GPR authentication support

src/authutil.ts

@@ -0,0 +1,139 @@
+import * as fs from 'fs';
+import * as os from 'os';
+import * as path from 'path';
+import * as core from '@actions/core';
+import * as github from '@actions/github';
+import * as xmlbuilder from 'xmlbuilder';
+import * as xmlParser from 'fast-xml-parser';
+import {booleanLiteral} from '@babel/types';
+
+export function configAuthentication(
+  feedUrl: string,
+  existingFileLocation: string = ''
+) {
+  const existingNuGetConfig: string = path.resolve(
+    process.env['RUNNER_TEMP'] || process.cwd(),
+    existingFileLocation == '' ? 'nuget.config' : existingFileLocation
+  );
+
+  const tempNuGetConfig: string = path.resolve(
+    process.env['RUNNER_TEMP'] || process.cwd(),
+    '../',
+    'nuget.config'
+  );
+
+  writeFeedToFile(feedUrl, existingNuGetConfig, tempNuGetConfig);
+}
+
+function writeFeedToFile(
+  feedUrl: string,
+  existingFileLocation: string,
+  tempFileLocation: string
+) {
+  console.log(
+    `dotnet-auth: Finding any source references in ${existingFileLocation}, writing a new temporary configuration file with credentials to ${tempFileLocation}`
+  );
+  let xml: xmlbuilder.XMLElement;
+  let gprKeys: string[] = [];
+  let owner: string = core.getInput('owner');
+  if (!owner && feedUrl.indexOf('nuget.pkg.github.com') > -1) {
+    owner = github.context.repo.owner;
+  }
+  let sourceUrl: string = 'https://nuget.pkg.github.com/' + owner;
+
+  if (!process.env.NUGET_AUTH_TOKEN || process.env.NUGET_AUTH_TOKEN == '') {
+    throw new Error(
+      'The NUGET_AUTH_TOKEN environment variable was not provided. In this step, add the following: \r\nenv:\r\n  NUGET_AUTH_TOKEN: ${{secrets.GITHUB_TOKEN}}'
+    );
+  }
+
+  if (fs.existsSync(existingFileLocation)) {
+    // get key from existing NuGet.config so NuGet/dotnet can match credentials
+    const curContents: string = fs.readFileSync(existingFileLocation, 'utf8');
+    var json = xmlParser.parse(curContents, {ignoreAttributes: false});
+
+    if (typeof json.configuration == 'undefined') {
+      throw new Error(`The provided NuGet.config seems invalid.`);
+    }
+    if (typeof json.configuration.packageSources != 'undefined') {
+      if (typeof json.configuration.packageSources.add != 'undefined') {
+        // file has at least one <add>
+        if (typeof json.configuration.packageSources.add[0] == 'undefined') {
+          // file has only one <add>
+          if (
+            json.configuration.packageSources.add['@_value']
+              .toLowerCase()
+              .includes('nuget.pkg.github.com')
+          ) {
+            let key = json.configuration.packageSources.add['@_key'];
+            gprKeys.push(key);
+            core.debug(`Found a GPR URL with key ${key}`);
+          }
+        } else {
+          // file has 2+ <add>
+          for (
+            let i = 0;
+            i < json.configuration.packageSources.add.length;
+            i++
+          ) {
+            core.debug(json.configuration.packageSources.add[i]);
+            if (
+              json.configuration.packageSources.add[i]['@_value']
+                .toLowerCase()
+                .includes('nuget.pkg.github.com')
+            ) {
+              let key = json.configuration.packageSources.add[i]['@_key'];
+              gprKeys.push(key);
+              core.debug(`Found a GPR URL with key ${key}`);
+            }
+          }
+        }
+      }
+    }
+  }
+
+  xml = xmlbuilder
+    .create('configuration')
+    .ele('config')
+    .ele('add', {key: 'defaultPushSource', value: sourceUrl})
+    .up()
+    .up();
+
+  if (gprKeys.length == 0) {
+    let keystring = 'GPR';
+    xml = xml
+      .ele('packageSources')
+      .ele('add', {key: keystring, value: sourceUrl})
+      .up()
+      .up();
+    gprKeys.push(keystring);
+  }
+  gprKeys.forEach(key => {
+    if (key.indexOf(' ') > -1) {
+      throw new Error(
+        "This action currently can't handle source names with spaces. Remove the space from your repo's NuGet.config and try again."
+      );
+    }
+
+    xml = xml
+      .ele('packageSourceCredentials')
+      .ele(key)
+      .ele('add', {key: 'Username', value: owner})
+      .up()
+      .ele('add', {
+        key: 'ClearTextPassword',
+        value: process.env.NUGET_AUTH_TOKEN
+      })
+      .up()
+      .up();
+  });
+
+  // If NuGet fixes itself such that on Linux it can look for environment variables in the config file (it doesn't seem to work today),
+  // use this for the value above
+  //           process.platform == 'win32'
+  //             ? '%NUGET_AUTH_TOKEN%'
+  //             : '$NUGET_AUTH_TOKEN'
+
+  var output = xml.end({pretty: true});
+  fs.writeFileSync(tempFileLocation, output);
+}