fix: double auth with checkout v6

Signed-off-by: lucasew <lucas59356@gmail.com>
2025-11-21 08:48:08 -03:00 · 2025-11-21 08:48:08 -03:00 · 122cf7516b
commit 122cf7516b
parent b4733b9419
3 changed files with 34 additions and 0 deletions
--- a/dist/index.js
+++ b/dist/index.js
@ -738,6 +738,7 @@ class GitCommandManager {
            const output = yield this.exec([
                'config',
                globalConfig ? '--global' : '--local',
+                '--includes', // Detect configs from included files (e.g., checkout@v6)
                '--name-only',
                '--get-regexp',
                configKey,
@ -820,6 +821,7 @@ class GitCommandManager {
            const output = yield this.exec([
                'config',
                '--local',
+                '--includes', // Get configs from included files (e.g., checkout@v6)
                '--get-regexp',
                configKey,
                configValue
@ -1205,6 +1207,15 @@ class GitConfigHelper {
            const basicCredential = Buffer.from(`x-access-token:${token}`, 'utf8').toString('base64');
            core.setSecret(basicCredential);
            const extraheaderConfigValue = `AUTHORIZATION: basic ${basicCredential}`;
+            // Check if the same token is already configured (e.g., by checkout@v6)
+            // If so, skip reconfiguration to avoid duplicate headers
+            if (yield this.git.configExists(this.extraheaderConfigKey, this.extraheaderConfigValueRegex)) {
+                const existingValue = yield this.git.getConfigValue(this.extraheaderConfigKey, this.extraheaderConfigValueRegex);
+                if (existingValue === extraheaderConfigValue) {
+                    core.info('Git credentials already configured with the same token, skipping reconfiguration');
+                    return;
+                }
+            }
            yield this.setExtraheaderConfig(extraheaderConfigValue);
        });
    }
--- a/src/git-command-manager.ts
+++ b/src/git-command-manager.ts
@ -115,6 +115,7 @@ export class GitCommandManager {
      [
        'config',
        globalConfig ? '--global' : '--local',
+        '--includes', // Detect configs from included files (e.g., checkout@v6)
        '--name-only',
        '--get-regexp',
        configKey,
@ -212,6 +213,7 @@ export class GitCommandManager {
    const output = await this.exec([
      'config',
      '--local',
+      '--includes', // Get configs from included files (e.g., checkout@v6)
      '--get-regexp',
      configKey,
      configValue
--- a/src/git-config-helper.ts
+++ b/src/git-config-helper.ts
@ -144,6 +144,27 @@ export class GitConfigHelper {
    ).toString('base64')
    core.setSecret(basicCredential)
    const extraheaderConfigValue = `AUTHORIZATION: basic ${basicCredential}`
+
+    // Check if the same token is already configured (e.g., by checkout@v6)
+    // If so, skip reconfiguration to avoid duplicate headers
+    if (
+      await this.git.configExists(
+        this.extraheaderConfigKey,
+        this.extraheaderConfigValueRegex
+      )
+    ) {
+      const existingValue = await this.git.getConfigValue(
+        this.extraheaderConfigKey,
+        this.extraheaderConfigValueRegex
+      )
+      if (existingValue === extraheaderConfigValue) {
+        core.info(
+          'Git credentials already configured with the same token, skipping reconfiguration'
+        )
+        return
+      }
+    }
+
    await this.setExtraheaderConfig(extraheaderConfigValue)
  }