richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6955 Commits
29 Branches
81 Tags
150 MiB
Branch: release-2.21
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'release-2.21'
${ noResults }
kubespray/scripts/premoderator.sh

51 lines
2.1 KiB
Raw Permalink Normal View History

Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation
5 years ago
Do not auto-trigger gitlab CI pipeline on PRs For security and resources utilization reasons, do not auto-start CI for opened/updated PRs. A member of the kubernetes-incubator github org has first to approve that the PR is reasonable to test by putting the "ci check this" into the PR's comments. If approved that way, the CI pipeline starts as always. Only the 1st step of the pipeline is premoderatied, the rest will follow each over on success. Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
8 years ago
Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation
5 years ago
[2.21] Ensure that CI is available (#10673) * Convert exoscale tf provider to new version (#10646) This is untested. It passes terraform validate to un-broke the CI. * specify pyyaml version to 5.3.1 Signed-off-by: bo.jiang <bo.jiang@daocloud.io> * Migrate CI_BUILD_ID to CI_JOB_ID and CI_BUILD_REF to CI_COMMIT_SHA (#10063) * Use supported version of fedora in CI (#10108) * tests: replace fedora35 with fedora37 Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * tests: replace fedora36 with fedora38 Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * docs: update fedora version in docs Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * molecule: upgrade fedora version Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * tests: upgrade fedora images for vagrant and kubevirt Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * vagrant: workaround to fix private network ip address in fedora Fedora stop supporting syconfig network script so we added a workaround here https://github.com/hashicorp/vagrant/issues/12762#issuecomment-1535957837 to fix it. * netowrkmanager: do not configure dns if using systemd-resolved We should not configure dns if we point to systemd-resolved. Systemd-resolved is using NetworkManager to infer the upstream DNS server so if we set NetworkManager to 127.0.0.53 it will prevent systemd-resolved to get the correct network DNS server. Thus if we are in this case we just don't set this setting. Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * image-builder: update centos7 image Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * gitlab-ci: mark fedora packet jobs as allow failure Fedora networking is still broken on Packet, let's mark it as allow failure for now. Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> --------- Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> --------- Signed-off-by: bo.jiang <bo.jiang@daocloud.io> Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> Co-authored-by: Max Gautier <mg@max.gautier.name> Co-authored-by: Florian Ruynat <16313165+floryut@users.noreply.github.com> Co-authored-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch>
11 months ago
Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation
5 years ago
Do not auto-trigger gitlab CI pipeline on PRs For security and resources utilization reasons, do not auto-start CI for opened/updated PRs. A member of the kubernetes-incubator github org has first to approve that the PR is reasonable to test by putting the "ci check this" into the PR's comments. If approved that way, the CI pipeline starts as always. Only the 1st step of the pipeline is premoderatied, the rest will follow each over on success. Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
8 years ago
Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation
5 years ago
Do not auto-trigger gitlab CI pipeline on PRs For security and resources utilization reasons, do not auto-start CI for opened/updated PRs. A member of the kubernetes-incubator github org has first to approve that the PR is reasonable to test by putting the "ci check this" into the PR's comments. If approved that way, the CI pipeline starts as always. Only the 1st step of the pipeline is premoderatied, the rest will follow each over on success. Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
8 years ago
Let Premoderator script add labels (#4978) * Let Premoderator script add labels * Fix JQ error * Minor fixes * Debug patch label output * Try again * Try again * Try again * Try again * Try again * Minor cleanup
5 years ago
Do not auto-trigger gitlab CI pipeline on PRs For security and resources utilization reasons, do not auto-start CI for opened/updated PRs. A member of the kubernetes-incubator github org has first to approve that the PR is reasonable to test by putting the "ci check this" into the PR's comments. If approved that way, the CI pipeline starts as always. Only the 1st step of the pipeline is premoderatied, the rest will follow each over on success. Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
8 years ago
[2.21] Ensure that CI is available (#10673) * Convert exoscale tf provider to new version (#10646) This is untested. It passes terraform validate to un-broke the CI. * specify pyyaml version to 5.3.1 Signed-off-by: bo.jiang <bo.jiang@daocloud.io> * Migrate CI_BUILD_ID to CI_JOB_ID and CI_BUILD_REF to CI_COMMIT_SHA (#10063) * Use supported version of fedora in CI (#10108) * tests: replace fedora35 with fedora37 Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * tests: replace fedora36 with fedora38 Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * docs: update fedora version in docs Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * molecule: upgrade fedora version Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * tests: upgrade fedora images for vagrant and kubevirt Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * vagrant: workaround to fix private network ip address in fedora Fedora stop supporting syconfig network script so we added a workaround here https://github.com/hashicorp/vagrant/issues/12762#issuecomment-1535957837 to fix it. * netowrkmanager: do not configure dns if using systemd-resolved We should not configure dns if we point to systemd-resolved. Systemd-resolved is using NetworkManager to infer the upstream DNS server so if we set NetworkManager to 127.0.0.53 it will prevent systemd-resolved to get the correct network DNS server. Thus if we are in this case we just don't set this setting. Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * image-builder: update centos7 image Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * gitlab-ci: mark fedora packet jobs as allow failure Fedora networking is still broken on Packet, let's mark it as allow failure for now. Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> --------- Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> --------- Signed-off-by: bo.jiang <bo.jiang@daocloud.io> Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> Co-authored-by: Max Gautier <mg@max.gautier.name> Co-authored-by: Florian Ruynat <16313165+floryut@users.noreply.github.com> Co-authored-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch>
11 months ago
Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation
5 years ago
[2.21] Ensure that CI is available (#10673) * Convert exoscale tf provider to new version (#10646) This is untested. It passes terraform validate to un-broke the CI. * specify pyyaml version to 5.3.1 Signed-off-by: bo.jiang <bo.jiang@daocloud.io> * Migrate CI_BUILD_ID to CI_JOB_ID and CI_BUILD_REF to CI_COMMIT_SHA (#10063) * Use supported version of fedora in CI (#10108) * tests: replace fedora35 with fedora37 Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * tests: replace fedora36 with fedora38 Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * docs: update fedora version in docs Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * molecule: upgrade fedora version Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * tests: upgrade fedora images for vagrant and kubevirt Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * vagrant: workaround to fix private network ip address in fedora Fedora stop supporting syconfig network script so we added a workaround here https://github.com/hashicorp/vagrant/issues/12762#issuecomment-1535957837 to fix it. * netowrkmanager: do not configure dns if using systemd-resolved We should not configure dns if we point to systemd-resolved. Systemd-resolved is using NetworkManager to infer the upstream DNS server so if we set NetworkManager to 127.0.0.53 it will prevent systemd-resolved to get the correct network DNS server. Thus if we are in this case we just don't set this setting. Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * image-builder: update centos7 image Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * gitlab-ci: mark fedora packet jobs as allow failure Fedora networking is still broken on Packet, let's mark it as allow failure for now. Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> --------- Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> --------- Signed-off-by: bo.jiang <bo.jiang@daocloud.io> Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> Co-authored-by: Max Gautier <mg@max.gautier.name> Co-authored-by: Florian Ruynat <16313165+floryut@users.noreply.github.com> Co-authored-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch>
11 months ago
Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation
5 years ago
Let Premoderator script add labels (#4978) * Let Premoderator script add labels * Fix JQ error * Minor fixes * Debug patch label output * Try again * Try again * Try again * Try again * Try again * Minor cleanup
5 years ago
Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation
5 years ago
Do not auto-trigger gitlab CI pipeline on PRs For security and resources utilization reasons, do not auto-start CI for opened/updated PRs. A member of the kubernetes-incubator github org has first to approve that the PR is reasonable to test by putting the "ci check this" into the PR's comments. If approved that way, the CI pipeline starts as always. Only the 1st step of the pipeline is premoderatied, the rest will follow each over on success. Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
8 years ago
Let Premoderator script add labels (#4978) * Let Premoderator script add labels * Fix JQ error * Minor fixes * Debug patch label output * Try again * Try again * Try again * Try again * Try again * Minor cleanup
5 years ago
Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation
5 years ago
Do not auto-trigger gitlab CI pipeline on PRs For security and resources utilization reasons, do not auto-start CI for opened/updated PRs. A member of the kubernetes-incubator github org has first to approve that the PR is reasonable to test by putting the "ci check this" into the PR's comments. If approved that way, the CI pipeline starts as always. Only the 1st step of the pipeline is premoderatied, the rest will follow each over on success. Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
8 years ago
Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation
5 years ago
Let Premoderator script add labels (#4978) * Let Premoderator script add labels * Fix JQ error * Minor fixes * Debug patch label output * Try again * Try again * Try again * Try again * Try again * Minor cleanup
5 years ago
Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation
5 years ago
Let Premoderator script add labels (#4978) * Let Premoderator script add labels * Fix JQ error * Minor fixes * Debug patch label output * Try again * Try again * Try again * Try again * Try again * Minor cleanup
5 years ago
Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation
5 years ago
Let Premoderator script add labels (#4978) * Let Premoderator script add labels * Fix JQ error * Minor fixes * Debug patch label output * Try again * Try again * Try again * Try again * Try again * Minor cleanup
5 years ago
Update premoderator to fix Github API throttle (#4424) * Update premoderator to fix Github API throttle * Update premoderator script Add exit codes and document the exit code. * Fix indentation
5 years ago
Let Premoderator script add labels (#4978) * Let Premoderator script add labels * Fix JQ error * Minor fixes * Debug patch label output * Try again * Try again * Try again * Try again * Try again * Minor cleanup
5 years ago
  1. #!/bin/bash
  2. # A naive premoderation script to allow Gitlab CI pipeline on a specific PRs' comment
  3. # Exits with 0, if the pipeline is good to go
  4. # Exits with 1, if the user is not allowed to start pipeline
  5. # Exits with 2, if script is unable to get issue id from CI_COMMIT_REF_NAME variable
  6. # Exits with 3, if missing the magic comment in the pipeline to start the pipeline
  8. CURL_ARGS="-fs --retry 4 --retry-delay 5"
  9. MAGIC="${MAGIC:-ci check this}"
  10. exit_code=0
  12. # Get PR number from CI_COMMIT_REF_NAME
  13. issue=$(echo ${CI_COMMIT_REF_NAME} | perl -ne '/^pr-(\d+)-\S+$/ && print $1')
  15. if [ "$issue" = "" ]; then
  16. echo "Unable to get issue id from: $CI_COMMIT_REF_NAME"
  17. exit 2
  18. fi
  20. echo "Fetching labels from PR $issue"
  21. labels=$(curl ${CURL_ARGS} "https://api.github.com/repos/kubernetes-sigs/kubespray/issues/${issue}?access_token=${GITHUB_TOKEN}" | jq '{labels: .labels}' | jq '.labels[].name' | jq -s '')
  22. labels_to_patch=$(echo -n $labels | jq '. + ["needs-ci-auth"]' | tr -d "\n")
  24. echo "Checking for '$MAGIC' comment in PR $issue"
  26. # Get the user name from the PR comments with the wanted magic incantation casted
  27. user=$(curl ${CURL_ARGS} "https://api.github.com/repos/kubernetes-sigs/kubespray/issues/${issue}/comments" | jq -M "map(select(.body | contains (\"$MAGIC\"))) | .[0] .user.login" | tr -d '"')
  29. # Check for the required user group membership to allow (exit 0) or decline (exit >0) the pipeline
  30. if [ "$user" = "" ] || [ "$user" = "null" ]; then
  31. echo "Missing '$MAGIC' comment from one of the OWNERS"
  32. exit_code=3
  33. else
  34. echo "Found comment from user: $user"
  36. curl ${CURL_ARGS} "https://api.github.com/orgs/kubernetes-sigs/members/${user}"
  38. if [ $? -ne 0 ]; then
  39. echo "User does not have permissions to start CI run"
  40. exit_code=1
  41. else
  42. labels_to_patch=$(echo -n $labels | jq '. - ["needs-ci-auth"]' | tr -d "\n")
  43. exit_code=0
  44. echo "$user has allowed CI to start"
  45. fi
  46. fi
  48. # Patch labels on PR
  49. curl ${CURL_ARGS} --request PATCH "https://api.github.com/repos/kubernetes-sigs/kubespray/issues/${issue}?access_token=${GITHUB_TOKEN}" -H "Content-Type: application/json" -d "{\"labels\": ${labels_to_patch}}"
  51. exit $exit_code