Cloud Services

Table of contents

• Cloud Services
  • 1Password
  • GitHub
    • Personal Access Token (PAT)
  • Zenhub
  • Codecov
  • Sentry

1Password

Organisation password manager with an excellent cli. All passwords (excluding the master password) should be stored in 1Password. Installing the 1Password Browser Extension in addition to the cli is highly recommended.

Access tokens that are generated should also be stored in 1Password. The cli provides for a convenient way to retrieve these without adding them to your shell init scripts directly. If you’re using zsh, one solution is to add something like this to your .zshrc file:

ZSH_PATH=`readlink ${(%):-%N}`
DOTFILES_DIR=`dirname ${ZSH_PATH}`

# load secrets
function secrets() {
 op inject --in-file "${DOTFILES_DIR}/secrets.zsh" | while read -r line; do
   eval "$line"
 done
}

where secrets.zsh contains lines like the following:

export NPM_TOKEN="op://Private/3nunru7fpxigirwpgap33a4ccq/password"
export OPENAI_API_KEY="op://Private/hmcu6eav2ljqbuukdugcqmexhe/password"

Whenever secrets need to be loaded into your environment, you can simply execute secrets to load them. Similar solutions should work for bash for fish.

1Password has an excellent guide on secret references.

GitHub

All company source code is hosted on GitHub under the Asteriidae Organisation. We’d have loved to have the asterias handle, unfortunately it has already been taken.

Additionally, all npm packages and Docker images are published and hosted on GitHub. These are not publicly visible and require a personal access token (PAT).

Ensure that you’ve added and verified your Asterias email address under your GitHub email settings.

All npm packages are published under the @asteriidae/ scope. All repositories thus have the following in their .npmrc files:

@asteriidae:registry=https://npm.pkg.github.com
//npm.pkg.github.com/:_authToken=${NPM_TOKEN}
enable-pre-post-scripts=true
node-linker=hoisted

For an improved GitHub experience, consider installing the Refined GitHub browser extension. One of its most useful features is the ability to create draft PRs. Links for installation are below:

• Chrome
• Firefox
• Safari

Personal Access Token (PAT)

GitHub has an excellent guide on setting up a personal access token. Ensure you create a “classic” token, as the fine-grained tokens are still in beta. The scopes for the token should include:

• Everything under repo
• read:packages

In order to use this token to install npm packages, ensure the NPM_TOKEN environment variable is set with its value.

Keep the generated token secure by storing it in 1Password.

Zenhub

All technical project management is done with Zenhub. Zenhub integrates into GitHub using the Zenhub Browser Extension. Please ensure you have it installed. The Engineering team workspace may also be viewed directly on ZenHub.

Codecov

Code coverage reports are uploaded to Codecov. The landing page may be found here, or by clicking on the umbrella icon at the top of the page.

Sentry

Sentry monitors applications and captures errors. Integration is ongoing.

---