Skip to content
Snippets Groups Projects
Select Git revision
  • 1e0c759f3d99c7d1cd1ccc0968b6eecd27efce15
  • main default protected
  • next
  • renovate/main-redis-5.x
  • chore/update-static-data
  • feat/gnupg
  • fix/36615b-branch-reuse-no-cache
  • chore/punycode
  • refactor/pin-new-value
  • feat/36219--git-x509-signing
  • feat/structured-logger
  • hotfix/39.264.1
  • feat/skip-dangling
  • gh-readonly-queue/next/pr-36034-7a061c4ca1024a19e2c295d773d9642625d1c2be
  • hotfix/39.238.3
  • refactor/gitlab-auto-approve
  • feat/template-strings
  • gh-readonly-queue/next/pr-35654-137d934242c784e0c45d4b957362214f0eade1d7
  • fix/32307-global-extends-merging
  • fix/32307-global-extends-repositories
  • gh-readonly-queue/next/pr-35009-046ebf7cb84ab859f7fefceb5fa53a54ce9736f8
  • 41.62.4
  • 41.62.3
  • 41.62.2
  • 41.62.1
  • 41.62.0
  • 41.61.1
  • 41.61.0
  • 41.60.4
  • 41.60.3
  • 41.60.2
  • 41.60.1
  • 41.60.0
  • 41.59.2
  • 41.59.1
  • 41.59.0
  • 41.58.2
  • 41.58.1
  • 41.58.0
  • 41.57.1
  • 41.57.0
41 results

private-key.ts

Blame
    • user avatar
    refactor: Separate 'git' and 'fs' util modules (#6665)
    Sergio Zharinov authored and GitHub committed
    11371121
    History
    user avatar 11371121
    History
    private-key.ts 1.27 KiB 
    import os from 'os';
import path from 'path';
import fs from 'fs-extra';
import { PLATFORM_GPG_FAILED } from '../../constants/error-messages';
import { logger } from '../../logger';
import { exec } from '../exec';

let gitPrivateKey: string;
let keyId: string;

export function setPrivateKey(key: string): void {
  gitPrivateKey = key;
}

async function importKey(): Promise<void> {
  if (keyId) {
    return;
  }
  const keyFileName = path.join(os.tmpdir() + '/git-private.key');
  await fs.outputFile(keyFileName, gitPrivateKey);
  const { stdout, stderr } = await exec(`gpg --import ${keyFileName}`);
  logger.debug({ stdout, stderr }, 'Private key import result');
  keyId = (stdout + stderr)
    .split('\n')
    .find((line) => line.includes('secret key imported'))
    .replace('gpg: key ', '')
    .split(':')
    .shift();
  await fs.remove(keyFileName);
}

export async function writePrivateKey(cwd: string): Promise<void> {
  if (!gitPrivateKey) {
    return;
  }
  logger.debug('Setting git private key');
  try {
    await importKey();
    await exec(`git config user.signingkey ${keyId}`, { cwd });
    await exec(`git config commit.gpgsign true`, { cwd });
  } catch (err) {
    logger.warn({ err }, 'Error writing git private key');
    throw new Error(PLATFORM_GPG_FAILED);
  }
}