`c2ec557`

repo/actions_dispatch: use shared dispatch validation

Authored by mfwolffe <wolffemf@dukes.jmu.edu> yesterday

SHA: c2ec55730999e5a8a58660ad14ff60e0587c7d29
Parents: 0b2c834
Tree: c4cc469

2 changed files

Status	File	+	-
M	`internal/web/handlers/repo/actions_dispatch.go`	5	90
M	`internal/web/handlers/repo/actions_test.go`	4	3

internal/web/handlers/repo/actions_dispatch.gomodified

  	"github.com/go-chi/chi/v5"
 +	"github.com/tenseleyFlow/shithub/internal/actions/dispatch"
  	actionsevent "github.com/tenseleyFlow/shithub/internal/actions/event"
  	"github.com/tenseleyFlow/shithub/internal/actions/trigger"
  	"github.com/tenseleyFlow/shithub/internal/actions/workflow"
  	// Workflows live under .shithub/workflows/. Authors can pass
  	// either "ci.yml" (basename) or ".shithub/workflows/ci.yml" (full
  	// path). Normalize so the trigger pipeline always sees the full path.
 -	if !strings.HasPrefix(file, ".shithub/workflows/") {
 -		file = ".shithub/workflows/" + file
 -	}
 -	if strings.Contains(file, "..") || !validWorkflowName(file) {
 +	file, err := dispatch.NormalizeFilePath(file)
 +	if err != nil {
  		h.d.Render.HTTPError(w, r, http.StatusBadRequest, "invalid workflow file path")
  		return
+ 	}
  			"workflow does not declare on.workflow_dispatch")
  		return
+ 	}
 -	inputs, err := normalizeDispatchInputs(req.Inputs, wf.On.WorkflowDispatch.Inputs)
 +	inputs, err := dispatch.NormalizeInputs(req.Inputs, wf.On.WorkflowDispatch.Inputs)
  	if err != nil {
  		h.d.Render.HTTPError(w, r, http.StatusBadRequest, err.Error())
  		return
+ 		}
  		return dispatchRequest{
  			Ref:    strings.TrimSpace(r.PostFormValue("ref")),
 -			Inputs: dispatchInputsFromForm(r.PostForm),
 +			Inputs: dispatch.InputsFromForm(r.PostForm),
  		}, true, true
+ 	}
+ 	}
+ }
 -func dispatchInputsFromForm(values url.Values) map[string]string {
 -	inputs := make(map[string]string)
 -	for key, vals := range values {
 -		name, ok := strings.CutPrefix(key, "inputs.")
 -		if !ok || name == "" || len(vals) == 0 {
 -			continue
 -		}
 -		inputs[name] = vals[len(vals)-1]
 -	}
 -	if len(inputs) == 0 {
 -		return nil
 -	}
 -	return inputs
 -}
+-
 -func normalizeDispatchInputs(raw map[string]string, specs []workflow.DispatchInput) (map[string]string, error) {
 -	if raw == nil {
 -		raw = map[string]string{}
 -	}
 -	known := make(map[string]workflow.DispatchInput, len(specs))
 -	for _, spec := range specs {
 -		known[spec.Name] = spec
 -	}
 -	for name := range raw {
 -		if _, ok := known[name]; !ok {
 -			return nil, fmt.Errorf("unknown workflow_dispatch input %q", name)
 -		}
 -	}
+-
 -	out := make(map[string]string, len(specs))
 -	for _, spec := range specs {
 -		value, provided := raw[spec.Name]
 -		if !provided || value == "" {
 -			value = spec.Default
 -		}
 -		if spec.Type == "boolean" && !provided && value == "" {
 -			value = "false"
 -		}
 -		if spec.Required && spec.Type != "boolean" && strings.TrimSpace(value) == "" {
 -			return nil, fmt.Errorf("workflow_dispatch input %q is required", spec.Name)
 -		}
 -		switch spec.Type {
 -		case "boolean":
 -			if value != "true" && value != "false" {
 -				return nil, fmt.Errorf("workflow_dispatch input %q must be true or false", spec.Name)
 -			}
 -		case "choice":
 -			if value != "" && !dispatchChoiceAllowed(value, spec.Options) {
 -				return nil, fmt.Errorf("workflow_dispatch input %q must be one of the declared options", spec.Name)
 -			}
 -		}
 -		if value != "" || spec.Type == "boolean" {
 -			out[spec.Name] = value
 -		}
 -	}
 -	if len(out) == 0 {
 -		return nil, nil
 -	}
 -	return out, nil
 -}
+-
 -func dispatchChoiceAllowed(value string, options []string) bool {
 -	for _, option := range options {
 -		if value == option {
 -			return true
 -		}
 -	}
 -	return false
 -}
+-
 -// validWorkflowName guards against URL parameter shenanigans by
 -// requiring the resolved file path to look like
 -// `.shithub/workflows/<basename>.{yml,yaml}` with no path traversal.
 -func validWorkflowName(file string) bool {
 -	if !strings.HasPrefix(file, ".shithub/workflows/") {
 -		return false
 -	}
 -	rest := strings.TrimPrefix(file, ".shithub/workflows/")
 -	if rest == "" || strings.ContainsAny(rest, "/\x00") {
 -		return false
 -	}
 -	return strings.HasSuffix(rest, ".yml") || strings.HasSuffix(rest, ".yaml")
 -}
+-
  // randHex returns 2*n hex chars from crypto/rand. 8 bytes (16 hex
  // chars) is plenty of entropy for a dispatch request id.
  func randHex(n int) (string, error) {

internal/web/handlers/repo/actions_test.gomodified

  	"github.com/go-chi/chi/v5"
  	"github.com/jackc/pgx/v5/pgtype"
 +	"github.com/tenseleyFlow/shithub/internal/actions/dispatch"
  	actionsdb "github.com/tenseleyFlow/shithub/internal/actions/sqlc"
  	"github.com/tenseleyFlow/shithub/internal/actions/workflow"
  	"github.com/tenseleyFlow/shithub/internal/infra/storage"
  func TestNormalizeDispatchInputsRejectsUnknownAndInvalidChoice(t *testing.T) {
  	t.Parallel()
  	specs := dispatchWorkflowInputSpecs()
 -	if _, err := normalizeDispatchInputs(map[string]string{"bogus": "x"}, specs); err == nil {
 +	if _, err := dispatch.NormalizeInputs(map[string]string{"bogus": "x"}, specs); err == nil {
  		t.Fatal("unknown input accepted")
+ 	}
 -	if _, err := normalizeDispatchInputs(map[string]string{"env": "qa"}, specs); err == nil {
 +	if _, err := dispatch.NormalizeInputs(map[string]string{"env": "qa"}, specs); err == nil {
  		t.Fatal("invalid choice accepted")
+ 	}
 -	if _, err := normalizeDispatchInputs(nil, specs); err == nil {
 +	if _, err := dispatch.NormalizeInputs(nil, specs); err == nil {
  		t.Fatal("missing required input accepted")
+ 	}
+ }