Domů Procházet Nápověda
Přihlásit se
akillibulut
/
porter
zrcadlo https://github.com/porter-dev/porter
2
0
Rozštěpit 0
Soubory Úkoly 0 Wiki
Větev: node-version
Větve Značky
porter
/
internal
/
integrations
/
ci
/
actions
/
actions.go

actions.go 13 KB
Trvalý odkaz Historie Surový

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547 
  1. package actions
    2. 

  2. 

  3. import (
    4. 

  4. 	"context"
    5. 

  5. 	"encoding/base64"
    6. 

  6. 	"errors"
    7. 

  7. 	"fmt"
    8. 

  8. 	"net/http"
    9. 

  9. 	"strings"
    10. 

  10. 

  11. 	"github.com/Masterminds/semver/v3"
    12. 

  12. 	ghinstallation "github.com/bradleyfalzon/ghinstallation/v2"
    13. 

  13. 	"github.com/google/go-github/v41/github"
    14. 

  14. 	"github.com/porter-dev/porter/internal/models"
    15. 

  15. 	"github.com/porter-dev/porter/internal/oauth"
    16. 

  16. 	"github.com/porter-dev/porter/internal/repository"
    17. 

  17. 	"golang.org/x/crypto/nacl/box"
    18. 

  18. 	"golang.org/x/oauth2"
    19. 

  19. 

  20. 	"gopkg.in/yaml.v2"
    21. 

  21. )
    22. 

  22. 

  23. var (
    24. 

  24. 	ErrProtectedBranch            = errors.New("protected branch")
    25. 

  25. 	ErrCreatePRForProtectedBranch = errors.New("unable to create PR to merge workflow files into protected branch")
    26. 

  26. )
    27. 

  27. 

  28. type GithubActions struct {
    29. 

  29. 	ServerURL    string
    30. 

  30. 	InstanceName string
    31. 

  31. 

  32. 	GithubOAuthIntegration *models.GitRepo
    33. 

  33. 	GitRepoName            string
    34. 

  34. 	GitRepoOwner           string
    35. 

  35. 	Repo                   repository.Repository
    36. 

  36. 

  37. 	GithubConf           *oauth2.Config // one of these will let us authenticate
    38. 

  38. 	GithubAppID          int64
    39. 

  39. 	GithubAppSecretPath  string
    40. 

  40. 	GithubInstallationID uint
    41. 

  41. 

  42. 	PorterToken      string
    43. 

  43. 	BuildEnv         map[string]string
    44. 

  44. 	ProjectID        uint
    45. 

  45. 	ClusterID        uint
    46. 

  46. 	ReleaseName      string
    47. 

  47. 	ReleaseNamespace string
    48. 

  48. 

  49. 	GitBranch      string
    50. 

  50. 	DockerFilePath string
    51. 

  51. 	FolderPath     string
    52. 

  52. 	ImageRepoURL   string
    53. 

  53. 

  54. 	defaultBranch string
    55. 

  55. 	Version       string
    56. 

  56. 

  57. 	DryRun               bool
    58. 

  58. 	ShouldCreateWorkflow bool
    59. 

  59. }
    60. 

  60. 

  61. var deleteWebhookAndEnvSecretsConstraint, _ = semver.NewConstraint(" < 0.1.0")
    62. 

  62. 

  63. func (g *GithubActions) Setup() ([]byte, error) {
    64. 

  64. 	client, err := g.getClient()
    65. 

  65. 	if err != nil {
    66. 

  66. 		return nil, err
    67. 

  67. 	}
    68. 

  68. 

  69. 	// get the repository to find the default branch
    70. 

  70. 	repo, _, err := client.Repositories.Get(
    71. 

  71. 		context.TODO(),
    72. 

  72. 		g.GitRepoOwner,
    73. 

  73. 		g.GitRepoName,
    74. 

  74. 	)
    75. 

  75. 	if err != nil {
    76. 

  76. 		return nil, err
    77. 

  77. 	}
    78. 

  78. 

  79. 	g.defaultBranch = repo.GetDefaultBranch()
    80. 

  80. 

  81. 	if !g.DryRun {
    82. 

  82. 		// create porter token secret
    83. 

  83. 		if err := CreateGithubSecret(client, g.getPorterTokenSecretName(), g.PorterToken, g.GitRepoOwner, g.GitRepoName); err != nil {
    84. 

  84. 			return nil, err
    85. 

  85. 		}
    86. 

  86. 	}
    87. 

  87. 

  88. 	workflowYAML, err := g.GetGithubActionYAML()
    89. 

  89. 	if err != nil {
    90. 

  90. 		return nil, err
    91. 

  91. 	}
    92. 

  92. 

  93. 	if !g.DryRun && g.ShouldCreateWorkflow {
    94. 

  94. 		branch := g.GitBranch
    95. 

  95. 

  96. 		if branch == "" {
    97. 

  97. 			branch = g.defaultBranch
    98. 

  98. 		}
    99. 

  99. 

  100. 		// check if the branch is protected
    101. 

  101. 		githubBranch, _, err := client.Repositories.GetBranch(
    102. 

  102. 			context.Background(),
    103. 

  103. 			g.GitRepoOwner,
    104. 

  104. 			g.GitRepoName,
    105. 

  105. 			branch,
    106. 

  106. 			true,
    107. 

  107. 		)
    108. 

  108. 		if err != nil {
    109. 

  109. 			return nil, err
    110. 

  110. 		}
    111. 

  111. 

  112. 		isOAuth := g.GithubOAuthIntegration != nil
    113. 

  113. 

  114. 		if githubBranch.GetProtected() {
    115. 

  115. 			err = createNewBranch(client, g.GitRepoOwner, g.GitRepoName, branch, "porter-setup")
    116. 

  116. 

  117. 			if err != nil {
    118. 

  118. 				return nil, fmt.Errorf(
    119. 

  119. 					"Unable to create PR to merge workflow files into protected branch: %s.\n"+
    120. 

  120. 						"To enable automatic deployments to Porter, please create a Github workflow "+
    121. 

  121. 						"file in this branch with the following contents:\n"+
    122. 

  122. 						"--------\n%s--------\nERROR: %w", branch, string(workflowYAML), ErrCreatePRForProtectedBranch,
    123. 

  123. 				)
    124. 

  124. 			}
    125. 

  125. 

  126. 			_, err = commitWorkflowFile(client, g.getPorterYMLFileName(), workflowYAML, g.GitRepoOwner,
    127. 

  127. 				g.GitRepoName, "porter-setup", isOAuth)
    128. 

  128. 

  129. 			if err != nil {
    130. 

  130. 				return nil, fmt.Errorf(
    131. 

  131. 					"Unable to create PR to merge workflow files into protected branch: %s.\n"+
    132. 

  132. 						"To enable automatic deployments to Porter, please create a Github workflow "+
    133. 

  133. 						"file in this branch with the following contents:\n"+
    134. 

  134. 						"--------\n%s--------\nERROR: %w", branch, string(workflowYAML), ErrCreatePRForProtectedBranch,
    135. 

  135. 				)
    136. 

  136. 			}
    137. 

  137. 

  138. 			pr, _, err := client.PullRequests.Create(
    139. 

  139. 				context.Background(), g.GitRepoOwner, g.GitRepoName, &github.NewPullRequest{
    140. 

  140. 					Title: github.String("Enable Porter automatic deployments"),
    141. 

  141. 					Base:  github.String(branch),
    142. 

  142. 					Head:  github.String("porter-setup"),
    143. 

  143. 				},
    144. 

  144. 			)
    145. 

  145. 			if err != nil {
    146. 

  146. 				return nil, err
    147. 

  147. 			}
    148. 

  148. 

  149. 			return nil, fmt.Errorf("Please merge %s to enable automatic deployments on Porter.\nERROR: %w",
    150. 

  150. 				pr.GetHTMLURL(), ErrProtectedBranch)
    151. 

  151. 		}
    152. 

  152. 

  153. 		_, err = commitWorkflowFile(client, g.getPorterYMLFileName(), workflowYAML, g.GitRepoOwner,
    154. 

  154. 			g.GitRepoName, branch, isOAuth)
    155. 

  155. 		if err != nil {
    156. 

  156. 			return workflowYAML, err
    157. 

  157. 		}
    158. 

  158. 	}
    159. 

  159. 

  160. 	return workflowYAML, err
    161. 

  161. }
    162. 

  162. 

  163. func (g *GithubActions) Cleanup() error {
    164. 

  164. 	client, err := g.getClient()
    165. 

  165. 	if err != nil {
    166. 

  166. 		return err
    167. 

  167. 	}
    168. 

  168. 

  169. 	// get the repository to find the default branch
    170. 

  170. 	repo, _, err := client.Repositories.Get(
    171. 

  171. 		context.TODO(),
    172. 

  172. 		g.GitRepoOwner,
    173. 

  173. 		g.GitRepoName,
    174. 

  174. 	)
    175. 

  175. 	if err != nil {
    176. 

  176. 		return err
    177. 

  177. 	}
    178. 

  178. 

  179. 	g.defaultBranch = repo.GetDefaultBranch()
    180. 

  180. 

  181. 	actionVersion, err := semver.NewVersion(g.Version)
    182. 

  182. 	if err != nil {
    183. 

  183. 		return err
    184. 

  184. 	}
    185. 

  185. 

  186. 	if deleteWebhookAndEnvSecretsConstraint.Check(actionVersion) {
    187. 

  187. 		// delete the webhook token secret
    188. 

  188. 		if err := g.deleteGithubSecret(client, g.getWebhookSecretName()); err != nil {
    189. 

  189. 			return err
    190. 

  190. 		}
    191. 

  191. 

  192. 		// delete the env secret
    193. 

  193. 		if err := g.deleteGithubSecret(client, g.getBuildEnvSecretName()); err != nil {
    194. 

  194. 			return err
    195. 

  195. 		}
    196. 

  196. 	}
    197. 

  197. 

  198. 	branch := g.GitBranch
    199. 

  199. 

  200. 	if branch == "" {
    201. 

  201. 		branch = g.defaultBranch
    202. 

  202. 	}
    203. 

  203. 

  204. 	isOAuth := g.GithubOAuthIntegration != nil
    205. 

  205. 

  206. 	return deleteGithubFile(client, g.getPorterYMLFileName(), g.GitRepoOwner, g.GitRepoName, branch, isOAuth)
    207. 

  207. }
    208. 

  208. 

  209. type GithubActionYAMLStep struct {
    210. 

  210. 	Name    string            `yaml:"name,omitempty"`
    211. 

  211. 	ID      string            `yaml:"id,omitempty"`
    212. 

  212. 	Timeout uint64            `yaml:"timeout-minutes,omitempty"`
    213. 

  213. 	Uses    string            `yaml:"uses,omitempty"`
    214. 

  214. 	Run     string            `yaml:"run,omitempty"`
    215. 

  215. 	With    map[string]string `yaml:"with,omitempty"`
    216. 

  216. 	Env     map[string]string `yaml:"env,omitempty"`
    217. 

  217. }
    218. 

  218. 

  219. type GithubActionYAMLOnPushBranches struct {
    220. 

  220. 	Branches []string `yaml:"branches,omitempty"`
    221. 

  221. }
    222. 

  222. 

  223. type GithubActionYAMLOnPush struct {
    224. 

  224. 	Push GithubActionYAMLOnPushBranches `yaml:"push,omitempty"`
    225. 

  225. }
    226. 

  226. 

  227. // GithubActionYAMLOnPullRequest is a struct that represents the "on" field of a Github Action YAML file for pull request events
    228. 

  228. type GithubActionYAMLOnPullRequest struct {
    229. 

  229. 	PullRequest GithubActionYAMLOnPullRequestTypes `yaml:"pull_request,omitempty"`
    230. 

  230. }
    231. 

  231. 

  232. // GithubActionYAMLOnPullRequestTypes is a struct that represents the "types" field of a Github Action YAML file for pull request events
    233. 

  233. type GithubActionYAMLOnPullRequestTypes struct {
    234. 

  234. 	Branches []string `yaml:"branches,omitempty"`
    235. 

  235. 	Types    []string `yaml:"types,omitempty"`
    236. 

  236. 	Paths    []string `yaml:"paths,omitempty"`
    237. 

  237. }
    238. 

  238. 

  239. type GithubActionYAMLJob struct {
    240. 

  240. 	RunsOn      string                 `yaml:"runs-on,omitempty"`
    241. 

  241. 	Steps       []GithubActionYAMLStep `yaml:"steps,omitempty"`
    242. 

  242. 	Concurrency map[string]string      `yaml:"concurrency,omitempty"`
    243. 

  243. }
    244. 

  244. 

  245. type GithubActionYAML struct {
    246. 

  246. 	On interface{} `yaml:"on,omitempty"`
    247. 

  247. 

  248. 	Name string `yaml:"name,omitempty"`
    249. 

  249. 

  250. 	Jobs map[string]GithubActionYAMLJob `yaml:"jobs,omitempty"`
    251. 

  251. }
    252. 

  252. 

  253. func (g *GithubActions) GetGithubActionYAML() ([]byte, error) {
    254. 

  254. 	gaSteps := []GithubActionYAMLStep{
    255. 

  255. 		getCheckoutCodeStep(),
    256. 

  256. 		getSetTagStep(),
    257. 

  257. 		getUpdateAppStep(g.ServerURL, g.getPorterTokenSecretName(), g.ProjectID, g.ClusterID, g.ReleaseName, g.ReleaseNamespace, g.Version),
    258. 

  258. 	}
    259. 

  259. 

  260. 	branch := g.GitBranch
    261. 

  261. 

  262. 	if branch == "" {
    263. 

  263. 		branch = g.defaultBranch
    264. 

  264. 	}
    265. 

  265. 

  266. 	actionYAML := GithubActionYAML{
    267. 

  267. 		On: GithubActionYAMLOnPush{
    268. 

  268. 			Push: GithubActionYAMLOnPushBranches{
    269. 

  269. 				Branches: []string{
    270. 

  270. 					branch,
    271. 

  271. 				},
    272. 

  272. 			},
    273. 

  273. 		},
    274. 

  274. 		Name: "Deploy to Porter",
    275. 

  275. 		Jobs: map[string]GithubActionYAMLJob{
    276. 

  276. 			"porter-deploy": {
    277. 

  277. 				RunsOn: "ubuntu-latest",
    278. 

  278. 				Steps:  gaSteps,
    279. 

  279. 			},
    280. 

  280. 		},
    281. 

  281. 	}
    282. 

  282. 

  283. 	return yaml.Marshal(actionYAML)
    284. 

  284. }
    285. 

  285. 

  286. func (g *GithubActions) getClient() (*github.Client, error) {
    287. 

  287. 	// in the case that this still uses the oauth integration
    288. 

  288. 	if g.GithubOAuthIntegration != nil {
    289. 

  289. 

  290. 		// get the oauth integration
    291. 

  291. 		oauthInt, err := g.Repo.OAuthIntegration().ReadOAuthIntegration(g.ProjectID, g.GithubOAuthIntegration.OAuthIntegrationID)
    292. 

  292. 		if err != nil {
    293. 

  293. 			return nil, err
    294. 

  294. 		}
    295. 

  295. 

  296. 		_, _, err = oauth.GetAccessToken(oauthInt.SharedOAuthModel, g.GithubConf, oauth.MakeUpdateOAuthIntegrationTokenFunction(oauthInt, g.Repo))
    297. 

  297. 

  298. 		if err != nil {
    299. 

  299. 			return nil, err
    300. 

  300. 		}
    301. 

  301. 

  302. 		client := github.NewClient(g.GithubConf.Client(oauth2.NoContext, &oauth2.Token{
    303. 

  303. 			AccessToken:  string(oauthInt.AccessToken),
    304. 

  304. 			RefreshToken: string(oauthInt.RefreshToken),
    305. 

  305. 			Expiry:       oauthInt.Expiry,
    306. 

  306. 			TokenType:    "Bearer",
    307. 

  307. 		}))
    308. 

  308. 

  309. 		return client, nil
    310. 

  310. 	}
    311. 

  311. 

  312. 	// authenticate as github app installation
    313. 

  313. 	itr, err := ghinstallation.NewKeyFromFile(
    314. 

  314. 		http.DefaultTransport,
    315. 

  315. 		g.GithubAppID,
    316. 

  316. 		int64(g.GithubInstallationID),
    317. 

  317. 		g.GithubAppSecretPath)
    318. 

  318. 	if err != nil {
    319. 

  319. 		return nil, err
    320. 

  320. 	}
    321. 

  321. 

  322. 	return github.NewClient(&http.Client{Transport: itr}), nil
    323. 

  323. }
    324. 

  324. 

  325. func CreateGithubSecret(
    326. 

  326. 	client *github.Client,
    327. 

  327. 	secretName,
    328. 

  328. 	secretValue,
    329. 

  329. 	gitRepoOwner,
    330. 

  330. 	gitRepoName string,
    331. 

  331. ) error {
    332. 

  332. 	// get the public key for the repo
    333. 

  333. 	key, _, err := client.Actions.GetRepoPublicKey(context.TODO(), gitRepoOwner, gitRepoName)
    334. 

  334. 	if err != nil {
    335. 

  335. 		return err
    336. 

  336. 	}
    337. 

  337. 

  338. 	// encrypt the secret with the public key
    339. 

  339. 	keyBytes := [32]byte{}
    340. 

  340. 

  341. 	keyDecoded, err := base64.StdEncoding.DecodeString(*key.Key)
    342. 

  342. 	if err != nil {
    343. 

  343. 		return err
    344. 

  344. 	}
    345. 

  345. 

  346. 	copy(keyBytes[:], keyDecoded[:])
    347. 

  347. 

  348. 	secretEncoded, err := box.SealAnonymous(nil, []byte(secretValue), &keyBytes, nil)
    349. 

  349. 	if err != nil {
    350. 

  350. 		return err
    351. 

  351. 	}
    352. 

  352. 

  353. 	encrypted := base64.StdEncoding.EncodeToString(secretEncoded)
    354. 

  354. 

  355. 	encryptedSecret := &github.EncryptedSecret{
    356. 

  356. 		Name:           secretName,
    357. 

  357. 		KeyID:          *key.KeyID,
    358. 

  358. 		EncryptedValue: encrypted,
    359. 

  359. 	}
    360. 

  360. 

  361. 	// write the secret to the repo
    362. 

  362. 	_, err = client.Actions.CreateOrUpdateRepoSecret(context.TODO(), gitRepoOwner, gitRepoName, encryptedSecret)
    363. 

  363. 

  364. 	return err
    365. 

  365. }
    366. 

  366. 

  367. func (g *GithubActions) deleteGithubSecret(
    368. 

  368. 	client *github.Client,
    369. 

  369. 	secretName string,
    370. 

  370. ) error {
    371. 

  371. 	// delete the secret from the repo
    372. 

  372. 	_, err := client.Actions.DeleteRepoSecret(
    373. 

  373. 		context.TODO(),
    374. 

  374. 		g.GitRepoOwner,
    375. 

  375. 		g.GitRepoName,
    376. 

  376. 		secretName,
    377. 

  377. 	)
    378. 

  378. 

  379. 	return err
    380. 

  380. }
    381. 

  381. 

  382. func (g *GithubActions) CreateEnvSecret() error {
    383. 

  383. 	client, err := g.getClient()
    384. 

  384. 	if err != nil {
    385. 

  385. 		return err
    386. 

  386. 	}
    387. 

  387. 

  388. 	return g.createEnvSecret(client)
    389. 

  389. }
    390. 

  390. 

  391. func (g *GithubActions) createEnvSecret(client *github.Client) error {
    392. 

  392. 	// convert the env object to a string
    393. 

  393. 	lines := make([]string, 0)
    394. 

  394. 

  395. 	for key, val := range g.BuildEnv {
    396. 

  396. 		lines = append(lines, fmt.Sprintf(`%s=%s`, key, val))
    397. 

  397. 	}
    398. 

  398. 

  399. 	secretName := g.getBuildEnvSecretName()
    400. 

  400. 

  401. 	return CreateGithubSecret(client, secretName, strings.Join(lines, "\n"), g.GitRepoOwner, g.GitRepoName)
    402. 

  402. }
    403. 

  403. 

  404. func (g *GithubActions) getWebhookSecretName() string {
    405. 

  405. 	return fmt.Sprintf("WEBHOOK_%s", strings.Replace(
    406. 

  406. 		strings.ToUpper(g.ReleaseName), "-", "_", -1),
    407. 

  407. 	)
    408. 

  408. }
    409. 

  409. 

  410. func (g *GithubActions) getBuildEnvSecretName() string {
    411. 

  411. 	return fmt.Sprintf("ENV_%s", strings.Replace(
    412. 

  412. 		strings.ToUpper(g.ReleaseName), "-", "_", -1),
    413. 

  413. 	)
    414. 

  414. }
    415. 

  415. 

  416. func (g *GithubActions) getPorterYMLFileName() string {
    417. 

  417. 	if g.InstanceName != "" {
    418. 

  418. 		return fmt.Sprintf("porter_%s_%s.yml", strings.Replace(
    419. 

  419. 			strings.ToLower(g.ReleaseName), "-", "_", -1),
    420. 

  420. 			strings.ToLower(g.InstanceName),
    421. 

  421. 		)
    422. 

  422. 	}
    423. 

  423. 

  424. 	return fmt.Sprintf("porter_%s.yml", strings.Replace(
    425. 

  425. 		strings.ToLower(g.ReleaseName), "-", "_", -1),
    426. 

  426. 	)
    427. 

  427. }
    428. 

  428. 

  429. func (g *GithubActions) getPorterTokenSecretName() string {
    430. 

  430. 	if g.InstanceName != "" {
    431. 

  431. 		return fmt.Sprintf("PORTER_TOKEN_%s_%d", strings.ToUpper(g.InstanceName), g.ProjectID)
    432. 

  432. 	}
    433. 

  433. 

  434. 	return fmt.Sprintf("PORTER_TOKEN_%d", g.ProjectID)
    435. 

  435. }
    436. 

  436. 

  437. func getPorterTokenSecretName(projectID uint) string {
    438. 

  438. 	return fmt.Sprintf("PORTER_TOKEN_%d", projectID)
    439. 

  439. }
    440. 

  440. 

  441. func commitWorkflowFile(
    442. 

  442. 	client *github.Client,
    443. 

  443. 	filename string,
    444. 

  444. 	contents []byte,
    445. 

  445. 	gitRepoOwner, gitRepoName, branch string,
    446. 

  446. 	isOAuth bool,
    447. 

  447. ) (string, error) {
    448. 

  448. 	filepath := ".github/workflows/" + filename
    449. 

  449. 	sha := ""
    450. 

  450. 

  451. 	// get contents of a file if it exists
    452. 

  452. 	fileData, _, _, _ := client.Repositories.GetContents(
    453. 

  453. 		context.TODO(),
    454. 

  454. 		gitRepoOwner,
    455. 

  455. 		gitRepoName,
    456. 

  456. 		filepath,
    457. 

  457. 		&github.RepositoryContentGetOptions{
    458. 

  458. 			Ref: branch,
    459. 

  459. 		},
    460. 

  460. 	)
    461. 

  461. 

  462. 	if fileData != nil {
    463. 

  463. 		sha = *fileData.SHA
    464. 

  464. 	}
    465. 

  465. 

  466. 	opts := &github.RepositoryContentFileOptions{
    467. 

  467. 		Message: github.String(fmt.Sprintf("Create %s file", filename)),
    468. 

  468. 		Content: contents,
    469. 

  469. 		Branch:  github.String(branch),
    470. 

  470. 		SHA:     &sha,
    471. 

  471. 	}
    472. 

  472. 

  473. 	if isOAuth {
    474. 

  474. 		opts.Committer = &github.CommitAuthor{
    475. 

  475. 			Name:  github.String("Porter Bot"),
    476. 

  476. 			Email: github.String("contact@getporter.dev"),
    477. 

  477. 		}
    478. 

  478. 	}
    479. 

  479. 

  480. 	resp, _, err := client.Repositories.UpdateFile(
    481. 

  481. 		context.TODO(),
    482. 

  482. 		gitRepoOwner,
    483. 

  483. 		gitRepoName,
    484. 

  484. 		filepath,
    485. 

  485. 		opts,
    486. 

  486. 	)
    487. 

  487. 	if err != nil {
    488. 

  488. 		return "", err
    489. 

  489. 	}
    490. 

  490. 

  491. 	return *resp.Commit.SHA, nil
    492. 

  492. }
    493. 

  493. 

  494. func deleteGithubFile(
    495. 

  495. 	client *github.Client,
    496. 

  496. 	filename, gitRepoOwner, gitRepoName, branch string,
    497. 

  497. 	isOAuth bool,
    498. 

  498. ) error {
    499. 

  499. 	filepath := ".github/workflows/" + filename
    500. 

  500. 

  501. 	// get contents of a file if it exists
    502. 

  502. 	fileData, _, _, _ := client.Repositories.GetContents(
    503. 

  503. 		context.TODO(),
    504. 

  504. 		gitRepoOwner,
    505. 

  505. 		gitRepoName,
    506. 

  506. 		filepath,
    507. 

  507. 		&github.RepositoryContentGetOptions{
    508. 

  508. 			Ref: branch,
    509. 

  509. 		},
    510. 

  510. 	)
    511. 

  511. 

  512. 	sha := ""
    513. 

  513. 	if fileData != nil {
    514. 

  514. 		sha = *fileData.SHA
    515. 

  515. 	}
    516. 

  516. 

  517. 	opts := &github.RepositoryContentFileOptions{
    518. 

  518. 		Message: github.String(fmt.Sprintf("Delete %s file", filename)),
    519. 

  519. 		Branch:  &branch,
    520. 

  520. 		SHA:     &sha,
    521. 

  521. 	}
    522. 

  522. 

  523. 	if isOAuth {
    524. 

  524. 		opts.Committer = &github.CommitAuthor{
    525. 

  525. 			Name:  github.String("Porter Bot"),
    526. 

  526. 			Email: github.String("contact@getporter.dev"),
    527. 

  527. 		}
    528. 

  528. 	}
    529. 

  529. 

  530. 	_, response, err := client.Repositories.DeleteFile(
    531. 

  531. 		context.TODO(),
    532. 

  532. 		gitRepoOwner,
    533. 

  533. 		gitRepoName,
    534. 

  534. 		filepath,
    535. 

  535. 		opts,
    536. 

  536. 	)
    537. 

  537. 

  538. 	if response != nil && response.StatusCode == 404 {
    539. 

  539. 		return nil
    540. 

  540. 	}
    541. 

  541. 

  542. 	if err != nil {
    543. 

  543. 		return err
    544. 

  544. 	}
    545. 

  545. 

  546. 	return nil
    547. 

  547. }
    548.