Update plugin

Author: Matyrobbrt

.github/workflows/build.yml

@@ -0,0 +1,58 @@
+name: Publish image with plugin
+
+on:
+  push:
+    branches:
+      - main
+  workflow_dispatch:
+
+jobs:
+  push-plugin:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: neoforged/actions/checkout@main
+
+      - name: Use Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: 22
+          cache: 'npm'
+
+      - name: Install NPM Dependencies
+        run: npm ci
+
+      - name: Build Plugin
+        run: npm run build
+
+      - name: Setup Docker Buildx
+        uses: docker/setup-buildx-action@v3
+
+      - name: Login to GitHub Container Registry
+        uses: docker/login-action@v3
+        with:
+          registry: ghcr.io
+          username: ${{ github.actor }}
+          password: ${{ github.token }}
+
+      - name: Create Docker Metadata
+        id: docker_metadata
+        uses: docker/metadata-action@v5
+        with:
+          images: ghcr.io/${{ github.repository }}
+          # custom latest tag, the rest are default values
+          tags: |
+            type=raw,value=latest,enable={{is_default_branch}}
+            type=schedule
+            type=ref,event=branch
+            type=ref,event=tag
+            type=ref,event=pr
+
+      - name: Build Docker Image
+        uses: docker/build-push-action@v6
+        with:
+          context: .
+          push: true
+          cache-from: type=gha
+          cache-to: type=gha,mode=max
+          tags: ${{ steps.docker_metadata.outputs.tags }}
+          labels: ${{ steps.docker_metadata.outputs.labels }}

.gitignore

@@ -6,3 +6,4 @@ dist
 npm-debug.log*
 yarn.lock
 .vscode/launch.json
+.vscode

Dockerfile

@@ -0,0 +1,5 @@
+FROM n8nio/n8n:1.98.0
+USER root
+COPY ./ /home/node/.n8n/custom/node_modules/neoforged-n8n-plugin
+USER node
+WORKDIR /home/node

credentials/ExampleCredentialsApi.credentials.ts

@@ -0,0 +1,145 @@
+import {
+	ICredentialDataDecryptedObject,
+	ICredentialType,
+	IHttpRequestOptions,
+	INodeProperties,
+} from 'n8n-workflow';
+import jwt from 'jsonwebtoken'
+import { Octokit } from '@octokit/rest';
+
+class AsyncCache<K, V> {
+	private cache: Map<K, {
+		value: V,
+		expiry: number
+	}>;
+
+  constructor() {
+    this.cache = new Map();
+  }
+
+  async get(key: K, creator: () => Promise<V>, timeout = 5000) {
+    const now = Date.now();
+
+    if (this.cache.has(key)) {
+      const { value, expiry } = this.cache.get(key)!
+      if (expiry > now) {
+        return value;
+      }
+      this.cache.delete(key)
+    }
+
+    const value = await creator()
+    this.cache.set(key, { value, expiry: now + timeout });
+    return value;
+  }
+}
+
+const tokenCache = new AsyncCache<string, string>()
+
+export async function genToken(creds: ICredentialDataDecryptedObject, forceGenerate: boolean = false, ovInstallation: string | undefined = undefined): Promise<string> {
+	const key = creds['key'] as string
+	const appid = creds['appid'] as number
+	const installation = ovInstallation ?? creds['installation'] as string
+	const generator = async () => {
+		console.log('Generating GH application token for ' + appid)
+
+		const now = Math.floor(Date.now() / 1000)
+
+		const octo = new Octokit({
+			auth: jwt.sign({
+				iss: appid.toString(),
+				iat: now,
+				exp: now + 599
+			}, formatPrivateKey(key), {
+				algorithm: 'RS256'
+			})
+		})
+
+		let install: number
+
+		if (isNaN(Number(installation))) {
+			if (installation.includes('/')) {
+				const split = installation.split('/')
+				install = (await octo.apps.getRepoInstallation({owner: split[0], repo: split[1]})).data.id
+			} else {
+				install = (await octo.apps.getOrgInstallation({org: installation})).data.id
+			}
+		} else {
+			install = parseInt(installation)
+		}
+		return (await octo.apps.createInstallationAccessToken({
+			installation_id: install
+		})).data.token
+	}
+	if (forceGenerate) return await generator()
+	return await tokenCache.get(JSON.stringify([key, appid, installation]), generator, 45 * 60 * 1000) // 45 minutes
+}
+
+export class GitHubAppApi implements ICredentialType {
+	name = 'githubappApi';
+	displayName = 'GitHub Application API';
+	documentationUrl = 'https://docs.github.com/en/apps';
+	icon = { light: 'file:ghapp.svg', dark: 'file:ghapp.svg'} as const
+	properties: INodeProperties[] = [
+		{
+			displayName: 'Private key',
+			description: 'The application private key',
+			name: 'key',
+			type: 'string',
+			default: '',
+			required: true,
+			typeOptions: {
+				password: true,
+			}
+		},
+		{
+			displayName: 'Application ID',
+			description: 'The ID of the GitHub application',
+			name: 'appid',
+			type: 'number',
+			default: 0,
+			required: true
+		},
+		{
+			displayName: 'Installation',
+			description: 'The installation (organisation or repository) to generate application tokens for by default',
+			name: 'installation',
+			type: 'string',
+			default: ''
+		}
+	];
+
+
+	authenticate = async (creds: ICredentialDataDecryptedObject, req: IHttpRequestOptions): Promise<IHttpRequestOptions> => {
+		return {
+			...req,
+			headers: {
+				...req.headers,
+				'Authorization': `Bearer ${await genToken(creds)}`
+			}
+		}
+	}
+}
+
+export function formatPrivateKey(privateKey: string): string {
+	let regex = /(PRIVATE KEY|CERTIFICATE)/;
+	if (!privateKey || /\n/.test(privateKey)) {
+		return privateKey;
+	}
+	let formattedPrivateKey = '';
+	const parts = privateKey.split('-----').filter((item) => item !== '');
+	parts.forEach((part) => {
+		if (regex.test(part)) {
+			formattedPrivateKey += `-----${part}-----`;
+		} else {
+			const passRegex = /Proc-Type|DEK-Info/;
+			if (passRegex.test(part)) {
+				part = part.replace(/:\s+/g, ':');
+				formattedPrivateKey += part.replace(/\\n/g, '\n').replace(/\s+/g, '\n');
+			} else {
+				formattedPrivateKey += part.replace(/\\n/g, '\n').replace(/\s+/g, '\n');
+			}
+		}
+	});
+	return formattedPrivateKey;
+}