orion
0c5e6b8688
- Use -u username:password basic auth for all API calls
- GET /users/{name}/tokens to find existing token
- DELETE /users/{name}/tokens/{id} to remove existing token
- POST /users/{name}/tokens with {"name": "...", "scopes": ["all"]}
- Extract 'sha1' field from POST response as the token value
- Use ego-mgr get default-username instead of secret-mgr get-username
48 lines
1.3 KiB
Bash
Executable File
48 lines
1.3 KiB
Bash
Executable File
#!/bin/bash
|
|
set -euo pipefail
|
|
|
|
SCRIPT_DIR="$(cd "$(dirname "$0")" && pwd)"
|
|
|
|
"$SCRIPT_DIR/check-git-cred"
|
|
|
|
USERNAME=$(ego-mgr get default-username)
|
|
PASSWORD=$(secret-mgr get-secret --key git)
|
|
|
|
# Check if token already exists
|
|
EXISTING=$(curl -s -u "${USERNAME}:${PASSWORD}" \
|
|
"https://git.hangman-lab.top/api/v1/users/${USERNAME}/tokens")
|
|
|
|
EXISTING_ID=$(echo "$EXISTING" | python3 -c "
|
|
import sys, json
|
|
tokens = json.load(sys.stdin)
|
|
name = '$USERNAME'
|
|
for t in tokens:
|
|
if t.get('name') == name:
|
|
print(t.get('id'))
|
|
" 2>/dev/null)
|
|
|
|
if [[ -n "$EXISTING_ID" ]]; then
|
|
curl -s -u "${USERNAME}:${PASSWORD}" -X DELETE \
|
|
"https://git.hangman-lab.top/api/v1/users/${USERNAME}/tokens/${EXISTING_ID}" > /dev/null || true
|
|
fi
|
|
|
|
# Create new token
|
|
RESP=$(curl -s -u "${USERNAME}:${PASSWORD}" -X POST \
|
|
-H "Content-Type: application/json" \
|
|
-d "{\"name\": \"${USERNAME}\", \"scopes\": [\"all\"]}" \
|
|
"https://git.hangman-lab.top/api/v1/users/${USERNAME}/tokens")
|
|
|
|
TOKEN=$(echo "$RESP" | python3 -c "
|
|
import sys, json
|
|
d = json.load(sys.stdin)
|
|
print(d.get('sha1', ''))
|
|
" 2>/dev/null)
|
|
|
|
if [[ -z "$TOKEN" ]]; then
|
|
echo "Failed to generate access token: $RESP"
|
|
exit 1
|
|
fi
|
|
|
|
secret-mgr set --key git-access-token --username "$USERNAME" --secret "$TOKEN"
|
|
echo "Access token generated and stored successfully"
|