Feature request: Configuration to ignore specific repositories (or repository hosts) #49
Comments
|
Sounds like a good idea to me. The logic you want to augment is here: https://github.com/bringyourownideas/silverstripe-composer-update-checker/blob/master/src/Extensions/ComposerLoaderExtension.php#L56-L58. |
|
Hey sorry it's been a while, I did take a crack at this but I ran into an issue I haven't been able to figure out. I'll put the diff for what I have put together below in case someone is able to see where I'm going wrong. With the below, if the repository URL for a given package has a host which is added to the Unfortunately for some reason it's still trying to clone the repository, which if it can't access the repository means this is in the logs: @@ -12,9 +12,30 @@ use Composer\Repository\CompositeRepository;
use Composer\Repository\RepositoryInterface;
use SilverStripe\Core\Environment;
use SilverStripe\Core\Extension;
+use SilverStripe\Core\Config\Config;
class ComposerLoaderExtension extends Extension
{
+ /**
+ * For http repositories:
+ * Fully qualified domain names from which any repositories should not be checked.
+ *
+ * For ssh repositories:
+ * The portion of the ssh URI after @ but before :
+ *
+ * @example
+ * for https://github.com/some-account/some-repository.git:
+ * github.com
+ *
+ * @example
+ * for git@git.cwp.govt.nz:some-stack/some-repository.git:
+ * git.cwp.govt.nz
+ *
+ * @config
+ * @var array
+ */
+ private static $ignored_repository_hosts = [];
+
/**
* @var Composer
*/
@@ -57,6 +78,23 @@ class ComposerLoaderExtension extends Extension
continue;
}
+ // Filter out packages from hosts which should be ignored
+ $ignoredHosts = (array) Config::inst()->get(self::class, 'ignored_repository_hosts');
+ $sourceURL = $package->getSourceUrl();
+ if ($host = parse_url($sourceURL, PHP_URL_HOST)) {
+ if (in_array($host, $ignoredHosts)) {
+ continue;
+ }
+ } else {
+ // Some ssh URIs aren't parsed correctly by parse_url
+ foreach ($ignoredHosts as $host) {
+ if (preg_match('/^.+?@' . $host . ':/', $sourceURL)) {
+ // continue outer loop
+ continue 2;
+ }
+ }
+ }
+
// Find the constraint used for installation
$constraint = $this->getInstalledConstraint($repository, $package->getName());
$packages[$package->getName()] = [ |
|
I've gone really into the weeds trying to figure this out, and I've found it's a result of how the Edit: Though due to the nature of how this is all laid out, and the fact that composer dependencies can be pretty deeply nested, my PR will probably only support ignoring direct dependencies - or maybe 1 level of nested dependencies. |
|
Looks like I've uncovered an actual defect while looking into this. I'll raise a PR and explain more there. |
I have a situation where some private repositories are being hosted in-house, which are required for a project.
I'm not allowed to provide access to those repositories for this module to utilize, and we want to avoid clogging our internal logging whenever the repository tries to update the report for these repositories.
Ideally, we'd like to tell the module (through yaml configuration) to ignore these repositories - either on a per-repository basis or, preferably, on a per-host basis so we can just ignore all of the repositories we host internally.
I'd be happy to submit a pull request if someone can point me in the right direction of where I'd need to make changes.
Accepance criteria
PRs
The text was updated successfully, but these errors were encountered: