Thanks to visit codestin.com
Credit goes to github.com

Skip to content
/ Akaunting_DevSecOps Public

DevSecOps project using kubernetes and other CI/CD tools

License

MIT, Unknown licenses found

Licenses found

MIT
LICENSE
Unknown
LICENSE.txt
2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

AC-Armitage/Akaunting_DevSecOps

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

75 Commits
.github
.github
 
 
app
app
 
 
bootstrap
bootstrap
 
 
config
config
 
 
database
database
 
 
docker
docker
 
 
img
img
 
 
kubernetes
kubernetes
 
 
modules
modules
 
 
overrides
overrides
 
 
public
public
 
 
resources
resources
 
 
routes
routes
 
 
storage
storage
 
 
tests
tests
 
 
.editorconfig
.editorconfig
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
.htaccess
.htaccess
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
LICENSE.txt
LICENSE.txt
 
 
LocalValetDriver.php
LocalValetDriver.php
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 
artisan
artisan
 
 
composer.json
composer.json
 
 
composer.lock
composer.lock
 
 
index.php
index.php
 
 
manifest.json
manifest.json
 
 
nginx.example.com.conf
nginx.example.com.conf
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
phpunit.xml
phpunit.xml
 
 
presets.js
presets.js
 
 
safelist.txt
safelist.txt
 
 
serviceworker.js
serviceworker.js
 
 
tailwind.config.js
tailwind.config.js
 
 
web.config
web.config
 
 
webpack.mix.js
webpack.mix.js
 
 

Repository files navigation

This repository demonstrates a complete CI/CD pipeline that incorporates modern DevSecOps practices to ensure secure application development and deployment. The Akounting web app, built using Docker, is scanned with SonarQube for quality assurance and security vulnerabilities. The app is then deployed on Kubernetes in a secure manner, leveraging GitHub Actions along with GitHub Secrets and Kubernetes Secrets for sensitive data management. Additionally, the Docker image is scanned and approved by the SonarQube quality gate before being deployed, ensuring that the application meets security and quality standards throughout the entire process. We used Akaunting application code in this repo we do not own any of the code we have only added the DevSecOps pipeline and its related files.

Here is an overview of how the workflow works: Workflow Diagram

  • Developer Push: Developers push code to the GitHub repository.

  • GitHub Actions: Triggers workflows for:

    • SonarQube Code Scan: Checks code quality using GitHub Secrets for configuration (SONAR_TOKEN, SONAR_URL, etc.).
    • If the code fails the SonarQube Quality Gate, the process stops and the workflow is canceled

  • Docker Build & Push: If the scan passes, a Docker image is built and pushed to DockerHub using secrets (DOCKER_LOGIN, DOCKER_PASSWORD).

  • Kubernetes Deployment:

    • The Kubernetes cluster pulls the Docker image from DockerHub and deploys the application.
    • Sealed Secrets: Kubernetes uses Sealed Secrets to securely decrypt encrypted variables stored in the repository, such as database credentials and App key.
    • Application Manifests: The workflow applies Kubernetes manifests (stored in the repository) to configure and deploy the application to the cluster.

About

DevSecOps project using kubernetes and other CI/CD tools

Resources

Readme

License

MIT, Unknown licenses found

Licenses found

MIT
LICENSE
Unknown
LICENSE.txt

Security policy

Security policy
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Sponsor this project

Packages

No packages published

Contributors 2

  •  
  •  

Languages