Feature Request: Private Links for cml publish
#1120
Comments
|
if you are using GitLab there is a example
Here is an internal test using this feature which you can use/snoop around with: jobs:
setup:
outputs:
url: ${{ steps.deploy.outputs.url }}
runs-on: ubuntu-latest
environment: test
steps:
- uses: actions/checkout@v3
with:
repository: 0x2b3bfa0/minroud
- name: Install Deps
run: npm install --global serverless
- uses: aws-actions/configure-aws-credentials@v1
with:
role-to-assume: arn:aws:iam::342840881361:role/SandboxUser
aws-region: us-east-1
- name: Deploy
id: deploy
run: |
npx serverless deploy
url=$(npx serverless info | awk 'match($0, "endpoint: "){ print substr($0, RSTART + 10)}')
echo "$url"
echo "::set-output name=url::$url"
- uses: actions/upload-artifact@v3
with:
name: state
path: .serverless
test:
runs-on: ubuntu-latest
needs: setup
steps:
- name: Test a CML Branch
if: ${{ env.TEST_CML_BRANCH }}
run: |
npm install -g canvas@2 vega@5 vega-cli@5 vega-lite@5 github:iterative/cml#${{ env.TEST_CML_BRANCH }}
- name: Standard CML setup
if: ${{ !env.TEST_CML_BRANCH }}
uses: iterative/setup-cml@v1
with:
version: ${{ env.TEST_CML_VERSION || 'latest' }}
- name: Test
env:
CML_PUBLISH_URL: ${{ needs.setup.outputs.url }}
run: |
echo "hello" >> file.md
url=$(cml publish file.md)
echo "$url"
test "hello" == $(curl --silent $url)
clean-up:
runs-on: ubuntu-latest
if: ${{ always() }}
needs: test
environment: test
steps:
- uses: actions/checkout@v3
with:
repository: 0x2b3bfa0/minroud
- name: Install Deps
run: npm install --global serverless
- uses: aws-actions/configure-aws-credentials@v1
with:
role-to-assume: arn:aws:iam::342840881361:role/SandboxUser
aws-region: us-east-1
- uses: actions/download-artifact@v3
with:
name: state
path: .serverless
- name: Clean up
run: |
bucket_name=$(aws s3 ls | awk 'match($0, /minroud/){ print $3}')
aws s3 rm --recursive "s3://$bucket_name"
npx serverless removeLines 35 to 39 in e87a23b |
dacbd
added
documentation
|
Related to iterative/cml.dev#266 |
/? |
|
@0x2b3bfa0 we have a (doubly hidden) i.e. we still need |
|
fixed by iterative/cml.dev#324? Or was there some other reason you re-opened @0x2b3bfa0? If so please do re-open (again) |
|
The reason why I reopened this issue is because Minroud doesn't produce “private” links in the sense that knowing the URL is enough. |
I'm still learning
cml, I noticed when I run:It creates a url at
https://asset.cml.dev/with a token. I'm using a private repo, so it was a little alarming to see that my data is being uploaded to a publicly available site, previously I thought it must be using some gitlab/github internals to upload the image to the mr/pr that I didn't yet understand.In my case I'm using
gcsas advcremote, so I think my workaround will be to instead upload the results togcsthen only people logged into a google account with access to thegcpproject will have access.It would be great if it was made clearer in the documentation that
cmlpublish is uploading tocml.devand if my use case with a privatedvc remoteis pretty typical it would be nice to provide a flag tocml publishthat let's me instead upload to my private infrastructure.The text was updated successfully, but these errors were encountered: