Adding Authorization for Github api call In KubeLoginInstallerV0

Tasks/KubeloginInstallerV0/task.json

@@ -15,7 +15,7 @@
     "author": "Microsoft Corporation",
     "version": {
         "Major": 0,
-        "Minor": 247,
+        "Minor": 250,
         "Patch": 0
     },
     "demands": [],
@@ -30,6 +30,14 @@
             "label": "kubelogin version",
             "defaultValue": "latest",
             "helpMarkDown": "The version of kubelogin to use"
+        },
+        {
+            "name": "gitHubConnection",
+            "type": "connectedService:github:OAuth,OAuth2,PersonalAccessToken,InstallationToken,Token",
+            "label": "GitHub Connection",
+            "defaultValue": "",
+            "required": false,
+            "helpMarkDown": "A GitHub connection is needed to prevent anonymous requests limits to the Github API for [Azure/kubelogin](https://github.com/azure/kubelogin) from impacting the installation. Leaving this empty may cause failures if the request limit is reached. This connection does not require ANY permissions."
         }
     ],
     "execution": {

Tasks/KubeloginInstallerV0/task.loc.json

@@ -15,7 +15,7 @@
   "author": "Microsoft Corporation",
   "version": {
     "Major": 0,
-    "Minor": 247,
+    "Minor": 250,
     "Patch": 0
   },
   "demands": [],
@@ -30,6 +30,14 @@
       "label": "ms-resource:loc.input.label.kubeloginVersion",
       "defaultValue": "latest",
       "helpMarkDown": "ms-resource:loc.input.help.kubeloginVersion"
+    },
+    {
+      "name": "gitHubConnection",
+      "type": "connectedService:github:OAuth,OAuth2,PersonalAccessToken,InstallationToken,Token",
+      "label": "ms-resource:loc.input.label.gitHubConnection",
+      "defaultValue": "",
+      "required": false,
+      "helpMarkDown": "ms-resource:loc.input.help.gitHubConnection"
     }
   ],
   "execution": {

Tasks/KubeloginInstallerV0/utils.ts

@@ -54,6 +54,12 @@ export async function getLatestVersionTag(): Promise<string> {
   request.headers = request.headers || {};
   request.headers['User-Agent'] = userAgent;
 
+  if (taskLib.getBoolFeatureFlag('USE_AUTHORIZATION_FOR_API_CALL')){
+  const token = getGithubEndPointToken();
+  if (token) {
+    request.headers['Authorization'] = 'token ' + token;
+  }
+  }
   const response = await webClient.sendRequest(request);
   return response.body['tag_name'];
 }
@@ -84,6 +90,12 @@ export async function getKubeloginRelease(version: string = 'latest', platform?:
     request.method = 'GET';
     request.headers = request.headers || {};
     request.headers['User-Agent'] = userAgent;
+    if (taskLib.getBoolFeatureFlag('USE_AUTHORIZATION_FOR_API_CALL')){
+    const token = getGithubEndPointToken();
+    if (token) {
+        request.headers['Authorization'] = 'token ' + token;
+    }
+  }
 
     const response = await webClient.sendRequest(request);
 
@@ -134,6 +146,36 @@ export async function unzipRelease(zipPath: string): Promise<string> {
   }
 }
 
+function getGithubEndPointToken(): string {
+  try{
+  const githubEndpoint = taskLib.getInput("gitHubConnection", false);
+  const githubEndpointObject = taskLib.getEndpointAuthorization(githubEndpoint, true);
+  let githubEndpointToken: string = null;
+
+  if (!!githubEndpointObject) {
+    taskLib.debug("Endpoint scheme: " + githubEndpointObject.scheme);
+
+    if (githubEndpointObject.scheme === 'PersonalAccessToken') {
+      githubEndpointToken = githubEndpointObject.parameters.accessToken
+    } else if (githubEndpointObject.scheme === 'OAuth'){
+      // scheme: 'OAuth'
+      githubEndpointToken = githubEndpointObject.parameters.AccessToken
+    } else if (githubEndpointObject.scheme === 'Token'){
+      // scheme: 'Token'
+      githubEndpointToken = githubEndpointObject.parameters.AccessToken
+    } else if (githubEndpointObject.scheme) {
+      throw new Error(taskLib.loc("InvalidEndpointAuthScheme", githubEndpointObject.scheme));
+    }
+  }
+
+  return githubEndpointToken;
+}
+catch(error)
+{
+  throw new Error(taskLib.loc("Failed to retrieve GitHub endpoint token:", error.message));
+}
+}
+
 export function getKubeloginPath(inputPath: string, fileName: string): string | undefined {
   const files: string[] = fs.readdirSync(inputPath);
   for (const file of files) {

_generated/KubeloginInstallerV0.versionmap.txt

@@ -1,2 +1,2 @@
-Default|0.247.0
-Node20_229_3|0.247.1
+Default|0.250.0
+Node20_229_3|0.250.1

_generated/KubeloginInstallerV0/Strings/resources.resjson/en-US/resources.resjson

@@ -5,6 +5,8 @@
   "loc.instanceNameFormat": "Install Kubelogin $(kubeloginVersion)",
   "loc.input.label.kubeloginVersion": "kubelogin version",
   "loc.input.help.kubeloginVersion": "The version of kubelogin to use",
+  "loc.input.label.gitHubConnection": "GitHub Connection",
+  "loc.input.help.gitHubConnection": "A GitHub connection is needed to prevent anonymous requests limits to the Github API for [Azure/kubelogin](https://github.com/azure/kubelogin) from impacting the installation. Leaving this empty may cause failures if the request limit is reached. This connection does not require ANY permissions.",
   "loc.messages.Info_VerifyKubeloginInstallation": "Verifying kubelogin installation...",
   "loc.messages.Info_ResolvedToolFromCache": "Resolved from tool cache: %s",
   "loc.messages.Info_UsingToolPath": "Using tool path: %s",

_generated/KubeloginInstallerV0/task.json

@@ -15,7 +15,7 @@
   "author": "Microsoft Corporation",
   "version": {
     "Major": 0,
-    "Minor": 247,
+    "Minor": 250,
     "Patch": 0
   },
   "demands": [],
@@ -30,6 +30,14 @@
       "label": "kubelogin version",
       "defaultValue": "latest",
       "helpMarkDown": "The version of kubelogin to use"
+    },
+    {
+      "name": "gitHubConnection",
+      "type": "connectedService:github:OAuth,OAuth2,PersonalAccessToken,InstallationToken,Token",
+      "label": "GitHub Connection",
+      "defaultValue": "",
+      "required": false,
+      "helpMarkDown": "A GitHub connection is needed to prevent anonymous requests limits to the Github API for [Azure/kubelogin](https://github.com/azure/kubelogin) from impacting the installation. Leaving this empty may cause failures if the request limit is reached. This connection does not require ANY permissions."
     }
   ],
   "execution": {
@@ -59,7 +67,7 @@
     "Info_KubeloginDownloading": "Downloading kubelogin"
   },
   "_buildConfigMapping": {
-    "Default": "0.247.0",
-    "Node20_229_3": "0.247.1"
+    "Default": "0.250.0",
+    "Node20_229_3": "0.250.1"
   }
 }

_generated/KubeloginInstallerV0/task.loc.json

@@ -15,7 +15,7 @@
   "author": "Microsoft Corporation",
   "version": {
     "Major": 0,
-    "Minor": 247,
+    "Minor": 250,
     "Patch": 0
   },
   "demands": [],
@@ -30,6 +30,14 @@
       "label": "ms-resource:loc.input.label.kubeloginVersion",
       "defaultValue": "latest",
       "helpMarkDown": "ms-resource:loc.input.help.kubeloginVersion"
+    },
+    {
+      "name": "gitHubConnection",
+      "type": "connectedService:github:OAuth,OAuth2,PersonalAccessToken,InstallationToken,Token",
+      "label": "ms-resource:loc.input.label.gitHubConnection",
+      "defaultValue": "",
+      "required": false,
+      "helpMarkDown": "ms-resource:loc.input.help.gitHubConnection"
     }
   ],
   "execution": {
@@ -59,7 +67,7 @@
     "Info_KubeloginDownloading": "ms-resource:loc.messages.Info_KubeloginDownloading"
   },
   "_buildConfigMapping": {
-    "Default": "0.247.0",
-    "Node20_229_3": "0.247.1"
+    "Default": "0.250.0",
+    "Node20_229_3": "0.250.1"
   }
 }