c12s-kubespray/scripts/premoderator.sh

#!/bin/bash
# A naive premoderation script to allow Gitlab CI pipeline on a specific PRs' comment
# Exits with 0, if the pipeline is good to go
# Exits with 1, if the user is not allowed to start pipeline
# Exits with 2, if script is unable to get issue id from CI_BUILD_REF_NAME variable
# Exits with 3, if missing the magic comment in the pipeline to start the pipeline

CURL_ARGS="-fs --retry 4 --retry-delay 5"
MAGIC="${MAGIC:-ci check this}"
exit_code=0

# Get PR number from CI_BUILD_REF_NAME
issue=$(echo ${CI_BUILD_REF_NAME} | perl -ne '/^pr-(\d+)-\S+$/ && print $1')

if [ "$issue" = "" ]; then
  echo "Unable to get issue id from: $CI_BUILD_REF_NAME"
  exit 2
fi

echo "Fetching labels from PR $issue"
labels=$(curl ${CURL_ARGS} "https://api.github.com/repos/kubernetes-sigs/kubespray/issues/${issue}?access_token=${GITHUB_TOKEN}" | jq '{labels: .labels}' | jq '.labels[].name' | jq -s '')
labels_to_patch=$(echo -n $labels | jq '. + ["needs-ci-auth"]' | tr -d "\n")

echo "Checking for '$MAGIC' comment in PR $issue"

# Get the user name from the PR comments with the wanted magic incantation casted
user=$(curl ${CURL_ARGS} "https://api.github.com/repos/kubernetes-sigs/kubespray/issues/${issue}/comments" | jq -M "map(select(.body | contains (\"$MAGIC\"))) | .[0] .user.login" | tr -d '"')

# Check for the required user group membership to allow (exit 0) or decline (exit >0) the pipeline
if [ "$user" = "" ] || [ "$user" = "null" ]; then
  echo "Missing '$MAGIC' comment from one of the OWNERS"
  exit_code=3
else
  echo "Found comment from user: $user"

  curl ${CURL_ARGS} "https://api.github.com/orgs/kubernetes-sigs/members/${user}"

  if [ $? -ne 0 ]; then
    echo "User does not have permissions to start CI run"
    exit_code=1
  else
    labels_to_patch=$(echo -n $labels | jq '. - ["needs-ci-auth"]' | tr -d "\n")
    exit_code=0
    echo "$user has allowed CI to start"
  fi
fi

# Patch labels on PR
curl ${CURL_ARGS} --request PATCH "https://api.github.com/repos/kubernetes-sigs/kubespray/issues/${issue}?access_token=${GITHUB_TOKEN}" -H "Content-Type: application/json" -d "{\"labels\": ${labels_to_patch}}"

exit $exit_code
Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation 2019-04-06 19:12:26 +00:00			`#!/bin/bash`
Do not auto-trigger gitlab CI pipeline on PRs For security and resources utilization reasons, do not auto-start CI for opened/updated PRs. A member of the kubernetes-incubator github org has first to approve that the PR is reasonable to test by putting the "ci check this" into the PR's comments. If approved that way, the CI pipeline starts as always. Only the 1st step of the pipeline is premoderatied, the rest will follow each over on success. Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru> 2017-01-04 08:56:09 +00:00			`# A naive premoderation script to allow Gitlab CI pipeline on a specific PRs' comment`
			`# Exits with 0, if the pipeline is good to go`
Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation 2019-04-06 19:12:26 +00:00			`# Exits with 1, if the user is not allowed to start pipeline`
			`# Exits with 2, if script is unable to get issue id from CI_BUILD_REF_NAME variable`
			`# Exits with 3, if missing the magic comment in the pipeline to start the pipeline`
Do not auto-trigger gitlab CI pipeline on PRs For security and resources utilization reasons, do not auto-start CI for opened/updated PRs. A member of the kubernetes-incubator github org has first to approve that the PR is reasonable to test by putting the "ci check this" into the PR's comments. If approved that way, the CI pipeline starts as always. Only the 1st step of the pipeline is premoderatied, the rest will follow each over on success. Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru> 2017-01-04 08:56:09 +00:00
Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation 2019-04-06 19:12:26 +00:00			`CURL_ARGS="-fs --retry 4 --retry-delay 5"`
Do not auto-trigger gitlab CI pipeline on PRs For security and resources utilization reasons, do not auto-start CI for opened/updated PRs. A member of the kubernetes-incubator github org has first to approve that the PR is reasonable to test by putting the "ci check this" into the PR's comments. If approved that way, the CI pipeline starts as always. Only the 1st step of the pipeline is premoderatied, the rest will follow each over on success. Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru> 2017-01-04 08:56:09 +00:00			`MAGIC="${MAGIC:-ci check this}"`
Let Premoderator script add labels (#4978) * Let Premoderator script add labels * Fix JQ error * Minor fixes * Debug patch label output * Try again * Try again * Try again * Try again * Try again * Minor cleanup 2019-07-16 07:43:24 +00:00			`exit_code=0`
Do not auto-trigger gitlab CI pipeline on PRs For security and resources utilization reasons, do not auto-start CI for opened/updated PRs. A member of the kubernetes-incubator github org has first to approve that the PR is reasonable to test by putting the "ci check this" into the PR's comments. If approved that way, the CI pipeline starts as always. Only the 1st step of the pipeline is premoderatied, the rest will follow each over on success. Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru> 2017-01-04 08:56:09 +00:00
			`# Get PR number from CI_BUILD_REF_NAME`
			`issue=$(echo ${CI_BUILD_REF_NAME} \| perl -ne '/^pr-(\d+)-\S+$/ && print $1')`
Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation 2019-04-06 19:12:26 +00:00
			`if [ "$issue" = "" ]; then`
			`echo "Unable to get issue id from: $CI_BUILD_REF_NAME"`
			`exit 2`
			`fi`

Let Premoderator script add labels (#4978) * Let Premoderator script add labels * Fix JQ error * Minor fixes * Debug patch label output * Try again * Try again * Try again * Try again * Try again * Minor cleanup 2019-07-16 07:43:24 +00:00			`echo "Fetching labels from PR $issue"`
			`labels=$(curl ${CURL_ARGS} "https://api.github.com/repos/kubernetes-sigs/kubespray/issues/${issue}?access_token=${GITHUB_TOKEN}" \| jq '{labels: .labels}' \| jq '.labels[].name' \| jq -s '')`
			`labels_to_patch=$(echo -n $labels \| jq '. + ["needs-ci-auth"]' \| tr -d "\n")`

Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation 2019-04-06 19:12:26 +00:00			`echo "Checking for '$MAGIC' comment in PR $issue"`

Do not auto-trigger gitlab CI pipeline on PRs For security and resources utilization reasons, do not auto-start CI for opened/updated PRs. A member of the kubernetes-incubator github org has first to approve that the PR is reasonable to test by putting the "ci check this" into the PR's comments. If approved that way, the CI pipeline starts as always. Only the 1st step of the pipeline is premoderatied, the rest will follow each over on success. Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru> 2017-01-04 08:56:09 +00:00			`# Get the user name from the PR comments with the wanted magic incantation casted`
Let Premoderator script add labels (#4978) * Let Premoderator script add labels * Fix JQ error * Minor fixes * Debug patch label output * Try again * Try again * Try again * Try again * Try again * Minor cleanup 2019-07-16 07:43:24 +00:00			`user=$(curl ${CURL_ARGS} "https://api.github.com/repos/kubernetes-sigs/kubespray/issues/${issue}/comments" \| jq -M "map(select(.body \| contains (\"$MAGIC\"))) \| .[0] .user.login" \| tr -d '"')`
Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation 2019-04-06 19:12:26 +00:00
Do not auto-trigger gitlab CI pipeline on PRs For security and resources utilization reasons, do not auto-start CI for opened/updated PRs. A member of the kubernetes-incubator github org has first to approve that the PR is reasonable to test by putting the "ci check this" into the PR's comments. If approved that way, the CI pipeline starts as always. Only the 1st step of the pipeline is premoderatied, the rest will follow each over on success. Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru> 2017-01-04 08:56:09 +00:00			`# Check for the required user group membership to allow (exit 0) or decline (exit >0) the pipeline`
Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation 2019-04-06 19:12:26 +00:00			`if [ "$user" = "" ] \|\| [ "$user" = "null" ]; then`
			`echo "Missing '$MAGIC' comment from one of the OWNERS"`
Let Premoderator script add labels (#4978) * Let Premoderator script add labels * Fix JQ error * Minor fixes * Debug patch label output * Try again * Try again * Try again * Try again * Try again * Minor cleanup 2019-07-16 07:43:24 +00:00			`exit_code=3`
Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation 2019-04-06 19:12:26 +00:00			`else`
			`echo "Found comment from user: $user"`

Let Premoderator script add labels (#4978) * Let Premoderator script add labels * Fix JQ error * Minor fixes * Debug patch label output * Try again * Try again * Try again * Try again * Try again * Minor cleanup 2019-07-16 07:43:24 +00:00			`curl ${CURL_ARGS} "https://api.github.com/orgs/kubernetes-sigs/members/${user}"`
Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation 2019-04-06 19:12:26 +00:00
Let Premoderator script add labels (#4978) * Let Premoderator script add labels * Fix JQ error * Minor fixes * Debug patch label output * Try again * Try again * Try again * Try again * Try again * Minor cleanup 2019-07-16 07:43:24 +00:00			`if [ $? -ne 0 ]; then`
			`echo "User does not have permissions to start CI run"`
			`exit_code=1`
			`else`
			`labels_to_patch=$(echo -n $labels \| jq '. - ["needs-ci-auth"]' \| tr -d "\n")`
			`exit_code=0`
			`echo "$user has allowed CI to start"`
			`fi`
Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation 2019-04-06 19:12:26 +00:00			`fi`

Let Premoderator script add labels (#4978) * Let Premoderator script add labels * Fix JQ error * Minor fixes * Debug patch label output * Try again * Try again * Try again * Try again * Try again * Minor cleanup 2019-07-16 07:43:24 +00:00			`# Patch labels on PR`
			`curl ${CURL_ARGS} --request PATCH "https://api.github.com/repos/kubernetes-sigs/kubespray/issues/${issue}?access_token=${GITHUB_TOKEN}" -H "Content-Type: application/json" -d "{\"labels\": ${labels_to_patch}}"`

			`exit $exit_code`