建木是一个面向DevOps领域的极易扩展的开源无代码(图形化)/低代码(GitOps)工具。可以帮助用户轻松编排各种DevOps流程并分发到不同平台执行。
建木v2.6.1现已发布
主要更新:增强功能、修复若干已知bug
enhancement:
- 与Git平台集成登录时可限定用户或组织
application.yml配置示例:
# 未配置allow-login时,所有用户都能登录
# user或organization配置时,满足二者中的一个配置条件就能登录
# 未配置role时,所有组织成员都能登录
# 配置了role时,成员角色权限高于所配置的role时,用户可以登录,如gitee配置的role为member,则admin和member都能登录
gitee:
allow-login:
# 配置允许登录的用户账号
user:
- xxx1
- xxx2
organization:
# 配置允许登录的组织账号
- account: xxx1
# 配置允许登录的成员角色,可选值(admin/member)
role: admin
- account: xxx2
# 配置允许登录的成员角色,可选值(admin/member)
role: member
gitlab:
allow-login:
user:
- xxx
organization:
- account: xxx
# 可选值(Owner/Maintainer/Developer/Reporter/Guest)
role: Guest
gitea:
allow-login:
user:
- xxx
organization:
- account: xxx
# 可选值(admin/member)
role: member
gitlink:
# gitlink暂不支持配置organization
allow-login:
user:
- xxx
docker-compose.yml配置示例:
# gitee
JIANMU_OAUTH2_GITEE_ALLOW-LOGIN_USER_0: xxx1
JIANMU_OAUTH2_GITEE_ALLOW-LOGIN_USER_1: xxx2
JIANMU_OAUTH2_GITEE_ALLOW-LOGIN_ORGANIZATION_0_ACCOUNT: xxx1
JIANMU_OAUTH2_GITEE_ALLOW-LOGIN_ORGANIZATION_0_ROLE: admin
JIANMU_OAUTH2_GITEE_ALLOW-LOGIN_ORGANIZATION_1_ACCOUNT: xxx2
JIANMU_OAUTH2_GITEE_ALLOW-LOGIN_ORGANIZATION_1_ROLE: member
# gitlab
JIANMU_OAUTH2_GITLAB_ALLOW-LOGIN_USER_0: xxx
JIANMU_OAUTH2_GITLAB_ALLOW-LOGIN_ORGANIZATION_0_ACCOUNT: xxx
JIANMU_OAUTH2_GITLAB_ALLOW-LOGIN_ORGANIZATION_0_ROLE: Reporter
# gitea
JIANMU_OAUTH2_GITEA_ALLOW-LOGIN_USER_0: xxx
JIANMU_OAUTH2_GITEA_ALLOW-LOGIN_ORGANIZATION_0_ACCOUNT: xxx
JIANMU_OAUTH2_GITEA_ALLOW-LOGIN_ORGANIZATION_0_ROLE: member
# gitlink
JIANMU_OAUTH2_GITLINK_ALLOW-LOGIN_USER_0: xxx
fixed:
- 建木HA部署后,cron任务会重复执行
- 不同场景下,Server小概率报CannotAcquireLockException/DeadlockLoserDataAccessException异常
- 超过worker调度限额时,节点的排队中状态未生效
- 终止流程时,排队中的任务失败后,仍可被Worker确认
- 流程实例手动终止时,会重复创建end任务
- HA部署时,webhook并发会导致流程实例序号重复
官方示例
建木文档
建木官网