woodpecker/model/secret.go

package model

import (
	"path/filepath"
)

type Secret struct {
	// the name of the secret which will be used as the environment variable
	// name at runtime.
	Name string `json:"name"`

	// the value of the secret which will be provided to the runtime environment
	// as a named environment variable.
	Value string `json:"value"`

	// the secret is restricted to this list of images.
	Images []string `json:"image,omitempty"`

	// the secret is restricted to this list of events.
	Events []string `json:"event,omitempty"`

	// whether the secret requires verification
	SkipVerify bool `json:"skip_verify"`

	// whether the secret should be concealed in the build log
	Conceal bool `json:"conceal"`
}

// Match returns true if an image and event match the restricted list.
func (s *Secret) Match(image, event string) bool {
	return s.MatchImage(image) && s.MatchEvent(event)
}

// MatchImage returns true if an image matches the restricted list.
func (s *Secret) MatchImage(image string) bool {
	for _, pattern := range s.Images {
		if match, _ := filepath.Match(pattern, image); match {
			return true
		} else if pattern == "*" {
			return true
		}
	}
	return false
}

// MatchEvent returns true if an event matches the restricted list.
func (s *Secret) MatchEvent(event string) bool {
	for _, pattern := range s.Events {
		if match, _ := filepath.Match(pattern, event); match {
			return true
		}
	}
	return false
}

// Validate validates the required fields and formats.
func (s *Secret) Validate() error {
	return nil
}
ability to store per-repository secrets & sign yaml 2016-03-31 21:01:32 +02:00			`package model`

Separated repo and team secret models 2016-07-31 22:29:56 +02:00			`import (`
			`"path/filepath"`
			`)`
enables cloning private repos 2016-04-21 10:18:20 +02:00
ability to store per-repository secrets & sign yaml 2016-03-31 21:01:32 +02:00			`type Secret struct {`
enables cloning private repos 2016-04-21 10:18:20 +02:00			`// the name of the secret which will be used as the environment variable`
			`// name at runtime.`
Separated repo and team secret models 2016-07-31 22:29:56 +02:00			Name string `json:"name"`
ability to store per-repository secrets & sign yaml 2016-03-31 21:01:32 +02:00
enables cloning private repos 2016-04-21 10:18:20 +02:00			`// the value of the secret which will be provided to the runtime environment`
			`// as a named environment variable.`
Separated repo and team secret models 2016-07-31 22:29:56 +02:00			Value string `json:"value"`
ability to store per-repository secrets & sign yaml 2016-03-31 21:01:32 +02:00
			`// the secret is restricted to this list of images.`
Separated repo and team secret models 2016-07-31 22:29:56 +02:00			Images []string `json:"image,omitempty"`
ability to store per-repository secrets & sign yaml 2016-03-31 21:01:32 +02:00
			`// the secret is restricted to this list of events.`
Separated repo and team secret models 2016-07-31 22:29:56 +02:00			Events []string `json:"event,omitempty"`
Adding SkipVerify to Secrets 2016-10-19 20:50:09 +02:00
			`// whether the secret requires verification`
			SkipVerify bool `json:"skip_verify"`
Implement backend for concealing secrets 2016-11-16 21:28:36 +02:00
			`// whether the secret should be concealed in the build log`
			Conceal bool `json:"conceal"`
ability to store per-repository secrets & sign yaml 2016-03-31 21:01:32 +02:00			`}`

fully functioning build using 0.5 agents 2016-04-21 09:25:30 +02:00			`// Match returns true if an image and event match the restricted list.`
			`func (s *Secret) Match(image, event string) bool {`
			`return s.MatchImage(image) && s.MatchEvent(event)`
			`}`

			`// MatchImage returns true if an image matches the restricted list.`
enables cloning private repos 2016-04-21 10:18:20 +02:00			`func (s *Secret) MatchImage(image string) bool {`
			`for _, pattern := range s.Images {`
			`if match, _ := filepath.Match(pattern, image); match {`
fully functioning build using 0.5 agents 2016-04-21 09:25:30 +02:00			`return true`
write netrc file in build images 2016-04-23 22:51:12 +02:00			`} else if pattern == "*" {`
			`return true`
fully functioning build using 0.5 agents 2016-04-21 09:25:30 +02:00			`}`
			`}`
			`return false`
			`}`

			`// MatchEvent returns true if an event matches the restricted list.`
enables cloning private repos 2016-04-21 10:18:20 +02:00			`func (s *Secret) MatchEvent(event string) bool {`
			`for _, pattern := range s.Events {`
			`if match, _ := filepath.Match(pattern, event); match {`
fully functioning build using 0.5 agents 2016-04-21 09:25:30 +02:00			`return true`
			`}`
			`}`
			`return false`
			`}`

			`// Validate validates the required fields and formats.`
ability to store per-repository secrets & sign yaml 2016-03-31 21:01:32 +02:00			`func (s *Secret) Validate() error {`
			`return nil`
			`}`