ti.sil/pr-agent
1
0
Fork 0
mirror of https://github.com/qodo-ai/pr-agent.git synced 2025-12-12 10:55:17 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

fix: support private_token authentication for GitLab private deployments

Browse source 
- Add intelligent authentication method detection based on GitLab URL
- Support explicit configuration override via GITLAB.AUTH_TYPE
- Maintain backward compatibility with existing oauth_token usage
- Fix 401 Unauthorized errors for private GitLab deployments

Fixes authentication issues where private GitLab instances require
private_token instead of oauth_token for API access.
This commit is contained in:
Mr_Jing 2025-08-03 08:46:41 +08:00
parent 642c413f08
commit d497c33c74
1 changed files with 35 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

40
pr_agent/git_providers/gitlab_provider.py
View file

@ -35,10 +35,20 @@ class GitLabProvider(GitProvider):
gitlab_access_token = get_settings().get("GITLAB.PERSONAL_ACCESS_TOKEN", None) gitlab_access_token = get_settings().get("GITLAB.PERSONAL_ACCESS_TOKEN", None)
if not gitlab_access_token: if not gitlab_access_token:
raise ValueError("GitLab personal access token is not set in the config file") raise ValueError("GitLab personal access token is not set in the config file")
self.gl = gitlab.Gitlab( # Use encapsulated method to determine authentication method
url=gitlab_url, auth_method = self._get_auth_method(gitlab_url)
oauth_token=gitlab_access_token
) # Create GitLab instance based on authentication method
if auth_method == "oauth_token":
self.gl = gitlab.Gitlab(
url=gitlab_url,
oauth_token=gitlab_access_token
)
else: # private_token
self.gl = gitlab.Gitlab(
url=gitlab_url,
private_token=gitlab_access_token
)
self.max_comment_chars = 65000 self.max_comment_chars = 65000
self.id_project = None self.id_project = None
self.id_mr = None self.id_mr = None
@ -52,6 +62,26 @@ class GitLabProvider(GitProvider):
r"^@@ -(\d+)(?:,(\d+))? \+(\d+)(?:,(\d+))? @@[ ]?(.*)") r"^@@ -(\d+)(?:,(\d+))? \+(\d+)(?:,(\d+))? @@[ ]?(.*)")
self.incremental = incremental self.incremental = incremental
def _get_auth_method(self, gitlab_url: str) -> str:
"""
Determine the authentication method for a GitLab instance.
Args:
gitlab_url: URL of the GitLab instance
Returns:
Authentication method: "oauth_token" or "private_token"
"""
# Check for explicit configuration override first
explicit_auth_type = get_settings().get("GITLAB.AUTH_TYPE", None)
if explicit_auth_type:
return explicit_auth_type
# Default strategy: gitlab.com and gitlab.io use oauth_token, others use private_token
if "gitlab.com" in gitlab_url or "gitlab.io" in gitlab_url:
return "oauth_token"
return "private_token"
def is_supported(self, capability: str) -> bool: def is_supported(self, capability: str) -> bool:
if capability in ['get_issue_comments', 'create_inline_comment', 'publish_inline_comments', if capability in ['get_issue_comments', 'create_inline_comment', 'publish_inline_comments',
'publish_file_comments']: # gfm_markdown is supported in gitlab ! 'publish_file_comments']: # gfm_markdown is supported in gitlab !
@ -677,7 +707,7 @@ class GitLabProvider(GitProvider):
get_logger().error(f"Repo URL: {repo_url_to_clone} is not a valid gitlab URL.") get_logger().error(f"Repo URL: {repo_url_to_clone} is not a valid gitlab URL.")
return None return None
(scheme, base_url) = repo_url_to_clone.split("gitlab.") (scheme, base_url) = repo_url_to_clone.split("gitlab.")
access_token = self.gl.oauth_token access_token = self.gl.oauth_token or self.gl.private_token
if not all([scheme, access_token, base_url]): if not all([scheme, access_token, base_url]):
get_logger().error(f"Either no access token found, or repo URL: {repo_url_to_clone} " get_logger().error(f"Either no access token found, or repo URL: {repo_url_to_clone} "
f"is missing prefix: {scheme} and/or base URL: {base_url}.") f"is missing prefix: {scheme} and/or base URL: {base_url}.")