feat(codeqlExecuteScan) : auto fill api url (SAP#4369)

maxatsap · Jul 23, 2024 · 6aec9ab · 6aec9ab
1 parent 3ab26ff
commit 6aec9ab
Show file tree

Hide file tree

Showing 5 changed files with 24 additions and 25 deletions.
diff --git a/cmd/codeqlExecuteScan.go b/cmd/codeqlExecuteScan.go
@@ -281,7 +281,7 @@ func runCodeqlExecuteScan(config *codeqlExecuteScanOptions, telemetryData *telem
 		}
 
 		if config.CheckForCompliance {
-			codeqlScanAuditInstance := codeql.NewCodeqlScanAuditInstance(config.GithubAPIURL, repoInfo.owner, repoInfo.repo, token, []string{})
+			codeqlScanAuditInstance := codeql.NewCodeqlScanAuditInstance(repoInfo.serverUrl, repoInfo.owner, repoInfo.repo, token, []string{})
 			scanResults, err := codeqlScanAuditInstance.GetVulnerabilities(repoInfo.ref)
 			if err != nil {
 				return reports, errors.Wrap(err, "failed to get scan results")

diff --git a/cmd/codeqlExecuteScan_generated.go b/cmd/codeqlExecuteScan_generated.go
diff --git a/pkg/codeql/codeql.go b/pkg/codeql/codeql.go
@@ -17,12 +17,12 @@ type githubCodeqlScanningService interface {
 
 const auditStateOpen = "open"
 
-func NewCodeqlScanAuditInstance(apiURL, owner, repository, token string, trustedCerts []string) CodeqlScanAuditInstance {
-	return CodeqlScanAuditInstance{apiURL: apiURL, owner: owner, repository: repository, token: token, trustedCerts: trustedCerts}
+func NewCodeqlScanAuditInstance(serverUrl, owner, repository, token string, trustedCerts []string) CodeqlScanAuditInstance {
+	return CodeqlScanAuditInstance{serverUrl: serverUrl, owner: owner, repository: repository, token: token, trustedCerts: trustedCerts}
 }
 
 type CodeqlScanAuditInstance struct {
-	apiURL           string
+	serverUrl        string
 	owner            string
 	repository       string
 	token            string
@@ -31,7 +31,8 @@ type CodeqlScanAuditInstance struct {
 }
 
 func (codeqlScanAudit *CodeqlScanAuditInstance) GetVulnerabilities(analyzedRef string) (CodeqlScanning, error) {
-	ctx, client, err := sapgithub.NewClient(codeqlScanAudit.token, codeqlScanAudit.apiURL, "", codeqlScanAudit.trustedCerts)
+	apiUrl := getApiUrl(codeqlScanAudit.serverUrl)
+	ctx, client, err := sapgithub.NewClient(codeqlScanAudit.token, apiUrl, "", codeqlScanAudit.trustedCerts)
 	if err != nil {
 		return CodeqlScanning{}, err
 	}
@@ -63,3 +64,11 @@ func getVulnerabilitiesFromClient(ctx context.Context, codeScanning githubCodeql
 	codeqlScanning.Audited = (codeqlScanning.Total - openStateCount)
 	return codeqlScanning, nil
 }
+
+func getApiUrl(serverUrl string) string {
+	if serverUrl == "https://github.com" {
+		return "https://api.github.com"
+	}
+
+	return (serverUrl + "/api/v3")
+}
diff --git a/pkg/codeql/codeql_test.go b/pkg/codeql/codeql_test.go
@@ -48,3 +48,13 @@ func TestGetVulnerabilitiesFromClient(t *testing.T) {
 		assert.Error(t, err)
 	})
 }
+
+func TestGetApiUrl(t *testing.T) {
+	t.Run("public url", func(t *testing.T) {
+		assert.Equal(t, "https://api.github.com", getApiUrl("https://github.com"))
+	})
+
+	t.Run("enterprise github url", func(t *testing.T) {
+		assert.Equal(t, "https://github.test.org/api/v3", getApiUrl("https://github.test.org"))
+	})
+}
diff --git a/resources/metadata/codeqlExecuteScan.yaml b/resources/metadata/codeqlExecuteScan.yaml
@@ -39,15 +39,6 @@ spec:
           - type: vaultSecret
             default: github
             name: githubVaultSecretName
-      - name: githubApiUrl
-        description: "Set the GitHub API URL."
-        scope:
-          - GENERAL
-          - PARAMETERS
-          - STAGES
-          - STEPS
-        type: string
-        default: "https://api.github.com"
       - name: buildTool
         type: string
         description: Defines the build tool which is used for building the project.