Update github action file
This commit is contained in:
شركة خبير المحدودة
parent
0d34a8970b
commit
ade1971341
|
|
@ -1,13 +1,12 @@
|
||||||
# Author: Moutaz (restrict PR authors)
|
name: Restrict PR Authors & Committers
|
||||||
name: Restrict PR Authors
|
|
||||||
|
|
||||||
permissions:
|
permissions:
|
||||||
contents: read
|
contents: read
|
||||||
pull-requests: write
|
pull-requests: write
|
||||||
|
|
||||||
on:
|
on:
|
||||||
pull_request:
|
pull_request:
|
||||||
types: [opened, reopened]
|
types: [opened, reopened, synchronize]
|
||||||
branches:
|
branches:
|
||||||
- dev_odex-event
|
- dev_odex-event
|
||||||
- dev_odex25_accounting
|
- dev_odex25_accounting
|
||||||
|
|
@ -31,27 +30,113 @@ on:
|
||||||
- dev_odex25_helpdesk
|
- dev_odex25_helpdesk
|
||||||
- dev_odex25_donation
|
- dev_odex25_donation
|
||||||
|
|
||||||
|
- preprod_odex-event
|
||||||
|
- preprod_odex25_accounting
|
||||||
|
- preprod_odex25_base
|
||||||
|
- preprod_odex25_dms
|
||||||
|
- preprod_odex25_fleet
|
||||||
|
- preprod_odex25_helpdesk
|
||||||
|
- preprod_odex25_hr
|
||||||
|
- preprod_odex25_inventory
|
||||||
|
- preprod_odex25_maintenance
|
||||||
|
- preprod_odex25_mobile
|
||||||
|
- preprod_odex25_pos
|
||||||
|
- preprod_odex25_project
|
||||||
|
- preprod_odex25_purchase
|
||||||
|
- preprod_odex25_realstate
|
||||||
|
- preprod_odex25_sales
|
||||||
|
- preprod_odex25_survey
|
||||||
|
- preprod_odex25_transactions
|
||||||
|
- preprod_odex25_website
|
||||||
|
- preprod_openeducat_erp-14.0.1.0
|
||||||
|
- preprod_odex25_ensan
|
||||||
|
- preprod_odex25_donation
|
||||||
|
|
||||||
|
- master_odex-event
|
||||||
|
- master_odex25_accounting
|
||||||
|
- master_odex25_base
|
||||||
|
- master_odex25_dms
|
||||||
|
- master_odex25_fleet
|
||||||
|
- master_odex25_helpdesk
|
||||||
|
- master_odex25_hr
|
||||||
|
- master_odex25_inventory
|
||||||
|
- master_odex25_maintenance
|
||||||
|
- master_odex25_mobile
|
||||||
|
- master_odex25_pos
|
||||||
|
- master_odex25_project
|
||||||
|
- master_odex25_purchase
|
||||||
|
- master_odex25_realstate
|
||||||
|
- master_odex25_sales
|
||||||
|
- master_odex25_survey
|
||||||
|
- master_odex25_transactions
|
||||||
|
- master_odex25_website
|
||||||
|
- master_openeducat_erp-14.0.1.0
|
||||||
|
- master_odex25_ensan
|
||||||
|
- master_odex25_donation
|
||||||
|
|
||||||
jobs:
|
jobs:
|
||||||
validate:
|
validate:
|
||||||
runs-on: linting_odex25-standard-modules_runner
|
runs-on: linting_odex25-standard-modules_runner
|
||||||
|
|
||||||
steps:
|
steps:
|
||||||
- name: Check PR Author
|
- name: Validate PR Author & Commit Authors
|
||||||
uses: actions/github-script@v7
|
uses: actions/github-script@v7
|
||||||
with:
|
with:
|
||||||
github-token: ${{ secrets.PR_CLOSE_TOKEN }}
|
github-token: ${{ secrets.PR_CLOSE_TOKEN }}
|
||||||
script: |
|
script: |
|
||||||
const allowed = ["expsa", "moutazmuhammad", "ronozoro", "Abubaker-Altaib", "altexp", "MohamedGad100", "the5abir", "esraa8mostafa", "zainab2097", "ahmadaking", "mohamed33", "mohammed-alkhazrji", "AwatifImam", "kchyounes19", "eslamtalaat744", "abuzaid4exp", "AbuzarExp", "yahyaDevelopOdoo", "MahmoudSalahEXP", "Nossibaelhadi"];
|
const allowed = [
|
||||||
const author = context.payload.pull_request.user.login;
|
"expsa",
|
||||||
|
"moutazmuhammad",
|
||||||
|
"ronozoro",
|
||||||
|
"Abubaker-Altaib",
|
||||||
|
"altexp",
|
||||||
|
"the5abir",
|
||||||
|
"ahmadaking",
|
||||||
|
"kchyounes19",
|
||||||
|
"abdurrahman-saber"
|
||||||
|
];
|
||||||
|
|
||||||
core.info(`PR Author: ${author}`);
|
const pr = context.payload.pull_request;
|
||||||
|
const prAuthor = pr.user.login;
|
||||||
|
const owner = context.repo.owner;
|
||||||
|
const repo = context.repo.repo;
|
||||||
|
|
||||||
if (!allowed.includes(author)) {
|
core.info(`PR author: ${prAuthor}`);
|
||||||
core.error(`User '${author}' is NOT allowed. Closing PR...`);
|
|
||||||
|
// Check PR author
|
||||||
|
if (!allowed.includes(prAuthor)) {
|
||||||
|
core.error(`Unauthorized PR author: ${prAuthor}. Closing PR...`);
|
||||||
await github.rest.pulls.update({
|
await github.rest.pulls.update({
|
||||||
owner: context.repo.owner,
|
owner,
|
||||||
repo: context.repo.repo,
|
repo,
|
||||||
pull_number: context.payload.pull_request.number,
|
pull_number: pr.number,
|
||||||
state: "closed"
|
state: "closed"
|
||||||
});
|
});
|
||||||
|
return;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// Check commit authors
|
||||||
|
const commitList = await github.rest.pulls.listCommits({
|
||||||
|
owner,
|
||||||
|
repo,
|
||||||
|
pull_number: pr.number
|
||||||
|
});
|
||||||
|
|
||||||
|
for (const commit of commitList.data) {
|
||||||
|
const commitAuthor = commit.author ? commit.author.login : null;
|
||||||
|
|
||||||
|
if (commitAuthor && !allowed.includes(commitAuthor)) {
|
||||||
|
core.error(`Unauthorized commit author: ${commitAuthor}. Closing PR...`);
|
||||||
|
|
||||||
|
await github.rest.pulls.update({
|
||||||
|
owner,
|
||||||
|
repo,
|
||||||
|
pull_number: pr.number,
|
||||||
|
state: "closed"
|
||||||
|
});
|
||||||
|
|
||||||
|
return;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
core.info("All PR authors and committers are allowed.");
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue