azure-devops-repository-archiver
Project description
Azure DevOps Git Repository Archiver
Allows to backup regularly git repositories hosted in Azure DevOps to an S3 Bucket.
Features
The S3 bucket is configured as below
-
enabled versioning of objects
-
enabled encryption using an S3 managed Key
-
disallowing publich access
-
A lifecycle configuration for the archived repositories. They transistion through different storage classes
- Infrequent Access after 30 days
- Glacier after 90 days
- Deep Archive 180 days
- Expiry after 365 days
The CodeBuild projects are configured as below
-
Logging to CloudWatch
- Configurable retention period. Default is one month.
- Encryption using customer-managed KMS key
-
Notifications to SNS about uploaded objects
Planned Features
- Tagging of created AWS resources
Prerequisites
The connection to the Azure DevOps organization requires a personal access token. The PAT needs to have "Code read" permission and stored in a SecretsManager secret
aws secretsmanager create-secret --name repository_archiver --description "Secret for the repository archiver" --secret-string "{\"pat\":\"<your_pat>\"}"
Example (Typescript)
-
Add the library to your dependencies, e.g to the
package.json
file"dependencies": { [...], "azure-devops-repository-archiver": "0.0.23", },
-
Per
BackupConfiguration
a secret containing the Azure DevOps PAT needs to be specified. It can e.g. be importedconst secret = Secret.fromSecretAttributes(this, 'azure-devops-pat', { secretCompleteArn: 'arn:aws:secretsmanager:eu-central-1:<aws_account_id>:secret:<secret_name>', });
-
When creating the construct the required
BackupConfiguration
s can be passed as below. The grouping is per organization and project.const backupConfigurations: BackupConfiguration[] = [ { organizationName: 'MyOrganization', projectName: 'project-1', repositoryNames: [ 'repository-1-a', 'repository-1-b', ], secretArn: secret.secretArn, }, { organizationName: 'MyOrganization', projectName: 'project-2', repositoryNames: [ 'repository-2-a', 'repository-2-b', ], secretArn: secret.secretArn, }, ]
-
The archiver properties and the archiver can then be created as
const archiverProps: ArchiverProperties = { retention: RetentionDays.ONE_WEEK, backupConfigurations: backupConfigurations, }; new Archiver(this, 'archiver', archiverProps);
Links
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Hashes for azure-devops-repository-archiver-0.0.24.tar.gz
Algorithm | Hash digest | |
---|---|---|
SHA256 | 4af3143c470c64342a015d4dd8ce63b35937e4c2af923a82193d1d431b5ef202 |
|
MD5 | 5462fb7f03eda858f23e43cbd83a329d |
|
BLAKE2b-256 | 2bd2486659d0bd88d74a80f1e58bf6813190463b395a518a4aac049e63e24faa |
Hashes for azure_devops_repository_archiver-0.0.24-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 38c8c27dbb21c44c874c610723d2a13222f9b95b5999ba4dffc5977cc404211b |
|
MD5 | 511c30010614ed6a35febe9a19fab29d |
|
BLAKE2b-256 | 64004633dadaaf1e75ad666294ef8c85d631679e48a8dc92c6d36dca2e7e45f1 |