add pagination, refactor

aldevv · aldevv · commit f650210e954b · 2025-06-27T13:01:16.000-05:00
diff --git a/pkg/connector/connector.go b/pkg/connector/connector.go
@@ -198,14 +198,10 @@ func (gh *GitHub) Validate(ctx context.Context) (annotations.Annotations, error)
 	}
 
 	if len(gh.enterprises) > 0 {
-		// __AUTO_GENERATED_PRINTF_START__
-		fmt.Println("Validate 1") // __AUTO_GENERATED_PRINTF_END__
-		_, _, err := gh.customClient.ListEnterpriseConsumedLicenses(ctx, gh.enterprises[0])
+		_, _, err := gh.customClient.ListEnterpriseConsumedLicenses(ctx, gh.enterprises[0], 0)
 		if err != nil {
 			return nil, fmt.Errorf("access token must be an admin on the enterprise to sync enterprise roles: %w", err)
 		}
-		// __AUTO_GENERATED_PRINTF_START__
-		fmt.Println("Validate 2") // __AUTO_GENERATED_PRINTF_END__
 	}
 	return nil, nil
 }
diff --git a/pkg/connector/enterprise_role.go b/pkg/connector/enterprise_role.go
@@ -21,118 +21,69 @@ type enterpriseRoleResourceType struct {
 	client         *github.Client
 	customClient   *customclient.Client
 	enterprises    []string
-	userRolesCache map[string][]string
+	roleUsersCache map[string][]string
 	mu             *sync.Mutex
 }
 
-// func enterpriseRoleResource(
-// 	ctx context.Context,
-// 	role *OrganizationRole,
-// 	org *v2.Resource,
-// ) (*v2.Resource, error) {
-// 	profile := map[string]interface{}{
-// 		"description": role.Description,
-// 	}
-//
-// 	return resource.NewRoleResource(
-// 		role.Name,
-// 		resourceTypeOrgRole,
-// 		role.ID,
-// 		[]resource.RoleTraitOption{
-// 			resource.WithRoleProfile(profile),
-// 		},
-// 		resource.WithParentResourceID(org.Id),
-// 		resource.WithAnnotation(
-// 			&v2.V1Identifier{Id: fmt.Sprintf("org_role:%d", role.ID)},
-// 		),
-// 	)
-// }
-
 func (o *enterpriseRoleResourceType) ResourceType(_ context.Context) *v2.ResourceType {
 	return o.resourceType
 }
 
 func (o *enterpriseRoleResourceType) cacheRole(roleId string, userLogin string) {
 	o.mu.Lock()
 	defer o.mu.Unlock()
-	if _, exists := o.userRolesCache[userLogin]; !exists {
-		o.userRolesCache[roleId] = []string{}
+	if _, exists := o.roleUsersCache[userLogin]; !exists {
+		o.roleUsersCache[roleId] = []string{}
 	}
 
-	o.userRolesCache[roleId] = append(o.userRolesCache[userLogin], userLogin)
+	o.roleUsersCache[roleId] = append(o.roleUsersCache[roleId], userLogin)
 }
 
-func (o *enterpriseRoleResourceType) fillCache() error {
-	for _, enterprise := range o.enterprises {
-		consumedLicenses, _, err := o.customClient.ListEnterpriseConsumedLicenses(context.Background(), enterprise)
-		if err != nil {
-			return fmt.Errorf("baton-github: error listing enterprise consumed licenses for %s: %w", enterprise, err)
-		}
-
-		for _, user := range consumedLicenses.Users {
-			for _, role := range user.GitHubComEnterpriseRoles {
-				roleId := fmt.Sprintf("%s:%s", enterprise, role)
-				o.cacheRole(roleId, user.GitHubComLogin)
-			}
-		}
-	}
-	return nil
-}
-
-func (o *enterpriseRoleResourceType) getRolesCache() (map[string][]string, error) {
-	if len(o.userRolesCache) == 0 {
-		if err := o.fillCache(); err != nil {
+func (o *enterpriseRoleResourceType) getRoleUsersCache(ctx context.Context) (map[string][]string, error) {
+	if len(o.roleUsersCache) == 0 {
+		if err := o.fillCache(ctx); err != nil {
 			return nil, fmt.Errorf("baton-github: error caching user roles: %w", err)
 		}
 	}
 
 	o.mu.Lock()
 	defer o.mu.Unlock()
-	return o.userRolesCache, nil
+	return o.roleUsersCache, nil
 }
 
-// func (o *enterpriseRoleResourceType) List(
-// 	ctx context.Context,
-// 	parentID *v2.ResourceId,
-// 	pToken *pagination.Token,
-// ) ([]*v2.Resource, string, annotations.Annotations, error) {
-//
-// 	var ret []*v2.Resource
-// 	for _, enterprise := range o.enterprises {
-// 		consumedLicenses, _, err := o.customClient.ListEnterpriseConsumedLicenses(ctx, enterprise)
-// 		if err != nil {
-// 			return nil, "", nil, fmt.Errorf("baton-github: error listing enterprise consumed licenses for %s: %w", enterprise, err)
-// 		}
-//
-// 		for _, user := range consumedLicenses.Users {
-// 			for _, role := range user.GitHubComEnterpriseRoles {
-// 				roleId := fmt.Sprintf("%s:%s", enterprise, role)
-// 				o.cacheRole(roleId, user.GitHubComLogin)
-//
-// 				roleResource, err := resourceSdk.NewRoleResource(
-// 					role,
-// 					resourceTypeEnterpriseRole,
-// 					roleId,
-// 					[]resourceSdk.RoleTraitOption{},
-// 				)
-// 				if err != nil {
-// 					return nil, "", nil, fmt.Errorf("baton-github: error creating role resource for %s in enterprise %s: %w", role, enterprise, err)
-// 				}
-// 				ret = append(ret, roleResource)
-// 			}
-// 		}
-// 	}
-//
-// 	return ret, "", nil, nil
-// }
+func (o *enterpriseRoleResourceType) fillCache(ctx context.Context) error {
+	for _, enterprise := range o.enterprises {
+		page := 0
+		continuePagination := true
+		for continuePagination {
+			consumedLicenses, _, err := o.customClient.ListEnterpriseConsumedLicenses(ctx, enterprise, page)
+			if err != nil {
+				return fmt.Errorf("baton-github: error listing enterprise consumed licenses for %s: %w", enterprise, err)
+			}
+
+			if len(consumedLicenses.Users) == 0 {
+				continuePagination = false
+			}
+			page++
+
+			for _, user := range consumedLicenses.Users {
+				for _, role := range user.GitHubComEnterpriseRoles {
+					roleId := fmt.Sprintf("%s:%s", enterprise, role)
+					o.cacheRole(roleId, user.GitHubComLogin)
+				}
+			}
+		}
+	}
+	return nil
+}
 
 func (o *enterpriseRoleResourceType) List(
 	ctx context.Context,
 	parentID *v2.ResourceId,
 	pToken *pagination.Token,
 ) ([]*v2.Resource, string, annotations.Annotations, error) {
 	var ret []*v2.Resource
-	cache, err := o.getRolesCache()
+	cache, err := o.getRoleUsersCache(ctx)
 	if err != nil {
 		return nil, "", nil, fmt.Errorf("baton-github: error getting user roles cache: %w", err)
 	}
@@ -179,18 +130,11 @@ func (o *enterpriseRoleResourceType) Grants(
 	resource *v2.Resource,
 	pToken *pagination.Token,
 ) ([]*v2.Grant, string, annotations.Annotations, error) {
-	_, err := o.getRolesCache()
-	if err != nil {
-		return nil, "", nil, fmt.Errorf("baton-github: error getting enterprise role cache: %w", err)
-	}
-
-	cache, err := o.getRolesCache()
+	cache, err := o.getRoleUsersCache(ctx)
 	if err != nil {
 		return nil, "", nil, fmt.Errorf("baton-github: error getting user roles cache: %w", err)
 	}
 
-	// __AUTO_GENERATED_PRINT_VAR_START__
-	fmt.Println(fmt.Sprintf("Grants resource.Id.Resource: %+v", resource.Id.Resource)) // __AUTO_GENERATED_PRINT_VAR_END__
 	ret := []*v2.Grant{}
 	for _, userLogin := range cache[resource.Id.Resource] {
 		user, _, err := o.client.Users.Get(ctx, userLogin)
@@ -213,21 +157,13 @@ func (o *enterpriseRoleResourceType) Grants(
 	return ret, "", nil, nil
 }
 
-// func (o *enterpriseRoleResourceType) Grant(ctx context.Context, principal *v2.Resource, entitlement *v2.Entitlement) (annotations.Annotations, error) {
-// 	return nil, nil
-// }
-//
-// func (o *enterpriseRoleResourceType) Revoke(ctx context.Context, grant *v2.Grant) (annotations.Annotations, error) {
-// 	return nil, nil
-// }
-
 func enterpriseRoleBuilder(client *github.Client, customClient *customclient.Client, enterprises []string) *enterpriseRoleResourceType {
 	return &enterpriseRoleResourceType{
 		resourceType:   resourceTypeEnterpriseRole,
 		client:         client,
 		customClient:   customClient,
 		enterprises:    enterprises,
-		userRolesCache: make(map[string][]string),
+		roleUsersCache: make(map[string][]string),
 		mu:             &sync.Mutex{},
 	}
 }
diff --git a/pkg/customclient/client.go b/pkg/customclient/client.go
@@ -23,12 +23,16 @@ func New(client *github.Client) *Client {
 }
 
 // https://docs.github.com/en/enterprise-cloud@latest/rest/enterprise-admin/license?apiVersion=2022-11-28#list-enterprise-consumed-licenses
-func (c *Client) ListEnterpriseConsumedLicenses(ctx context.Context, enterprise string) (*EnterpriseConsumedLicense, *v2.RateLimitDescription, error) {
+func (c *Client) ListEnterpriseConsumedLicenses(ctx context.Context, enterprise string, page int) (*EnterpriseConsumedLicense, *v2.RateLimitDescription, error) {
 	req, err := http.NewRequestWithContext(ctx, http.MethodGet, fmt.Sprintf("https://api.github.com/enterprises/%s/consumed-licenses", enterprise), nil)
 	if err != nil {
 		return nil, nil, fmt.Errorf("error creating request to list enterprise consumed licenses: %w", err)
 	}
 
+	q := req.URL.Query()
+	q.Add("page", fmt.Sprintf("%d", page))
+	req.URL.RawQuery = q.Encode()
+
 	var target EnterpriseConsumedLicense
 	var rateLimitData v2.RateLimitDescription
 	res, err := c.Do(req,

Original file line number	Diff line number	Diff line change
`@@ -198,14 +198,10 @@ func (gh *GitHub) Validate(ctx context.Context) (annotations.Annotations, error)`
`198`	`198`	`}`
`199`	`199`
`200`	`200`	`if len(gh.enterprises) > 0 {`
`201`		`- // __AUTO_GENERATED_PRINTF_START__`
`202`		`- fmt.Println("Validate 1") // __AUTO_GENERATED_PRINTF_END__`
`203`		`- _, _, err := gh.customClient.ListEnterpriseConsumedLicenses(ctx, gh.enterprises[0])`
	`201`	`+ _, _, err := gh.customClient.ListEnterpriseConsumedLicenses(ctx, gh.enterprises[0], 0)`
`204`	`202`	`if err != nil {`
`205`	`203`	`return nil, fmt.Errorf("access token must be an admin on the enterprise to sync enterprise roles: %w", err)`
`206`	`204`	`}`
`207`		`- // __AUTO_GENERATED_PRINTF_START__`
`208`		`- fmt.Println("Validate 2") // __AUTO_GENERATED_PRINTF_END__`
`209`	`205`	`}`
`210`	`206`	`return nil, nil`
`211`	`207`	`}`