import com.typesafe.sbt.packager.archetypes.systemloader.ServerLoader.Systemd import play.sbt.PlayImport.PlayKeys._ import sbt.Keys.libraryDependencies import scala.concurrent.duration.DurationInt // common settings (apply to all projects) ThisBuild / organization := "com.gu" ThisBuild / version := "0.5.0" ThisBuild / scalaVersion := "2.13.16" ThisBuild / scalacOptions ++= Seq("-deprecation", "-feature", "-unchecked", "-Xfatal-warnings") resolvers += DefaultMavenRepository val awsSdkVersion = "2.31.20" val playJsonVersion = "3.0.4" val jacksonVersion = "2.18.3" val mergeStrategySettings= assemblyMergeStrategy := { case PathList(ps@_*) if ps.last == "module-info.class" => MergeStrategy.discard case _ => MergeStrategy.first } lazy val hq = (project in file("hq")) .enablePlugins(PlayScala, SbtWeb, JDebPackaging, SystemdPlugin) .disablePlugins(sbtassembly.AssemblyPlugin) .settings( name := """security-hq""", playDefaultPort := 9090, fileDescriptorLimit := Some("16384"), // This increases the number of open files allowed when running in AWS libraryDependencies ++= Seq( ws, filters, "com.gu.play-googleauth" %% "play-v30" % "22.0.0", "com.gu.play-secret-rotation" %% "play-v30" % "14.2.2", "com.gu.play-secret-rotation" %% "aws-parameterstore-sdk-v2" % "14.2.2", "joda-time" % "joda-time" % "2.14.0", "org.typelevel" %% "cats-core" % "2.13.0", "com.github.tototoshi" %% "scala-csv" % "2.0.0", "software.amazon.awssdk" % "iam" % awsSdkVersion, "software.amazon.awssdk" % "cloudformation" % awsSdkVersion, "software.amazon.awssdk" % "cloudwatch" % awsSdkVersion, "software.amazon.awssdk" % "dynamodb" % awsSdkVersion, "software.amazon.awssdk" % "ec2" % awsSdkVersion, "software.amazon.awssdk" % "efs" % awsSdkVersion, "software.amazon.awssdk" % "s3" % awsSdkVersion, "software.amazon.awssdk" % "sns" % awsSdkVersion, "software.amazon.awssdk" % "ssm" % awsSdkVersion, "software.amazon.awssdk" % "sts" % awsSdkVersion, "software.amazon.awssdk" % "support" % awsSdkVersion, "com.vladsch.flexmark" % "flexmark" % "0.64.8", "io.reactivex" %% "rxscala" % "0.27.0", "com.fasterxml.jackson.core" % "jackson-databind" % jacksonVersion, "com.fasterxml.jackson.module" %% "jackson-module-scala" % jacksonVersion, "org.scalatest" %% "scalatest" % "3.2.19" % Test, "org.scalatestplus" %% "scalacheck-1-16" % "3.2.14.0" % Test, "org.scalacheck" %% "scalacheck" % "1.18.1" % Test, "com.github.alexarchambault" %% "scalacheck-shapeless_1.15" % "1.3.0" % Test, "com.gu" %% "anghammarad-client" % "4.0.0", "ch.qos.logback" % "logback-classic" % "1.5.18", // logstash-logback-encoder brings in version 2.11.0 // exclude transitive dependency to avoid a runtime exception: // `com.fasterxml.jackson.databind.JsonMappingException: Scala module 2.10.2 requires Jackson Databind version >= 2.10.0 and < 2.11.0` "net.logstash.logback" % "logstash-logback-encoder" % "8.1" exclude("com.fasterxml.jackson.core", "jackson-databind"), "com.gu" %% "janus-config-tools" % "4.0.0" ), Assets / pipelineStages := Seq(digest), // exclude docs Compile / doc / sources := Seq.empty, Universal / packageName := "security-hq", // include beanstalk config files in the zip produced by `dist` Universal / mappings ++= (baseDirectory.value / "beanstalk" * "*" get) .map(f => f -> s"beanstalk/${f.getName}"), // include upstart config files in the zip produced by `dist` Universal / mappings ++= (baseDirectory.value / "upstart" * "*" get) .map(f => f -> s"upstart/${f.getName}"), // include systemd config files in the zip produced by `dist` Universal / mappings ++= (baseDirectory.value / "systemd" * "*" get) .map(f => f -> s"systemd/${f.getName}"), Compile / unmanagedResourceDirectories += baseDirectory.value / "markdown", Test / unmanagedSourceDirectories += baseDirectory.value / "test" / "jars", Test / parallelExecution := false, Test / fork := false, Debian / serverLoading := Some(Systemd), debianPackageDependencies := Seq("java-11-amazon-corretto-jdk:arm64"), maintainer := "Security Team <devx.sec.ops@guardian.co.uk>", packageSummary := "Security HQ app.", packageDescription := """Deb for Security HQ - the Guardian's service to centralise security information for our AWS accounts.""", Universal / javaOptions ++= Seq( "-Dpidfile.path=/dev/null", "-Dconfig.file=/etc/gu/security-hq.conf", "-J-XX:+UseCompressedOops", "-J-XX:+UseConcMarkSweepGC", "-J-XX:NativeMemoryTracking=detail", "-J-XX:MaxRAMPercentage=50", "-J-XX:InitialRAMPercentage=50", "-XX:NewRatio=3", "-J-XX:MaxMetaspaceSize=300m", "-J-Xlog:gc*", s"-J-Xlog:gc:/var/log/${packageName.value}/gc.log" ), mergeStrategySettings ) // exclude this key from the linting (unused keys) as it is incorrectly flagged Global / excludeLintKeys += Universal / topLevelDirectory lazy val root = (project in file(".")). aggregate(hq). settings( name := """security-hq""" ) addCommandAlias("dependency-tree", "dependencyTree")