fix: Fix docker login for oauth logins

2024-08-21 16:04:37 -04:00 · 2024-08-21 16:04:37 -04:00 · 020f89d4d1
commit 020f89d4d1
parent 1177a6d873
3 changed files with 159 additions and 43 deletions
--- a/utils/src/credentials.rs
+++ b/utils/src/credentials.rs
@ -55,58 +55,34 @@ static ENV_CREDENTIALS: LazyLock<Option<Credentials>> = LazyLock::new(|| {
        env::var(CI_REGISTRY).ok(),
        env::var(GITHUB_ACTIONS).ok(),
    ) {
-        (Some(registry), _, _) if !registry.is_empty() => registry,
-        (None, Some(ci_registry), None) if !ci_registry.is_empty() => ci_registry,
-        (None, None, Some(_)) => string!("ghcr.io"),
+        (Some(registry), _, _) | (_, Some(registry), _) if !registry.is_empty() => registry,
+        (_, _, Some(_)) => string!("ghcr.io"),
        _ => return None,
    };
    trace!("Registry: {registry:?}");

-    let docker_creds = docker_credential::get_credential(&registry).ok();
-    let podman_creds = docker_credential::get_podman_credential(&registry).ok();
-
-    let username = match (
-        username,
-        env::var(CI_REGISTRY_USER).ok(),
-        env::var(GITHUB_ACTOR).ok(),
-        &docker_creds,
-        &podman_creds,
+    let (username, password) = match (
+        (username, password),
+        docker_credential::get_credential(&registry).ok(),
+        docker_credential::get_podman_credential(&registry).ok(),
+        (
+            env::var(CI_REGISTRY_USER).ok(),
+            env::var(CI_REGISTRY_PASSWORD).ok(),
+        ),
+        (env::var(GITHUB_ACTOR).ok(), env::var(GITHUB_TOKEN).ok()),
    ) {
-        (Some(username), _, _, _, _) if !username.is_empty() => username,
-        (_, _, _, Some(DockerCredential::UsernamePassword(username, _)), _)
-        | (_, _, _, _, Some(DockerCredential::UsernamePassword(username, _)))
-            if !username.is_empty() =>
+        ((Some(username), Some(password)), _, _, _, _)
+        | (_, Some(DockerCredential::UsernamePassword(username, password)), _, _, _)
+        | (_, _, Some(DockerCredential::UsernamePassword(username, password)), _, _)
+        | (_, _, _, (Some(username), Some(password)), _)
+        | (_, _, _, _, (Some(username), Some(password)))
+            if !username.is_empty() && !password.is_empty() =>
        {
-            username.clone()
+            (username, password)
        }
-        (None, Some(ci_registry_user), None, _, _) if !ci_registry_user.is_empty() => {
-            ci_registry_user
-        }
-        (None, None, Some(github_actor), _, _) if !github_actor.is_empty() => github_actor,
-        _ => return None,
-    };
-    trace!("Username: {username:?}");
-
-    let password = match (
-        password,
-        env::var(CI_REGISTRY_PASSWORD).ok(),
-        env::var(GITHUB_TOKEN).ok(),
-        &docker_creds,
-        &podman_creds,
-    ) {
-        (Some(password), _, _, _, _) if !password.is_empty() => password,
-        (_, _, _, Some(DockerCredential::UsernamePassword(_, password)), _)
-        | (_, _, _, _, Some(DockerCredential::UsernamePassword(_, password)))
-            if !password.is_empty() =>
-        {
-            password.clone()
-        }
-        (None, Some(ci_registry_password), None, _, _) if !ci_registry_password.is_empty() => {
-            ci_registry_password
-        }
-        (None, None, Some(registry_token), _, _) if !registry_token.is_empty() => registry_token,
        _ => return None,
    };
+    trace!("Username: {username}");

    Some(
        Credentials::builder()