package gitinstallation import ( "context" "net/http" "sort" "time" "github.com/porter-dev/porter/internal/telemetry" "github.com/google/go-github/v41/github" "github.com/porter-dev/porter/api/server/authz" "github.com/porter-dev/porter/api/server/handlers" "github.com/porter-dev/porter/api/server/shared" "github.com/porter-dev/porter/api/server/shared/apierrors" "github.com/porter-dev/porter/api/server/shared/config" "github.com/porter-dev/porter/api/types" "golang.org/x/oauth2" "gorm.io/gorm" ) type GetGithubAppAccountsHandler struct { handlers.PorterHandlerReadWriter authz.KubernetesAgentGetter } func NewGetGithubAppAccountsHandler( config *config.Config, decoderValidator shared.RequestDecoderValidator, writer shared.ResultWriter, ) *GetGithubAppAccountsHandler { return &GetGithubAppAccountsHandler{ PorterHandlerReadWriter: handlers.NewDefaultPorterHandler(config, decoderValidator, writer), } } func (c *GetGithubAppAccountsHandler) getOrgList(ctx context.Context, client *github.Client, orgsChan chan<- *github.Organization, errChan chan<- error, ) { defer close(orgsChan) defer close(errChan) page := 1 for { select { case <-ctx.Done(): return default: orgs, pages, err := client.Organizations.List(context.Background(), "", &github.ListOptions{ PerPage: 100, Page: page, }) if err != nil { errChan <- err return } for _, org := range orgs { orgsChan <- org } if pages.NextPage == 0 { return } else { page = pages.NextPage } } } } func (c *GetGithubAppAccountsHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) { ctx, span := telemetry.NewSpan(r.Context(), "serve-get-github-app-accounts") defer span.End() r = r.Clone(ctx) tok, err := GetGithubAppOauthTokenFromRequest(c.Config(), r) if err != nil { err = telemetry.Error(ctx, span, err, "error getting github app oauth token from request") c.HandleAPIError(w, r, apierrors.NewErrPassThroughToClient(err, http.StatusForbidden)) return } client := github.NewClient(c.Config().GithubAppConf.Client(oauth2.NoContext, tok)) res := &types.GetGithubAppAccountsResponse{} resultChannel := make(chan *github.Organization, 10) errChan := make(chan error) ctx, cancel := context.WithTimeout(ctx, 3*time.Second) defer cancel() go c.getOrgList(ctx, client, resultChannel, errChan) resultOrErrorReader: for { select { case result, ok := <-resultChannel: if ok { res.Accounts = append(res.Accounts, *result.Login) } else { // channel has been closed now break resultOrErrorReader } case err, ok := <-errChan: if ok { err = telemetry.Error(ctx, span, err, "error getting org list") c.HandleAPIError(w, r, apierrors.NewErrPassThroughToClient(err, http.StatusInternalServerError)) return } else { // nothing in error, must be a close event break resultOrErrorReader } } } authUser, _, err := client.Users.Get(r.Context(), "") if err != nil { err = telemetry.Error(ctx, span, err, "error getting authenticated user") c.HandleAPIError(w, r, apierrors.NewErrPassThroughToClient(err, http.StatusInternalServerError)) return } res.Username = *authUser.Login // check if user has app installed in their account installation, err := c.Repo().GithubAppInstallation().ReadGithubAppInstallationByAccountID(*authUser.ID) if err != nil && err != gorm.ErrRecordNotFound { err = telemetry.Error(ctx, span, err, "error reading github app installation") c.HandleAPIError(w, r, apierrors.NewErrPassThroughToClient(err, http.StatusInternalServerError)) return } if installation != nil { res.Accounts = append(res.Accounts, *authUser.Login) } sort.Strings(res.Accounts) c.WriteResult(w, r, res) }