Skip to content

Latest commit

 

History

History
53 lines (38 loc) · 2.13 KB

README.md

File metadata and controls

53 lines (38 loc) · 2.13 KB

Moto Payments

https://payments.getmoto.org/

Companion website that helps us distribute donations, made to Moto, to contributors that have submitted PR's to Moto.

For maintainers:

To update the infrastructure:

cd terraform/envs/prod
terraform init
terraform apply

Setting up a new infrastructure:

  • Create a Github OAuth app
  • Create an S3 bucket for the Terraform state, and store the bucket-name in terraform/envs/NAME/main.tf
  • Create a HostedZone, and configure the name as the root_domain-variable of the infrastructure-module
  • Decide on a subdomain, and configure that as the domain-variable for the infrastructure-module
  • If you run multiple environments in the same AWS account, make sure that the s3-prefix-variable is different for each environment
  • Create a Github OAuth token*1
  • Create a OpenCollective 'Personal Token' *2
  • Create a Github App *3
  • Create the following SSM parameters in the appropriate region:
    • /moto/payments/github/oauth/client
    • /moto/payments/github/oauth/secret (SecureString)
    • /moto/payments/tokens/github (SecureString)
    • /moto/payments/tokens/open_collective (SecureString)
    • /moto/payments/github/bot/app_id
    • /moto/payments/github/bot/installation_id
    • /moto/payments/github/bot/private_key (SecureString)

*1The GitHub token is required to pull the latest PR's into our own database. Because all PR info is public, the token does not need any permissions.

*2The OpenCollective token is required to fetch the current balance. Because this information is public, the token does not need any permissions.

*3The Github App is required to notify the user. See the Github documentation for more information:

https://docs.github.com/en/apps/creating-github-apps/registering-a-github-app/registering-a-github-app

The webhook can be disabled.

This app requires the following access:

  • Metadata -> ReadOnly
  • Pull requests -> Read and Write

Make sure to install the application in your organization/user account to activate it. That will also give you the installation_id.