Simple Git Resolver

Resolver Type

This Resolver responds to type git.

Parameters

Param Name	Description	Example Value
`url`	URL of the repo to fetch and clone anonymously. Either `url`, or `repo` (with `org`) must be specified, but not both.	`https://github.com/tektoncd/catalog.git`
`repo`	The repository to find the resource in. Either `url`, or `repo` (with `org`) must be specified, but not both.	`pipeline`, `test-infra`
`org`	The organization to find the repository in. Default can be set in configuration.	`tektoncd`, `kubernetes`
`revision`	Git revision to checkout a file from. This can be commit SHA, branch or tag.	`aeb957601cf41c012be462827053a21a420befca` `main` `v0.38.2`
`pathInRepo`	Where to find the file in the repo.	`/task/golang-build/0.3/golang-build.yaml`

Requirements

A cluster running Tekton Pipeline v0.40.0 or later, with the alpha feature gate enabled.
The built-in remote resolvers installed.
The enable-git-resolver feature flag in the resolvers-feature-flags ConfigMap in the tekton-pipelines-resolvers namespace set to true.

Configuration

This resolver uses a ConfigMap for its settings. See ../config/resolvers/git-resolver-config.yaml for the name, namespace and defaults that the resolver ships with.

Options

Option Name	Description	Example Values
`default-revision`	The default git revision to use if none is specified	`main`
`fetch-timeout`	The maximum time any single git clone resolution may take. Note: a global maximum timeout of 1 minute is currently enforced on all resolution requests.	`1m`, `2s`, `700ms`
`default-url`	The default git repository URL to use for anonymous cloning if none is specified.	`https://github.com/tektoncd/catalog.git`
`scm-type`	The SCM provider type. Required if using the authenticated API with `org` and `repo`.	`github`, `gitlab`, `gitea`, `bitbucketcloud`, `bitbucketserver`
`server-url`	The SCM provider’s base URL for use with the authenticated API. Not needed if using github.com, gitlab.com, or BitBucket Cloud	`api.internal-github.com`
`api-token-secret-name`	The Kubernetes secret containing the SCM provider API token. Required if using the authenticated API with `org` and `repo`.	`bot-token-secret`
`api-token-secret-key`	The key within the token secret containing the actual secret. Required if using the authenticated API with `org` and `repo`.	`oauth`, `token`
`api-token-secret-namespace`	The namespace containing the token secret, if not `default`.	`other-namespace`
`default-org`	The default organization to look for repositories under when using the authenticated API, if not specified in the resolver parameters. Optional.	`tektoncd`, `kubernetes`

Usage

The git resolver has two modes: cloning a repository anonymously, or fetching individual files via an SCM provider’s API using an API token.

Anonymous Cloning

Task Resolution

apiVersion: tekton.dev/v1beta1
kind: TaskRun
metadata:
  name: git-clone-demo-tr
spec:
  taskRef:
    resolver: git
    params:
    - name: url
      value: https://github.com/tektoncd/catalog.git
    - name: revision
      value: main
    - name: pathInRepo
      value: task/git-clone/0.6/git-clone.yaml

Pipeline resolution

apiVersion: tekton.dev/v1beta1
kind: PipelineRun
metadata:
  name: git-clone-demo-pr
spec:
  pipelineRef:
    resolver: git
    params:
    - name: url
      value: https://github.com/tektoncd/catalog.git
    - name: revision
      value: main
    - name: pathInRepo
      value: pipeline/simple/0.1/simple.yaml
  params:
  - name: name
    value: Ranni

Authenticated API

Task Resolution

apiVersion: tekton.dev/v1beta1
kind: TaskRun
metadata:
  name: git-api-demo-tr
spec:
  taskRef:
    resolver: git
    params:
    - name: org
      value: tektoncd
    - name: repo
      value: catalog
    - name: revision
      value: main
    - name: pathInRepo
      value: task/git-clone/0.6/git-clone.yaml

Pipeline resolution

apiVersion: tekton.dev/v1beta1
kind: PipelineRun
metadata:
  name: git-api-demo-pr
spec:
  pipelineRef:
    resolver: git
    params:
    - name: org
      value: tektoncd
    - name: repo
      value: catalog
    - name: revision
      value: main
    - name: pathInRepo
      value: pipeline/simple/0.1/simple.yaml
  params:
  - name: name
    value: Ranni

What’s Supported?

When using anonymous cloning, only public repositories can be used.
When using the authenticated API, providers with implementations in go-scm can be used. Note that not all go-scm implementations have been tested with the git resolver, but it is known to work with:
- github.com and GitHub Enterprise
- gitlab.com and self-hosted Gitlab
- Gitea
- BitBucket Server
- BitBucket Cloud

Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License, and code samples are licensed under the Apache 2.0 License.

Feedback

Was this page helpful?

Thanks! Tell us how we can further improve.

Sorry about that. Tell us how we can further improve.