mirror of
				https://codeberg.org/forgejo/forgejo.git
				synced 2025-10-25 19:42:38 +00:00 
			
		
		
		
	- Add endpoint to list repository action secrets in API routes
- Implement `ListActionsSecrets` function to retrieve action secrets
from the database
- Update Swagger documentation to include the new
`/repos/{owner}/{repo}/actions/secrets` endpoint
- Add `actions` package import and define new routes for actions,
secrets, variables, and runners in `api.go`.
- Refactor action-related API functions into `Action` struct methods in
`org/action.go` and `repo/action.go`.
- Remove `actionAPI` struct and related functions, replacing them with
`NewAction()` calls.
- Rename `variables.go` to `action.go` in `org` directory.
- Delete `runners.go` and `secrets.go` in both `org` and `repo`
directories, consolidating their content into `action.go`.
- Update copyright year and add new imports in `org/action.go`.
- Implement `API` interface in `services/actions/interface.go` for
action-related methods.
- Remove individual action-related functions and replace them with
methods on the `Action` struct in `repo/action.go`.
---------
Signed-off-by: Bo-Yi Wu <appleboy.tw@gmail.com>
Signed-off-by: appleboy <appleboy.tw@gmail.com>
(cherry picked from commit 852547d0dc70299589c7bf8d00ea462ed709b8e5)
Conflicts:
	routers/api/v1/api.go
	trivial conflict because of Fix #2512 /api/forgejo/v1/version auth check (#2582)
		
	
			
		
			
				
	
	
		
			473 lines
		
	
	
	
		
			13 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
			
		
		
	
	
			473 lines
		
	
	
	
		
			13 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
| // Copyright 2024 The Gitea Authors. All rights reserved.
 | |
| // SPDX-License-Identifier: MIT
 | |
| 
 | |
| package org
 | |
| 
 | |
| import (
 | |
| 	"errors"
 | |
| 	"net/http"
 | |
| 
 | |
| 	actions_model "code.gitea.io/gitea/models/actions"
 | |
| 	"code.gitea.io/gitea/models/db"
 | |
| 	secret_model "code.gitea.io/gitea/models/secret"
 | |
| 	api "code.gitea.io/gitea/modules/structs"
 | |
| 	"code.gitea.io/gitea/modules/util"
 | |
| 	"code.gitea.io/gitea/modules/web"
 | |
| 	"code.gitea.io/gitea/routers/api/v1/shared"
 | |
| 	"code.gitea.io/gitea/routers/api/v1/utils"
 | |
| 	actions_service "code.gitea.io/gitea/services/actions"
 | |
| 	"code.gitea.io/gitea/services/context"
 | |
| 	secret_service "code.gitea.io/gitea/services/secrets"
 | |
| )
 | |
| 
 | |
| // ListActionsSecrets list an organization's actions secrets
 | |
| func (Action) ListActionsSecrets(ctx *context.APIContext) {
 | |
| 	// swagger:operation GET /orgs/{org}/actions/secrets organization orgListActionsSecrets
 | |
| 	// ---
 | |
| 	// summary: List an organization's actions secrets
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: org
 | |
| 	//   in: path
 | |
| 	//   description: name of the organization
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// - name: page
 | |
| 	//   in: query
 | |
| 	//   description: page number of results to return (1-based)
 | |
| 	//   type: integer
 | |
| 	// - name: limit
 | |
| 	//   in: query
 | |
| 	//   description: page size of results
 | |
| 	//   type: integer
 | |
| 	// responses:
 | |
| 	//   "200":
 | |
| 	//     "$ref": "#/responses/SecretList"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	opts := &secret_model.FindSecretsOptions{
 | |
| 		OwnerID:     ctx.Org.Organization.ID,
 | |
| 		ListOptions: utils.GetListOptions(ctx),
 | |
| 	}
 | |
| 
 | |
| 	secrets, count, err := db.FindAndCount[secret_model.Secret](ctx, opts)
 | |
| 	if err != nil {
 | |
| 		ctx.InternalServerError(err)
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	apiSecrets := make([]*api.Secret, len(secrets))
 | |
| 	for k, v := range secrets {
 | |
| 		apiSecrets[k] = &api.Secret{
 | |
| 			Name:    v.Name,
 | |
| 			Created: v.CreatedUnix.AsTime(),
 | |
| 		}
 | |
| 	}
 | |
| 
 | |
| 	ctx.SetTotalCountHeader(count)
 | |
| 	ctx.JSON(http.StatusOK, apiSecrets)
 | |
| }
 | |
| 
 | |
| // create or update one secret of the organization
 | |
| func (Action) CreateOrUpdateSecret(ctx *context.APIContext) {
 | |
| 	// swagger:operation PUT /orgs/{org}/actions/secrets/{secretname} organization updateOrgSecret
 | |
| 	// ---
 | |
| 	// summary: Create or Update a secret value in an organization
 | |
| 	// consumes:
 | |
| 	// - application/json
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: org
 | |
| 	//   in: path
 | |
| 	//   description: name of organization
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// - name: secretname
 | |
| 	//   in: path
 | |
| 	//   description: name of the secret
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// - name: body
 | |
| 	//   in: body
 | |
| 	//   schema:
 | |
| 	//     "$ref": "#/definitions/CreateOrUpdateSecretOption"
 | |
| 	// responses:
 | |
| 	//   "201":
 | |
| 	//     description: response when creating a secret
 | |
| 	//   "204":
 | |
| 	//     description: response when updating a secret
 | |
| 	//   "400":
 | |
| 	//     "$ref": "#/responses/error"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	opt := web.GetForm(ctx).(*api.CreateOrUpdateSecretOption)
 | |
| 
 | |
| 	_, created, err := secret_service.CreateOrUpdateSecret(ctx, ctx.Org.Organization.ID, 0, ctx.Params("secretname"), opt.Data)
 | |
| 	if err != nil {
 | |
| 		if errors.Is(err, util.ErrInvalidArgument) {
 | |
| 			ctx.Error(http.StatusBadRequest, "CreateOrUpdateSecret", err)
 | |
| 		} else if errors.Is(err, util.ErrNotExist) {
 | |
| 			ctx.Error(http.StatusNotFound, "CreateOrUpdateSecret", err)
 | |
| 		} else {
 | |
| 			ctx.Error(http.StatusInternalServerError, "CreateOrUpdateSecret", err)
 | |
| 		}
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	if created {
 | |
| 		ctx.Status(http.StatusCreated)
 | |
| 	} else {
 | |
| 		ctx.Status(http.StatusNoContent)
 | |
| 	}
 | |
| }
 | |
| 
 | |
| // DeleteSecret delete one secret of the organization
 | |
| func (Action) DeleteSecret(ctx *context.APIContext) {
 | |
| 	// swagger:operation DELETE /orgs/{org}/actions/secrets/{secretname} organization deleteOrgSecret
 | |
| 	// ---
 | |
| 	// summary: Delete a secret in an organization
 | |
| 	// consumes:
 | |
| 	// - application/json
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: org
 | |
| 	//   in: path
 | |
| 	//   description: name of organization
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// - name: secretname
 | |
| 	//   in: path
 | |
| 	//   description: name of the secret
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// responses:
 | |
| 	//   "204":
 | |
| 	//     description: delete one secret of the organization
 | |
| 	//   "400":
 | |
| 	//     "$ref": "#/responses/error"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	err := secret_service.DeleteSecretByName(ctx, ctx.Org.Organization.ID, 0, ctx.Params("secretname"))
 | |
| 	if err != nil {
 | |
| 		if errors.Is(err, util.ErrInvalidArgument) {
 | |
| 			ctx.Error(http.StatusBadRequest, "DeleteSecret", err)
 | |
| 		} else if errors.Is(err, util.ErrNotExist) {
 | |
| 			ctx.Error(http.StatusNotFound, "DeleteSecret", err)
 | |
| 		} else {
 | |
| 			ctx.Error(http.StatusInternalServerError, "DeleteSecret", err)
 | |
| 		}
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	ctx.Status(http.StatusNoContent)
 | |
| }
 | |
| 
 | |
| // https://docs.github.com/en/rest/actions/self-hosted-runners?apiVersion=2022-11-28#create-a-registration-token-for-an-organization
 | |
| // GetRegistrationToken returns the token to register org runners
 | |
| func (Action) GetRegistrationToken(ctx *context.APIContext) {
 | |
| 	// swagger:operation GET /orgs/{org}/actions/runners/registration-token organization orgGetRunnerRegistrationToken
 | |
| 	// ---
 | |
| 	// summary: Get an organization's actions runner registration token
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: org
 | |
| 	//   in: path
 | |
| 	//   description: name of the organization
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// responses:
 | |
| 	//   "200":
 | |
| 	//     "$ref": "#/responses/RegistrationToken"
 | |
| 
 | |
| 	shared.GetRegistrationToken(ctx, ctx.Org.Organization.ID, 0)
 | |
| }
 | |
| 
 | |
| // ListVariables list org-level variables
 | |
| func (Action) ListVariables(ctx *context.APIContext) {
 | |
| 	// swagger:operation GET /orgs/{org}/actions/variables organization getOrgVariablesList
 | |
| 	// ---
 | |
| 	// summary: Get an org-level variables list
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: org
 | |
| 	//   in: path
 | |
| 	//   description: name of the organization
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// - name: page
 | |
| 	//   in: query
 | |
| 	//   description: page number of results to return (1-based)
 | |
| 	//   type: integer
 | |
| 	// - name: limit
 | |
| 	//   in: query
 | |
| 	//   description: page size of results
 | |
| 	//   type: integer
 | |
| 	// responses:
 | |
| 	//   "200":
 | |
| 	//		 "$ref": "#/responses/VariableList"
 | |
| 	//   "400":
 | |
| 	//     "$ref": "#/responses/error"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	vars, count, err := db.FindAndCount[actions_model.ActionVariable](ctx, &actions_model.FindVariablesOpts{
 | |
| 		OwnerID:     ctx.Org.Organization.ID,
 | |
| 		ListOptions: utils.GetListOptions(ctx),
 | |
| 	})
 | |
| 	if err != nil {
 | |
| 		ctx.Error(http.StatusInternalServerError, "FindVariables", err)
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	variables := make([]*api.ActionVariable, len(vars))
 | |
| 	for i, v := range vars {
 | |
| 		variables[i] = &api.ActionVariable{
 | |
| 			OwnerID: v.OwnerID,
 | |
| 			RepoID:  v.RepoID,
 | |
| 			Name:    v.Name,
 | |
| 			Data:    v.Data,
 | |
| 		}
 | |
| 	}
 | |
| 
 | |
| 	ctx.SetTotalCountHeader(count)
 | |
| 	ctx.JSON(http.StatusOK, variables)
 | |
| }
 | |
| 
 | |
| // GetVariable get an org-level variable
 | |
| func (Action) GetVariable(ctx *context.APIContext) {
 | |
| 	// swagger:operation GET /orgs/{org}/actions/variables/{variablename} organization getOrgVariable
 | |
| 	// ---
 | |
| 	// summary: Get an org-level variable
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: org
 | |
| 	//   in: path
 | |
| 	//   description: name of the organization
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// - name: variablename
 | |
| 	//   in: path
 | |
| 	//   description: name of the variable
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// responses:
 | |
| 	//   "200":
 | |
| 	//		 "$ref": "#/responses/ActionVariable"
 | |
| 	//   "400":
 | |
| 	//     "$ref": "#/responses/error"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	v, err := actions_service.GetVariable(ctx, actions_model.FindVariablesOpts{
 | |
| 		OwnerID: ctx.Org.Organization.ID,
 | |
| 		Name:    ctx.Params("variablename"),
 | |
| 	})
 | |
| 	if err != nil {
 | |
| 		if errors.Is(err, util.ErrNotExist) {
 | |
| 			ctx.Error(http.StatusNotFound, "GetVariable", err)
 | |
| 		} else {
 | |
| 			ctx.Error(http.StatusInternalServerError, "GetVariable", err)
 | |
| 		}
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	variable := &api.ActionVariable{
 | |
| 		OwnerID: v.OwnerID,
 | |
| 		RepoID:  v.RepoID,
 | |
| 		Name:    v.Name,
 | |
| 		Data:    v.Data,
 | |
| 	}
 | |
| 
 | |
| 	ctx.JSON(http.StatusOK, variable)
 | |
| }
 | |
| 
 | |
| // DeleteVariable delete an org-level variable
 | |
| func (Action) DeleteVariable(ctx *context.APIContext) {
 | |
| 	// swagger:operation DELETE /orgs/{org}/actions/variables/{variablename} organization deleteOrgVariable
 | |
| 	// ---
 | |
| 	// summary: Delete an org-level variable
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: org
 | |
| 	//   in: path
 | |
| 	//   description: name of the organization
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// - name: variablename
 | |
| 	//   in: path
 | |
| 	//   description: name of the variable
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// responses:
 | |
| 	//   "200":
 | |
| 	//			"$ref": "#/responses/ActionVariable"
 | |
| 	//   "201":
 | |
| 	//     description: response when deleting a variable
 | |
| 	//   "204":
 | |
| 	//     description: response when deleting a variable
 | |
| 	//   "400":
 | |
| 	//     "$ref": "#/responses/error"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	if err := actions_service.DeleteVariableByName(ctx, ctx.Org.Organization.ID, 0, ctx.Params("variablename")); err != nil {
 | |
| 		if errors.Is(err, util.ErrInvalidArgument) {
 | |
| 			ctx.Error(http.StatusBadRequest, "DeleteVariableByName", err)
 | |
| 		} else if errors.Is(err, util.ErrNotExist) {
 | |
| 			ctx.Error(http.StatusNotFound, "DeleteVariableByName", err)
 | |
| 		} else {
 | |
| 			ctx.Error(http.StatusInternalServerError, "DeleteVariableByName", err)
 | |
| 		}
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	ctx.Status(http.StatusNoContent)
 | |
| }
 | |
| 
 | |
| // CreateVariable create an org-level variable
 | |
| func (Action) CreateVariable(ctx *context.APIContext) {
 | |
| 	// swagger:operation POST /orgs/{org}/actions/variables/{variablename} organization createOrgVariable
 | |
| 	// ---
 | |
| 	// summary: Create an org-level variable
 | |
| 	// consumes:
 | |
| 	// - application/json
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: org
 | |
| 	//   in: path
 | |
| 	//   description: name of the organization
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// - name: variablename
 | |
| 	//   in: path
 | |
| 	//   description: name of the variable
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// - name: body
 | |
| 	//   in: body
 | |
| 	//   schema:
 | |
| 	//     "$ref": "#/definitions/CreateVariableOption"
 | |
| 	// responses:
 | |
| 	//   "201":
 | |
| 	//     description: response when creating an org-level variable
 | |
| 	//   "204":
 | |
| 	//     description: response when creating an org-level variable
 | |
| 	//   "400":
 | |
| 	//     "$ref": "#/responses/error"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	opt := web.GetForm(ctx).(*api.CreateVariableOption)
 | |
| 
 | |
| 	ownerID := ctx.Org.Organization.ID
 | |
| 	variableName := ctx.Params("variablename")
 | |
| 
 | |
| 	v, err := actions_service.GetVariable(ctx, actions_model.FindVariablesOpts{
 | |
| 		OwnerID: ownerID,
 | |
| 		Name:    variableName,
 | |
| 	})
 | |
| 	if err != nil && !errors.Is(err, util.ErrNotExist) {
 | |
| 		ctx.Error(http.StatusInternalServerError, "GetVariable", err)
 | |
| 		return
 | |
| 	}
 | |
| 	if v != nil && v.ID > 0 {
 | |
| 		ctx.Error(http.StatusConflict, "VariableNameAlreadyExists", util.NewAlreadyExistErrorf("variable name %s already exists", variableName))
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	if _, err := actions_service.CreateVariable(ctx, ownerID, 0, variableName, opt.Value); err != nil {
 | |
| 		if errors.Is(err, util.ErrInvalidArgument) {
 | |
| 			ctx.Error(http.StatusBadRequest, "CreateVariable", err)
 | |
| 		} else {
 | |
| 			ctx.Error(http.StatusInternalServerError, "CreateVariable", err)
 | |
| 		}
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	ctx.Status(http.StatusNoContent)
 | |
| }
 | |
| 
 | |
| // UpdateVariable update an org-level variable
 | |
| func (Action) UpdateVariable(ctx *context.APIContext) {
 | |
| 	// swagger:operation PUT /orgs/{org}/actions/variables/{variablename} organization updateOrgVariable
 | |
| 	// ---
 | |
| 	// summary: Update an org-level variable
 | |
| 	// consumes:
 | |
| 	// - application/json
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: org
 | |
| 	//   in: path
 | |
| 	//   description: name of the organization
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// - name: variablename
 | |
| 	//   in: path
 | |
| 	//   description: name of the variable
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// - name: body
 | |
| 	//   in: body
 | |
| 	//   schema:
 | |
| 	//     "$ref": "#/definitions/UpdateVariableOption"
 | |
| 	// responses:
 | |
| 	//   "201":
 | |
| 	//     description: response when updating an org-level variable
 | |
| 	//   "204":
 | |
| 	//     description: response when updating an org-level variable
 | |
| 	//   "400":
 | |
| 	//     "$ref": "#/responses/error"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	opt := web.GetForm(ctx).(*api.UpdateVariableOption)
 | |
| 
 | |
| 	v, err := actions_service.GetVariable(ctx, actions_model.FindVariablesOpts{
 | |
| 		OwnerID: ctx.Org.Organization.ID,
 | |
| 		Name:    ctx.Params("variablename"),
 | |
| 	})
 | |
| 	if err != nil {
 | |
| 		if errors.Is(err, util.ErrNotExist) {
 | |
| 			ctx.Error(http.StatusNotFound, "GetVariable", err)
 | |
| 		} else {
 | |
| 			ctx.Error(http.StatusInternalServerError, "GetVariable", err)
 | |
| 		}
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	if opt.Name == "" {
 | |
| 		opt.Name = ctx.Params("variablename")
 | |
| 	}
 | |
| 	if _, err := actions_service.UpdateVariable(ctx, v.ID, opt.Name, opt.Value); err != nil {
 | |
| 		if errors.Is(err, util.ErrInvalidArgument) {
 | |
| 			ctx.Error(http.StatusBadRequest, "UpdateVariable", err)
 | |
| 		} else {
 | |
| 			ctx.Error(http.StatusInternalServerError, "UpdateVariable", err)
 | |
| 		}
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	ctx.Status(http.StatusNoContent)
 | |
| }
 | |
| 
 | |
| var _ actions_service.API = new(Action)
 | |
| 
 | |
| // Action implements actions_service.API
 | |
| type Action struct{}
 | |
| 
 | |
| // NewAction creates a new Action service
 | |
| func NewAction() actions_service.API {
 | |
| 	return Action{}
 | |
| }
 |