admin/labFusion
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: Integrate SonarQube analysis into CI workflows
Some checks failed
Docker Build and Push / build-and-push (push) Failing after 43s
Details
LabFusion CI/CD Pipeline / service-adapters (push) Failing after 25s
Details
API Gateway (Java Spring Boot) / test (17) (push) Failing after 1m50s
Details
LabFusion CI/CD Pipeline / api-docs (push) Failing after 50s
Details
LabFusion CI/CD Pipeline / api-gateway (push) Failing after 1m34s
Details
API Gateway (Java Spring Boot) / test (21) (push) Failing after 1m44s
Details
API Gateway (Java Spring Boot) / build (push) Has been skipped
Details
API Gateway (Java Spring Boot) / security (push) Has been skipped
Details
LabFusion CI/CD Pipeline / frontend (push) Failing after 1m57s
Details
LabFusion CI/CD Pipeline / integration-tests (push) Has been skipped
Details
Frontend (React) / test (16) (push) Failing after 1m44s
Details
Frontend (React) / test (20) (push) Failing after 1m31s
Details
Frontend (React) / test (18) (push) Failing after 1m47s
Details
Frontend (React) / build (push) Has been skipped
Details
Service Adapters (Python FastAPI) / test (3.1) (push) Failing after 19s
Details
Service Adapters (Python FastAPI) / test (3.11) (push) Failing after 26s
Details
Service Adapters (Python FastAPI) / test (3.9) (push) Failing after 23s
Details
Service Adapters (Python FastAPI) / build (push) Has been skipped
Details
Frontend (React) / lighthouse (push) Has been skipped
Details
Service Adapters (Python FastAPI) / test (3.12) (push) Failing after 22s
Details
Integration Tests / performance-tests (push) Has been skipped
Details
Integration Tests / integration-tests (push) Failing after 2m23s
Details
API Docs (Node.js Express) / test (16) (push) Failing after 54s
Details
API Docs (Node.js Express) / test (18) (push) Failing after 55s
Details
API Docs (Node.js Express) / test (20) (push) Failing after 58s
Details
API Docs (Node.js Express) / build (push) Has been skipped
Details

Browse Source 
### Summary of Changes
- Added SonarQube analysis steps to all CI workflows (API Docs, API Gateway, Frontend, Service Adapters).
- Configured SonarQube properties for each service to ensure proper reporting and analysis.
- Enhanced test coverage reporting by specifying multiple coverage reporters in test commands.
- Updated Maven and Python dependencies to include SonarQube integration tools.

### Expected Results
- CI pipelines will now send test and coverage results to SonarQube for better quality tracking.
- Improved visibility into code quality and test coverage across all services.
This commit is contained in:
GSRN
2025-09-15 19:55:13 +02:00
parent 7cf0819b58
commit 6f8d7f6ca9
8 changed files with 460 additions and 43 deletions
Download Patch File Download Diff File Expand all files Collapse all files

26
.gitea/workflows/api-docs.yml
View File

@@ -101,15 +101,27 @@ jobs:
- name: Run tests - name: Run tests
run: | run: |
npm test -- --coverage --watchAll=false npm test -- --coverage --watchAll=false --coverageReporters=lcov --coverageReporters=text --coverageReporters=html
npm run test:coverage npm run test:coverage
- name: Upload coverage to Codecov - name: Send results to SonarQube
uses: codecov/codecov-action@v3 run: |
with: echo "Sending API Docs results to SonarQube..."
file: ./services/api-docs/coverage/lcov.info # Install SonarQube Scanner for Node.js
flags: api-docs npm install -g sonar-scanner
name: api-docs-coverage
# Run SonarQube analysis
sonar-scanner \
-Dsonar.host.url=${{ secrets.SONAR_HOST_URL }} \
-Dsonar.login=${{ secrets.SONAR_TOKEN }} \
-Dsonar.projectKey=labFusion \
-Dsonar.projectName="LabFusion" \
-Dsonar.projectVersion=1.0.0 \
-Dsonar.modules=api-docs \
-Dsonar.sources=. \
-Dsonar.tests=__tests__ \
-Dsonar.javascript.lcov.reportPaths=coverage/lcov.info \
-Dsonar.testExecutionReportPaths=test-results.xml
- name: Test results summary - name: Test results summary
if: always() if: always()

51
.gitea/workflows/api-gateway.yml
View File

@@ -125,13 +125,40 @@ jobs:
echo "TEST_REPORTS_EXIST=false" >> $GITHUB_ENV echo "TEST_REPORTS_EXIST=false" >> $GITHUB_ENV
fi fi
- name: Generate test report - name: Send test results to SonarQube
uses: dorny/test-reporter@v1
if: env.TEST_REPORTS_EXIST == 'true' if: env.TEST_REPORTS_EXIST == 'true'
with: run: |
name: Maven Tests (Java ${{ matrix.java-version }}) echo "Sending test results to SonarQube..."
path: target/surefire-reports/*.xml # Configure SonarQube properties
reporter: java-junit cat > sonar-project.properties << EOF
sonar.projectKey=labFusion
sonar.projectName=LabFusion
sonar.projectVersion=1.0.0
sonar.modules=api-gateway
sonar.sources=src/main/java
sonar.tests=src/test/java
sonar.java.binaries=target/classes
sonar.java.test.binaries=target/test-classes
sonar.junit.reportPaths=target/surefire-reports
sonar.coverage.jacoco.xmlReportPaths=target/site/jacoco/jacoco.xml
sonar.host.url=${{ secrets.SONAR_HOST_URL }}
sonar.login=${{ secrets.SONAR_TOKEN }}
EOF
# Run SonarQube analysis
./mvnw sonar:sonar \
-Dsonar.host.url=${{ secrets.SONAR_HOST_URL }} \
-Dsonar.login=${{ secrets.SONAR_TOKEN }} \
-Dsonar.projectKey=labFusion \
-Dsonar.projectName="LabFusion" \
-Dsonar.projectVersion=1.0.0 \
-Dsonar.modules=api-gateway \
-Dsonar.sources=src/main/java \
-Dsonar.tests=src/test/java \
-Dsonar.java.binaries=target/classes \
-Dsonar.java.test.binaries=target/test-classes \
-Dsonar.junit.reportPaths=target/surefire-reports \
-Dsonar.coverage.jacoco.xmlReportPaths=target/site/jacoco/jacoco.xml
- name: Fail if no test reports found - name: Fail if no test reports found
if: env.TEST_REPORTS_EXIST == 'false' if: env.TEST_REPORTS_EXIST == 'false'
@@ -152,14 +179,10 @@ jobs:
./mvnw pmd:check ./mvnw pmd:check
- name: Generate code coverage - name: Generate code coverage
run: ./mvnw jacoco:report run: |
echo "Generating JaCoCo code coverage report..."
- name: Upload coverage to Codecov ./mvnw jacoco:report
uses: codecov/codecov-action@v3 echo "Code coverage report generated at target/site/jacoco/jacoco.xml"
with:
file: ./services/api-gateway/target/site/jacoco/jacoco.xml
flags: api-gateway
name: api-gateway-coverage
build: build:
runs-on: [self-hosted] runs-on: [self-hosted]

87
.gitea/workflows/ci.yml
View File

@@ -49,6 +49,26 @@ jobs:
- name: Run tests - name: Run tests
run: ./mvnw test run: ./mvnw test
- name: Generate code coverage
run: ./mvnw jacoco:report
- name: Send results to SonarQube
run: |
echo "Sending API Gateway results to SonarQube..."
./mvnw sonar:sonar \
-Dsonar.host.url=${{ secrets.SONAR_HOST_URL }} \
-Dsonar.login=${{ secrets.SONAR_TOKEN }} \
-Dsonar.projectKey=labFusion \
-Dsonar.projectName="LabFusion" \
-Dsonar.projectVersion=1.0.0 \
-Dsonar.modules=api-gateway \
-Dsonar.sources=src/main/java \
-Dsonar.tests=src/test/java \
-Dsonar.java.binaries=target/classes \
-Dsonar.java.test.binaries=target/test-classes \
-Dsonar.junit.reportPaths=target/surefire-reports \
-Dsonar.coverage.jacoco.xmlReportPaths=target/site/jacoco/jacoco.xml
- name: Run code quality checks - name: Run code quality checks
run: ./mvnw spotbugs:check checkstyle:check run: ./mvnw spotbugs:check checkstyle:check
@@ -104,13 +124,26 @@ jobs:
- name: Run tests - name: Run tests
run: | run: |
pytest --cov=. --cov-report=xml --cov-report=html pytest --cov=. --cov-report=xml --cov-report=html --junitxml=tests/reports/junit.xml
- name: Upload coverage reports - name: Send results to SonarQube
uses: codecov/codecov-action@v3 run: |
with: echo "Sending Service Adapters results to SonarQube..."
file: ./coverage.xml # Install SonarQube Scanner for Python
flags: service-adapters pip install sonar-scanner
# Run SonarQube analysis
sonar-scanner \
-Dsonar.host.url=${{ secrets.SONAR_HOST_URL }} \
-Dsonar.login=${{ secrets.SONAR_TOKEN }} \
-Dsonar.projectKey=labFusion \
-Dsonar.projectName="LabFusion" \
-Dsonar.projectVersion=1.0.0 \
-Dsonar.modules=service-adapters \
-Dsonar.sources=. \
-Dsonar.tests=tests \
-Dsonar.python.coverage.reportPaths=coverage.xml \
-Dsonar.python.xunit.reportPath=tests/reports/junit.xml
- name: Build Docker image (test only) - name: Build Docker image (test only)
run: docker build -t service-adapters:test . run: docker build -t service-adapters:test .
@@ -159,7 +192,26 @@ jobs:
run: npm run lint run: npm run lint
- name: Run tests - name: Run tests
run: npm test run: npm test -- --coverage --coverageReporters=lcov --coverageReporters=text --coverageReporters=html
- name: Send results to SonarQube
run: |
echo "Sending API Docs results to SonarQube..."
# Install SonarQube Scanner for Node.js
npm install -g sonar-scanner
# Run SonarQube analysis
sonar-scanner \
-Dsonar.host.url=${{ secrets.SONAR_HOST_URL }} \
-Dsonar.login=${{ secrets.SONAR_TOKEN }} \
-Dsonar.projectKey=labFusion \
-Dsonar.projectName="LabFusion" \
-Dsonar.projectVersion=1.0.0 \
-Dsonar.modules=api-docs \
-Dsonar.sources=. \
-Dsonar.tests=__tests__ \
-Dsonar.javascript.lcov.reportPaths=coverage/lcov.info \
-Dsonar.testExecutionReportPaths=test-results.xml
- name: Build application - name: Build application
run: npm run build run: npm run build
@@ -211,7 +263,26 @@ jobs:
run: npm run lint run: npm run lint
- name: Run tests - name: Run tests
run: npm test -- --coverage --watchAll=false run: npm test -- --coverage --watchAll=false --coverageReporters=lcov --coverageReporters=text --coverageReporters=html
- name: Send results to SonarQube
run: |
echo "Sending Frontend results to SonarQube..."
# Install SonarQube Scanner for Node.js
npm install -g sonar-scanner
# Run SonarQube analysis
sonar-scanner \
-Dsonar.host.url=${{ secrets.SONAR_HOST_URL }} \
-Dsonar.login=${{ secrets.SONAR_TOKEN }} \
-Dsonar.projectKey=labFusion \
-Dsonar.projectName="LabFusion" \
-Dsonar.projectVersion=1.0.0 \
-Dsonar.modules=frontend \
-Dsonar.sources=src \
-Dsonar.tests=src \
-Dsonar.javascript.lcov.reportPaths=coverage/lcov.info \
-Dsonar.testExecutionReportPaths=test-results.xml
- name: Build application - name: Build application
run: npm run build run: npm run build

26
.gitea/workflows/frontend.yml
View File

@@ -73,15 +73,27 @@ jobs:
- name: Run tests - name: Run tests
run: | run: |
npm test -- --coverage --watchAll=false --passWithNoTests npm test -- --coverage --watchAll=false --passWithNoTests --coverageReporters=lcov --coverageReporters=text --coverageReporters=html
npm run test:coverage npm run test:coverage
- name: Upload coverage to Codecov - name: Send results to SonarQube
uses: codecov/codecov-action@v3 run: |
with: echo "Sending Frontend results to SonarQube..."
file: ./frontend/coverage/lcov.info # Install SonarQube Scanner for Node.js
flags: frontend npm install -g sonar-scanner
name: frontend-coverage
# Run SonarQube analysis
sonar-scanner \
-Dsonar.host.url=${{ secrets.SONAR_HOST_URL }} \
-Dsonar.login=${{ secrets.SONAR_TOKEN }} \
-Dsonar.projectKey=labFusion \
-Dsonar.projectName="LabFusion" \
-Dsonar.projectVersion=1.0.0 \
-Dsonar.modules=frontend \
-Dsonar.sources=src \
-Dsonar.tests=src \
-Dsonar.javascript.lcov.reportPaths=coverage/lcov.info \
-Dsonar.testExecutionReportPaths=test-results.xml
- name: Test results summary - name: Test results summary
if: always() if: always()

27
.gitea/workflows/service-adapters.yml
View File

@@ -85,15 +85,28 @@ jobs:
- name: Run tests - name: Run tests
run: | run: |
pytest --cov=. --cov-report=xml --cov-report=html --cov-report=term-missing pytest --cov=. --cov-report=xml --cov-report=html --cov-report=term-missing --junitxml=tests/reports/junit.xml
pytest --cov=. --cov-report=xml --cov-report=html --cov-report=term-missing --cov-fail-under=80 pytest --cov=. --cov-report=xml --cov-report=html --cov-report=term-missing --cov-fail-under=80
- name: Upload coverage to Codecov - name: Send results to SonarQube
uses: codecov/codecov-action@v3 run: |
with: echo "Sending Service Adapters results to SonarQube..."
file: ./services/service-adapters/coverage.xml # Install SonarQube Scanner for Python
flags: service-adapters pip install sonar-scanner
name: service-adapters-coverage
# Run SonarQube analysis
sonar-scanner \
-Dsonar.host.url=${{ secrets.SONAR_HOST_URL }} \
-Dsonar.login=${{ secrets.SONAR_TOKEN }} \
-Dsonar.projectKey=labFusion \
-Dsonar.projectName="LabFusion" \
-Dsonar.projectVersion=1.0.0 \
-Dsonar.modules=service-adapters \
-Dsonar.sources=. \
-Dsonar.tests=tests \
-Dsonar.python.coverage.reportPaths=coverage.xml \
-Dsonar.python.xunit.reportPath=tests/reports/junit.xml
- name: Test results summary - name: Test results summary
if: always() if: always()

239
docs/SONARQUBE_INTEGRATION.md Normal file
View File

@@ -0,0 +1,239 @@
# SonarQube Integration for LabFusion
This document explains how to configure SonarQube integration for all LabFusion services in a unified project.
## Overview
All LabFusion services (API Gateway, Service Adapters, API Docs, Frontend) now send test results, code coverage, and quality metrics directly to a single unified SonarQube project called "LabFusion" instead of using external test reporters.
## Required Configuration
### 1. SonarQube Secrets
You need to configure the following secrets in your Gitea repository:
- `SONAR_HOST_URL`: Your SonarQube server URL (e.g., `http://localhost:9000` or `https://sonar.yourdomain.com`)
- `SONAR_TOKEN`: Your SonarQube authentication token
### 2. SonarQube Project Setup
1. **Create a unified project** in SonarQube:
- Project Key: `labfusion`
- Project Name: `LabFusion`
- Main Branch: `main`
2. **Generate an authentication token**:
- Go to User > My Account > Security
- Generate a new token with appropriate permissions
- Copy the token for use in `SONAR_TOKEN` secret
### 3. SonarQube Quality Gates
Configure quality gates in SonarQube to enforce:
- Minimum code coverage percentage
- Maximum code duplication percentage
- Maximum technical debt ratio
- Code smell thresholds
## What Gets Sent to SonarQube
### Unified LabFusion Project Structure
- **Project Key**: `labfusion`
- **Project Name**: `LabFusion`
- **Modules**:
- `api-gateway` (Java Spring Boot)
- `service-adapters` (Python FastAPI)
- `api-docs` (Node.js Express)
- `frontend` (React)
### Test Results
- **API Gateway**: JUnit XML reports from `target/surefire-reports/`
- **Service Adapters**: pytest XML reports from `tests/reports/junit.xml`
- **API Docs**: Jest XML reports from `test-results.xml`
- **Frontend**: Jest XML reports from `test-results.xml`
### Code Coverage
- **API Gateway**: JaCoCo XML report from `target/site/jacoco/jacoco.xml`
- **Service Adapters**: Coverage XML from `coverage.xml`
- **API Docs**: LCOV report from `coverage/lcov.info`
- **Frontend**: LCOV report from `coverage/lcov.info`
### Code Quality Metrics
- **Source code analysis** results for all languages
- **Code smells** and issues across all services
- **Security vulnerabilities** detection
- **Maintainability ratings** per module
## Pipeline Integration
### All Services Send to Unified Project
Each service workflow includes a SonarQube integration step:
#### API Gateway (Java)
```yaml
- name: Send test results to SonarQube
run: |
./mvnw sonar:sonar \
-Dsonar.projectKey=labfusion \
-Dsonar.modules=api-gateway \
# ... other properties
```
#### Service Adapters (Python)
```yaml
- name: Send results to SonarQube
run: |
sonar-scanner \
-Dsonar.projectKey=labfusion \
-Dsonar.modules=service-adapters \
# ... other properties
```
#### API Docs & Frontend (Node.js)
```yaml
- name: Send results to SonarQube
run: |
sonar-scanner \
-Dsonar.projectKey=labfusion \
-Dsonar.modules=api-docs \
# ... other properties
```
## Maven Plugins Added
### SonarQube Maven Plugin
```xml
<plugin>
<groupId>org.sonarsource.scanner.maven</groupId>
<artifactId>sonar-maven-plugin</artifactId>
<version>3.10.0.2594</version>
</plugin>
```
### JaCoCo Maven Plugin
```xml
<plugin>
<groupId>org.jacoco</groupId>
<artifactId>jacoco-maven-plugin</artifactId>
<version>0.8.11</version>
<!-- Configured for test phase execution -->
</plugin>
```
## SonarQube Properties
Each service generates its own `sonar-project.properties` with module-specific settings:
### API Gateway
```properties
sonar.projectKey=labfusion
sonar.projectName=LabFusion
sonar.projectVersion=1.0.0
sonar.modules=api-gateway
sonar.sources=src/main/java
sonar.tests=src/test/java
sonar.java.binaries=target/classes
sonar.java.test.binaries=target/test-classes
sonar.junit.reportPaths=target/surefire-reports
sonar.coverage.jacoco.xmlReportPaths=target/site/jacoco/jacoco.xml
```
### Service Adapters
```properties
sonar.projectKey=labfusion
sonar.projectName=LabFusion
sonar.projectVersion=1.0.0
sonar.modules=service-adapters
sonar.sources=.
sonar.tests=tests
sonar.python.coverage.reportPaths=coverage.xml
sonar.python.xunit.reportPath=tests/reports/junit.xml
```
### API Docs & Frontend
```properties
sonar.projectKey=labfusion
sonar.projectName=LabFusion
sonar.projectVersion=1.0.0
sonar.modules=api-docs
sonar.sources=.
sonar.tests=__tests__
sonar.javascript.lcov.reportPaths=coverage/lcov.info
sonar.testExecutionReportPaths=test-results.xml
```
## Benefits
### 1. Centralized Quality Management
- All quality metrics in one place
- Historical trend analysis
- Cross-project comparisons
### 2. Automated Quality Gates
- Pipeline fails if quality standards not met
- Enforces consistent code quality
- Prevents regression in code quality
### 3. Detailed Reporting
- Comprehensive test coverage reports
- Code smell identification
- Security vulnerability detection
- Technical debt tracking
### 4. Integration Benefits
- No external service dependencies
- Local data control
- Customizable quality rules
- Team collaboration features
## Troubleshooting
### Common Issues
1. **Authentication Failed**
- Verify `SONAR_TOKEN` is correct
- Check token permissions in SonarQube
- Ensure token hasn't expired
2. **Connection Refused**
- Verify `SONAR_HOST_URL` is accessible
- Check network connectivity
- Ensure SonarQube is running
3. **Project Not Found**
- Create project in SonarQube first
- Verify project key matches configuration
- Check project permissions
4. **No Test Results**
- Ensure test files exist in `src/test/java/`
- Verify Maven Surefire plugin configuration
- Check test execution logs
### Debug Commands
```bash
# Test SonarQube connection
curl -u $SONAR_TOKEN: $SONAR_HOST_URL/api/system/status
# Check project exists
curl -u $SONAR_TOKEN: $SONAR_HOST_URL/api/projects/search?q=labfusion-api-gateway
# Verify test reports exist
ls -la target/surefire-reports/
ls -la target/site/jacoco/
```
## Next Steps
1. **Configure SonarQube secrets** in your Gitea repository
2. **Set up quality gates** in SonarQube
3. **Run the pipeline** to test integration
4. **Review results** in SonarQube dashboard
5. **Customize quality rules** as needed
## References
- [SonarQube Documentation](https://docs.sonarqube.org/)
- [SonarQube Maven Plugin](https://docs.sonarqube.org/latest/analysis/scan/sonarscanner-for-maven/)
- [JaCoCo Maven Plugin](https://www.jacoco.org/jacoco/trunk/doc/maven.html)

28
services/api-gateway/pom.xml
View File

@@ -129,6 +129,34 @@
<reportsDirectory>target/surefire-reports</reportsDirectory> <reportsDirectory>target/surefire-reports</reportsDirectory>
</configuration> </configuration>
</plugin> </plugin>
<!-- SonarQube Maven Plugin -->
<plugin>
<groupId>org.sonarsource.scanner.maven</groupId>
<artifactId>sonar-maven-plugin</artifactId>
<version>3.10.0.2594</version>
</plugin>
<!-- JaCoCo Maven Plugin for Code Coverage -->
<plugin>
<groupId>org.jacoco</groupId>
<artifactId>jacoco-maven-plugin</artifactId>
<version>0.8.11</version>
<executions>
<execution>
<goals>
<goal>prepare-agent</goal>
</goals>
</execution>
<execution>
<id>report</id>
<phase>test</phase>
<goals>
<goal>report</goal>
</goals>
</execution>
</executions>
</plugin>
</plugins> </plugins>
</build> </build>
</project> </project>

19
services/service-adapters/requirements.txt
View File

@@ -12,3 +12,22 @@ passlib[bcrypt]==1.7.4
python-dotenv==1.0.0 python-dotenv==1.0.0
websockets==12.0 websockets==12.0
aiofiles==23.2.1 aiofiles==23.2.1
# Testing and Quality
pytest==7.4.3
pytest-cov==4.1.0
pytest-asyncio==0.21.1
pytest-html==4.1.1
pytest-xdist==3.3.1
coverage==7.3.2
# Code Quality
flake8==6.1.0
black==23.11.0
isort==5.12.0
mypy==1.7.1
bandit==1.7.5
safety==2.3.5
# SonarQube Integration
sonar-scanner==4.8.0.2856