review and access right enforcement capabilities. Gerrit is used in many mission critical, large …

Read More »

Gerrit Rebranding – The missing Guide to a customized Look & Feel

Git_rebranded

Our new Git/Gerrit integration for TeamForge has just been released and it is based on Open Source Gerrit 2.6.1. Its default appearance is quite light and lean (see picture below), but may not fit the visual policies of all our customers. This blog post covers Gerrit’s rebranding capabilities. All technical information is available in Gerrit’s official release documentation (here) – however it is scattered across different topics and is lacking practical usage examples. The following branding example results in a completely different visual appearance of Gerrit’s Web UI. The specific color choices are just for demonstration purposes not as a fashion …

Read More »

Git Repository Replication with Gerrit and TeamForge

replicated

Update: Git Replication is now a built-in feature in TeamForge 8.1 Why do we need replication in general? There are several scenarios in which it is quite handy to have a repository whose version history is exactly the same as the one it mirrors. Perhaps the most obvious one is the maintenance of a simple backup repository, used when the primary repository has become inaccessible due to a hardware failure, network outage, or other annoyances. Other scenarios include deploying mirror repositories to distribute heavy load across multiple servers. We’re using Git, a DVCS. We don’t need replication. Do we? Depending …

Read More »

We will share our Gerrit knowledge at Confitura conference

Confitura conference

I will be speaking about Gerrit Code Review during Confitura conference in Poland (on 6th of July 2013). My presentation was selected in public voting from over 90 other proposals. Presentation is based around main Google rule for code: All changes must be reviewed. Will start from basic information what is code review and why it doesn’t work when you are doing it after you put your changes in the main repository, why weekly code review also doesn’t work. Then will move to Gerrit itself and present how tightly it is integrated with Git, how the review process looks like …

Read More »

Why Gerrit is Important for Enterprise Git

importance of git and gerrit

Gerrit is a Java based Git server and a web-based code review tool initially developed by Google to support Android development. Since its inception it has been adopted by many open source communities and enterprises worldwide, and is the most widely used code review and permissions management framework for Git. Gerrit involves three open source projects: Jgit (Eclipse foundation), Apache Mina SSHD (Apache Software Foundation) and Google Web Toolkit (GWT), which powers the web interface for Gerrit. Gerrit is used by many of the largest open source communities such as Android, Google Code, Eclipse Foundation and OpenStack, as well as …

Read More »