Add link to Signalilo in integrations page

[simu]

This is just a small change adding our tool "Signalilo" which converts received notifications into Icinga2 services to the list of webhook-based integrations.

[brian-brazil]

You're taking secrets on the command line, which is not secure.

[brian-brazil]

Just saying Icinga2 is enough

[brian-brazil]

You don't need the description either

[simu]

You're taking secrets on the command line, which is not secure.

We're aware of that and pass the secrets as environment vars from a Kubernetes secret in the Helm chart. Unfortunately kingpin doesn't seem to allow using only the envvar to provide secret arguments, so I've opened an issue to address the problem: vshn/signalilo#17

[brian-brazil]

Let me know when that's resolved, our policy is not to list integrations with obvious security issues.

[simu]

Can you elaborate on what you consider obvious security issues when it comes to handling secret arguments?

[brian-brazil]

You're allowing secrets on the command line.

[simu]

I was asking more generally as to what practices you consider obvious security issues, since I wasn't able to find any guidelines after a quick look in the repository.

For example, Is it OK to pass secrets in environment variables? In config files?

[brian-brazil]

Both those methods are okay (though environment variables have their risks).

[roidelapluie]

Maybe we should also wait for vshn/signalilo#15 to be resolved to people can use this effectively?

[brian-brazil]

There's no documentation requirement, as long as the code isn't obviously broken that's good enough in that regard.

[roidelapluie]

https://github.com/vshn/signalilo/blob/master/webhook/icinga.go#L20 -> is that an internal repo?

[roidelapluie]

$ go get github.com/vshn/signalilo
# cd .; git clone -- https://git.vshn.net/appuio/signalilo.git /home/roidelapluie/go/src/git.vshn.net/appuio/signalilo
Cloning into '/home/roidelapluie/go/src/git.vshn.net/appuio/signalilo'...
fatal: could not read Username for 'https://git.vshn.net': terminal prompts disabled
package git.vshn.net/appuio/signalilo/config: exit status 128
package git.vshn.net/appuio/signalilo/gc: cannot find package "git.vshn.net/appuio/signalilo/gc" in any of:
        /home/roidelapluie/godist/go/src/git.vshn.net/appuio/signalilo/gc (from $GOROOT)
        /home/roidelapluie/go/src/git.vshn.net/appuio/signalilo/gc (from $GOPATH)
package git.vshn.net/appuio/signalilo/webhook: cannot find package "git.vshn.net/appuio/signalilo/webhook" in any of:
        /home/roidelapluie/godist/go/src/git.vshn.net/appuio/signalilo/webhook (from $GOROOT)
        /home/roidelapluie/go/src/git.vshn.net/appuio/signalilo/webhook (from $GOPATH)

[simu]

@roidelapluie no idea how we missed this during the opensourcing process, the only reason why the github build works is that go.mod wasn't updated.

[roidelapluie]

The description still needs to be removed. Thanks.

[simu]

@roidelapluie Can you elaborate on which description needs to be removed? I don't quite follow.

[roidelapluie]

Suggested change

	* [Icinga2](https://github.com/vshn/signalilo): creates services in Icinga2 based on received notifications
	* [Icinga2](https://github.com/vshn/signalilo)

[simu]

Oh ok, I've adjusted that in the latest version of the commit.

[roidelapluie]

Thanks. now only pending vshn/signalilo#17

[roidelapluie]

I actually missed my last comment when merging. I hope that you will soon be able to address vshn/signalilo#17