add verify git read func

pkg/apis/resources/v1alpha2/register.go

@@ -24,6 +24,7 @@ import (
 	corev1 "k8s.io/api/core/v1"
 	"k8s.io/apimachinery/pkg/runtime/schema"
 	"kubesphere.io/kubesphere/pkg/apiserver/components"
+	"kubesphere.io/kubesphere/pkg/apiserver/git"
 	"kubesphere.io/kubesphere/pkg/apiserver/quotas"
 	"kubesphere.io/kubesphere/pkg/apiserver/registries"
 	"kubesphere.io/kubesphere/pkg/apiserver/resources"
@@ -33,6 +34,7 @@ import (
 	"kubesphere.io/kubesphere/pkg/apiserver/workloadstatuses"
 	"kubesphere.io/kubesphere/pkg/errors"
 	"kubesphere.io/kubesphere/pkg/models"
+	gitmodel "kubesphere.io/kubesphere/pkg/models/git"
 	"kubesphere.io/kubesphere/pkg/params"
 )
 
@@ -149,6 +151,17 @@ func addWebService(c *restful.Container) error {
 		Doc("docker registry verify").
 		Writes(errors.Error{}))
 
+	tags = []string{"Git"}
+	webservice.Route(webservice.POST("/namespaces/{namespace}/secrets/{secret}/gitreadverify").
+		To(
+			git.GitReadVerify).
+		Metadata(restfulspec.KeyOpenAPITags, tags).
+		Doc("secret git read verify").
+		Param(webservice.PathParameter("namespace", "secret's namespace")).
+		Param(webservice.PathParameter("secret", "secret's name")).
+		Reads(gitmodel.AuthInfo{}).
+		Writes(errors.Error{}),
+	)
 	tags = []string{"Revision"}
 
 	webservice.Route(webservice.GET("/namespaces/{namespace}/daemonsets/{daemonset}/revisions/{revision}").

pkg/apiserver/git/git.go

@@ -0,0 +1,31 @@
+package git
+
+import (
+	"net/http"
+
+	"github.com/emicklei/go-restful"
+	"kubesphere.io/kubesphere/pkg/errors"
+	"kubesphere.io/kubesphere/pkg/models/git"
+)
+
+func GitReadVerify(request *restful.Request, response *restful.Response) {
+
+	authInfo := git.AuthInfo{}
+
+	err := request.ReadEntity(&authInfo)
+	ns := request.PathParameter("namespace")
+	name := request.PathParameter("name")
+	if err != nil {
+		response.WriteHeaderAndEntity(http.StatusInternalServerError, errors.Wrap(err))
+		return
+	}
+
+	err = git.GitReadVerify(ns, name, authInfo)
+
+	if err != nil {
+		response.WriteHeaderAndEntity(http.StatusInternalServerError, errors.Wrap(err))
+		return
+	}
+
+	response.WriteAsJson(errors.None)
+}

pkg/models/git/git.go

@@ -0,0 +1,44 @@
+package git
+
+import (
+	"fmt"
+	"gopkg.in/src-d/go-git.v4"
+	"gopkg.in/src-d/go-git.v4/config"
+	"gopkg.in/src-d/go-git.v4/plumbing/transport/http"
+	"gopkg.in/src-d/go-git.v4/storage/memory"
+	corev1 "k8s.io/api/core/v1"
+	"kubesphere.io/kubesphere/pkg/informers"
+)
+
+type AuthInfo struct {
+	RemoteUrl string `json:"remoteUrl"`
+}
+
+func GitReadVerify(namespace string, name string, authInfo AuthInfo) error {
+	secret, err := informers.SharedInformerFactory().Core().V1().Secrets().Lister().Secrets(namespace).Get(name)
+	if err != nil {
+		return err
+	}
+	username, ok := secret.Data[corev1.BasicAuthUsernameKey]
+	if !ok {
+		return fmt.Errorf("could not get username in secret %s", secret.Name)
+	}
+	password, ok := secret.Data[corev1.BasicAuthPasswordKey]
+	if !ok {
+		return fmt.Errorf("could not get password in secret %s", secret.Name)
+	}
+
+	r, _ := git.Init(memory.NewStorage(), nil)
+
+	// Add a new remote, with the default fetch refspec
+	origin, err := r.CreateRemote(&config.RemoteConfig{
+		Name: git.DefaultRemoteName,
+		URLs: []string{authInfo.RemoteUrl},
+	})
+	if err != nil {
+		return err
+	}
+	_, err = origin.List(&git.ListOptions{Auth:
+		&http.BasicAuth{Username: string(username), Password: string(password)}})
+	return err
+}