Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat: 코드 정적 분석을 위한 Jacoco 및 SonarCloud 도입 #147

Merged
merged 13 commits into from
Dec 26, 2023
Merged

feat: 코드 정적 분석을 위한 Jacoco 및 SonarCloud 도입 #147

Show file tree
Hide file tree
Changes from 11 commits
Commits
Show all changes
13 commits
Select commit Hold shift + click to select a range
68df0e1
chore: add jacoco setting
Ji-soo708 Dec 24, 2023
3f5c09c
chore: add sonar cloud setting
Ji-soo708 Dec 24, 2023
f2abe4f
chore: change sonar cloud setting
Ji-soo708 Dec 24, 2023
3f05104
chore: integrate gradle build and SonarCloud analysis
Ji-soo708 Dec 24, 2023
85eb5b8
chore: fix sonar exclusions
Ji-soo708 Dec 24, 2023
8028a57
chore: add steps for upload test coverage
Ji-soo708 Dec 24, 2023
c190dad
fix: fix always() in ci scripts
Ji-soo708 Dec 24, 2023
cce4540
fix: rollback code
Ji-soo708 Dec 24, 2023
2bb9dd6
style: delete unused setting
Ji-soo708 Dec 24, 2023
085f707
chore: add sonar exclusions property path
Ji-soo708 Dec 24, 2023
1ba4443
chore: change sonar cloud setting
Ji-soo708 Dec 24, 2023
6903932
chore: delete dto from test coverage excludes
Ji-soo708 Dec 26, 2023
61893b5
chore: add dto in coverage
Ji-soo708 Dec 26, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
23 changes: 20 additions & 3 deletions .github/workflows/ci-backend.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,8 @@ on:
- develop

jobs:
build:
test:
name: Code Quality Check
runs-on: ubuntu-latest

steps:
Expand All @@ -26,5 +27,21 @@ jobs:
- name: Grant execute permisson for gradlew
run: chmod +x gradlew

- name: Build with Gradle
run: ./gradlew clean build
- name: Cache SonarCloud packages
uses: actions/cache@v3
with:
path: ~/.sonar/cache
key: ${{ runner.os }}-sonar
restore-keys: ${{ runner.os }}-sonar

- name: Setup Gradle
uses: gradle/gradle-build-action@v2
with:
arguments: check
cache-read-only: ${{ github.ref != 'refs/heads/main' && github.ref != 'refs/heads/develop' }}
Comment on lines +39 to +41
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

cache-read-only는 빌드 시에 gradle cache를 이용해서 하도록 적용하는 것으로 이해했는데 맞을까요?
아래 이유가 궁금해서 코멘트 작성해봅니다 😄

  • 캐시 도입 이유
  • main, develop 브랜치에는 캐시 적용 제외된 이유

Copy link
Member Author

@Ji-soo708 Ji-soo708 Dec 26, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

이 부분은 main과 develop 브랜치일때만 cache-read-only가 false되게 설정한 부분입니다. cache-read-only는 true일 경우 cache를 읽기만 하고 cache에 저장하지 않고 false일 경우는 읽기와 저장 모두 수행합니다.

결국 main이나 develop 브랜치에서 푸시될 때만 캐시에 저장되고 다른 브랜치들에서는 캐시읽기만 허용한 것인데 주로 안정된 코드를 추가하는 주요 브랜치에서만 빌드 시간을 최적화하기 위해 이렇게 설정했습니다.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

오..이부분 read-only가 true일 때랑 false일 때랑 시간의 차이도 궁금하네요 👀 새로운 것을 알아갑니다 👍


- name: Build and analyze
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

SONAR_TOKEN 도 추가되었군요 👀

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

네 맞아요. SonarCloud에 대한 액세스를 인증하는데 사용되는 토큰입니다~

run: ./gradlew sonar --info --stacktrace
96 changes: 92 additions & 4 deletions build.gradle
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,8 @@ plugins {
id 'java'
id 'org.springframework.boot' version '2.7.9'
id 'io.spring.dependency-management' version '1.0.15.RELEASE'
id 'jacoco'
id 'org.sonarqube' version '4.2.1.3168'
}

group = 'mocacong'
Expand All @@ -18,6 +20,96 @@ configurations {
}
}

jacoco {
toolVersion = '0.8.8'
}

test {
useJUnitPlatform()
finalizedBy 'jacocoTestReport'
}

def Qdomains = []
for (qPattern in "**/QA" .. "**/QZ") {
Qdomains.add(qPattern + "*")
}

sonar {
properties {
property 'sonar.host.url', 'https://sonarcloud.io'
property 'sonar.organization', 'mocacong'
property 'sonar.projectKey', 'mocacong_Mocacong-Backend'
property 'sonar.coverage.jacoco.xmlReportPaths', 'build/reports/jacoco/index.xml'
property 'sonar.sources', 'src'
property 'sonar.language', 'java'
property 'sonar.sourceEncoding', 'UTF-8'
property 'sonar.exclusions', '**/test/**, **/resources/**, **/*Application*.java, **/*Controller*.java ,**/config/**, **/dto/**, ' +
'**/exception/**, **/security/**, **/support/**, **/Q*.java'
property 'sonar.test.inclusions', '**/*Test.java'
property 'sonar.java.coveragePlugin', 'jacoco'
}
}
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

개인적으로는 jacoco 관련 설정이 아래로 가고 의존성 선언이 더 위쪽으로 왔으면 하는데 어떤가요?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

좋습니다. 안그래도 새로 생긴 태스크들 추가하면서 dependency 위치를 어디다 두어야 할지가 고민됐었네요 ㅎㅎ..


jacocoTestReport {
dependsOn test
reports{
html.required.set(true)
xml.required.set(true)
html.destination file("$buildDir/reports/jacoco/index.html")
xml.destination file("$buildDir/reports/jacoco/index.xml")
}

afterEvaluate {
classDirectories.setFrom(
files(classDirectories.files.collect {
fileTree(dir: it, excludes:
[
"**/*Application*",
"**/*Controller*",
"**/config/*",
"**/dto/*",
"**/exception/*",
"**/security/*",
"**/support/*"
Comment on lines +94 to +100
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

테스트 커비리지 제외하는 패키지로 이해했는데 맞을까요?
Controller, dto, exception, support 까지 제외한 이유가 궁금합니다~

Copy link
Member Author

@Ji-soo708 Ji-soo708 Dec 26, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

네 맞습니다~ 해당 부분은 테스트 리포트 생성을 수행하는 태스크입니다. 저희 프로젝트에서는 주로 비즈니스 로직을 다루는 서비스 위주로 테스트를 진행하기에 서비스 외의 패키지 아래 파일들에 대해서는 커버리지가 비교적 낮게 나옵니다. 그래서 Controller나 dto, exception 이런 패키지들은 다른 프로젝트들에서도 커버리지 영역에서 일반적으로 제외하는 영역이라 저희도 제외했습니다! 만약 해당 패키지나 클래스들을 제외하지 않으면 아래와 같이 커버리지가 낮게 나옵니다.
image
image
image

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

dto는 비즈니스로직만 테스트하여도 커버리지가 좀 나왔던 것 같은데, dto도 제외시키는게 좋을까요?

Copy link
Member Author

@Ji-soo708 Ji-soo708 Dec 26, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

image

비즈니스로직 테스트가 잘 되어있어서 dto도 커버리지가 대체적으로 잘 나오는 편이지만 사진처럼 커버리지가 안나오는 dto들도 꽤 있었고 일반적으로 커버리지에서 많이들 제외하는 영역이라 저희도 제외했습니다! 그래도 dto 패키지 커버리지가 90% 나오는데 포함해도 될 거 같네요. 🙂 (근데 라인커버리지쪽에서는 실패뜨는 게 좀 있네요. 일단은 dto 역시 제외하고 머지하겠습니다! 나중에 리팩토링 후에 포함시켜도 될 거 같아요)

]+ Qdomains)
})
)
}
finalizedBy 'jacocoTestCoverageVerification'
}

jacocoTestCoverageVerification {
violationRules {
rule {
failOnViolation = false
enabled = true
element = 'CLASS'

limit {
counter = 'LINE'
value = 'COVEREDRATIO'
minimum = 0.70
}

limit {
counter = 'BRANCH'
value = 'COVEREDRATIO'
minimum = 0.70
}

excludes = [
'**.*Application*',
'**.*Controller*',
'**.config.*',
'**.dto.*',
'**.exception.*',
'**.security.*',
'**.support.*'
] + Qdomains
Comment on lines +127 to +135
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

여기도 마찬가지로 이유가 궁금합니다 :)

Copy link
Member Author

@Ji-soo708 Ji-soo708 Dec 26, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

위에 남긴 코멘트 내용과 동일합니다~ 참고로 해당 태스크는 커버리지를 확인하는 태스크입니다.

}
}
}

repositories {
mavenCentral()
}
Expand All @@ -44,7 +136,3 @@ dependencies {
testImplementation 'io.rest-assured:rest-assured'
testImplementation 'it.ozimov:embedded-redis:0.7.2'
}

test {
useJUnitPlatform()
}