osc/skins
1
1
Fork 0
Code Issues 5 Pull Requests Actions Packages Projects 1 Releases Wiki Activity
Files
0ce33a6db8753dc31c81cc6ad8ebb78fc843f2ee
skins/.gitea/workflows/deploy-ci.yaml
Arlind 0ce33a6db8 Update .gitea/workflows/deploy-ci.yaml
2025-06-09 10:01:32 +02:00

146 lines
5.5 KiB
YAML
Raw Blame History

name: Sync CI from skins-template to Every User Repository
on:
workflow_dispatch:
env:
GITEA_API: https://${{ vars.CONTAINER_REGISTRY }}/api/v1
TOKEN: ${{ secrets.TOKEN }}
TEMPLATE_PATH: .gitea/workflows/ci.yml
IMAGE_NAME: osc/skins-image
jobs:
sync-all:
runs-on: ubuntu-latest
container:
image: ${{ vars.CONTAINER_REGISTRY }}/${{ env.IMAGE_NAME }}:latest
steps:
- name: Fetch CI template via Gitea API
shell: bash
run: |
set -eo pipefail
resp=$(curl -sSL -H "Authorization: token $TOKEN" \
"$GITEA_API/repos/osc/skins-template/contents/$TEMPLATE_PATH?ref=main")
template_b64=$(echo "$resp" | jq -r .content)
echo "TEMPLATE_B64=$template_b64" >> $GITHUB_ENV
- name: Fetch valid user repositories
shell: bash
run: |
set -eo pipefail
page=1
per_page=50
valid_repos_file=$(mktemp)
user_count_total=$(curl -sSL -H "Authorization: token $TOKEN" \
"$GITEA_API/admin/users" | jq 'length')
user_counter=1
while :; do
users_json=$(curl -sSL -H "Authorization: token $TOKEN" \
"$GITEA_API/admin/users?limit=$per_page&page=$page")
users_count=$(echo "$users_json" | jq 'length')
[ "$users_count" -eq 0 ] && break
for i in $(seq 0 $((users_count - 1))); do
user_login=$(echo "$users_json" | jq -r ".[$i].login")
echo "[$user_counter/$user_count_total] Processing user: $user_login"
repos_json=$(curl -sSL -H "Authorization: token $TOKEN" \
"$GITEA_API/users/$user_login/repos")
repo_count=$(echo "$repos_json" | jq 'length')
if [ "$repo_count" -ne 0 ]; then
repo_matched=false
for j in $(seq 0 $((repo_count - 1))); do
owner=$(echo "$repos_json" | jq -r ".[$j].owner.login")
repo=$(echo "$repos_json" | jq -r ".[$j].name")
contents=$(curl -sSL -H "Authorization: token $TOKEN" \
"$GITEA_API/repos/$owner/$repo/contents?ref=main")
if echo "$contents" | jq -e '.[] | select(.type=="dir" and .name=="Skins")' >/dev/null; then
echo "$owner/$repo" >> "$valid_repos_file"
echo "added $owner/$repo"
repo_matched=true
fi
done
[ "$repo_matched" = false ] && echo "no matching repos for $user_login"
else
echo "no repos for $user_login"
fi
user_counter=$((user_counter + 1))
done
page=$((page + 1))
done
echo "VALID_REPOS_FILE=$valid_repos_file" >> $GITHUB_ENV
- name: Update CI via Gitea API (with debug)
shell: bash
run: |
set -euxo pipefail
mapfile -t repos < "$VALID_REPOS_FILE"
for repo_full in "${repos[@]}"; do
owner=${repo_full%%/*}
repo=${repo_full##*/}
api="$GITEA_API/repos/$owner/$repo"
echo "Processing $owner/$repo"
default_branch=$(curl -sSL --fail -H "Authorization: token $TOKEN" \
"$api" | jq -r '.default_branch')
echo "Default branch: $default_branch"
latest_tag=$(curl -sSL --fail -H "Authorization: token $TOKEN" \
"$api/tags" | jq -r '.[0].name // empty')
echo "Latest tag: '$latest_tag'"
if [[ -z "$latest_tag" ]]; then
echo "No tags found, skipping deletion"
elif [[ "$latest_tag" == "v1.0.0" ]]; then
echo "Skipping deletion for protected tag v1.0.0"
else
echo "Deleting tag '$latest_tag'"
delete_response=$(curl -sSL -X DELETE -H "Authorization: token $TOKEN" \
"$api/tags/$latest_tag" -w "%{http_code}" -o /dev/null) || delete_response=error
echo "Delete response code: $delete_response"
fi
url="$api/contents/$TEMPLATE_PATH"
sha=$(curl -sSL -H "Authorization: token $TOKEN" "$url" \
| jq -r 'select(.sha != null).sha // empty' || true)
if [[ -z "$sha" ]]; then
action="Add"
msg="Add CI from skins-template"
payload=$(jq -nc \
--arg message "$msg" \
--arg content "$TEMPLATE_B64" \
--arg branch "$default_branch" \
'{message: $message, content: $content, branch: $branch}')
else
action="Update"
msg="Update CI from skins-template"
payload=$(jq -nc \
--arg message "$msg" \
--arg content "$TEMPLATE_B64" \
--arg sha "$sha" \
--arg branch "$default_branch" \
'{message: $message, content: $content, sha: $sha, branch: $branch}')
fi
if curl -sSL --fail -X PUT \
-H "Authorization: token $TOKEN" \
-H "Content-Type: application/json" \
-d "$payload" \
"$url" >/dev/null; then
echo "✅ $action $owner/$repo on branch $default_branch"
else
echo "❌ $action failed for $owner/$repo → $url" >&2
fi
done
- name: Cleanup
shell: bash
run: rm -f "$VALID_REPOS_FILE"
Reference in New Issue View Git Blame Copy Permalink