mirror of
https://github.com/harness/drone.git
synced 2025-05-06 12:22:04 +08:00
4668e94027
This change adds the initial stepping stones for harness integration: - Authentication: JWT/PAT/SAT support - Authorization: ACL integration (acl currently denies requests as gitness hasn't been integrated yet) - Remote Clients for Token, User, ServiceAccount, ACL - User Integration: Syncs harness users during authentication if unknown - SA integration: syncs harness service accounts during authentication if unknown - Initial harness API: THIS WILL BE CHANGED IN THE FUTURE! - single harness subpackage (all marked with harness build flag) - harness & standalone wire + make build commands
37 lines
859 B
Go
37 lines
859 B
Go
// Copyright 2021 Harness Inc. All rights reserved.
|
|
// Use of this source code is governed by the Polyform Free Trial License
|
|
// that can be found in the LICENSE.md file for this repository.
|
|
|
|
package check
|
|
|
|
import (
|
|
"github.com/harness/gitness/types"
|
|
"github.com/harness/gitness/types/enum"
|
|
)
|
|
|
|
var (
|
|
ErrServiceAccountParentTypeIsInvalid = &ValidationError{
|
|
"Provided parent type is invalid.",
|
|
}
|
|
)
|
|
|
|
// ServiceAccount returns true if the ServiceAccount if valid.
|
|
func ServiceAccount(sa *types.ServiceAccount) error {
|
|
// validate UID
|
|
if err := UID(sa.UID); err != nil {
|
|
return err
|
|
}
|
|
|
|
// verify name
|
|
if err := Name(sa.Name); err != nil {
|
|
return err
|
|
}
|
|
|
|
// verify parentType is valid
|
|
if sa.ParentType != enum.ParentResourceTypeRepo && sa.ParentType != enum.ParentResourceTypeSpace {
|
|
return ErrServiceAccountParentTypeIsInvalid
|
|
}
|
|
|
|
return nil
|
|
}
|