Enable caching of GitHub API calls #30
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -24,6 +24,7 @@ | |
|
|
||
| package org.jenkinsci.plugins.github_branch_source; | ||
|
|
||
| import com.cloudbees.jenkins.GitHubWebHook; | ||
| import com.cloudbees.plugins.credentials.CredentialsMatcher; | ||
| import com.cloudbees.plugins.credentials.CredentialsMatchers; | ||
| import com.cloudbees.plugins.credentials.CredentialsProvider; | ||
|
|
@@ -33,19 +34,33 @@ | |
| import com.cloudbees.plugins.credentials.common.StandardUsernamePasswordCredentials; | ||
| import com.cloudbees.plugins.credentials.domains.DomainRequirement; | ||
| import com.cloudbees.plugins.credentials.domains.URIRequirementBuilder; | ||
| import com.google.common.hash.Hashing; | ||
| import com.squareup.okhttp.Cache; | ||
| import com.squareup.okhttp.OkHttpClient; | ||
| import com.squareup.okhttp.OkUrlFactory; | ||
| import hudson.Util; | ||
| import hudson.security.ACL; | ||
| import java.io.IOException; | ||
| import java.net.HttpURLConnection; | ||
| import java.net.Proxy; | ||
| import java.util.List; | ||
| import javax.annotation.CheckForNull; | ||
| import javax.annotation.Nonnull; | ||
|
|
||
| import jenkins.model.Jenkins; | ||
| import jenkins.scm.api.SCMSourceOwner; | ||
| import org.apache.commons.lang.StringUtils; | ||
| import org.jenkinsci.plugins.gitclient.GitClient; | ||
| import org.jenkinsci.plugins.github.config.GitHubServerConfig; | ||
| import org.jenkinsci.plugins.github.internal.GitHubClientCacheOps; | ||
| import org.kohsuke.github.GitHub; | ||
| import org.kohsuke.github.GitHubBuilder; | ||
| import org.kohsuke.github.RateLimitHandler; | ||
| import org.kohsuke.github.extras.OkHttpConnector; | ||
|
|
||
| import static org.apache.commons.lang3.StringUtils.*; | ||
| import static org.jenkinsci.plugins.github.config.GitHubServerConfig.GITHUB_URL; | ||
| import static org.jenkinsci.plugins.github.internal.GitHubClientCacheOps.toCacheDir; | ||
|
|
||
| /** | ||
| * Utilities that could perhaps be moved into {@code github-api}. | ||
|
|
@@ -69,27 +84,43 @@ public class Connector { | |
| } | ||
|
|
||
| public static @Nonnull GitHub connect(@CheckForNull String apiUri, @CheckForNull StandardCredentials credentials) throws IOException { | ||
| GitHubServerConfig config = new GitHubServerConfig(credentials!=null ? credentials.getId() : null); | ||
| String apiUrl = Util.fixEmptyAndTrim(apiUri); | ||
| if (apiUrl !=null) { | ||
| config.setCustomApiUrl(true); | ||
| config.setApiUrl(apiUrl); | ||
| } | ||
|
|
||
| // Can't do this until github plugin support username/password | ||
|
There was a problem hiding this comment. If you need username/password then you are on the wrong way. Please don't expect github-plugin support for not recommended and insecure usage. There was a problem hiding this comment. We do not ever recommend use of passwords, and it is quite appropriate to make help text guide users toward access tokens (and even implement form validation to warn about things that do not look like access tokens), but I see no reason to arbitrarily block a user from using something that in fact works. There was a problem hiding this comment. Because user/password provides full access and no control. GH (and other applications) used it on first steps, nowadays it should never be used. There was a problem hiding this comment. Github-plugin provides ability to convert login+pwd to token easily. So it any other can point to this ability if anybody wants to use login and password. There is also static method to do that, so it can be used transparently There was a problem hiding this comment. Oh, right. Afair the idea was to have helper UI elements, but checkboxes looks ugly, so @lanwen placed this under advanced button (that is not collapsible (pure jelly form) and also looks not good) :( |
||
| // GitHub gh = GitHubServerConfig.loginToGithub().apply(config); | ||
|
|
||
| GitHubBuilder gb = new GitHubBuilder(); | ||
|
|
||
| if (apiUrl !=null) { | ||
| gb.withEndpoint(apiUrl); | ||
| } | ||
|
|
||
| gb.withRateLimitHandler(CUSTOMIZED); | ||
| OkHttpClient client = new OkHttpClient().setProxy(getProxy(defaultIfBlank(apiUrl, GITHUB_URL))); | ||
| client.setCache(GitHubClientCacheOps.toCacheDir().apply(config)); | ||
| if (config.getClientCacheSize() > 0) { | ||
| Cache cache = toCacheDir().apply(config); | ||
| client.setCache(cache); | ||
| } | ||
|
|
||
| gb.withConnector(new OkHttpConnector(new OkUrlFactory(client))); | ||
|
|
||
| if (credentials == null) { | ||
| // nothing further to configure | ||
| } else if (credentials instanceof StandardUsernamePasswordCredentials) { | ||
| StandardUsernamePasswordCredentials c = (StandardUsernamePasswordCredentials) credentials; | ||
| gb.withPassword(c.getUsername(), c.getPassword().getPlainText()); | ||
| } else { | ||
| // TODO OAuth support | ||
| throw new IOException("Unsupported credential type: " + credentials.getClass().getName()); | ||
| } | ||
|
|
||
| return gb.build(); | ||
| } | ||
|
|
||
| public static void fillScanCredentialsIdItems(StandardListBoxModel result, @CheckForNull SCMSourceOwner context, @CheckForNull String apiUri) { | ||
|
|
@@ -109,6 +140,36 @@ private static List<DomainRequirement> githubDomainRequirements(String apiUri) { | |
| return URIRequirementBuilder.fromUri(StringUtils.defaultIfEmpty(apiUri, "https://github.com")).build(); | ||
| } | ||
|
|
||
| /** | ||
| * Uses proxy if configured on pluginManager/advanced page | ||
| * | ||
| * @param apiUrl GitHub's url to build proxy to | ||
| * | ||
| * @return proxy to use it in connector. Should not be null as it can lead to unexpected behaviour | ||
| */ | ||
| @Nonnull | ||
| private static Proxy getProxy(String apiUrl) { | ||
| Jenkins jenkins = GitHubWebHook.getJenkinsInstance(); | ||
|
|
||
| if (jenkins.proxy == null) { | ||
| return Proxy.NO_PROXY; | ||
| } else { | ||
| return jenkins.proxy.createProxy(apiUrl); | ||
| } | ||
| } | ||
|
|
||
| /** | ||
| * @param config url and creds id to be hashed | ||
| * | ||
| * @return unique id for folder name to create cache inside of base cache dir | ||
| */ | ||
| private static String hashed(GitHubServerConfig config) { | ||
| return Hashing.murmur3_32().newHasher() | ||
| .putString(trimToEmpty(config.getApiUrl())) | ||
| .putString(trimToEmpty(config.getCredentialsId())).hash().toString(); | ||
| } | ||
|
|
||
|
|
||
| private Connector() {} | ||
|
|
||
| /** | ||
|
|
||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
what for this method?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The method creates a
GitHubobject from the connection parameters, typically a user name and a personal access token.There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
so maybe just
return GitHubPlugin.configuration().findGithubConfig(and(withHost(apiUrl), server -> StringUtils.equals(server.getCredentialsId(), credentials.getId()))?(with replacement of lambda to guava Predicate)