dave/coolify
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity

use private key to make a jwt

Browse Source
This commit is contained in:
peaklabs-dev
2024-12-03 15:11:35 +01:00
parent 6d43bbc6b9
commit 56f6bdf7a7
1 changed files with 45 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

54
app/Livewire/Source/Github/Change.php
View File

@@ -4,7 +4,11 @@ namespace App\Livewire\Source\Github;
use App\Jobs\GithubAppPermissionJob; use App\Jobs\GithubAppPermissionJob;
use App\Models\GithubApp; use App\Models\GithubApp;
use App\Models\PrivateKey;
use Illuminate\Support\Facades\Http; use Illuminate\Support\Facades\Http;
use Lcobucci\JWT\Configuration;
use Lcobucci\JWT\Signer\Key\InMemory;
use Lcobucci\JWT\Signer\Rsa\Sha256;
use Livewire\Component; use Livewire\Component;
class Change extends Component class Change extends Component
@@ -148,32 +152,60 @@ class Change extends Component
return "{$this->github_app->html_url}/settings/apps/{$this->github_app->name}"; return "{$this->github_app->html_url}/settings/apps/{$this->github_app->name}";
} }
private function generateGithubJwt($private_key, $app_id): string
{
$configuration = Configuration::forAsymmetricSigner(
new Sha256,
InMemory::plainText($private_key),
InMemory::plainText($private_key)
);
$now = time();
return $configuration->builder()
->issuedBy((string) $app_id)
->permittedFor('https://api.github.com')
->identifiedBy((string) $now)
->issuedAt(new \DateTimeImmutable("@{$now}"))
->expiresAt(new \DateTimeImmutable('@'.($now + 600)))
->getToken($configuration->signer(), $configuration->signingKey())
->toString();
}
public function syncGithubAppName() public function syncGithubAppName()
{ {
try { try {
$github_access_token = generate_github_installation_token($this->github_app); $privateKey = PrivateKey::find($this->github_app->private_key_id);
$response = Http::withToken($github_access_token) if (! $privateKey) {
->withHeaders([ $this->dispatch('error', 'Private key not found for this GitHub App.');
return;
}
$jwt = $this->generateGithubJwt($privateKey->private_key, $this->github_app->app_id);
$response = Http::withHeaders([
'Accept' => 'application/vnd.github+json', 'Accept' => 'application/vnd.github+json',
'X-GitHub-Api-Version' => '2022-11-28', 'X-GitHub-Api-Version' => '2022-11-28',
]) 'Authorization' => "Bearer {$jwt}",
->get("{$this->github_app->api_url}/app"); ])->get("{$this->github_app->api_url}/app");
if ($response->successful()) { if ($response->successful()) {
$app_data = $response->json(); $app_data = $response->json();
$app_name = $app_data['name'] ?? null; $app_slug = $app_data['slug'] ?? null;
if ($app_name && $app_name !== $this->github_app->name) { if ($app_slug) {
$this->github_app->name = $app_name; $this->github_app->name = $app_slug;
$this->name = str($app_name)->kebab(); $this->name = str($app_slug)->kebab();
$this->github_app->save(); $this->github_app->save();
$this->dispatch('success', 'Github App name synchronized successfully.'); $this->dispatch('success', 'Github App name synchronized successfully.');
} else { } else {
$this->dispatch('info', 'If you changed the name in GitHub, please wait a few moments and try syncing again.'); $this->dispatch('info', 'Could not find app slug in GitHub response.');
} }
} else { } else {
$this->dispatch('error', 'Failed to fetch Github App information. Status: '.$response->status()); $error_message = $response->json()['message'] ?? 'Unknown error';
$this->dispatch('error', "Failed to fetch Github App information: {$error_message}");
} }
} catch (\Throwable $e) { } catch (\Throwable $e) {
return handleError($e, $this); return handleError($e, $this);