-
Notifications
You must be signed in to change notification settings - Fork 1.8k
/
creds.go
85 lines (66 loc) · 2.19 KB
/
creds.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
/*
Copyright 2019 The Tekton Authors
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
*/
package gitcreds
import (
"flag"
"fmt"
corev1 "k8s.io/api/core/v1"
"github.com/tektoncd/pipeline/pkg/credentials"
)
const (
annotationPrefix = "tekton.dev/git-"
basicAuthFlag = "basic-git"
sshFlag = "ssh-git"
)
var (
basicConfig basicGitConfig
sshConfig sshGitConfig
)
// AddFlags adds CLI flags that gitcreds supports to a given flag.FlagSet.
func AddFlags(flagSet *flag.FlagSet) {
flags(flagSet)
}
func flags(fs *flag.FlagSet) {
basicConfig = basicGitConfig{entries: make(map[string]basicEntry)}
fs.Var(&basicConfig, basicAuthFlag, "List of secret=url pairs.")
sshConfig = sshGitConfig{entries: make(map[string][]sshEntry)}
fs.Var(&sshConfig, sshFlag, "List of secret=url pairs.")
}
type gitConfigBuilder struct{}
// NewBuilder returns a new builder for Git credentials.
func NewBuilder() credentials.Builder { return &gitConfigBuilder{} }
// MatchingAnnotations extracts flags for the credential helper
// from the supplied secret and returns a slice (of length 0 or
// greater) of applicable domains.
func (*gitConfigBuilder) MatchingAnnotations(secret *corev1.Secret) []string {
var flagName string
var flags []string
switch secret.Type {
case corev1.SecretTypeBasicAuth:
flagName = basicAuthFlag
case corev1.SecretTypeSSHAuth:
flagName = sshFlag
default:
return flags
}
for _, v := range credentials.SortAnnotations(secret.Annotations, annotationPrefix) {
flags = append(flags, fmt.Sprintf("-%s=%s=%s", flagName, secret.Name, v))
}
return flags
}
func (*gitConfigBuilder) Write(directory string) error {
if err := basicConfig.Write(directory); err != nil {
return err
}
return sshConfig.Write(directory)
}