search

arduino / report-size-deltas

GitHub Actions action that comments on pull requests with a report of change in memory usage of Arduino sketches
Other
14 stars 8 forks source link

Don't include HTTP headers from GitHub API request in redirected artifact download request #83

Closed per1234 closed 9 months ago

per1234 commented 9 months ago

In the use case where the arduino/report-size-deltas action is ran from a GitHub Actions workflow triggered by a schedule event, it downloads the sketches report file from a workflow artifact.

The GitHub REST API is used to perform this artifact download. The artifact download process is:

  1. Action sends request to /repos/{owner}/{repo}/actions/artifacts/{artifact_id}/{archive_format} endpoint
  2. API responds with HTTP 302 status
  3. Action sends request to temporary file download URL provided by the API response
  4. Artifact file is downloaded

The API request at step (1) must be authenticated using a GitHub access token. This token is passed via the Authorization HTTP header in the request.

No authentication is required for the download request at step (3).

The urllib.request Python module is used to perform the HTTP requests. By default, this module [passes the headers from the original request to the redirect request](https://docs.python.org/3/library/urllib.request.html#urllib.request.Request:~:text=will%20be%20treated%20as%20if%20add_header()%20was%20called%20with%20each%20key%20and%20value%20as%20arguments).

Although these headers were superfluous, they didn't affect the download request when the target artifact was of the v1 format generated by version 3.x and earlier of the actions/upload-artifact action. A new v2 artifact format was introduced in the 4.0.0 release of the actions/upload-artifact action. Previously, the request at step (3) of the artifact download procedure would fail when the target artifact had the v2 format:

https://github.com/arduino/report-size-deltas/actions/runs/7633691244/job/20796387110#step:3:164

urllib.error.HTTPError: HTTP Error 400: Authentication information is not given in the correct format. Check the value of Authorization header.
Error: HTTPError: HTTP Error 400: Authentication information is not given in the correct format. Check the value of Authorization header.
<?xml version="1.0" encoding="utf-8"?><Error><Code>InvalidAuthenticationInfo</Code><Message>Authentication information is not given in the correct format. Check the value of Authorization header.

RequestId:1f13170a-001e-0076-5f5d-4e8d15000000

Time:2024-01-24T00:35:22.8264229Z</Message></Error>

The cause of the failure was the inclusion of the Authorization HTTP header in the download request. The urllib.request Python module can be configured to pass a header in the original request but not in the redirected request by defining the header via the Request.add_unredirected_header method instead of in the Request instantiation. This provides compatibility for using the action with v2 format artifacts.

codecov-commenter commented 9 months ago

Codecov Report

All modified and coverable lines are covered by tests :white_check_mark:

Comparison is base (57289ee) 100.00% compared to head (d590a75) 100.00%.

Additional details and impacted files ```diff @@ Coverage Diff @@ ## main #83 +/- ## ========================================= Coverage 100.00% 100.00% ========================================= Files 2 2 Lines 745 752 +7 ========================================= + Hits 745 752 +7 ```

:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.