GitLab Compliance - Repository Control
Estimated time to complete: 15 minutes
Objectives
Learners will implement various repository controls to help manage repository access and modification.
Task A. Push rules
In this task, you will enable push rules in your repository to ensure that pushes follow a specific set of standards.
-
Navigate to your project.
-
In the left sidebar, select Settings > Repository and expand Push Rules.
For this example, we want to ensure that every commit is targeted towards an issue in the project. Having the issue ID present in the commit message ensures that all activity related to the issue is logged in the issue. To do this, we can enforce an expression to ensure every commit message contains either an epic or an issue ID.
-
In the Require expression in commit messages, add the regular expression:
^.*(#\d+|&\d+).*. The regular expression will match the string based on the pattern:- ^ - Matches the start of the string
- .* - Matches any character (except newline) zero or more times
- (#\d+|&\d+) - This is a capturing group that matches either:
- #\d+ - A hash symbol followed by one or more digits
- &\d+ - An ampersand symbol followed by one or more digits
- .* - Matches any character (except newline) zero or more times
- $ - Matches the end of the string (implicit in this case)
-
Select Save push rules.
To test this, let’s first create a new issue in our project.
-
In the left sidebar, select Plan > Issues.
-
Select New issue.
-
In the issue title, input
Create compliance frameworks. -
Leave all other options as default and select Create issue.
Now, let’s create a commit and see how our push rules impacts our commit messages.
-
In the left sidebar, select Code > Repository.
-
Select + > New file.
-
In the Filename, input the title
compliance_plan.txt. -
Without changing the Commit message or Target Branch, select Commit changes.
Notice here that you will get an error stating that the commit message does not follow the proper pattern.
-
Add the title
compliance_plan.txtagain. -
In the Commit message, input the text
Starting work on issue #1.
You may need to re-enter the name of the file before committing.
-
Select Commit changes.
Now, your commit will complete successfully. From here, you can navigate back to your issues to see that the commit is tracked in the issue now.
Task B. Setting Branch Rules
In this task, you will create a branch rule to prevent direct pushes to main in your repository. If main is a deployment target for your project, it’s often ideal to prevent direct pushes to main, since you only want to deploy code that has run through a proper review process.
-
Navigate to your project.
-
In the left sidebar, select Settings > Repository.
-
Expand the Branch rules section.
-
Select View Details next to main.
-
Select Edit in Allowed to push and merge.
-
Check the
No oneoption, then select Save changes.
With this change, now no one can directly push to main. Only merges into main are allowed. To test this:
-
In the left sidebar, select Code > Repository.
-
Select + > New file.
-
Note that the Target Branch is now set to a randomly generated branch name.
-
Add any Filename.
-
Change the Target Branch to
mainand select Commit changes.You will see an error stating that you are not allowed to push into this branch.
Task C. Cleaning Up Rules
Before proceeding to the next set of labs, it’s recommended to remove the commit message rules in your repository. This will prevent any issues of preventing commits due to violations.
-
In the left sidebar, select Settings > Repository.
-
Expand the Push rules section.
-
Remove the content in Require expression in commit message.
-
Select Save push rules.
Lab Guide Complete
You have completed this lab exercise. You can view the other lab guides for this course.
Suggestions?
If you wish to make a change to the Hands-On Guide for GitLab Compliance, please submit your changes via Merge Request!
5801aa7b)
