This repository was archived by the owner on May 15, 2025. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 59
feat: Add github-upload-public-key module #241
Merged
Merged
Changes from 4 commits
Commits
Show all changes
23 commits
Select commit
Hold shift + click to select a range
b2e87ef
feat: Add github-upload-public-key module
f0ssel c9e418a
improve status code handling and add readme
f0ssel edc163b
fix testing
f0ssel 1273378
Update README.md
f0ssel e8ce194
use code cli for token and update readme
f0ssel 2e43788
heading
f0ssel 428f386
add troubleshooting
f0ssel 5a33af2
fmt
f0ssel cff60c4
add auth id var
f0ssel 5030fcb
add coder workspace me
f0ssel a45706a
fix Invalid template control keyword
f0ssel 180e10c
require curl and jq
f0ssel 46bf422
maintainer
f0ssel 36fa871
add tests
f0ssel aced754
fmt
f0ssel 67fef29
increase test timeout
f0ssel a239212
fmt and increase timeout again
f0ssel daed803
pr review
f0ssel 4bdb428
fix test
f0ssel 85e73c2
fmt
f0ssel c068082
pr comments
f0ssel 282e1f8
take env and then interpolate
f0ssel 873207f
remove set -e
f0ssel File filter
Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
There are no files selected for viewing
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,23 @@ | ||
| --- | ||
| display_name: Github Upload Public Key | ||
| description: Automates uploading Coder public key to Github so users don't have to. | ||
| icon: ../.icons/github.svg | ||
| maintainer_github: f0ssel | ||
| verified: false | ||
| tags: [helper] | ||
| --- | ||
|
|
||
| # github-upload-public-key | ||
|
|
||
| <!-- Describes what this module does --> | ||
|
|
||
| ```tf | ||
| module "github-upload-public-key" { | ||
| source = "registry.coder.com/modules/github-upload-public-key/coder" | ||
| version = "1.0.13" | ||
| agent_id = coder_agent.example.id | ||
| } | ||
| ``` | ||
|
|
||
| <!-- Add a screencast or screenshot here put them in .images directory --> | ||
| <!-- TODO: Add examples --> | ||
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,26 @@ | ||
| terraform { | ||
| required_version = ">= 1.0" | ||
|
|
||
| required_providers { | ||
| coder = { | ||
| source = "coder/coder" | ||
| version = ">= 0.12" | ||
| } | ||
| } | ||
| } | ||
|
|
||
| variable "agent_id" { | ||
| type = string | ||
| description = "The ID of a Coder agent." | ||
| } | ||
|
|
||
| resource "coder_script" "github_upload_public_key" { | ||
| agent_id = var.agent_id | ||
| script = templatefile("${path.module}/run.sh", { | ||
| CODER_OWNER_SESSION_TOKEN : data.coder_workspace.me.owner_session_token, | ||
| CODER_ACCESS_URL : data.coder_workspace.me.access_url, | ||
| }) | ||
| display_name = "Github Upload Public Key" | ||
| icon = "/icon/github.svg" | ||
| run_on_start = true | ||
| } |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,93 @@ | ||
| #!/usr/bin/env bash | ||
|
|
||
| set -e | ||
|
|
||
| CODER_ACCESS_URL="${CODER_ACCESS_URL}" | ||
| CODER_OWNER_SESSION_TOKEN="${CODER_OWNER_SESSION_TOKEN}" | ||
|
|
||
| if [ -z "$CODER_ACCESS_URL" ]; then | ||
| echo "No coder access url specified!" | ||
f0ssel marked this conversation as resolved.
Show resolved
Hide resolved
f0ssel marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| exit 1 | ||
| fi | ||
|
|
||
| if [ -z "$CODER_OWNER_SESSION_TOKEN" ]; then | ||
| echo "No coder owner session token specified!" | ||
| exit 1 | ||
| fi | ||
|
|
||
| if [ -z "$GITHUB_TOKEN" ]; then | ||
| echo "No GITHUB_TOKEN in the workspace environment!" | ||
| echo "The user must be authenticated with Github before this script can be run." | ||
| exit 1 | ||
| fi | ||
f0ssel marked this conversation as resolved.
Show resolved
Hide resolved
|
||
|
|
||
| echo "Fetching Coder public SSH key..." | ||
f0ssel marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| PUBLIC_KEY_RESPONSE=$(curl -L -s \ | ||
| -w "%{http_code}" \ | ||
| -H 'accept: application/json' \ | ||
| -H "cookie: coder_session_token=$CODER_OWNER_SESSION_TOKEN" \ | ||
| "$CODER_ACCESS_URL/api/v2/users/me/gitsshkey" | ||
| ) | ||
| PUBLIC_KEY_RESPONSE_STATUS=$(tail -n1 <<< "$PUBLIC_KEY_RESPONSE") | ||
| PUBLIC_KEY_BODY=$(sed \$d <<< "$PUBLIC_KEY_RESPONSE") | ||
|
|
||
| if [ "$PUBLIC_KEY_RESPONSE_STATUS" -ne 200 ]; then | ||
| echo "Failed to fetch Coder public SSH key with status code $PUBLIC_KEY_RESPONSE_STATUS!" | ||
| echo "$PUBLIC_KEY_BODY" | ||
| exit 1 | ||
| fi | ||
|
|
||
| PUBLIC_KEY=$(jq -r '.public_key' <<< "$PUBLIC_KEY_BODY") | ||
| echo "Coder public SSH key found!" | ||
f0ssel marked this conversation as resolved.
Show resolved
Hide resolved
|
||
|
|
||
| if [ -z "$PUBLIC_KEY" ]; then | ||
| echo "No Coder public SSH key found!" | ||
| exit 1 | ||
| fi | ||
|
|
||
| echo "Fetching GitHub public SSH keys..." | ||
f0ssel marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| GITHUB_KEYS_RESPONSE=$(curl -L -s \ | ||
| -w "%{http_code}" \ | ||
| -H "Accept: application/vnd.github+json" \ | ||
| -H "Authorization: Bearer $GITHUB_TOKEN" \ | ||
| -H "X-GitHub-Api-Version: 2022-11-28" \ | ||
| https://api.github.com/user/keys | ||
| ) | ||
f0ssel marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| GITHUB_KEYS_RESPONSE_STATUS=$(tail -n1 <<< "$GITHUB_KEYS_RESPONSE") | ||
| GITHUB_KEYS_RESPONSE_BODY=$(sed \$d <<< "$GITHUB_KEYS_RESPONSE") | ||
|
|
||
| if [ "$GITHUB_KEYS_RESPONSE_STATUS" -ne 200 ]; then | ||
| echo "Failed to fetch Coder public SSH key with status code $GITHUB_KEYS_RESPONSE_STATUS!" | ||
| echo "$GITHUB_KEYS_RESPONSE_BODY" | ||
| exit 1 | ||
| fi | ||
|
|
||
| GITHUB_MATCH=$(jq -r --arg PUBLIC_KEY "$PUBLIC_KEY" '.[] | select(.key == $PUBLIC_KEY) | .key' <<< "$GITHUB_KEYS_RESPONSE_BODY") | ||
|
|
||
| if [ "$PUBLIC_KEY" = "$GITHUB_MATCH" ]; then | ||
| echo "Coder public SSH key is already uploaded to GitHub!" | ||
f0ssel marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| exit 0 | ||
| fi | ||
|
|
||
| echo "Coder public SSH key not found in GitHub keys!" | ||
| echo "Uploading Coder public SSH key to GitHub..." | ||
f0ssel marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| CODER_PUBLIC_KEY_NAME="$CODER_ACCESS_URL Workspaces" | ||
| UPLOAD_RESPONSE=$(curl -L -s \ | ||
| -X POST \ | ||
| -w "%{http_code}" \ | ||
| -H "Accept: application/vnd.github+json" \ | ||
| -H "Authorization: Bearer $GITHUB_TOKEN" \ | ||
| -H "X-GitHub-Api-Version: 2022-11-28" \ | ||
| https://api.github.com/user/keys \ | ||
| -d "{\"title\":\"$CODER_PUBLIC_KEY_NAME\",\"key\":\"$PUBLIC_KEY\"}" | ||
| ) | ||
| UPLOAD_RESPONSE_STATUS=$(tail -n1 <<< "$UPLOAD_RESPONSE") | ||
| UPLOAD_RESPONSE_BODY=$(sed \$d <<< "$UPLOAD_RESPONSE") | ||
|
|
||
| if [ "$UPLOAD_RESPONSE_STATUS" -ne 201 ]; then | ||
| echo "Failed to upload Coder public SSH key with status code $UPLOAD_RESPONSE_STATUS!" | ||
| echo "$UPLOAD_RESPONSE_BODY" | ||
| exit 1 | ||
| fi | ||
|
|
||
| echo "Coder public SSH key uploaded to GitHub!" | ||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Uh oh!
There was an error while loading. Please reload this page.