197 lines
4.4 KiB
Go
197 lines
4.4 KiB
Go
package list
|
|
|
|
import (
|
|
"fmt"
|
|
"net/http"
|
|
"net/url"
|
|
"strings"
|
|
"time"
|
|
|
|
"github.com/cli/cli/api"
|
|
"github.com/cli/cli/internal/config"
|
|
"github.com/cli/cli/internal/ghrepo"
|
|
"github.com/cli/cli/pkg/cmd/secret/shared"
|
|
"github.com/cli/cli/pkg/cmdutil"
|
|
"github.com/cli/cli/pkg/iostreams"
|
|
"github.com/cli/cli/utils"
|
|
"github.com/spf13/cobra"
|
|
)
|
|
|
|
type ListOptions struct {
|
|
HttpClient func() (*http.Client, error)
|
|
IO *iostreams.IOStreams
|
|
Config func() (config.Config, error)
|
|
BaseRepo func() (ghrepo.Interface, error)
|
|
|
|
OrgName string
|
|
}
|
|
|
|
func NewCmdList(f *cmdutil.Factory, runF func(*ListOptions) error) *cobra.Command {
|
|
opts := &ListOptions{
|
|
IO: f.IOStreams,
|
|
Config: f.Config,
|
|
HttpClient: f.HttpClient,
|
|
}
|
|
|
|
cmd := &cobra.Command{
|
|
Use: "list",
|
|
Short: "List secrets",
|
|
Long: "List secrets for a repository or organization",
|
|
Args: cobra.NoArgs,
|
|
RunE: func(cmd *cobra.Command, args []string) error {
|
|
// support `-R, --repo` override
|
|
opts.BaseRepo = f.BaseRepo
|
|
|
|
if runF != nil {
|
|
return runF(opts)
|
|
}
|
|
|
|
return listRun(opts)
|
|
},
|
|
}
|
|
|
|
cmd.Flags().StringVarP(&opts.OrgName, "org", "o", "", "List secrets for an organization")
|
|
|
|
return cmd
|
|
}
|
|
|
|
func listRun(opts *ListOptions) error {
|
|
c, err := opts.HttpClient()
|
|
if err != nil {
|
|
return fmt.Errorf("could not create http client: %w", err)
|
|
}
|
|
client := api.NewClientFromHTTP(c)
|
|
|
|
orgName := opts.OrgName
|
|
|
|
var baseRepo ghrepo.Interface
|
|
if orgName == "" {
|
|
baseRepo, err = opts.BaseRepo()
|
|
if err != nil {
|
|
return fmt.Errorf("could not determine base repo: %w", err)
|
|
}
|
|
}
|
|
|
|
var secrets []*Secret
|
|
if orgName == "" {
|
|
secrets, err = getRepoSecrets(client, baseRepo)
|
|
} else {
|
|
var cfg config.Config
|
|
var host string
|
|
|
|
cfg, err = opts.Config()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
host, err = cfg.DefaultHost()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
secrets, err = getOrgSecrets(client, host, orgName)
|
|
}
|
|
|
|
if err != nil {
|
|
return fmt.Errorf("failed to get secrets: %w", err)
|
|
}
|
|
|
|
tp := utils.NewTablePrinter(opts.IO)
|
|
for _, secret := range secrets {
|
|
tp.AddField(secret.Name, nil, nil)
|
|
updatedAt := secret.UpdatedAt.Format("2006-01-02")
|
|
if opts.IO.IsStdoutTTY() {
|
|
updatedAt = fmt.Sprintf("Updated %s", updatedAt)
|
|
}
|
|
tp.AddField(updatedAt, nil, nil)
|
|
if secret.Visibility != "" {
|
|
if opts.IO.IsStdoutTTY() {
|
|
tp.AddField(fmtVisibility(*secret), nil, nil)
|
|
} else {
|
|
tp.AddField(strings.ToUpper(string(secret.Visibility)), nil, nil)
|
|
}
|
|
}
|
|
tp.EndRow()
|
|
}
|
|
|
|
err = tp.Render()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
type Secret struct {
|
|
Name string
|
|
UpdatedAt time.Time `json:"updated_at"`
|
|
Visibility shared.Visibility
|
|
SelectedReposURL string `json:"selected_repositories_url"`
|
|
NumSelectedRepos int
|
|
}
|
|
|
|
func fmtVisibility(s Secret) string {
|
|
switch s.Visibility {
|
|
case shared.All:
|
|
return "Visible to all repositories"
|
|
case shared.Private:
|
|
return "Visible to private repositories"
|
|
case shared.Selected:
|
|
if s.NumSelectedRepos == 1 {
|
|
return "Visible to 1 selected repository"
|
|
} else {
|
|
return fmt.Sprintf("Visible to %d selected repositories", s.NumSelectedRepos)
|
|
}
|
|
}
|
|
return ""
|
|
}
|
|
|
|
func getOrgSecrets(client *api.Client, host, orgName string) ([]*Secret, error) {
|
|
secrets, err := getSecrets(client, host, fmt.Sprintf("orgs/%s/actions/secrets", orgName))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
type responseData struct {
|
|
TotalCount int `json:"total_count"`
|
|
}
|
|
|
|
for _, secret := range secrets {
|
|
if secret.SelectedReposURL == "" {
|
|
continue
|
|
}
|
|
u, err := url.Parse(secret.SelectedReposURL)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed determining selected repositories for %s: %w", secret.Name, err)
|
|
}
|
|
|
|
var result responseData
|
|
err = client.REST(u.Host, "GET", u.Path[1:], nil, &result)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed determining selected repositories for %s: %w", secret.Name, err)
|
|
}
|
|
secret.NumSelectedRepos = result.TotalCount
|
|
}
|
|
|
|
return secrets, nil
|
|
}
|
|
|
|
func getRepoSecrets(client *api.Client, repo ghrepo.Interface) ([]*Secret, error) {
|
|
return getSecrets(client, repo.RepoHost(), fmt.Sprintf("repos/%s/actions/secrets",
|
|
ghrepo.FullName(repo)))
|
|
}
|
|
|
|
type secretsPayload struct {
|
|
Secrets []*Secret
|
|
}
|
|
|
|
func getSecrets(client *api.Client, host, path string) ([]*Secret, error) {
|
|
result := secretsPayload{}
|
|
|
|
err := client.REST(host, "GET", path, nil, &result)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return result.Secrets, nil
|
|
}
|