/
gitlab-ci-validate.go
executable file
·168 lines (148 loc) · 3.99 KB
/
gitlab-ci-validate.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
package main
import (
"encoding/json"
"flag"
"fmt"
"github.com/ghodss/yaml"
"io/ioutil"
"log"
"net/http"
"net/url"
"os"
"runtime"
"strings"
)
type lintResponse struct {
Status string `json:"status"`
Errors []string `json:"errors"`
}
type Validation int
const (
// file passed remote validation
PASS Validation = iota
// file couldn't be remotely validated
SOFT_FAIL
// file failed local or remote validation
HARD_FAIL
)
var version string
var userAgent string
func init() {
userAgent = fmt.Sprintf("gitlab-ci-validate/%s go/%s %s/%s", version, runtime.Version(), runtime.GOOS, runtime.GOARCH)
}
// Validate the given file
func ValidateFile(hostUrl url.URL, path string) (Validation, []error) {
content, err := ioutil.ReadFile(path)
if err != nil {
return HARD_FAIL, []error{err}
}
if !strings.HasSuffix(path, ".yml") {
return HARD_FAIL, []error{fmt.Errorf("file name does not end with .yml - only .gitlab-ci.yaml is allowed by GitLab")}
}
data, err := yaml.YAMLToJSON(content)
if err != nil {
return HARD_FAIL, []error{err}
}
values := url.Values{"content": {string(data)}}
hostUrl.Path = "/api/v4/ci/lint"
request, err := http.NewRequest("POST", hostUrl.String(), strings.NewReader(values.Encode()))
if err != nil {
return SOFT_FAIL, []error{err}
}
request.Header.Set("User-Agent", userAgent)
response, err := http.DefaultClient.Do(request)
if err != nil {
return SOFT_FAIL, []error{err}
}
defer response.Body.Close()
if response.StatusCode == 401 || response.StatusCode == 403 {
fmt.Printf("HTTP %d recieved from %s, authentication is required. See usage on how to provide an identity if you have not already, otherwise double check your basic auth or token.\n", response.StatusCode, hostUrl.Host)
responseBytes, err := ioutil.ReadAll(response.Body)
if err == nil {
fmt.Printf("message from server: %s\n", responseBytes)
}
os.Exit(1)
}
if response.StatusCode != 200 {
return SOFT_FAIL, []error{fmt.Errorf("Non-200 status from %s for %s: %d", hostUrl.Host, hostUrl.Path, response.StatusCode)}
}
responseBytes, err := ioutil.ReadAll(response.Body)
if err != nil {
return SOFT_FAIL, []error{err}
}
var summary lintResponse
json.Unmarshal(responseBytes, &summary)
if summary.Status != "valid" {
errs := make([]error, len(summary.Errors))
for i, err := range summary.Errors {
errs[i] = fmt.Errorf(err)
}
return HARD_FAIL, errs
}
return PASS, nil
}
func getEnv(key, fallback string) string {
if value, ok := os.LookupEnv(key); ok {
return value
}
return fallback
}
func main() {
flag.Usage = func() {
fmt.Printf("Usage: %s [-host=string] [-token=string] file ...\n", os.Args[0])
flag.PrintDefaults()
}
token := flag.String("token", getEnv("GITLAB_TOKEN", ""), "GitLab API access token")
host := flag.String("host", getEnv("GITLAB_HOST", "https://gitlab.com"), "GitLab instance used to validate the config files")
flag.Parse()
baseUrl, err := url.Parse(*host)
if err != nil {
fmt.Printf("host is not valid URL: %s\n", *host)
os.Exit(1)
}
if baseUrl.Scheme == "" {
baseUrl.Scheme = "https"
// this is because the baseUrl.Host is not set when the scheme is no present
baseUrl, err = url.Parse(baseUrl.String())
if err != nil {
fmt.Printf("host is not a valid URL: %s\n", *host)
}
}
if *token != "" {
params := url.Values{"private_token": {*token}}
baseUrl.RawQuery = params.Encode()
}
l := log.New(os.Stderr, "", 0)
if flag.NArg() < 1 {
flag.Usage()
os.Exit(1)
}
var result Validation
for _, source := range flag.Args() {
validation, errs := ValidateFile(*baseUrl, source)
if validation > result {
result = validation
}
if errs == nil {
l.Printf("PASS: %s\n", source)
} else {
var status string
if validation == SOFT_FAIL {
status = "SOFT"
} else {
status = "HARD"
}
l.Printf("%s FAIL: %s\n", status, source)
for _, err := range errs {
l.Printf(" - %s\n", err)
}
}
}
if result == HARD_FAIL {
os.Exit(1)
} else if result == SOFT_FAIL {
os.Exit(2)
} else {
os.Exit(0)
}
}