gitpod-io
diff --git a/‎components/dashboard/src/App.tsx
Lines changed: 10 additions & 3 deletions b/‎components/dashboard/src/App.tsx
Lines changed: 10 additions & 3 deletions
diff --git a/‎components/dashboard/src/Menu.tsx
Lines changed: 1 addition & 1 deletion b/‎components/dashboard/src/Menu.tsx
Lines changed: 1 addition & 1 deletion
diff --git a/‎components/dashboard/src/components/ItemsList.tsx
Lines changed: 1 addition & 1 deletion b/‎components/dashboard/src/components/ItemsList.tsx
Lines changed: 1 addition & 1 deletion
diff --git a/‎components/dashboard/src/projects/ProjectSettings.tsx
Lines changed: 4 additions & 0 deletions b/‎components/dashboard/src/projects/ProjectSettings.tsx
Lines changed: 4 additions & 0 deletions
diff --git a/‎components/dashboard/src/projects/ProjectVariables.tsx
Lines changed: 110 additions & 0 deletions b/‎components/dashboard/src/projects/ProjectVariables.tsx
Lines changed: 110 additions & 0 deletions
diff --git a/‎components/gitpod-db/src/project-db.ts
Lines changed: 6 additions & 1 deletion b/‎components/gitpod-db/src/project-db.ts
Lines changed: 6 additions & 1 deletion
diff --git a/‎components/gitpod-db/src/tables.ts
Lines changed: 13 additions & 1 deletion b/‎components/gitpod-db/src/tables.ts
Lines changed: 13 additions & 1 deletion
diff --git a/‎components/gitpod-db/src/typeorm/deleted-entry-gc.ts
Lines changed: 1 addition & 0 deletions b/‎components/gitpod-db/src/typeorm/deleted-entry-gc.ts
Lines changed: 1 addition & 0 deletions
diff --git a/‎components/gitpod-db/src/typeorm/entity/db-project-env-vars.ts
Lines changed: 46 additions & 0 deletions b/‎components/gitpod-db/src/typeorm/entity/db-project-env-vars.ts
Lines changed: 46 additions & 0 deletions
diff --git a/‎components/gitpod-db/src/typeorm/migration/1639735838107-ProjectEnvVars.ts
Lines changed: 18 additions & 0 deletions b/‎components/gitpod-db/src/typeorm/migration/1639735838107-ProjectEnvVars.ts
Lines changed: 18 additions & 0 deletions
@@ -21,7 +21,6 @@ import { trackButtonOrAnchor, trackPathChange, trackLocation } from './Analytics
 import { User } from '@gitpod/gitpod-protocol';
 import * as GitpodCookie from '@gitpod/gitpod-protocol/lib/util/gitpod-cookie';
 import { Experiment } from './experiments';
-import ProjectSettings from './projects/ProjectSettings';
 
 const Setup = React.lazy(() => import(/* webpackPrefetch: true */ './Setup'));
 const Workspaces = React.lazy(() => import(/* webpackPrefetch: true */ './workspaces/Workspaces'));
@@ -42,6 +41,8 @@ const NewProject = React.lazy(() => import(/* webpackPrefetch: true */ './projec
 const ConfigureProject = React.lazy(() => import(/* webpackPrefetch: true */ './projects/ConfigureProject'));
 const Projects = React.lazy(() => import(/* webpackPrefetch: true */ './projects/Projects'));
 const Project = React.lazy(() => import(/* webpackPrefetch: true */ './projects/Project'));
+const ProjectSettings = React.lazy(() => import(/* webpackPrefetch: true */ './projects/ProjectSettings'));
+const ProjectVariables = React.lazy(() => import(/* webpackPrefetch: true */ './projects/ProjectVariables'));
 const Prebuilds = React.lazy(() => import(/* webpackPrefetch: true */ './projects/Prebuilds'));
 const Prebuild = React.lazy(() => import(/* webpackPrefetch: true */ './projects/Prebuild'));
 const InstallGitHubApp = React.lazy(() => import(/* webpackPrefetch: true */ './projects/InstallGitHubApp'));
@@ -305,6 +306,9 @@ function App() {
                         if (resourceOrPrebuild === "configure") {
                             return <ConfigureProject />;
                         }
+                        if (resourceOrPrebuild === "variables") {
+                            return <ProjectVariables />;
+                        }
                         if (resourceOrPrebuild === "workspaces") {
                             return <Workspaces />;
                         }
@@ -338,11 +342,14 @@ function App() {
                             if (maybeProject === "settings") {
                                 return <TeamSettings />;
                             }
+                            if (resourceOrPrebuild === "settings") {
+                                return <ProjectSettings />;
+                            }
                             if (resourceOrPrebuild === "configure") {
                                 return <ConfigureProject />;
                             }
-                            if (resourceOrPrebuild === "settings") {
-                                return <ProjectSettings />;
+                            if (resourceOrPrebuild === "variables") {
+                                return <ProjectVariables />;
                             }
                             if (resourceOrPrebuild === "workspaces") {
                                 return <Workspaces />;
 
@@ -47,7 +47,7 @@ export default function Menu() {
     })();
     const prebuildId = (() => {
         const resource = projectSlug && match?.params?.segment3;
-        if (resource !== "workspaces" && resource !== "prebuilds" && resource !== "settings" && resource !== "configure") {
+        if (resource !== "workspaces" && resource !== "prebuilds" && resource !== "settings" && resource !== "configure" && resource !== "variables") {
             return resource;
         }
     })();
 
@@ -22,7 +22,7 @@ export function Item(props: {
 }) {
     const headerClassName = "text-sm text-gray-400 border-t border-b border-gray-200 dark:border-gray-800";
     const notHeaderClassName = "rounded-xl hover:bg-gray-100 dark:hover:bg-gray-800 focus:bg-gitpod-kumquat-light";
-    return <div className={`flex flex-grow flex-row w-full px-3 py-3 justify-between transition ease-in-out ${props.header ? headerClassName : notHeaderClassName} ${props.className || ""}`}>
+    return <div className={`flex flex-grow flex-row w-full p-3 justify-between transition ease-in-out ${props.header ? headerClassName : notHeaderClassName} ${props.className || ""}`}>
         {props.children}
     </div>;
 }
 
@@ -25,6 +25,10 @@ export function getProjectSettingsMenu(project?: Project, team?: Team) {
             title: 'Configuration',
             link: [`/${teamOrUserSlug}/${project?.slug || project?.name}/configure`],
         },
+        {
+            title: 'Variables',
+            link: [`/${teamOrUserSlug}/${project?.slug || project?.name}/variables`],
+        },
     ];
 }
 
 
@@ -0,0 +1,110 @@
+/**
+ * Copyright (c) 2021 Gitpod GmbH. All rights reserved.
+ * Licensed under the GNU Affero General Public License (AGPL).
+ * See License-AGPL.txt in the project root for license information.
+ */
+
+import { Project, ProjectEnvVar } from "@gitpod/gitpod-protocol";
+import { useContext, useEffect, useState } from "react";
+import { Item, ItemField, ItemsList } from "../components/ItemsList";
+import Modal from "../components/Modal";
+import { getGitpodService } from "../service/service";
+import { ProjectContext } from "./project-context";
+import { ProjectSettingsPage } from "./ProjectSettings";
+
+export default function () {
+    const { project } = useContext(ProjectContext);
+    const [ envVars, setEnvVars ] = useState<ProjectEnvVar[]>([]);
+    const [ showAddVariableModal, setShowAddVariableModal ] = useState<boolean>(false);
+
+    const updateEnvVars = async () => {
+        if (!project) {
+            return;
+        }
+        const vars = await getGitpodService().server.getProjectEnvironmentVariables(project.id);
+        const sortedVars = vars.sort((a, b) => a.name.toLowerCase() > b.name.toLowerCase() ? 1 : -1);
+        setEnvVars(sortedVars);
+    }
+
+    useEffect(() => {
+        updateEnvVars();
+        // eslint-disable-next-line react-hooks/exhaustive-deps
+    }, [project]);
+
+    const deleteEnvVar = async (variableId: string) => {
+        await getGitpodService().server.deleteProjectEnvironmentVariable(variableId);
+        updateEnvVars();
+    }
+
+    return <ProjectSettingsPage project={project}>
+        {showAddVariableModal && <AddVariableModal project={project} onClose={() => { updateEnvVars(); setShowAddVariableModal(false); }} />}
+        <div className="mb-2 flex">
+            <div className="flex-grow">
+                <h3>Project Variables</h3>
+                <h2 className="text-gray-500">Manage environment variables for your project.</h2>
+            </div>
+            {envVars.length > 0 && <button onClick={() => setShowAddVariableModal(true)}>Add Variable</button>}
+        </div>
+        {envVars.length === 0
+            ? <div className="bg-gray-100 dark:bg-gray-800 rounded-xl w-full py-28 flex flex-col items-center">
+                <h3 className="text-center pb-3 text-gray-500 dark:text-gray-400">No Environment Variables</h3>
+                <button onClick={() => setShowAddVariableModal(true)}>New Variable</button>
+            </div>
+            : <>
+                <ItemsList>
+                    <Item header={true} className="grid grid-cols-3 items-center">
+                        <ItemField>Name</ItemField>
+                        <ItemField>Value</ItemField>
+                        <ItemField></ItemField>
+                    </Item>
+                    {envVars.map(variable => {
+                        return <Item className="grid grid-cols-3 items-center">
+                            <ItemField>{variable.name}</ItemField>
+                            <ItemField>****</ItemField>
+                            <ItemField className="text-right"><button onClick={() => deleteEnvVar(variable.id)}>x</button></ItemField>
+                        </Item>
+                    })}
+                </ItemsList>
+            </>
+        }
+    </ProjectSettingsPage>;
+}
+
+function AddVariableModal(props: { project?: Project, onClose: () => void }) {
+    const [ name, setName ] = useState<string>("");
+    const [ value, setValue ] = useState<string>("");
+    const [ error, setError ] = useState<Error | undefined>();
+
+    const addVariable = async () => {
+        if (!props.project) {
+            return;
+        }
+        try {
+            await getGitpodService().server.setProjectEnvironmentVariable(props.project.id, name, value);
+            props.onClose();
+        } catch (err) {
+            setError(err);
+        }
+    }
+
+    return <Modal visible={true} onClose={props.onClose} onEnter={() => { addVariable(); return false; }}>
+        <h3 className="mb-4">Add Variable</h3>
+        <div className="border-t border-b border-gray-200 dark:border-gray-800 -mx-6 px-6 py-4 flex flex-col">
+            {error && <div className="bg-gitpod-kumquat-light rounded-md p-3 text-gitpod-red text-sm mb-2">
+                {error}
+            </div>}
+            <div>
+                <h4>Name</h4>
+                <input autoFocus className="w-full" type="text" name="name" value={name} onChange={e => setName(e.target.value)} />
+            </div>
+            <div className="mt-4">
+                <h4>Value</h4>
+                <input className="w-full" type="text" name="value" value={value} onChange={e => setValue(e.target.value)} />
+            </div>
+        </div>
+        <div className="flex justify-end mt-6">
+            <button className="secondary" onClick={props.onClose}>Cancel</button>
+            <button className="ml-2" onClick={addVariable} >Add Variable</button>
+        </div>
+    </Modal>;
+}
@@ -4,7 +4,7 @@
  * See License.enterprise.txt in the project root folder.
  */
 
-import { PartialProject, Project } from "@gitpod/gitpod-protocol";
+import { PartialProject, Project, ProjectEnvVar, ProjectEnvVarWithValue } from "@gitpod/gitpod-protocol";
 
 export const ProjectDB = Symbol('ProjectDB');
 export interface ProjectDB {
@@ -16,4 +16,9 @@ export interface ProjectDB {
     storeProject(project: Project): Promise<Project>;
     updateProject(partialProject: PartialProject): Promise<void>;
     markDeleted(projectId: string): Promise<void>;
+    setProjectEnvironmentVariable(projectId: string, name: string, value: string): Promise<void>;
+    getProjectEnvironmentVariables(projectId: string): Promise<ProjectEnvVar[]>;
+    getProjectEnvironmentVariableById(variableId: string): Promise<ProjectEnvVar | undefined>;
+    deleteProjectEnvironmentVariable(variableId: string): Promise<void>;
+    getProjectEnvironmentVariableValues(envVars: ProjectEnvVar[]): Promise<ProjectEnvVarWithValue[]>;
 }
@@ -47,7 +47,7 @@ export class GitpodSessionTableDescriptionProvider implements TableDescriptionPr
 /**
  * BEWARE
  *
- * When updating this list, make sure you update the deleted-entry-gc in gitpod-db
+ * When updating this list, make sure you update the deleted-entry-gc.ts in gitpod-db
  * as well, if you're adding a table that needs some of its entries deleted.
  */
 @injectable()
@@ -250,6 +250,18 @@ export class GitpodTableDescriptionProvider implements TableDescriptionProvider
             deletionColumn: 'deleted',
             timeColumn: '_lastModified',
         },
+        {
+            name: 'd_b_project_env_var',
+            primaryKeys: ['id', 'projectId'],
+            deletionColumn: 'deleted',
+            timeColumn: '_lastModified',
+        },
+        /**
+         * BEWARE
+         *
+         * When updating this list, make sure you update the deleted-entry-gc.ts in gitpod-db
+         * as well, if you're adding a table that needs some of its entries deleted.
+         */
     ]
 
     public getSortedTables(): TableDescription[] {
 
@@ -58,6 +58,7 @@ const tables: TableWithDeletion[] = [
     { deletionColumn: "deleted", name: "d_b_project" },
     { deletionColumn: "deleted", name: "d_b_prebuild_info" },
     { deletionColumn: "deleted", name: "d_b_oss_allow_list" },
+    { deletionColumn: "deleted", name: "d_b_project_env_var" },
 ];
 
 interface TableWithDeletion {
 
@@ -0,0 +1,46 @@
+/**
+ * Copyright (c) 2022 Gitpod GmbH. All rights reserved.
+ * Licensed under the GNU Affero General Public License (AGPL).
+ * See License-AGPL.txt in the project root for license information.
+ */
+
+import { PrimaryColumn, Entity, Column } from "typeorm";
+import { TypeORM } from "../typeorm";
+import { ProjectEnvVarWithValue } from "@gitpod/gitpod-protocol";
+import { Transformer } from "../transformer";
+import { encryptionService } from "../user-db-impl";
+
+@Entity()
+// on DB but not Typeorm: @Index("ind_lastModified", ["_lastModified"])   // DBSync
+export class DBProjectEnvVar implements ProjectEnvVarWithValue {
+    @PrimaryColumn(TypeORM.UUID_COLUMN_TYPE)
+    id: string;
+
+    // projectId must be part of the primary key as otherwise malicious users could overwrite
+    // the value of arbitrary user env vars because we use TypeORM.save. If the projectId were
+    // not part of the primary key, this save call would overwrite env vars with arbitrary IDs,
+    // allowing an attacker to steal other users environment variables.
+    // But projectId is part of the primary key and we ensure that users can only overwrite/set variables
+    // that belong to them.
+    @PrimaryColumn(TypeORM.UUID_COLUMN_TYPE)
+    projectId: string;
+
+    @Column()
+    name: string;
+
+    @Column({
+        type: "simple-json",
+        transformer: Transformer.compose(
+            Transformer.SIMPLE_JSON([]),
+            Transformer.encrypted(() => encryptionService)
+        )
+    })
+    value: string;
+
+    @Column("varchar")
+    creationTime: string;
+
+    // This column triggers the db-sync deletion mechanism. It's not intended for public consumption.
+    @Column()
+    deleted: boolean;
+}
@@ -0,0 +1,18 @@
+/**
+ * Copyright (c) 2022 Gitpod GmbH. All rights reserved.
+ * Licensed under the GNU Affero General Public License (AGPL).
+ * See License-AGPL.txt in the project root for license information.
+ */
+
+import { MigrationInterface, QueryRunner } from "typeorm";
+
+export class ProjectEnvVars1639735838107 implements MigrationInterface {
+
+    public async up(queryRunner: QueryRunner): Promise<void> {
+        await queryRunner.query("CREATE TABLE IF NOT EXISTS `d_b_project_env_var` (`id` char(36) NOT NULL, `projectId` char(36) NOT NULL, `name` varchar(255) NOT NULL, `value` text NOT NULL, `creationTime` varchar(255) NOT NULL, `deleted` tinyint(4) NOT NULL DEFAULT '0', `_lastModified` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6), PRIMARY KEY (`id`, `projectId`), KEY `ind_projectid` (projectId), KEY `ind_dbsync` (`_lastModified`)) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4;");
+    }
+
+    public async down(queryRunner: QueryRunner): Promise<void> {
+    }
+
+}
Original file line number	Diff line number	Diff line change
`@@ -47,7 +47,7 @@ export default function Menu() {`
`47`	`47`	`})();`
`48`	`48`	`const prebuildId = (() => {`
`49`	`49`	`const resource = projectSlug && match?.params?.segment3;`
`50`		`- if (resource !== "workspaces" && resource !== "prebuilds" && resource !== "settings" && resource !== "configure") {`
	`50`	`+ if (resource !== "workspaces" && resource !== "prebuilds" && resource !== "settings" && resource !== "configure" && resource !== "variables") {`
`51`	`51`	`return resource;`
`52`	`52`	`}`
`53`	`53`	`})();`
Original file line number	Diff line number	Diff line change
`@@ -22,7 +22,7 @@ export function Item(props: {`
`22`	`22`	`}) {`
`23`	`23`	`const headerClassName = "text-sm text-gray-400 border-t border-b border-gray-200 dark:border-gray-800";`
`24`	`24`	`const notHeaderClassName = "rounded-xl hover:bg-gray-100 dark:hover:bg-gray-800 focus:bg-gitpod-kumquat-light";`
`25`		- return <div className={`flex flex-grow flex-row w-full px-3 py-3 justify-between transition ease-in-out ${props.header ? headerClassName : notHeaderClassName} ${props.className \|\| ""}`}>
	`25`	+ return <div className={`flex flex-grow flex-row w-full p-3 justify-between transition ease-in-out ${props.header ? headerClassName : notHeaderClassName} ${props.className \|\| ""}`}>
`26`	`26`	`{props.children}`
`27`	`27`	`</div>;`
`28`	`28`	`}`