From owner-freebsd-git@freebsd.org Wed Feb 5 00:15:50 2020 Return-Path: Delivered-To: freebsd-git@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 03418239A75 for ; Wed, 5 Feb 2020 00:15:50 +0000 (UTC) (envelope-from pgollucci@p6m7g8.com) Received: from mail-ua1-x92f.google.com (mail-ua1-x92f.google.com [IPv6:2607:f8b0:4864:20::92f]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 48C2CT06l6z3K6T for ; Wed, 5 Feb 2020 00:15:48 +0000 (UTC) (envelope-from pgollucci@p6m7g8.com) Received: by mail-ua1-x92f.google.com with SMTP id o42so189756uad.10 for ; Tue, 04 Feb 2020 16:15:48 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=p6m7g8-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=xzZW9LV+lZMOySPzKHdojgjEcUXgYKVd3kToGVtDdxU=; b=ujHgnYK/k82TIQyvPhU3P2fGyaWK8o0zPbEItYNIdW3Mo2Ws/Z3DW8iNOH7nZUAqmg nPMiTWPzmnuIcpQIiYJ5Zoqq91K8G2GqcetnUeFukJKmn6DBqjpqV/9zciiiouqcYxaS e0GEFzCYl8MBj12BLAoWlP+csWbbSXYi9B1uRZkBNrWSlmzXJX2/GFto72JSIGURpl8y l25MQFQwSi0wCNlxfPt+PaU/AWdNr76d/jFvuvIMBCUyZ/w0F4NVniDsdGXRUBR8NhwV 53DzOkKUUFIa0QQgAqh13g1WcJJ4Wzt1OJ47O6gMdC0ZjXRSiSqN0wvx1v7vPfNsMiEf p+/g== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=xzZW9LV+lZMOySPzKHdojgjEcUXgYKVd3kToGVtDdxU=; b=bJM58+PWnwZlbr0PWe7R8komkBXxSs+ss8z7kxXiL1D8XTeMfcVTQGpB8wie/yJNvu WSB5Ev2kpxvN3u/XqXgADH2+k8hlGfxlbmmYru6GX2baGjNakaJW+9pnskbMD47BPcyE gj43bIl1kX53ja+/O0h5CDS4RO5ZW/k51QhpUONPdvvogqcI8LXTUG+OBMR5lnCnyKNW i+vQdshAP03Y8pRuxtlnsvKyrMhMgv7RlsIhYD/9u3ccLNjTdcvWsniQ1eIKbEwiNDIu G0ZR9aKc2c4xya0U2xXuVzZc8mYgdP+WLtfH3eE4LDAbzpWyggq2Au/aaXE9ISheWKX9 o5gg== X-Gm-Message-State: APjAAAXlfzPqrQ99fJ8mQCpEF31xZVI5lWG461EzLMbiB2vic2ctSjRI PG5YAgHFv7NL5amGBxxq6pQZ5QCG4sTMdAHj6tSuPg== X-Google-Smtp-Source: APXvYqwIxDnhXDvtrGt5Sk6AYc7E99dJG/zz7Od8Xk98mS4SrYmc42XD4qWZ+v1HabWzXFYI3AIP0Pn2eYg5ZqoK+ho= X-Received: by 2002:ab0:4e0e:: with SMTP id g14mr17764156uah.20.1580861747724; Tue, 04 Feb 2020 16:15:47 -0800 (PST) MIME-Version: 1.0 References: <4555909.1rqTVSEV2j@beastie.bionicmutton.org> In-Reply-To: <4555909.1rqTVSEV2j@beastie.bionicmutton.org> From: "Philip M. Gollucci" Date: Tue, 4 Feb 2020 19:15:02 -0500 Message-ID: Subject: Re: Experiences with self-hosted git servers To: Adriaan de Groot Cc: freebsd-git@freebsd.org X-Rspamd-Queue-Id: 48C2CT06l6z3K6T X-Spamd-Bar: ---- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=p6m7g8-com.20150623.gappssmtp.com header.s=20150623 header.b=ujHgnYK/; dmarc=none; spf=none (mx1.freebsd.org: domain of pgollucci@p6m7g8.com has no SPF policy when checking 2607:f8b0:4864:20::92f) smtp.mailfrom=pgollucci@p6m7g8.com X-Spamd-Result: default: False [-4.02 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; R_DKIM_ALLOW(-0.20)[p6m7g8-com.20150623.gappssmtp.com:s=20150623]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-git@freebsd.org]; DMARC_NA(0.00)[p6m7g8.com]; URI_COUNT_ODD(1.00)[3]; TO_MATCH_ENVRCPT_SOME(0.00)[]; DKIM_TRACE(0.00)[p6m7g8-com.20150623.gappssmtp.com:+]; RCPT_COUNT_TWO(0.00)[2]; RCVD_IN_DNSWL_NONE(0.00)[f.2.9.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.0.0.4.6.8.4.0.b.8.f.7.0.6.2.list.dnswl.org : 127.0.5.0]; R_SPF_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; IP_SCORE(-2.73)[ip: (-9.84), ipnet: 2607:f8b0::/32(-1.98), asn: 15169(-1.75), country: US(-0.05)]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.29 X-BeenThere: freebsd-git@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Discussion of git use in the FreeBSD project List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 05 Feb 2020 00:15:50 -0000 I actually know some github staff. I can also say with first hand knowledge from capital one that self hosted github enterprise does sso with saml or auth. Even if run in AWS. What breaks is the integrations to everything because your endpoint is different and you likely have a perimeter blocking things. On Tue, Feb 4, 2020 at 10:37 AM Adriaan de Groot wrote: > On Tuesday, 4 February 2020 15:37:57 CET Ed Maste wrote: > > There are a number of options for self-hosting, such as Gitea, GitLab, > > as well as git's plain built-in server. Phabricator (which we use for > > code reviews) also includes a repository hosting module named > > Diffusion. > > > > I am interested in hearing from FreeBSD users and developers who have > > used one or more of these, or other Git hosting tools - what worked > > well, what didn't? What do you wish you had known before getting > > started? > > With my KDE hat on (yet my FreeBSD mail address): talk to KDE sysadmin > (part > of whom I'm BCCing). > > We migrated from SVN to git a few years ago, and first did cgit (that's > git's > internal server, I think) plus reviewboard; then cgit plus phabricator; > now > we're migrating to GitLab and dropping cgit and phabricator. That last > migration is taking a while. > > KDE differs from FreeBSD in that we have about 300 repositories (one for > each > bit of KDE software) rather than a small number of really big repo's (e.g. > src, ports). There is a vaguely similar mechanism of "joining the project" > and > code-review is generally enforced by social contract, like in FreeBSD > ports. > > GitLab is generally pretty responsive in working with larger Free Software > projects; it is used by KDE and Gnome in that way, who have their > self-hosted > Community Edition GitLabs to work with, more-or-less integrated with their > own > identity provider systems. Having a web-based workflow, that also supports > drive-by-contributions, is seen as a bonus over plain git + phab. > Especially > Phabricator seems to be a drag on potential-new-contributors (and I'm not > sure > if it's developed anymore, which is one of the reasons KDE is switching > away > from it). > > Mainly for the move to GitLab: > > - figure out what role issues will play; are those for reviews? Developer > planning? bug reports? How do they align with Bugzilla use? > - figure out a branching strategy; what kind of private branches do you > want? > where are force-pushes allowed (eg. when rebasing or re-doing a patchset)? > squash or maintain development history? commit to master only? > - think about a labels- and tags-scheme; > > [ade] -- Philip M. Gollucci IT Executive and Engineering Leader http://www.linkedin.com/in/pgollucci/ 301.818.0719