feat: add support for GitHub JWT auth by bcoe · Pull Request #262 · googleapis/releasetool

bcoe · 2020-08-26T02:51:31Z

This PR assumes that we will set three secrets:

APP_ID: path to a file that contains a GitHub application ID.
INSTALLATION: path to a file that contains an installation ID.
GITHUB_PRIVATE_KEY: path to a file that contains the PEM secret for a GitHub application.

If these environments are found set, then rather than using magic-proxy, it grabs a JWT for our application and uses it to authenticate.

Note: I'm not sure of a great way to write tests for this, but I've done an end to end testing, and confirmed the approach works.

SurferJeffAtGoogle

This looks like solid Python. You're too humble about your Python skills. 😊

Co-authored-by: Jeff Ching <[email protected]>

feat: add support for GitHub JWT auth

7ab7b77

google-cla Bot added the cla: yes This human has signed the Contributor License Agreement. label Aug 26, 2020

bcoe requested review from SurferJeffAtGoogle, busunkim96 and chingor13 August 26, 2020 02:53

chore: fix formatting

20097d8

JustinBeckwith reviewed Aug 26, 2020

View reviewed changes

Comment thread releasetool/github.py

chingor13 reviewed Aug 26, 2020

View reviewed changes

Comment thread releasetool/__main__.py Outdated

Comment thread releasetool/commands/publish_reporter.py Outdated

Comment thread releasetool/github.py Outdated

bcoe added 3 commits August 26, 2020 09:00

chore: fix up my comments

20aac75

chore: address initial review

c4b992b

chore: address code review

69979c5

SurferJeffAtGoogle reviewed Aug 26, 2020

View reviewed changes

Comment thread releasetool/__main__.py Outdated

Comment thread releasetool/__main__.py

Comment thread releasetool/github.py

Comment thread releasetool/github.py Outdated

bcoe added 8 commits August 26, 2020 09:42

chore: add testing secrets to .gitignore

2ca908a

chore: move to installation_id_path

c15a7e0

chore: migrate from deprecated endpoint

873e660

chore: address code review

1f388d0

chore: fix formatting

78bd332

build: add environment variables to shell

b5eae53

chore: remove extra line in .gitignore

1eec160

chore: add comment explaining magic proxy

7b4f595

SurferJeffAtGoogle approved these changes Aug 26, 2020

View reviewed changes

chore: make setting credentials conditional

d17aa16

chingor13 reviewed Aug 26, 2020

View reviewed changes

Comment thread releasetool/commands/publish_reporter.sh Outdated

Comment thread releasetool/github.py Outdated

Benjamin E. Coe and others added 3 commits August 26, 2020 11:29

Update releasetool/commands/publish_reporter.sh

3cbfd37

Co-authored-by: Jeff Ching <[email protected]>

chore: refactor to factory

89d5907

chore: format

18209f4

bcoe mentioned this pull request Aug 26, 2020

build: track flaky tests for "nightly", add new secrets for tagging googleapis/synthtool#736

Merged

bcoe merged commit ff891a4 into master Aug 26, 2020

bcoe mentioned this pull request Sep 9, 2020

Magic proxy is currently failing, resulting in labels not being removed post publication #255

Closed

dazuma mentioned this pull request Jan 2, 2021

fix: Remove spurious method call when exchanging JWT for an access token #296

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat: add support for GitHub JWT auth#262

feat: add support for GitHub JWT auth#262
bcoe merged 17 commits intomasterfrom
github-jwt-support

bcoe commented Aug 26, 2020

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

SurferJeffAtGoogle left a comment

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

Conversation

bcoe commented Aug 26, 2020

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

SurferJeffAtGoogle left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants