ditkrg/dit-digital-service-manual
5
0
Fork 0
Code Issues Pull Requests Packages Projects 1 Releases Wiki Activity

Integrates https://github.com/ditkrg/guidelines-and-instructions

Browse Source
This commit is contained in:
Brusk Hamarash
2022-02-07 17:57:55 +03:00
parent b8534b6405
commit 2a8bfa6826
29 changed files with 8335 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
docs/Software Development/02-General Software Development Requirements/01-Use of Existing Tools.md Normal file
View File

@@ -0,0 +1,12 @@
# Use of existing tools
In the development of different software solutions, it is recommended to use well-known and community-supported open-source libraries, tools, and projects that are preferably under the MIT Software License. We encourage developers to move away from packages that:
1. Have not been updated in the past 18 months.
2. Have several open issues that are left unresolved for more than 6 months
3. Have not been adopted as a solid solution by the community.
On GitHub, we advise checking the number of stars and forks before deciding to move with an open-source library.
Close-sourced libraries require internal approval. We do not allow closed-source software to be used without a pre-approved process. If the necessity for such a use case arises, consult with the Head of Digital Development and the Head of DevOps at DIT.

65
docs/Software Development/02-General Software Development Requirements/02-Separation of Environments.md Normal file
View File

@@ -0,0 +1,65 @@
# Separation of Environments
Information and configuration must not be hardcoded in the software codebase whatsoever (i.e. Database connection string, external service URLs, IP Addresses, host names, etc). These configurations must be designed in such a way that it could be set to different values in different environments.
Any software code that deviates from this rule will be considered as a **script** and will not go through a regular CI/CD and Deployment Pipelines. The usage of such a software requires the consent of the Head of Software Development **and** the Head DevOps Team.
These configurations must be properly documented in two ways:
1. In a README.md file that must exist in every project, preferably with a table that includes the following columns: ENV NAME, DESCRIPTION, DEFAULT VALUE(s)
2. In a .env.example file that can be turned to a “.env” file just be renaming it. This means that all configurations that can have default values will already include the values with them.
Unless these documents are submitted, the code is not **accepted** and **delivery** is not complete.
The documentations, as well as the code base, must not include any **secrets**.
As for naming convention, the following format must be used:
1. Group environment variable configurations by appending double underdashes (__). For instance, this is how database-related environment variables can be grouped:
```bash
DB__CONNECTION=
DB__USERNAME=
DB__PASSWORD=
DB__DBNAME=
```
Think of this structure as JSON Object keys:
```json
{
"DB": {
"CONNECTION": "",
"USERNAME": "",
"PASSWORD": "",
"DBNAME": ""
}
}
```
Follow the same pattern if you would like to nested objects deeper.
2. If you environment variable is an array, append the two underdashes and the index of the position to the name. For example, consider this case:
```bash
MONGODB__REPLICA_URL__0=
MONGODB__REPLICA_URL__1=
MONGODB__REPLICA_URL__2=
```
This is equivalent to the following JSON Object structure:
```json
{
"MONGODB": {
"REPLICA_URL": ["", "", ""]
}
}
```

14
docs/Software Development/02-General Software Development Requirements/03-Documentation.md Normal file
View File

@@ -0,0 +1,14 @@
# Documentation
Unless otherwise specified by the Head of Digital Development, the following documentations are more or less required to be part of every software code:
1. Pre-development documentations that are created or managed by the Business Intelligence and Requirement Analysis Team of DIT. These include software requirement analysis documents, process mappings, workflow diagrams, and additive resources that resulted in the specifications of the current software version.
2. Software Specification Document that describes the nature and detailed features of the application.
3. Final Quality Assurance Report on Testing and Acceptance.
4. Manuals
1. Installation Manuals
2. Operation Manuals
3. User Manuals
5. Release Notes
6. README.md that describes each software code's settings. (Refer to README.md templates for each code base)

2
docs/Software Development/02-General Software Development Requirements/04-Consistency.md Normal file
View File

@@ -0,0 +1,2 @@
# Consistency
Applications must be built in a consistent manner from the perspective of the end-user. In case if the need of an inconsistent behavior may arise, it must be properly communicated by the Head of Software Development Team for an approval. Unapproved inconsistencies are not accepted. This must also be respected when adding new features, making changes and improvements, or fixing bugs to existing applications.

2
docs/Software Development/02-General Software Development Requirements/05-Compatibility.md Normal file
View File

@@ -0,0 +1,2 @@
# Compatibility
All software must be backward-compatible by default and must take previous versions into considerations. If this not possible or for some design reasons need to change, an approval from the Head of Digital Development Team must be obtained. Unapproved changes that do not adhere to this principle will be considered a bug.

1
docs/Software Development/02-General Software Development Requirements/06-Acceptance.md Normal file
View File

@@ -0,0 +1 @@
# Acceptance

6
docs/Software Development/02-General Software Development Requirements/07-Deadlines.md Normal file
View File

@@ -0,0 +1,6 @@
# Deadlines
All agreed deadlines must be kept as they are unless it is specified or extended explicitly by the Head of Digital Development Team. <u>Members of the Digital Development Team</u> are not obligated to accommodate for requests for late-term changes in the requirements.
In case if priorities change and the agreed deadlines cannot be met, it must be properly communicated to the Head of Digital Development Team in order to come up with a new agreement.
Each release development must come with a time plan that is approved by the Head of Digital Development Team.

17
docs/Software Development/02-General Software Development Requirements/08-Versioning.md Normal file
View File

@@ -0,0 +1,17 @@
# Versioning
We follow the [Semantic Versioning 2.0.0](https://semver.org/) standards to version releases. Accordingly, software applications must be versioned with the following pattern: `MAJOR.MINOR.PATCH`.
## Releases
Releases must be versioned with the same rules of Semantic Versioning while making sure that each release receives a unique version number.
## Web Applications
All web applications must be versioned appropriately and conform to the rules of this section. The version number must be displayed on the application's user interface unless it is specified and agreed by the Head of Digital Development Team. Manifest files in the code bases must be updated to reflect the release version.
## CLI Applications
In case of command line applications, an option must be provided (suggestion v) to display the version.

57
docs/Software Development/02-General Software Development Requirements/09-Version Control and Repository Management.md Normal file
View File

@@ -0,0 +1,57 @@
# Version Control and Repository Management
All code must be controlled using Git. The code bases must be stored in independent repository in a single-application-per-repository fashion on GitHub. No repository shall contain more than one software component.
#### Git
All software code bases must have a branch named `main` that acts as the default branch. Changing the default branch to be something else is not regularly permissible unless authorized by the Head of DevOps.
##### Branching
Conventionally, each code base must also have a branch that corresponds to an identical deployment environment. For example, the branch `dev` corresponds to codes running in a `dev` environment, `staging` to `staging`, `pre-prod` to `pre-prod`, and `main` to `production`.
All code bases must have a branch that corresponds to a major version. For example branch `v1.x.x` must contain all initial codes. The next major release must also get its own branch `v2.x.x` which is typically created off `main`. (Edge cases must be explicitly authorized by the Head of Digital Development or DevOps).
The order from which branches are merged generally takes the following form:
`major version branch` -> `dev` -> `staging` -> `pre-prod` -> `main`
An example:
`v1.x.x` -> `dev` -> `staging` -> `pre-prod` -> `main`
All the minor releases and patches within the same version follows the same flow. However, in the next major release, it takes the next form:
From `main` create `next version branch` -> `dev` -> `staging` -> `pre-prod` -> `main`
An example:
From `main` create `v2.x.x` -> `dev` -> `staging` -> `pre-prod` -> `main`
##### Merging and Pushing
All developers are free to push to the release branch and `dev` whenever they would like to. However, pushing to any other branch requires a Pull Request that needs review and approval.
Below is an overview of the policies:
| Branch Name | Authorized Parties | Review Policy |
| ------------------------ | ------------------------------------------------------------ | ----------------------------------------- |
| Release / Feature Branch | No restriction | No review required |
| dev | No restriction | No review required |
| staging | Authorized by Head of Digital Development or DevOps <br />Team Leads | No review required |
| pre-prod | Authorized by Head of Digital Development or DevOps | At least 1 review by Head of DD or DevOps |
| main | Only Head of DevOps | At least 1 review by Head of DD |
##### Secrets
#### GitHub
All repositories must be hosted on the [KRG's main GitHub organization](https://github.com/ditkrg). All members of the Digital Development Team and the DevOps Team are eligible to receive a free seat on the organization. Contractors' collaborators must be added as external collaborators.
All members of the organization are required to use:
1. SSH Keys for authentication.
2. GPG to sign their commits.
Unverified/unsigned commits are not going to be allowed.
Please refer to [this guide](https://docs.github.com/en/authentication/managing-commit-signature-verification) to setup GPG keys.