feat: Add Secret Command(set only) (#30)

* add secret cmd

* change func name

Author: Shu Kutsuzawa

README.md

@@ -105,3 +105,9 @@ Successfully DELETE a banner ID 28
 $ sdctl banner get
 ID	IsActive	Message
 ```
+
+- write a secret
+```bash
+$ sdctl secret set -p 1111 -k FOO -v bar 
+setting secret FOO is succuseed!
+```

command/cmd.go

@@ -36,6 +36,7 @@ func NewCmd(config sdctl_context.SdctlConfig, api sdapi.SDAPI) *cobra.Command {
 		NewCmdGet(config, api),
 		NewCmdSet(config, api),
 		NewCmdValidate(api),
-		NewCmdValidateTemplate(api))
+		NewCmdValidateTemplate(api),
+		NewCmdSecret(api))
 	return cmd
 }

command/secret.go

@@ -0,0 +1,22 @@
+package command
+
+import (
+	"github.com/spf13/cobra"
+	"github.com/tk3fftk/sdctl/pkg/sdapi"
+)
+
+func NewCmdSecret(api sdapi.SDAPI) *cobra.Command {
+	cmd := &cobra.Command{
+		Use:   "secret",
+		Short: "handle screwdriver secrets (write only)",
+		Run: func(cmd *cobra.Command, args []string) {
+			cmd.Help()
+		},
+		Aliases: []string{"sec"},
+	}
+
+	cmd.AddCommand(
+		NewCmdSecretSet(api),
+	)
+	return cmd
+}

command/secret_set.go

@@ -0,0 +1,58 @@
+package command
+
+import (
+	"fmt"
+	"os"
+	"strconv"
+	"strings"
+
+	"github.com/spf13/cobra"
+	"github.com/tk3fftk/sdctl/pkg/sdapi"
+)
+
+type SecretSetOption struct {
+	API         sdapi.SDAPI
+	PipelineID  string
+	SecretKey   string
+	SecretValue string
+	AllowInPR   bool
+}
+
+func NewCmdSecretSet(api sdapi.SDAPI) *cobra.Command {
+	o := &SecretSetOption{
+		API: api,
+	}
+	cmd := &cobra.Command{
+		Use:   "set",
+		Short: "set secret to pipeline",
+		RunE: func(cmd *cobra.Command, args []string) error {
+			return o.Run(cmd, args)
+		},
+	}
+
+	cmd.Flags().StringVarP(&o.PipelineID, "pipeline", "p", "", "specify pipeline id")
+	_ = cmd.MarkFlagRequired("pipeline")
+	cmd.Flags().StringVarP(&o.SecretKey, "key", "k", "", "SECRET_KEY")
+	_ = cmd.MarkFlagRequired("key")
+	cmd.Flags().StringVarP(&o.SecretValue, "value", "v", "", "SECRET_VALUE")
+	_ = cmd.MarkFlagRequired("value")
+	cmd.Flags().BoolVarP(&o.AllowInPR, "allow-in-pr", "", false, "ALLOW_IN_PR")
+
+	return cmd
+}
+
+func (o *SecretSetOption) Run(cmd *cobra.Command, args []string) error {
+	pipelineIDNum, err := strconv.Atoi(o.PipelineID)
+	if err != nil {
+		return fmt.Errorf("failed to convert %s to int: %v", o.PipelineID, err)
+	}
+
+	// Screwdriver allow only "/^[A-Z_][A-Z0-9_]*$/]" as secret key
+	uppperKey := strings.ToUpper(o.SecretKey)
+	if err := o.API.SetSecret(pipelineIDNum, uppperKey, o.SecretValue, o.AllowInPR); err != nil {
+		return fmt.Errorf("failed to set secret: %v", err)
+	}
+
+	fmt.Fprintf(os.Stdout, "setting secret %s is succeed!\n", uppperKey)
+	return nil
+}

pkg/sdapi/sdapi.go

@@ -369,3 +369,97 @@ func (sd *SDAPI) getEvents(eventID int) (*eventResponse, error) {
 
 	return eventResponse, err
 }
+
+type Secret struct {
+	ID         int    `json:"id"`
+	PipelineID int    `json:"pipelineId"`
+	Name       string `json:"name"`
+	AllowInPR  bool   `json:"allowInPR"`
+}
+
+func (sd *SDAPI) SetSecret(pipelineID int, key, value string, allowInPR bool) error {
+
+	secrets, err := sd.getPipelineSecrets(pipelineID)
+	if err != nil {
+		return err
+	}
+
+	duplicatedKeyID, exist := sd.checkKey(secrets, key)
+
+	if !exist {
+		return sd.createSecret(pipelineID, key, value, allowInPR)
+	}
+
+	return sd.updateSecret(duplicatedKeyID, value, allowInPR)
+}
+
+func (sd *SDAPI) getPipelineSecrets(pipelineID int) ([]Secret, error) {
+	path := fmt.Sprintf("/v4/pipelines/%d/secrets?token=%s", pipelineID, sd.sdctx.SDJWT)
+	res, err := sd.request(context.TODO(), http.MethodGet, path, nil)
+	if err != nil {
+		return nil, err
+	}
+	defer res.Body.Close()
+	if res.StatusCode != http.StatusOK {
+		return nil, fmt.Errorf("GET %s status code is not %d: %d", path, http.StatusOK, res.StatusCode)
+	}
+	var secrets []Secret
+	if err := json.NewDecoder(res.Body).Decode(&secrets); err != nil {
+		return nil, err
+	}
+
+	return secrets, nil
+}
+
+func (sd *SDAPI) checkKey(secrets []Secret, key string) (int, bool) {
+	for _, s := range secrets {
+		if s.Name == key {
+			return s.ID, true
+		}
+	}
+	return 0, false
+}
+
+func (sd *SDAPI) createSecret(pipelineID int, key, value string, allowInPR bool) error {
+	path := "/v4/secrets"
+	body := make(map[string]interface{})
+	body["pipelineId"] = pipelineID
+	body["name"] = key
+	body["value"] = value
+	body["allowInPR"] = allowInPR
+	bodyJSON, err := json.Marshal(&body)
+	if err != nil {
+		return err
+	}
+	res, err := sd.request(context.TODO(), http.MethodPost, path, bytes.NewBuffer(bodyJSON))
+	if err != nil {
+		return err
+	}
+	defer res.Body.Close()
+
+	if res.StatusCode != http.StatusCreated {
+		return fmt.Errorf("POST %s status code is not %d: %d", path, http.StatusCreated, res.StatusCode)
+	}
+	return nil
+}
+
+func (sd *SDAPI) updateSecret(secretID int, value string, allowInPR bool) error {
+	path := fmt.Sprintf("/v4/secrets/%d", secretID)
+	body := make(map[string]interface{})
+	body["value"] = value
+	body["allowInPR"] = allowInPR
+	bodyJSON, err := json.Marshal(&body)
+	if err != nil {
+		return err
+	}
+	res, err := sd.request(context.TODO(), http.MethodPut, path, bytes.NewBuffer(bodyJSON))
+	if err != nil {
+		return err
+	}
+	defer res.Body.Close()
+
+	if res.StatusCode != http.StatusOK {
+		return fmt.Errorf("PUT %s status code is not %d: %d", path, http.StatusOK, res.StatusCode)
+	}
+	return nil
+}