wroclaw-git-backups/nix
1
0
Fork 0
mirror of https://github.com/NixOS/nix synced 2025-06-28 22:01:15 +02:00
Code Activity

feat: test and document access-token prefix support

Browse source
This commit is contained in:
Thomas Bereknyei 2025-02-13 06:05:54 -05:00
parent 69c7b42d28
commit a9f4d73d3e
5 changed files with 89 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

79
src/libfetchers-tests/access-tokens.cc Normal file
View file

@ -0,0 +1,79 @@
#include <gtest/gtest.h>
#include "fetchers.hh"
#include "fetch-settings.hh"
#include "json-utils.hh"
#include <nlohmann/json.hpp>
#include "tests/characterization.hh"
namespace nix::fetchers {
using nlohmann::json;
class AccessKeysTest : public ::testing::Test
{
protected:
public:
void SetUp() override {
experimentalFeatureSettings.experimentalFeatures.get().insert(Xp::Flakes);
}
void TearDown() override { }
};
TEST_F(AccessKeysTest, singleGitHub)
{
fetchers::Settings fetchSettings = fetchers::Settings{};
fetchSettings.accessTokens.get().insert({"github.com","token"});
auto i = Input::fromURL(fetchSettings, "github:a/b");
auto token = i.scheme->getAccessToken(fetchSettings, "github.com", "github.com/a/b");
ASSERT_EQ(token,"token");
}
TEST_F(AccessKeysTest, repoGitHub)
{
fetchers::Settings fetchSettings = fetchers::Settings{};
fetchSettings.accessTokens.get().insert({"github.com","token"});
fetchSettings.accessTokens.get().insert({"github.com/a/b","another_token"});
fetchSettings.accessTokens.get().insert({"github.com/a/c","yet_another_token"});
auto i = Input::fromURL(fetchSettings, "github:a/a");
auto token = i.scheme->getAccessToken(fetchSettings, "github.com", "github.com/a/a");
ASSERT_EQ(token,"token");
token = i.scheme->getAccessToken(fetchSettings, "github.com", "github.com/a/b");
ASSERT_EQ(token,"another_token");
token = i.scheme->getAccessToken(fetchSettings, "github.com", "github.com/a/c");
ASSERT_EQ(token,"yet_another_token");
}
TEST_F(AccessKeysTest, multipleGitLab)
{
fetchers::Settings fetchSettings = fetchers::Settings{};
fetchSettings.accessTokens.get().insert({"gitlab.com","token"});
fetchSettings.accessTokens.get().insert({"gitlab.com/a/b","another_token"});
auto i = Input::fromURL(fetchSettings, "gitlab:a/b");
auto token = i.scheme->getAccessToken(fetchSettings, "gitlab.com", "gitlab.com/a/b");
ASSERT_EQ(token,"another_token");
token = i.scheme->getAccessToken(fetchSettings, "gitlab.com", "gitlab.com/a/c");
ASSERT_EQ(token,"token");
}
TEST_F(AccessKeysTest, multipleSourceHut)
{
fetchers::Settings fetchSettings = fetchers::Settings{};
fetchSettings.accessTokens.get().insert({"git.sr.ht","token"});
fetchSettings.accessTokens.get().insert({"git.sr.ht/~a/b","another_token"});
auto i = Input::fromURL(fetchSettings, "sourcehut:a/b");
auto token = i.scheme->getAccessToken(fetchSettings, "git.sr.ht", "git.sr.ht/~a/b");
ASSERT_EQ(token,"another_token");
token = i.scheme->getAccessToken(fetchSettings, "git.sr.ht", "git.sr.ht/~a/c");
ASSERT_EQ(token,"token");
}
}

1
src/libfetchers-tests/meson.build
View file

@ -44,6 +44,7 @@ subdir('nix-meson-build-support/common')
sources = files( sources = files(
'public-key.cc', 'public-key.cc',
'access-tokens.cc',
) )
include_dirs = [include_directories('.')] include_dirs = [include_directories('.')]

8
src/libfetchers/fetch-settings.hh
View file

@ -23,9 +23,11 @@ struct Settings : public Config
Access tokens are specified as a string made up of Access tokens are specified as a string made up of
space-separated `host=token` values. The specific token space-separated `host=token` values. The specific token
used is selected by matching the `host` portion against the used is selected by matching the `host` portion against the
"host" specification of the input. The actual use of the "host" specification of the input. The `host` portion may
`token` value is determined by the type of resource being contain a path element which will match against the prefix
accessed: URL for the input. (eg: `github.com/org=token`). The actual use
of the `token` value is determined by the type of resource
being accessed:
* Github: the token value is the OAUTH-TOKEN string obtained * Github: the token value is the OAUTH-TOKEN string obtained
as the Personal Access Token from the Github server (see as the Personal Access Token from the Github server (see

3
src/libfetchers/fetchers.hh
View file

@ -264,6 +264,9 @@ struct InputScheme
virtual std::optional<std::string> isRelative(const Input & input) const virtual std::optional<std::string> isRelative(const Input & input) const
{ return std::nullopt; } { return std::nullopt; }
virtual std::optional<std::string> getAccessToken(const fetchers::Settings & settings, const std::string & host, const std::string & url) const
{ return {};}
}; };
void registerInputScheme(std::shared_ptr<InputScheme> && fetcher); void registerInputScheme(std::shared_ptr<InputScheme> && fetcher);

2
src/libfetchers/github.cc
View file

@ -172,7 +172,7 @@ struct GitArchiveInputScheme : InputScheme
return input; return input;
} }
std::optional<std::string> getAccessToken(const fetchers::Settings & settings, const std::string & host, const std::string & url) const std::optional<std::string> getAccessToken(const fetchers::Settings & settings, const std::string & host, const std::string & url) const override
{ {
auto tokens = settings.accessTokens.get(); auto tokens = settings.accessTokens.get();
std::string answer; std::string answer;