Skip to content

feat: add support for cloning GitLab repositories#316

Merged
nathanwn merged 19 commits into
stagingfrom
301-clone-gitlab
Jun 22, 2023
Merged

feat: add support for cloning GitLab repositories#316
nathanwn merged 19 commits into
stagingfrom
301-clone-gitlab

Conversation

@nathanwn

@nathanwn nathanwn commented Jun 15, 2023
edited
Loading

Copy link
Copy Markdown
Member

Closes #301.

Description

This PR adds support for cloning GitLab repositories in Macaron. Specifically, GitLab repositories can now be cloned as either main targets or dependencies in a macaron analyze run.

This feature comes with the following additions/changes:

.ini configuration

  • The old [git] section in the .ini configuration will now be replaced by the new [git_service.*]  sections.
  • Each [git_service] section corresponds to a different git service with a domain key. This domain is used to determine if a Git service hosts a repo given the repo's Git URL.
  • If the domain key is not found in any [git_service.*]  section, the command macaron analyze  will error right away before any analysis is done.
  • Users can configure 2 different GitLab services in the [git_service.gitlab.*]  sections: a public one and a private one. The domain of the public GitLab service is gitlab.com by default.

Access Token Environment Variables

An access token for the public GitLab service is not required when it is enabled. However, an access token for the private GitLab service is always required when it is enabled.

We accept two environment variables storing the access tokens that correspond to the two GitLab services:

  • MCN_PUBLIC_GITLAB_TOKEN  for the public GitLab service.
  • MCN_PRIVATE_GITLAB_TOKEN  for the private GitLab service.

The MCN_PRIVATE_GITLAB_TOKEN environment variable must be set when the [git_service.gitlab.private] section is enabled in the .ini config. If this is not the case, the command macaron analyze  will error right away before any analysis is done.

@nathanwn nathanwn linked an issue Jun 15, 2023 that may be closed by this pull request
Add support for cloning from GitLab #301
Closed
@oracle-contributor-agreement oracle-contributor-agreement Bot added the OCA Verified All contributors have signed the Oracle Contributor Agreement. label Jun 15, 2023
@nathanwn nathanwn changed the base branch from main to staging June 15, 2023 05:44
behnazh-w
behnazh-w reviewed Jun 15, 2023
View reviewed changes
Comment thread src/macaron/slsa_analyzer/git_service/__init__.py Outdated
tromai
tromai reviewed Jun 16, 2023
View reviewed changes
Comment thread src/macaron/slsa_analyzer/git_service/__init__.py Outdated
tromai
tromai reviewed Jun 16, 2023
View reviewed changes
Comment thread src/macaron/errors.py Outdated
nathanwn added 4 commits June 19, 2023 11:57
@nathanwn
chore: modify git service schema in defaults.ini
2b49374 
Signed-off-by: Nathan Nguyen <nathan.nguyen@oracle.com>
@nathanwn
chore: implement load config methods for git service classes
0ed51fd 
Signed-off-by: Nathan Nguyen <nathan.nguyen@oracle.com>
@nathanwn
chore: fix broken functions and tests due to new ini config schema
eea81c7 
Signed-off-by: Nathan Nguyen <nathan.nguyen@oracle.com>
@nathanwn
chore: generalize git service detection logic to use git service domain
185483e 
Signed-off-by: Nathan Nguyen <nathan.nguyen@oracle.com>
nathanwn added 3 commits June 19, 2023 18:26
@nathanwn
chore: implement logic to clone repositories
e2a1c32 
Signed-off-by: Nathan Nguyen <nathan.nguyen@oracle.com>
@nathanwn
chore: remove unnecessary repo availability check before clone
fee0da3 
Signed-off-by: Nathan Nguyen <nathan.nguyen@oracle.com>
@nathanwn
chore: propagate GitLab access token env vars into the container
2b5f2e1 
Signed-off-by: Nathan Nguyen <nathan.nguyen@oracle.com>
@nathanwn nathanwn self-assigned this Jun 19, 2023
@nathanwn nathanwn marked this pull request as ready for review June 19, 2023 10:15
@nathanwn
chore: add instructing comments about access token in default ini file
750b054 
Signed-off-by: Nathan Nguyen <nathan.nguyen@oracle.com>
This was referenced Jun 20, 2023
Open
Closed
behnazh-w
behnazh-w reviewed Jun 20, 2023
View reviewed changes
Comment thread src/macaron/__main__.py Outdated
Comment thread src/macaron/slsa_analyzer/git_service/base_git_service.py Outdated
Comment thread src/macaron/slsa_analyzer/git_service/gitlab.py Outdated
Comment thread src/macaron/slsa_analyzer/git_service/gitlab.py Outdated
Comment thread src/macaron/slsa_analyzer/git_service/gitlab.py Outdated
Comment thread src/macaron/slsa_analyzer/git_service/gitlab.py
Comment thread tests/slsa_analyzer/test_git_url.py Outdated
@behnazh-w

behnazh-w commented Jun 20, 2023

Copy link
Copy Markdown
Member

@nathanwn I know you have opened a ticket for integration tests. But please add at least one test for a public GitLab repository in this PR.

nathanwn added 2 commits June 20, 2023 15:36
@nathanwn
chore: remove unnecessary str type cast when logging
c96e6b7 
Signed-off-by: Nathan Nguyen <nathan.nguyen@oracle.com>
@nathanwn
chore: fix typo in docstring
b42a9e3 
Signed-off-by: Nathan Nguyen <nathan.nguyen@oracle.com>
@nathanwn
chore: git integration test for cloning a public GitLab repository
dbb2748 
Signed-off-by: Nathan Nguyen <nathan.nguyen@oracle.com>
tromai
tromai reviewed Jun 21, 2023
View reviewed changes
Comment thread src/macaron/slsa_analyzer/git_service/base_git_service.py Outdated
Comment thread src/macaron/slsa_analyzer/git_url.py
Comment thread src/macaron/slsa_analyzer/git_service/gitlab.py
nathanwn added 2 commits June 21, 2023 10:58
@nathanwn
chore: adjust error messages and logging
f5a4bd0 
Signed-off-by: Nathan Nguyen <nathan.nguyen@oracle.com>
@nathanwn
chore: revert and add log messages for cloning repos
4712b13 
Signed-off-by: Nathan Nguyen <nathan.nguyen@oracle.com>
@nathanwn

nathanwn commented Jun 21, 2023

Copy link
Copy Markdown
Member Author

@nathanwn I know you have opened a ticket for integration tests. But please add at least one test for a public GitLab repository in this PR.

Integration test added in dbb2748.

nathanwn added 4 commits June 21, 2023 11:33
@nathanwn
chore: minor fix for BaseGitService docstring
4e41752 
Signed-off-by: Nathan Nguyen <nathan.nguyen@oracle.com>
@nathanwn
chore: construct GitLab clone URL with urllib utilities
185f587 
Signed-off-by: Nathan Nguyen <nathan.nguyen@oracle.com>
@nathanwn
chore: add tests for function to get allowed git service domains
2e607da 
Signed-off-by: Nathan Nguyen <nathan.nguyen@oracle.com>
@nathanwn
chore: add error handling for urlparse call
407eebb 
Signed-off-by: Nathan Nguyen <nathan.nguyen@oracle.com>
tromai
tromai approved these changes Jun 21, 2023
View reviewed changes

@tromai tromai left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

behnazh-w
behnazh-w reviewed Jun 22, 2023
View reviewed changes
Comment thread tests/slsa_analyzer/test_git_url.py
Comment thread tests/slsa_analyzer/test_git_url.py Outdated
tmp_path: Path,
) -> None:
"""Test the get allowed git service domains function, in multi-config files scenario."""
default_filepath = tmp_path / "default.ini"

@behnazh-w behnazh-w Jun 22, 2023

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please use os.path.join here and for all the path constructions.

@tromai tromai Jun 22, 2023

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I wonder why couldn't we use the slash operator here as it is supported by pathlib - https://docs.python.org/3/library/pathlib.html#operators. The tmp_path is of type pathlib.Path so I think it's okay to use.

@behnazh-w behnazh-w Jun 22, 2023

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It's to be consistent with the rest of the codebase and to be more explicit by using a function signature.

@nathanwn nathanwn Jun 22, 2023

Copy link
Copy Markdown
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should be fixed in 9425dfe.

Comment thread tests/slsa_analyzer/test_git_url.py
@nathanwn
chore: modify git_url tests to interact directly with the global defa…
9425dfe 
…ults config object

Signed-off-by: Nathan Nguyen <nathan.nguyen@oracle.com>
behnazh-w
behnazh-w reviewed Jun 22, 2023
View reviewed changes
Comment thread tests/slsa_analyzer/test_git_url.py Outdated
@nathanwn
chore: minor literal string styling fix
965282f 
Signed-off-by: Nathan Nguyen <nathan.nguyen@oracle.com>
@behnazh-w behnazh-w mentioned this pull request Jun 22, 2023
Closed
@nathanwn nathanwn merged commit 073c08f into staging Jun 22, 2023
@nathanwn nathanwn deleted the 301-clone-gitlab branch June 22, 2023 04:43
@nathanwn nathanwn added the git_service The issues related to a Git service, such as Bitbucket label Jul 8, 2023
@tromai tromai mentioned this pull request Aug 17, 2023
Merged
art1f1c3R pushed a commit that referenced this pull request Nov 29, 2024
@nathanwn
feat: add support for cloning GitLab repositories (#316)
764993e 
Signed-off-by: Nathan Nguyen <nathan.nguyen@oracle.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@behnazh-w behnazh-w behnazh-w approved these changes

+1 more reviewer

@tromai tromai tromai approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@nathanwn nathanwn

Labels

git_service The issues related to a Git service, such as Bitbucket OCA Verified All contributors have signed the Oracle Contributor Agreement.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Add support for cloning from GitLab

3 participants

@nathanwn @behnazh-w @tromai