Allow request an insecure gitea server (#18)

When deploy a Gitea server with a self-signed HTTPS certification. Runner will be failed when connect to Gitea server. This PR will fix that to allow ignore the HTTPS certification verification. Reviewed-on: https://gitea.com/gitea/act_runner/pulls/18 Reviewed-by: Jason Song <i@wolfogre.com> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> Co-committed-by: Lunny Xiao <xiaolunwen@gmail.com>
2025-06-13 01:57:13 +02:00 · 2023-02-15 16:51:14 +08:00
parent 990cf93c71
commit f1869f70b9
8 changed files with 66 additions and 29 deletions
--- a/client/http.go
+++ b/client/http.go
@ -1,17 +1,32 @@
 package client

 import (
-	"code.gitea.io/actions-proto-go/ping/v1/pingv1connect"
-	"code.gitea.io/actions-proto-go/runner/v1/runnerv1connect"
 	"context"
-	"gitea.com/gitea/act_runner/core"
-	"github.com/bufbuild/connect-go"
+	"crypto/tls"
 	"net/http"
 	"strings"
+
+	"code.gitea.io/actions-proto-go/ping/v1/pingv1connect"
+	"code.gitea.io/actions-proto-go/runner/v1/runnerv1connect"
+	"gitea.com/gitea/act_runner/core"
+	"github.com/bufbuild/connect-go"
 )

+func getHttpClient(endpoint string, insecure bool) *http.Client {
+	if strings.HasPrefix(endpoint, "https://") && insecure {
+		return &http.Client{
+			Transport: &http.Transport{
+				TLSClientConfig: &tls.Config{
+					InsecureSkipVerify: true,
+				},
+			},
+		}
+	}
+	return http.DefaultClient
+}
+
 // New returns a new runner client.
-func New(endpoint string, uuid, token string, opts ...connect.ClientOption) *HTTPClient {
+func New(endpoint string, insecure bool, uuid, token string, opts ...connect.ClientOption) *HTTPClient {
 	baseURL := strings.TrimRight(endpoint, "/") + "/api/actions"

 	opts = append(opts, connect.WithInterceptors(connect.UnaryInterceptorFunc(func(next connect.UnaryFunc) connect.UnaryFunc {
@ -28,16 +43,17 @@ func New(endpoint string, uuid, token string, opts ...connect.ClientOption) *HTT

 	return &HTTPClient{
 		PingServiceClient: pingv1connect.NewPingServiceClient(
-			http.DefaultClient,
+			getHttpClient(endpoint, insecure),
 			baseURL,
 			opts...,
 		),
 		RunnerServiceClient: runnerv1connect.NewRunnerServiceClient(
-			http.DefaultClient,
+			getHttpClient(endpoint, insecure),
 			baseURL,
 			opts...,
 		),
 		endpoint: endpoint,
+		insecure: insecure,
 	}
 }

@ -45,6 +61,10 @@ func (c *HTTPClient) Address() string {
 	return c.endpoint
 }

+func (c *HTTPClient) Insecure() bool {
+	return c.insecure
+}
+
 var _ Client = (*HTTPClient)(nil)

 // An HTTPClient manages communication with the runner API.
@ -52,4 +72,5 @@ type HTTPClient struct {
 	pingv1connect.PingServiceClient
 	runnerv1connect.RunnerServiceClient
 	endpoint string
+	insecure bool
 }