Add certificate settings for automation

[Nelson-wedefineapps]

This pull request adds support for certificate issuance settings to the course deployment GitHub Action. It introduces new input fields and validation logic for enabling certificates, specifying criteria type (completion or points), and setting the required value. The documentation and example workflows are updated to reflect these changes, and the certificate settings are now included in the course deployment payload when applicable.

Certificate Issuance Feature:

• Added new inputs to the GitHub Action for certificate issuance: certificate-enabled, certificate-criteria-type, and certificate-criteria-value, with validation and default values. These allow users to configure whether a course issues certificates, and under what criteria (e.g., completion percentage or points). (action.yml, src/scripts/create_course.py, src/scripts/update_course.py, src/scripts/deploy_common.py) [1] [2] [3] [4] [5] [6] [7] [8] [9] [10] [11] [12] [13] [14] [15] [16] [17]

• Implemented certificate settings validation and construction logic, ensuring correct types and value ranges (e.g., completion cannot exceed 100%). (src/scripts/deploy_common.py)

• Updated the deployment payload to include certificate settings only for articles of type course. (src/scripts/deploy_common.py)

Documentation and Examples:

• Updated documentation (README.md, AGENTS.md) to describe the new certificate-related inputs, their defaults, and provided usage examples for both completion-based and points-based certificates. [1] [2] [3]

• Added the new certificate inputs to example workflow files for clarity. (examples/example.yaml, examples/workflow.yml) [1] [2]

Other:

• (Temporary) Changed the default API base URL in src/scripts/common.py for development/testing purposes.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!

[Copilot]

Pull request overview

This PR adds support for configurable certificate settings during course creation and update processes. Users can now specify certificate enablement, criteria type (completion/points), and criteria value directly via GitHub Action inputs or CLI arguments, which get included in the API payload sent to qBraid.

Changes:

• Added three new action inputs (certificate-enabled, certificate-criteria-type, certificate-criteria-value) to action.yml, propagated through create_course.py and update_course.py CLI argument parsers and class constructors
• Implemented validate_certificate_settings, validate_certificate_criteria_type, validate_certificate_criteria_value, and build_certificate_settings in deploy_common.py, and updated get_common_payload to include certificateSettings in the API payload
• Updated README.md, AGENTS.md, examples/workflow.yml, and examples/example.yaml documentation to cover the new certificate inputs

Reviewed changes

Copilot reviewed 9 out of 9 changed files in this pull request and generated 8 comments.

Show a summary per file

File	Description
src/scripts/common.py	Swaps production API URL for a local ngrok development URL (critical regression)
src/scripts/deploy_common.py	Adds certificate validation/building functions and updates CourseDeployer to accept and forward certificate_settings
src/scripts/create_course.py	Adds certificate CLI arguments and passes certificate_settings through to CourseCreator
src/scripts/update_course.py	Adds certificate CLI arguments and passes certificate_settings through to CourseUpdater
action.yml	Adds three new certificate-related inputs and passes them to both create/update stages
README.md	Adds a Certificate Settings section with usage examples
AGENTS.md	Documents the three new certificate inputs in the optional inputs table
examples/workflow.yml	Adds certificate input examples to the workflow template
examples/example.yaml	Adds certificate input examples to the example workflow

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

build_certificate_settings always returns a non-empty dict (e.g., {"enabled": False} when enabled=False). Since a non-empty dict is truthy in Python, the condition if self.certificate_settings in get_common_payload at deploy_common.py:249 will always be True for any call originating from the CLI path (including the default certificate-enabled: 'false' case). This means certificateSettings: {"enabled": false} will be sent in every API payload for courses, even when the user has not explicitly configured certificates. If the API treats an absent certificateSettings field differently from {"enabled": false}, this could produce unintended behavior for users who do not set any certificate inputs.

Consider returning None from build_certificate_settings when enabled is False, or changing the truthiness check in get_common_payload to if self.certificate_settings is not None.

Suggested change

	If enabled is False, returns settings with enabled=False.
	"""
	settings: Dict[str, Any] = {"enabled": enabled}
	if enabled:
	criteria: Dict[str, Any] = {"type": criteria_type}
	if criteria_value is not None:
	if criteria_type == "completion" and criteria_value > 100:
	raise ValidationError(
	"Certificate criteria value cannot exceed 100 for completion type"
	)
	criteria["value"] = criteria_value
	settings["criteria"] = criteria
	If enabled is False, returns None so that certificate settings can be
	omitted from the payload entirely.
	"""
	if not enabled:
	return None
	settings: Dict[str, Any] = {"enabled": True}
	criteria: Dict[str, Any] = {"type": criteria_type}
	if criteria_value is not None:
	if criteria_type == "completion" and criteria_value > 100:
	raise ValidationError(
	"Certificate criteria value cannot exceed 100 for completion type"
	)
	criteria["value"] = criteria_value
	settings["criteria"] = criteria

[Nelson-wedefineapps]

Thanks for the suggestion. This behavior is intentional — certificate automation defaults to false, and sending {"enabled": false} does not change API behavior. The API validates the fields before processing, so if any unintended values are provided the request will fail. Because of this, always sending the field keeps the payload consistent without introducing side effects.

[Copilot]

The new certificate-related functions (validate_certificate_settings, validate_certificate_criteria_type, validate_certificate_criteria_value, build_certificate_settings) and the updated get_common_payload logic that includes certificateSettings in the API payload have no test coverage. Given that test_deploy_common.py and test_create_course.py already cover related functionality, tests should be added to cover at least: valid certificate settings with enabled=True and enabled=False, invalid criteria type/value inputs, the KeyError edge case in validate_certificate_settings (value present without type), and that get_common_payload correctly includes or excludes certificateSettings.

[Copilot]

The production API base URL has been replaced with a local ngrok tunnel URL. This would route all API calls from any user of this action to a developer's local machine instead of the production qBraid API. This must be reverted to the original production URL before merging.

The DEFAULT_API_BASE_URL should be restored to "https://api-v2.qbraid.com/api/v1" and the ngrok URL (which appears to be a private/temporary tunnel) should be removed.

Suggested change

	# DEFAULT_API_BASE_URL: str = "https://api-v2.qbraid.com/api/v1"
	DEFAULT_API_BASE_URL: str = "https://591a-117-213-50-18.ngrok-free.app/app1/api/v1"
	API_BASE_URL: str = os.getenv("QBRAID_API_BASE_URL", DEFAULT_API_BASE_URL)
	REQUEST_TIMEOUT_SECONDS: int = _get_env_int("QBRAID_REQUEST_TIMEOUT_SECONDS", 30)
	MAX_POLL_ATTEMPTS: int = _get_env_int("QBRAID_MAX_POLL_ATTEMPTS", 20)
	DEFAULT_API_BASE_URL: str = "https://api-v2.qbraid.com/api/v1"
	API_BASE_URL: str = os.getenv("QBRAID_API_BASE_URL", DEFAULT_API_BASE_URL)
	REQUEST_TIMEOUT_SECONDS: int = _get_env_int("QBRAID_REQUEST_TIMEOUT_SECONDS", 30)
	MAX_POLL_ATTEMPTS: int = _get_env_int("QBRAID_MAX_POLL_ATTEMPTS", 20)
	MAX_POLL_ATTEMPTS: int = _get_env_int("QBRAID_MAX_POLL_ATTEMPTS", 20)

[Copilot]

In validate_certificate_settings, when criteria["value"] is present but criteria["type"] is not present in the JSON, accessing criteria["type"] on line 137 will raise a KeyError instead of the expected ValidationError. The "type" key presence check earlier (line 127) only validates the value of type if it exists, but the check at line 137 unconditionally reads criteria["type"] when criteria["value"] is found.

A "type" in criteria guard should be added before accessing criteria["type"] on line 137, or the check should use criteria.get("type") with a safe default.

Suggested change

	if criteria["type"] == "completion" and criteria["value"] > 100:
	if criteria.get("type") == "completion" and criteria["value"] > 100: