added deploy key custom ssh path

2025-10-30 19:43:49 +00:00 · 2025-09-18 01:19:43 +01:00
parent 08f82bc795
commit e35f96d30f
4 changed files with 254 additions and 17 deletions
--- a/backend/src/routes/settingsRoutes.js
+++ b/backend/src/routes/settingsRoutes.js
@@ -124,7 +124,15 @@ router.put('/', authenticateToken, requireManageSettings, [
  body('updateInterval').isInt({ min: 5, max: 1440 }).withMessage('Update interval must be between 5 and 1440 minutes'),
  body('autoUpdate').isBoolean().withMessage('Auto update must be a boolean'),
  body('githubRepoUrl').optional().isLength({ min: 1 }).withMessage('GitHub repo URL must be a non-empty string'),
-  body('sshKeyPath').optional().isLength({ min: 1 }).withMessage('SSH key path must be a non-empty string')
+  body('sshKeyPath').optional().custom((value) => {
+    if (value && value.trim().length === 0) {
+      return true; // Allow empty string
+    }
+    if (value && value.trim().length < 1) {
+      throw new Error('SSH key path must be a non-empty string');
+    }
+    return true;
+  })
 ], async (req, res) => {
  try {
    console.log('Settings update request body:', req.body);
--- a/backend/src/routes/versionRoutes.js
+++ b/backend/src/routes/versionRoutes.js
@@ -27,6 +27,118 @@ router.get('/current', authenticateToken, async (req, res) => {
  }
 });

+// Test SSH key permissions and GitHub access
+router.post('/test-ssh-key', authenticateToken, requireManageSettings, async (req, res) => {
+  try {
+    const { sshKeyPath, githubRepoUrl } = req.body;
+    
+    if (!sshKeyPath || !githubRepoUrl) {
+      return res.status(400).json({ 
+        error: 'SSH key path and GitHub repo URL are required' 
+      });
+    }
+    
+    // Parse repository info
+    let owner, repo;
+    if (githubRepoUrl.includes('git@github.com:')) {
+      const match = githubRepoUrl.match(/git@github\.com:([^\/]+)\/([^\/]+)\.git/);
+      if (match) {
+        [, owner, repo] = match;
+      }
+    } else if (githubRepoUrl.includes('github.com/')) {
+      const match = githubRepoUrl.match(/github\.com\/([^\/]+)\/([^\/]+)/);
+      if (match) {
+        [, owner, repo] = match;
+      }
+    }
+    
+    if (!owner || !repo) {
+      return res.status(400).json({ 
+        error: 'Invalid GitHub repository URL format' 
+      });
+    }
+    
+    // Check if SSH key file exists and is readable
+    try {
+      require('fs').accessSync(sshKeyPath);
+    } catch (e) {
+      return res.status(400).json({
+        error: 'SSH key file not found or not accessible',
+        details: `Cannot access: ${sshKeyPath}`,
+        suggestion: 'Check the file path and ensure the application has read permissions'
+      });
+    }
+    
+    // Test SSH connection to GitHub
+    const sshRepoUrl = `git@github.com:${owner}/${repo}.git`;
+    const env = {
+      ...process.env,
+      GIT_SSH_COMMAND: `ssh -i ${sshKeyPath} -o StrictHostKeyChecking=no -o IdentitiesOnly=yes -o ConnectTimeout=10`
+    };
+    
+    try {
+      // Test with a simple git command
+      const { stdout } = await execAsync(
+        `git ls-remote --heads ${sshRepoUrl} | head -n 1`,
+        { 
+          timeout: 15000,
+          env: env
+        }
+      );
+      
+      if (stdout.trim()) {
+        return res.json({
+          success: true,
+          message: 'SSH key is working correctly',
+          details: {
+            sshKeyPath,
+            repository: `${owner}/${repo}`,
+            testResult: 'Successfully connected to GitHub'
+          }
+        });
+      } else {
+        return res.status(400).json({
+          error: 'SSH connection succeeded but no data returned',
+          suggestion: 'Check repository access permissions'
+        });
+      }
+    } catch (sshError) {
+      console.error('SSH test error:', sshError.message);
+      
+      if (sshError.message.includes('Permission denied')) {
+        return res.status(403).json({
+          error: 'SSH key permission denied',
+          details: 'The SSH key exists but GitHub rejected the connection',
+          suggestion: 'Verify the SSH key is added to the repository as a deploy key with read access'
+        });
+      } else if (sshError.message.includes('Host key verification failed')) {
+        return res.status(403).json({
+          error: 'Host key verification failed',
+          suggestion: 'This is normal for first-time connections. The key will be added to known_hosts automatically.'
+        });
+      } else if (sshError.message.includes('Connection timed out')) {
+        return res.status(408).json({
+          error: 'Connection timed out',
+          suggestion: 'Check your internet connection and GitHub status'
+        });
+      } else {
+        return res.status(500).json({
+          error: 'SSH connection failed',
+          details: sshError.message,
+          suggestion: 'Check the SSH key format and repository URL'
+        });
+      }
+    }
+    
+  } catch (error) {
+    console.error('SSH key test error:', error);
+    res.status(500).json({
+      error: 'Failed to test SSH key',
+      details: error.message
+    });
+  }
+});
+
 // Check for updates from GitHub
 router.get('/check-updates', authenticateToken, requireManageSettings, async (req, res) => {
  try {