From 7212b894b8e26c7326aab30f6948c6e01522a422 Mon Sep 17 00:00:00 2001 From: Arlind Sulejmani Date: Sun, 8 Jun 2025 16:59:48 +0200 Subject: [PATCH] Update .gitea/workflows/deploy-ci.yaml --- .gitea/workflows/deploy-ci.yaml | 140 ++++++++++++++++---------------- 1 file changed, 68 insertions(+), 72 deletions(-) diff --git a/.gitea/workflows/deploy-ci.yaml b/.gitea/workflows/deploy-ci.yaml index 8e812af..cdb1990 100644 --- a/.gitea/workflows/deploy-ci.yaml +++ b/.gitea/workflows/deploy-ci.yaml @@ -3,68 +3,80 @@ name: Sync CI from skins-template to Every User Repository on: workflow_dispatch: -env: - TEMPLATE_REPO_URL: https://${{ secrets.TOKEN }}@${{ vars.CONTAINER_REGISTRY }}/osc/skins-template.git - TEMPLATE_REL_PATH: .gitea/workflows/ci.yml - GITEA_API: https://${{ vars.CONTAINER_REGISTRY }}/api/v1 - jobs: sync-all: runs-on: ubuntu-latest container: image: ${{ vars.CONTAINER_REGISTRY }}/arlind/skins:latest + env: + GITEA_API: https://${{ vars.CONTAINER_REGISTRY }}/api/v1 + TOKEN: ${{ secrets.TOKEN }} + TEMPLATE_PATH: .gitea/workflows/ci.yml steps: - - name: Clone skins-template + - name: Fetch CI template via Gitea API run: | - echo "Cloning skins-template..." - git clone --quiet "${{ env.TEMPLATE_REPO_URL }}" --depth 1 template-repo - cd template-repo - git checkout --quiet HEAD -- "${{ env.TEMPLATE_REL_PATH }}" - echo "✓ Finished cloning osc/skins-template" + # get the template file (base64) + resp=$(curl -sSL \ + -H "Authorization: token $TOKEN" \ + "$GITEA_API/repos/osc/skins-template/contents/$TEMPLATE_PATH?ref=main") + template_b64=$(echo "$resp" | jq -r .content) + echo "TEMPLATE_B64=$template_b64" >> $GITHUB_ENV - name: Fetch valid user repositories - id: fetch_repos run: | page=1 per_page=50 valid_repos_file=$(mktemp) - user_count_total=$(curl -sSL -H "Authorization: token ${{ secrets.TOKEN }}" "${{ env.GITEA_API }}/admin/users" | jq 'length') + user_count_total=$(curl -sSL \ + -H "Authorization: token $TOKEN" \ + "$GITEA_API/admin/users" \ + | jq 'length') user_counter=1 while :; do - users_json=$(curl -sSL -H "Authorization: token ${{ secrets.TOKEN }}" "${{ env.GITEA_API }}/admin/users?limit=$per_page&page=$page") + users_json=$(curl -sSL \ + -H "Authorization: token $TOKEN" \ + "$GITEA_API/admin/users?limit=$per_page&page=$page") users_count=$(echo "$users_json" | jq 'length') [ "$users_count" -eq 0 ] && break for i in $(seq 0 $((users_count - 1))); do user_login=$(echo "$users_json" | jq -r ".[$i].login") echo "[$user_counter/$user_count_total] Processing user: $user_login" - repos_json=$(curl -sSL -H "Authorization: token ${{ secrets.TOKEN }}" "${{ env.GITEA_API }}/users/${user_login}/repos") + repos_json=$(curl -sSL \ + -H "Authorization: token $TOKEN" \ + "$GITEA_API/users/$user_login/repos") repo_count=$(echo "$repos_json" | jq 'length') if [ "$repo_count" -eq 0 ]; then - echo " ✖ User has no repositories." + echo " ✖ No repos for $user_login" else repo_matched=false for j in $(seq 0 $((repo_count - 1))); do owner=$(echo "$repos_json" | jq -r ".[$j].owner.login") repo=$(echo "$repos_json" | jq -r ".[$j].name") - - readme_json=$(curl -sSL -H "Authorization: token ${{ secrets.TOKEN }}" "${{ env.GITEA_API }}/repos/$owner/$repo/contents/README.md" || echo "{}") - content=$(echo "$readme_json" | jq -r .content 2>/dev/null | base64 -d 2>/dev/null || echo "") + readme_json=$(curl -sSL \ + -H "Authorization: token $TOKEN" \ + "$GITEA_API/repos/$owner/$repo/contents/README.md" \ + || echo "{}") + content=$(echo "$readme_json" \ + | jq -r .content 2>/dev/null \ + | base64 -d 2>/dev/null \ + || echo "") if echo "$content" | grep -qE "^---$" && \ echo "$content" | grep -q "^gitea: none" && \ echo "$content" | grep -q "^include_toc: true" && \ echo "$content" | grep -q "^# Skins"; then echo "$owner/$repo" >> "$valid_repos_file" - echo " ✓ Added $owner/$repo to update list" + echo " ✓ Added $owner/$repo" repo_matched=true fi done - [ "$repo_matched" = false ] && echo " ✓ User has no repositories matching the criteria" + [ "$repo_matched" = false ] && \ + echo " ✓ No matching repos for $user_login" fi user_counter=$((user_counter + 1)) @@ -73,63 +85,47 @@ jobs: page=$((page + 1)) done - echo "valid_repos_file=$valid_repos_file" >> "$GITHUB_OUTPUT" + echo "VALID_REPOS_FILE=$valid_repos_file" >> $GITHUB_ENV - - name: Update user repositories + - name: Update CI via Gitea API run: | - valid_repos_file="${{ steps.fetch_repos.outputs.valid_repos_file }}" - repo_total=$(wc -l < "$valid_repos_file") - repo_counter=1 + mapfile -t repos < "$VALID_REPOS_FILE" + total=${#repos[@]} - while read -r repo_full; do - owner=$(echo "$repo_full" | cut -d'/' -f1) - repo=$(echo "$repo_full" | cut -d'/' -f2) - echo "[$repo_counter/$repo_total] Processing Repository: $owner/$repo" + for idx in "${!repos[@]}"; do + repo_full=${repos[$idx]} + owner=${repo_full%%/*} + repo=${repo_full##*/} + url="$GITEA_API/repos/$owner/$repo/contents/$TEMPLATE_PATH" - tmpdir=$(mktemp -d) - git clone --quiet "https://${{ secrets.TOKEN }}@${{ vars.CONTAINER_REGISTRY }}/${owner}/${repo}.git" "$tmpdir" - cd "$tmpdir" - mkdir -p .gitea/workflows - cp "/workspace/osc/skins/template-repo/${{ env.TEMPLATE_REL_PATH }}" .gitea/workflows/ci.yml - git config user.email "arlind@sulej.ch" - git config user.name "ci-bot" - git add .gitea/workflows/ci.yml + echo "[$((idx+1))/$total] Fetching SHA for $owner/$repo…" + sha=$(curl -sSL \ + -H "Authorization: token $TOKEN" \ + "$url" \ + | jq -r .sha // echo "") - if ! git diff --cached --quiet; then - git fetch --tags >/dev/null 2>&1 - latest_tag=$(git describe --tags --abbrev=0 2>/dev/null || true) - latest_tag=$(echo "$latest_tag" | xargs) - echo "Latest tag detected: '$latest_tag'" - if [ -n "$latest_tag" ]; then - if [ "$latest_tag" = "v1.0.0" ]; then - echo "Never delete v1.0.0" - else - echo "Deleting tag '$latest_tag' (not v1.0.0)..." - git push origin --delete tag "$latest_tag" >/dev/null 2>&1 || true - git tag -d "$latest_tag" >/dev/null 2>&1 || true - fi - else - echo "No tags found to consider for deletion." - fi - git commit -m "Update CI" --quiet - git push origin HEAD:main --tags --force >/dev/null 2>&1 - echo " → Updated and pushed $owner/$repo" + if [ -z "$sha" ] || [ "$sha" = "null" ]; then + payload=$(jq -n \ + --arg m "Add CI from skins-template" \ + --arg c "$TEMPLATE_B64" \ + '{message: $m, content: $c, branch: "main"}') else - echo " → No changes detected for $owner/$repo" + payload=$(jq -n \ + --arg m "Update CI from skins-template" \ + --arg c "$TEMPLATE_B64" \ + --arg s "$sha" \ + '{message: $m, content: $c, sha: $s, branch: "main"}') fi - cd - >/dev/null - rm -rf "$tmpdir" - echo " ✓ Completed $owner/$repo" + echo "→ PUT $url" + curl -sSL -X PUT \ + -H "Authorization: token $TOKEN" \ + -H "Content-Type: application/json" \ + -d "$payload" \ + "$url" \ + && echo "✓ Updated $owner/$repo" \ + || echo "✖ Failed $owner/$repo" + done - repo_counter=$((repo_counter + 1)) - done < "$valid_repos_file" - - rm "$valid_repos_file" - rm -rf "$tmpdir" - echo " ✓ Completed $owner/$repo" - - repo_counter=$((repo_counter + 1)) - done < "$valid_repos_file" - - rm "$valid_repos_file" + - name: Cleanup + run: rm -f "$VALID_REPOS_FILE"