;}%20.st6{fill:url(%23SVGID_00000021089067129159788970000008246765442136188072_);}%20.st7{fill:url(%23SVGID_00000117639240116366130650000015074833605515028638_);}%20.st8{opacity:0.4;fill:url(%23SVGID_00000101781798616409025840000016567063639337360777_);}%20.st9{opacity:0.4;fill:url(%23SVGID_00000052086836598721292040000002033117744178971046_);}%20.st10{opacity:0.4;fill:url(%23SVGID_00000159460939004760751800000002448009281983951536_);}%20.st11{opacity:0.4;fill:url(%23SVGID_00000013177830667419993080000017721442101626521532_);}%20.st12{opacity:0.4;fill:url(%23SVGID_00000152235521444854938490000006526001119318383285_);}%20.st13{opacity:0.4;fill:url(%23SVGID_00000119823135212293698520000012774889010992664993_);}%20%3c/style%3e%3cg%3e%3cpolygon%20class='st2'%20points='134.78,14.22%20114.31,48.21%20101.33,69.75%20158.22,69.75%20177.97,36.95%20191.67,14.22%20'/%3e%3cpolygon%20class='st3'%20points='227.55,69.75%20186.61,69.75%20101.33,69.75%20129.78,119.02%20158.16,119.02%20228.61,119.02%20256,119.02%20'/%3e%3cpolygon%20class='st3'%20points='136.93,132.47%20116.46,167.93%2073.82,241.78%20130.71,241.78%20144.9,217.2%20180.13,156.18%20193.82,132.46%20'/%3e%3cpolygon%20class='st3'%20points='121.7,131.95%20101.23,96.49%2058.59,22.63%2030.15,71.91%2044.34,96.49%2079.57,157.5%2093.26,181.22%20'/%3e%3cpolygon%20class='st2'%20points='64.81,131.95%2025.15,131.21%200,130.74%2028.44,180.01%2066.73,180.72%2093.26,181.21%20'/%3e%3cpolygon%20class='st2'%20points='165.38,181.74%20184.58,216.46%20196.75,238.47%20225.19,189.2%20206.66,155.69%20193.83,132.46%20'/%3e%3c/g%3e%3c/svg%3e)
Windmill HubEdits history of script submission #9014 for ' Git repo test read write (windmill)'
- bunApproved version
import * as wmill from "windmill-client"; import { basename } from "node:path" const util = require('util'); const exec = util.promisify(require('child_process').exec); export async function main(repo_url_resource_path: string, init: boolean = false) { const cwd = process.cwd(); process.env["HOME"] = "."; console.log(`Cloning repo from resource`); let repo_name; try { repo_name = await git_clone(repo_url_resource_path); process.chdir(`${cwd}/${repo_name}`); // Add safe.directory to handle dubious ownership in cloned repo try { await sh_run(undefined, "git", "config", "--global", "--add", "safe.directory", process.cwd()); } catch (e) { console.log(`Warning: Could not add safe.directory config: ${e}`); } console.log(`Attempting an empty push to repository ${repo_name}`); await git_push(init); console.log("Finished"); } finally { // Cleanup: remove safe.directory config if (repo_name) { try { await sh_run(undefined, "git", "config", "--global", "--unset", "safe.directory", `${cwd}/${repo_name}`); } catch (e) { console.log(`Warning: Could not unset safe.directory config: ${e}`); } } process.chdir(`${cwd}`); } } async function git_clone(repo_resource_path: string): Promise<string> { // TODO: handle private SSH keys as well const repo_resource = await wmill.getResource(repo_resource_path); let repo_url = repo_resource.url if (repo_resource.is_github_app) { const token = await get_gh_app_token() const authRepoUrl = prependTokenToGitHubUrl(repo_resource.url, token); repo_url = authRepoUrl; } const azureMatch = repo_url.match(/AZURE_DEVOPS_TOKEN\((?<url>.+)\)/); if (azureMatch) { console.log( "Requires Azure DevOps service account access token, requesting..." ); const azureResource = await wmill.getResource(azureMatch.groups.url); const response = await fetch( `https://login.microsoftonline.com/${azureResource.azureTenantId}/oauth2/token`, { method: "POST", body: new URLSearchParams({ client_id: azureResource.azureClientId, client_secret: azureResource.azureClientSecret, grant_type: "client_credentials", resource: "499b84ac-1321-427f-aa17-267ca6975798/.default", }), } ); const { access_token } = await response.json(); repo_url = repo_url.replace(azureMatch[0], access_token); } const repo_name = basename(repo_url, ".git"); await sh_run(4, "git", "clone", "--quiet", "--depth", "1", repo_url, repo_name); return repo_name; } async function git_push(init: boolean = false) { await sh_run(undefined, "git", "config", "user.email", process.env["WM_EMAIL"]) await sh_run(undefined, "git", "config", "user.name", process.env["WM_USERNAME"]) try { await sh_run(undefined, "git", "push"); } catch (error) { if (init && error.toString().includes("src refspec") && error.toString().includes("does not match any")) { console.log("Repository is empty (no commits/branches yet). This is expected for a new repository."); console.log("Push test completed - repository access verified, but no content to push."); return; } // Re-throw other errors throw error; } } async function sh_run( secret_position: number | undefined, cmd: string, ...args: string[] ) { const nargs = secret_position != undefined ? args.slice() : args; if (secret_position && secret_position < 0) { secret_position = nargs.length - 1 + secret_position; } let secret: string | undefined = undefined; if (secret_position != undefined) { nargs[secret_position] = "***"; secret = args[secret_position]; } console.log(`Running '${cmd} ${nargs.join(" ")} ...'`); const command = exec(`${cmd} ${args.join(" ")}`) try { const { stdout, stderr } = await command if (stdout.length > 0) { console.log(stdout); } if (stderr.length > 0) { console.log(stderr); } console.log("Command successfully executed"); } catch (error) { let errorString = error.toString(); if (secret) { errorString = errorString.replace(secret, "***"); } const err = `SH command '${cmd} ${nargs.join( " " )}' returned with error ${errorString}`; throw Error(err); } } async function get_gh_app_token() { const workspace = process.env["WM_WORKSPACE"]; const jobToken = process.env["WM_TOKEN"]; const baseUrl = process.env["BASE_INTERNAL_URL"] ?? process.env["BASE_URL"] ?? "http://localhost:8000"; const url = `${baseUrl}/api/w/${workspace}/github_app/token`; const response = await fetch(url, { method: 'POST', headers: { 'Content-Type': 'application/json', 'Authorization': `Bearer ${jobToken}`, }, body: JSON.stringify({ job_token: jobToken, }), }); if (!response.ok) { const errorBody = await response.text().catch(() => ""); throw new Error(`GitHub App token error (${response.status}): ${errorBody || response.statusText}`); } const data = await response.json(); return data.token; } function prependTokenToGitHubUrl(gitHubUrl: string, installationToken: string) { if (!gitHubUrl || !installationToken) { throw new Error("Both GitHub URL and Installation Token are required."); } const url = new URL(gitHubUrl); return `https://x-access-token:${installationToken}@${url.hostname}${url.pathname}`; }Submitted by hugo989 74 days ago
- bun
import * as wmill from "windmill-client"; import { basename } from "node:path" const util = require('util'); const exec = util.promisify(require('child_process').exec); export async function main(repo_url_resource_path: string, init: boolean = false) { const cwd = process.cwd(); process.env["HOME"] = "."; console.log(`Cloning repo from resource`); let repo_name; try { repo_name = await git_clone(repo_url_resource_path); process.chdir(`${cwd}/${repo_name}`); // Add safe.directory to handle dubious ownership in cloned repo try { await sh_run(undefined, "git", "config", "--global", "--add", "safe.directory", process.cwd()); } catch (e) { console.log(`Warning: Could not add safe.directory config: ${e}`); } console.log(`Attempting an empty push to repository ${repo_name}`); await git_push(init); console.log("Finished"); } finally { // Cleanup: remove safe.directory config if (repo_name) { try { await sh_run(undefined, "git", "config", "--global", "--unset", "safe.directory", `${cwd}/${repo_name}`); } catch (e) { console.log(`Warning: Could not unset safe.directory config: ${e}`); } } process.chdir(`${cwd}`); } } async function git_clone(repo_resource_path: string): Promise<string> { // TODO: handle private SSH keys as well const repo_resource = await wmill.getResource(repo_resource_path); let repo_url = repo_resource.url if (repo_resource.is_github_app) { const token = await get_gh_app_token() const authRepoUrl = prependTokenToGitHubUrl(repo_resource.url, token); repo_url = authRepoUrl; } const azureMatch = repo_url.match(/AZURE_DEVOPS_TOKEN\((?<url>.+)\)/); if (azureMatch) { console.log( "Requires Azure DevOps service account access token, requesting..." ); const azureResource = await wmill.getResource(azureMatch.groups.url); const response = await fetch( `https://login.microsoftonline.com/${azureResource.azureTenantId}/oauth2/token`, { method: "POST", body: new URLSearchParams({ client_id: azureResource.azureClientId, client_secret: azureResource.azureClientSecret, grant_type: "client_credentials", resource: "499b84ac-1321-427f-aa17-267ca6975798/.default", }), } ); const { access_token } = await response.json(); repo_url = repo_url.replace(azureMatch[0], access_token); } const repo_name = basename(repo_url, ".git"); await sh_run(4, "git", "clone", "--quiet", "--depth", "1", repo_url, repo_name); return repo_name; } async function git_push(init: boolean = false) { await sh_run(undefined, "git", "config", "user.email", process.env["WM_EMAIL"]) await sh_run(undefined, "git", "config", "user.name", process.env["WM_USERNAME"]) try { await sh_run(undefined, "git", "push"); } catch (error) { if (init && error.toString().includes("src refspec") && error.toString().includes("does not match any")) { console.log("Repository is empty (no commits/branches yet). This is expected for a new repository."); console.log("Push test completed - repository access verified, but no content to push."); return; } // Re-throw other errors throw error; } } async function sh_run( secret_position: number | undefined, cmd: string, ...args: string[] ) { const nargs = secret_position != undefined ? args.slice() : args; if (secret_position && secret_position < 0) { secret_position = nargs.length - 1 + secret_position; } let secret: string | undefined = undefined; if (secret_position != undefined) { nargs[secret_position] = "***"; secret = args[secret_position]; } console.log(`Running '${cmd} ${nargs.join(" ")} ...'`); const command = exec(`${cmd} ${args.join(" ")}`) try { const { stdout, stderr } = await command if (stdout.length > 0) { console.log(stdout); } if (stderr.length > 0) { console.log(stderr); } console.log("Command successfully executed"); } catch (error) { let errorString = error.toString(); if (secret) { errorString = errorString.replace(secret, "***"); } const err = `SH command '${cmd} ${nargs.join( " " )}' returned with error ${errorString}`; throw Error(err); } } async function get_gh_app_token() { const workspace = process.env["WM_WORKSPACE"]; const jobToken = process.env["WM_TOKEN"]; const baseUrl = process.env["BASE_INTERNAL_URL"] ?? process.env["BASE_URL"] ?? "http://localhost:8000"; const url = `${baseUrl}/api/w/${workspace}/github_app/token`; const response = await fetch(url, { method: 'POST', headers: { 'Content-Type': 'application/json', 'Authorization': `Bearer ${jobToken}`, }, body: JSON.stringify({ job_token: jobToken, }), }); if (!response.ok) { throw new Error(`Error: ${response.statusText}`); } const data = await response.json(); return data.token; } function prependTokenToGitHubUrl(gitHubUrl: string, installationToken: string) { if (!gitHubUrl || !installationToken) { throw new Error("Both GitHub URL and Installation Token are required."); } const url = new URL(gitHubUrl); return `https://x-access-token:${installationToken}@${url.hostname}${url.pathname}`; }Submitted by hugo989 77 days ago
- bun
import * as wmill from "windmill-client"; import { basename } from "node:path" const util = require('util'); const exec = util.promisify(require('child_process').exec); export async function main(repo_url_resource_path: string, init: boolean = false) { const cwd = process.cwd(); process.env["HOME"] = "."; console.log(`Cloning repo from resource`); let repo_name; try { repo_name = await git_clone(repo_url_resource_path); process.chdir(`${cwd}/${repo_name}`); // Add safe.directory to handle dubious ownership in cloned repo try { await sh_run(undefined, "git", "config", "--global", "--add", "safe.directory", process.cwd()); } catch (e) { console.log(`Warning: Could not add safe.directory config: ${e}`); } console.log(`Attempting an empty push to repository ${repo_name}`); await git_push(init); console.log("Finished"); } finally { // Cleanup: remove safe.directory config if (repo_name) { try { await sh_run(undefined, "git", "config", "--global", "--unset", "safe.directory", `${cwd}/${repo_name}`); } catch (e) { console.log(`Warning: Could not unset safe.directory config: ${e}`); } } process.chdir(`${cwd}`); } } async function git_clone(repo_resource_path: string): Promise<string> { // TODO: handle private SSH keys as well const repo_resource = await wmill.getResource(repo_resource_path); let repo_url = repo_resource.url if (repo_resource.is_github_app) { const token = await get_gh_app_token() const authRepoUrl = prependTokenToGitHubUrl(repo_resource.url, token); repo_url = authRepoUrl; } const azureMatch = repo_url.match(/AZURE_DEVOPS_TOKEN\((?<url>.+)\)/); if (azureMatch) { console.log( "Requires Azure DevOps service account access token, requesting..." ); const azureResource = await wmill.getResource(azureMatch.groups.url); const response = await fetch( `https://login.microsoftonline.com/${azureResource.azureTenantId}/oauth2/token`, { method: "POST", body: new URLSearchParams({ client_id: azureResource.azureClientId, client_secret: azureResource.azureClientSecret, grant_type: "client_credentials", resource: "499b84ac-1321-427f-aa17-267ca6975798/.default", }), } ); const { access_token } = await response.json(); repo_url = repo_url.replace(azureMatch[0], access_token); } const repo_name = basename(repo_url, ".git"); await sh_run(4, "git", "clone", "--quiet", "--depth", "1", repo_url, repo_name); return repo_name; } async function git_push(init: boolean = false) { await sh_run(undefined, "git", "config", "user.email", process.env["WM_EMAIL"]) await sh_run(undefined, "git", "config", "user.name", process.env["WM_USERNAME"]) try { await sh_run(undefined, "git", "push"); } catch (error) { if (init && error.toString().includes("src refspec") && error.toString().includes("does not match any")) { console.log("Repository is empty (no commits/branches yet). This is expected for a new repository."); console.log("Push test completed - repository access verified, but no content to push."); return; } // Re-throw other errors throw error; } } async function sh_run( secret_position: number | undefined, cmd: string, ...args: string[] ) { const nargs = secret_position != undefined ? args.slice() : args; if (secret_position && secret_position < 0) { secret_position = nargs.length - 1 + secret_position; } let secret: string | undefined = undefined; if (secret_position != undefined) { nargs[secret_position] = "***"; secret = args[secret_position]; } console.log(`Running '${cmd} ${nargs.join(" ")} ...'`); const command = exec(`${cmd} ${args.join(" ")}`) try { const { stdout, stderr } = await command if (stdout.length > 0) { console.log(stdout); } if (stderr.length > 0) { console.log(stderr); } console.log("Command successfully executed"); } catch (error) { let errorString = error.toString(); if (secret) { errorString = errorString.replace(secret, "***"); } const err = `SH command '${cmd} ${nargs.join( " " )}' returned with error ${errorString}`; throw Error(err); } } async function get_gh_app_token() { const workspace = process.env["WM_WORKSPACE"]; const jobToken = process.env["WM_TOKEN"]; const baseUrl = process.env["BASE_INTERNAL_URL"] ?? process.env["BASE_URL"] ?? "http://localhost:8000"; const url = `${baseUrl}/api/w/${workspace}/github_app/token`; const response = await fetch(url, { method: 'POST', headers: { 'Content-Type': 'application/json', 'Authorization': `Bearer ${jobToken}`, }, body: JSON.stringify({ job_token: jobToken, }), }); if (!response.ok) { throw new Error(`Error: ${response.statusText}`); } const data = await response.json(); return data.token; } function prependTokenToGitHubUrl(gitHubUrl: string, installationToken: string) { if (!gitHubUrl || !installationToken) { throw new Error("Both GitHub URL and Installation Token are required."); } try { const url = new URL(gitHubUrl); // GitHub repository URL should be in the format: https://github.com/owner/repo.git if (url.hostname !== "github.com") { throw new Error("Invalid GitHub URL. Must be in the format 'https://github.com/owner/repo.git'."); } // Convert URL to include the installation token return `https://x-access-token:${installationToken}@github.com${url.pathname}`; } catch (e) { const error = e as Error throw new Error(`Invalid URL: ${error.message}`) } }Submitted by hugo697 299 days ago
- bun
import * as wmill from "windmill-client"; import { basename } from "node:path" const util = require('util'); const exec = util.promisify(require('child_process').exec); export async function main(repo_url_resource_path: string) { const cwd = process.cwd(); process.env["HOME"] = "."; console.log(`Cloning repo from resource`); const repo_name = await git_clone(repo_url_resource_path); process.chdir(`${cwd}/${repo_name}`); console.log(`Attempting an empty push to repository ${repo_name}`); await git_push(); console.log("Finished"); process.chdir(`${cwd}`); } async function git_clone(repo_resource_path: string): Promise<string> { // TODO: handle private SSH keys as well const repo_resource = await wmill.getResource(repo_resource_path); let repo_url = repo_resource.url if (repo_resource.is_github_app) { const token = await get_gh_app_token() const authRepoUrl = prependTokenToGitHubUrl(repo_resource.url, token); repo_url = authRepoUrl; } const azureMatch = repo_url.match(/AZURE_DEVOPS_TOKEN\((?<url>.+)\)/); if (azureMatch) { console.log( "Requires Azure DevOps service account access token, requesting..." ); const azureResource = await wmill.getResource(azureMatch.groups.url); const response = await fetch( `https://login.microsoftonline.com/${azureResource.azureTenantId}/oauth2/token`, { method: "POST", body: new URLSearchParams({ client_id: azureResource.azureClientId, client_secret: azureResource.azureClientSecret, grant_type: "client_credentials", resource: "499b84ac-1321-427f-aa17-267ca6975798/.default", }), } ); const { access_token } = await response.json(); repo_url = repo_url.replace(azureMatch[0], access_token); } const repo_name = basename(repo_url, ".git"); await sh_run(4, "git", "clone", "--quiet", "--depth", "1", repo_url, repo_name); return repo_name; } async function git_push() { await sh_run(undefined, "git", "config", "user.email", process.env["WM_EMAIL"]) await sh_run(undefined, "git", "config", "user.name", process.env["WM_USERNAME"]) await sh_run(undefined, "git", "push"); } async function sh_run( secret_position: number | undefined, cmd: string, ...args: string[] ) { const nargs = secret_position != undefined ? args.slice() : args; if (secret_position && secret_position < 0) { secret_position = nargs.length - 1 + secret_position; } let secret: string | undefined = undefined; if (secret_position != undefined) { nargs[secret_position] = "***"; secret = args[secret_position]; } console.log(`Running '${cmd} ${nargs.join(" ")} ...'`); const command = exec(`${cmd} ${args.join(" ")}`) try { const { stdout, stderr } = await command if (stdout.length > 0) { console.log(stdout); } if (stderr.length > 0) { console.log(stderr); } console.log("Command successfully executed"); } catch (error) { let errorString = error.toString(); if (secret) { errorString = errorString.replace(secret, "***"); } const err = `SH command '${cmd} ${nargs.join( " " )}' returned with error ${errorString}`; throw Error(err); } } async function get_gh_app_token() { const workspace = process.env["WM_WORKSPACE"]; const jobToken = process.env["WM_TOKEN"]; const baseUrl = process.env["BASE_INTERNAL_URL"] ?? process.env["BASE_URL"] ?? "http://localhost:8000"; const url = `${baseUrl}/api/w/${workspace}/github_app/token`; const response = await fetch(url, { method: 'POST', headers: { 'Content-Type': 'application/json', 'Authorization': `Bearer ${jobToken}`, }, body: JSON.stringify({ job_token: jobToken, }), }); if (!response.ok) { throw new Error(`Error: ${response.statusText}`); } const data = await response.json(); return data.token; } function prependTokenToGitHubUrl(gitHubUrl: string, installationToken: string) { if (!gitHubUrl || !installationToken) { throw new Error("Both GitHub URL and Installation Token are required."); } try { const url = new URL(gitHubUrl); // GitHub repository URL should be in the format: https://github.com/owner/repo.git if (url.hostname !== "github.com") { throw new Error("Invalid GitHub URL. Must be in the format 'https://github.com/owner/repo.git'."); } // Convert URL to include the installation token return `https://x-access-token:${installationToken}@github.com${url.pathname}`; } catch (e) { const error = e as Error throw new Error(`Invalid URL: ${error.message}`) } }Submitted by hugo697 398 days ago
- bun
import * as wmill from "windmill-client"; import { basename } from "node:path" const util = require('util'); const exec = util.promisify(require('child_process').exec); export async function main(repo_url_resource_path: string) { const cwd = process.cwd(); process.env["HOME"] = "."; console.log(`Cloning repo from resource`); const repo_name = await git_clone(repo_url_resource_path); process.chdir(`${cwd}/${repo_name}`); console.log(`Attempting an empty push to repository ${repo_name}`); await git_push(); console.log("Finished"); process.chdir(`${cwd}`); } async function git_clone(repo_resource_path: string): Promise<string> { // TODO: handle private SSH keys as well const repo_resource = await wmill.getResource(repo_resource_path); let repo_url = repo_resource.url if (repo_resource.is_github_app) { const token = await get_gh_app_token() const authRepoUrl = prependTokenToGitHubUrl(repo_resource.url, token); repo_url = authRepoUrl; } const azureMatch = repo_url.match(/AZURE_DEVOPS_TOKEN\((?<url>.+)\)/); if (azureMatch) { console.log( "Requires Azure DevOps service account access token, requesting..." ); const azureResource = await wmill.getResource(azureMatch.groups.url); const response = await fetch( `https://login.microsoftonline.com/${azureResource.azureTenantId}/oauth2/token`, { method: "POST", body: new URLSearchParams({ client_id: azureResource.azureClientId, client_secret: azureResource.azureClientSecret, grant_type: "client_credentials", resource: "499b84ac-1321-427f-aa17-267ca6975798/.default", }), } ); const { access_token } = await response.json(); repo_url = repo_url.replace(azureMatch[0], access_token); } const repo_name = basename(repo_url, ".git"); await sh_run(4, "git", "clone", "--quiet", "--depth", "1", repo_url, repo_name); return repo_name; } async function git_push() { await sh_run(undefined, "git", "config", "user.email", process.env["WM_EMAIL"]) await sh_run(undefined, "git", "config", "user.name", process.env["WM_USERNAME"]) await sh_run(undefined, "git", "push"); } async function sh_run( secret_position: number | undefined, cmd: string, ...args: string[] ) { const nargs = secret_position != undefined ? args.slice() : args; if (secret_position && secret_position < 0) { secret_position = nargs.length - 1 + secret_position; } let secret: string | undefined = undefined; if (secret_position != undefined) { nargs[secret_position] = "***"; secret = args[secret_position]; } console.log(`Running '${cmd} ${nargs.join(" ")} ...'`); const command = exec(`${cmd} ${args.join(" ")}`) try { const { stdout, stderr } = await command if (stdout.length > 0) { console.log(stdout); } if (stderr.length > 0) { console.log(stderr); } console.log("Command successfully executed"); } catch (error) { let errorString = error.toString(); if (secret) { errorString = errorString.replace(secret, "***"); } const err = `SH command '${cmd} ${nargs.join( " " )}' returned with error ${errorString}`; throw Error(err); } } async function get_gh_app_token() { const workspace = process.env["WM_WORKSPACE"]; const jobToken = process.env["WM_TOKEN"]; const baseUrl = process.env["BASE_INTERNAL_URL"] ?? process.env["BASE_URL"] ?? "http://localhost:8000"; const url = `${baseUrl}/api/w/${workspace}/github_app/token`; const response = await fetch(url, { method: 'POST', headers: { 'Content-Type': 'application/json', 'Authorization': `Bearer ${jobToken}`, }, body: JSON.stringify({ job_token: jobToken, }), }); if (!response.ok) { throw new Error(`Error: ${response.statusText}`); } const data = await response.json(); return data.token; } function prependTokenToGitHubUrl(gitHubUrl: string, installationToken: string) { if (!gitHubUrl || !installationToken) { throw new Error("Both GitHub URL and Installation Token are required."); } try { const url = new URL(gitHubUrl); // GitHub repository URL should be in the format: https://github.com/owner/repo.git if (url.hostname !== "github.com") { throw new Error("Invalid GitHub URL. Must be in the format 'https://github.com/owner/repo.git'."); } // Convert URL to include the installation token return `https://x-access-token:${installationToken}@github.com${url.pathname}`; } catch (e) { const error = e as Error throw new Error(`Invalid URL: ${error.message}`) } }Submitted by hugo697 440 days ago
- bun
import * as wmill from "windmill-client"; import { basename } from "node:path" const util = require('util'); const exec = util.promisify(require('child_process').exec); export async function main(repo_url_resource_path: string) { const cwd = process.cwd(); process.env["HOME"] = "."; console.log(`Cloning repo from resource`); const repo_name = await git_clone(repo_url_resource_path); process.chdir(`${cwd}/${repo_name}`); console.log(`Attempting an empty push to repository ${repo_name}`); await git_push(); console.log("Finished"); process.chdir(`${cwd}`); } async function git_clone(repo_resource_path: string): Promise<string> { // TODO: handle private SSH keys as well const repo_resource = await wmill.getResource(repo_resource_path); let repo_url = repo_resource.url if (repo_resource.is_github_app) { const token = await get_gh_app_token() const authRepoUrl = prependTokenToGitHubUrl(repo_resource.url, token); repo_url = authRepoUrl; } const azureMatch = repo_url.match(/AZURE_DEVOPS_TOKEN\((?<url>.+)\)/); if (azureMatch) { console.log( "Requires Azure DevOps service account access token, requesting..." ); const azureResource = await wmill.getResource(azureMatch.groups.url); const response = await fetch( `https://login.microsoftonline.com/${azureResource.azureTenantId}/oauth2/token`, { method: "POST", body: new URLSearchParams({ client_id: azureResource.azureClientId, client_secret: azureResource.azureClientSecret, grant_type: "client_credentials", resource: "499b84ac-1321-427f-aa17-267ca6975798/.default", }), } ); const { access_token } = await response.json(); repo_url = repo_url.replace(azureMatch[0], access_token); } const repo_name = basename(repo_url, ".git"); await sh_run(4, "git", "clone", "--quiet", "--depth", "1", repo_url, repo_name); return repo_name; } async function git_push() { await sh_run(undefined, "git", "config", "user.email", process.env["WM_EMAIL"]) await sh_run(undefined, "git", "config", "user.name", process.env["WM_USERNAME"]) await sh_run(undefined, "git", "push"); } async function sh_run( secret_position: number | undefined, cmd: string, ...args: string[] ) { const nargs = secret_position != undefined ? args.slice() : args; if (secret_position && secret_position < 0) { secret_position = nargs.length - 1 + secret_position; } let secret: string | undefined = undefined; if (secret_position != undefined) { nargs[secret_position] = "***"; secret = args[secret_position]; } console.log(`Running '${cmd} ${nargs.join(" ")} ...'`); const command = exec(`${cmd} ${args.join(" ")}`) try { const { stdout, stderr } = await command if (stdout.length > 0) { console.log(stdout); } if (stderr.length > 0) { console.log(stderr); } console.log("Command successfully executed"); } catch (error) { let errorString = error.toString(); if (secret) { errorString = errorString.replace(secret, "***"); } const err = `SH command '${cmd} ${nargs.join( " " )}' returned with error ${errorString}`; throw Error(err); } } async function get_gh_app_token() { const workspace = process.env["WM_WORKSPACE"]; const jobToken = process.env["WM_TOKEN"]; const url = `http://localhost:8000/api/w/${workspace}/github_app/token`; console.log(url) const response = await fetch(url, { method: 'POST', headers: { 'Content-Type': 'application/json', 'Authorization': `Bearer ${jobToken}`, }, body: JSON.stringify({ job_token: jobToken, }), }); if (!response.ok) { throw new Error(`Error: ${response.statusText}`); } const data = await response.json(); return data.token; } function prependTokenToGitHubUrl(gitHubUrl: string, installationToken: string) { if (!gitHubUrl || !installationToken) { throw new Error("Both GitHub URL and Installation Token are required."); } try { const url = new URL(gitHubUrl); // GitHub repository URL should be in the format: https://github.com/owner/repo.git if (url.hostname !== "github.com") { throw new Error("Invalid GitHub URL. Must be in the format 'https://github.com/owner/repo.git'."); } // Convert URL to include the installation token return `https://x-access-token:${installationToken}@github.com${url.pathname}`; } catch (e) { const error = e as Error throw new Error(`Invalid URL: ${error.message}`) } }Submitted by hugo697 440 days ago
- bun
import * as wmill from "windmill-client"; import { basename } from "node:path" const util = require('util'); const exec = util.promisify(require('child_process').exec); export async function main(repo_url_resource_path: string) { const cwd = process.cwd(); process.env["HOME"] = "."; console.log(`Cloning repo from resource`); const repo_name = await git_clone(repo_url_resource_path); process.chdir(`${cwd}/${repo_name}`); console.log(`Attempting an empty push to repository ${repo_name}`); await git_push(); console.log("Finished"); process.chdir(`${cwd}`); } async function git_clone(repo_resource_path: string): Promise<string> { // TODO: handle private SSH keys as well let repo_url = (await wmill.getResource(repo_resource_path)).url; const azureMatch = repo_url.match(/AZURE_DEVOPS_TOKEN\((?<url>.+)\)/); if (azureMatch) { console.log( "Requires Azure DevOps service account access token, requesting..." ); const azureResource = await wmill.getResource(azureMatch.groups.url); const response = await fetch( `https://login.microsoftonline.com/${azureResource.azureTenantId}/oauth2/token`, { method: "POST", body: new URLSearchParams({ client_id: azureResource.azureClientId, client_secret: azureResource.azureClientSecret, grant_type: "client_credentials", resource: "499b84ac-1321-427f-aa17-267ca6975798/.default", }), } ); const { access_token } = await response.json(); repo_url = repo_url.replace(azureMatch[0], access_token); } const repo_name = basename(repo_url, ".git"); await sh_run(4, "git", "clone", "--quiet", "--depth", "1", repo_url, repo_name); return repo_name; } async function git_push() { await sh_run(undefined, "git", "config", "user.email", process.env["WM_EMAIL"]) await sh_run(undefined, "git", "config", "user.name", process.env["WM_USERNAME"]) await sh_run(undefined, "git", "push"); } async function sh_run( secret_position: number | undefined, cmd: string, ...args: string[] ) { const nargs = secret_position != undefined ? args.slice() : args; if (secret_position && secret_position < 0) { secret_position = nargs.length - 1 + secret_position; } let secret: string | undefined = undefined; if (secret_position != undefined) { nargs[secret_position] = "***"; secret = args[secret_position]; } console.log(`Running '${cmd} ${nargs.join(" ")} ...'`); const command = exec(`${cmd} ${args.join(" ")}`) try { const { stdout, stderr } = await command if (stdout.length > 0) { console.log(stdout); } if (stderr.length > 0) { console.log(stderr); } console.log("Command successfully executed"); } catch(error) { let errorString = error.toString(); if (secret) { errorString = errorString.replace(secret, "***"); } const err = `SH command '${cmd} ${nargs.join( " " )}' returned with error ${errorString}`; throw Error(err); } }Submitted by hugo697 522 days ago
- bun
import * as wmill from "windmill-client"; import { basename } from "node:path" const util = require('util'); const exec = util.promisify(require('child_process').exec); export async function main(repo_url_resource_path: string) { const cwd = process.cwd(); process.env["HOME"] = "."; console.log(`Cloning repo from resource`); const repo_name = await git_clone(repo_url_resource_path); process.chdir(`${cwd}/${repo_name}`); console.log(`Attempting an empty push to repository ${repo_name}`); await git_push(); console.log("Finished"); process.chdir(`${cwd}`); } async function git_clone(repo_resource_path: string): Promise<string> { // TODO: handle private SSH keys as well let repo_url = (await wmill.getResource(repo_resource_path)).url; const azureMatch = repo_url.match(/AZURE_DEVOPS_TOKEN\((?<url>.+)\)/); if (azureMatch) { console.log( "Requires Azure DevOps service account access token, requesting..." ); const azureResource = await wmill.getResource(azureMatch.groups.url); const response = await fetch( `https://login.microsoftonline.com/${azureResource.azureTenantId}/oauth2/token`, { method: "POST", body: new URLSearchParams({ client_id: azureResource.azureClientId, client_secret: azureResource.azureClientSecret, grant_type: "client_credentials", resource: "499b84ac-1321-427f-aa17-267ca6975798/.default", }), } ); const { access_token } = await response.json(); repo_url = repo_url.replace(azureMatch[0], access_token); } const repo_name = basename(repo_url, ".git"); await sh_run(4, "git", "clone", "--quiet", "--depth", "1", repo_url, repo_name); return repo_name; } async function git_push() { await sh_run(undefined, "git", "config", "user.email", process.env["WM_EMAIL"]) await sh_run(undefined, "git", "config", "user.name", process.env["WM_USERNAME"]) await sh_run(undefined, "git", "push"); } async function sh_run( secret_position: number | undefined, cmd: string, ...args: string[] ) { const nargs = secret_position != undefined ? args.slice() : args; if (secret_position && secret_position < 0) { secret_position = nargs.length - 1 + secret_position; } if (secret_position != undefined) { nargs[secret_position] = "***"; } console.log(`Running '${cmd} ${nargs.join(" ")} ...'`); const command = exec(`${cmd} ${args.join(" ")}`) // new Deno.Command(cmd, { // args: args, // }); const { error, stdout, stderr } = await command if (stdout.length > 0) { console.log(stdout); } if (stderr.length > 0) { console.log(stderr); } if (error) { const err = `SH command '${cmd} ${nargs.join( " " )}' returned with error ${error}`; throw Error(err); } console.log("Command successfully executed"); }Submitted by rubenfiszel 638 days ago