closed-social
/
gitea
3
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
10075 Commits
2 Branches
178 MiB
Tree: 43c303d35c
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '43c303d35c'
${ noResults }
gitea/routers/api/v1/repo/transfer.go

109 lines
3.1 KiB
Raw Normal View History

API endpoint for repo transfer (#9947) * squash * optimize * fail before make any changes * fix-header
4 years ago
Fix bug preventing transfer to private organization (#12497) * Fix bug preventing transfer to private organization The code assessing whether a private organization was visible to a user before allowing transfer was incorrect due to testing membership the wrong way round This PR fixes this issue and renames the function performing the test to be clearer. Further looking at the API for transfer repository - no testing was performed to ensure that the acting user could actually see the new owning organization. Signed-off-by: Andrew Thornton <art27@cantab.net> * change IsUserPartOfOrg everywhere
4 years ago
API endpoint for repo transfer (#9947) * squash * optimize * fail before make any changes * fix-header
4 years ago
Fix bug preventing transfer to private organization (#12497) * Fix bug preventing transfer to private organization The code assessing whether a private organization was visible to a user before allowing transfer was incorrect due to testing membership the wrong way round This PR fixes this issue and renames the function performing the test to be clearer. Further looking at the API for transfer repository - no testing was performed to ensure that the acting user could actually see the new owning organization. Signed-off-by: Andrew Thornton <art27@cantab.net> * change IsUserPartOfOrg everywhere
4 years ago
API endpoint for repo transfer (#9947) * squash * optimize * fail before make any changes * fix-header
4 years ago
Fix bug preventing transfer to private organization (#12497) * Fix bug preventing transfer to private organization The code assessing whether a private organization was visible to a user before allowing transfer was incorrect due to testing membership the wrong way round This PR fixes this issue and renames the function performing the test to be clearer. Further looking at the API for transfer repository - no testing was performed to ensure that the acting user could actually see the new owning organization. Signed-off-by: Andrew Thornton <art27@cantab.net> * change IsUserPartOfOrg everywhere
4 years ago
API endpoint for repo transfer (#9947) * squash * optimize * fail before make any changes * fix-header
4 years ago
 
  1. // Copyright 2020 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package repo
  6. 

  7. import (
  8. 	"fmt"
  9. 	"net/http"
  10. 

  11. 	"code.gitea.io/gitea/models"
  12. 	"code.gitea.io/gitea/modules/context"
  13. 	"code.gitea.io/gitea/modules/convert"
  14. 	"code.gitea.io/gitea/modules/log"
  15. 	"code.gitea.io/gitea/modules/structs"
  16. 	api "code.gitea.io/gitea/modules/structs"
  17. 	repo_service "code.gitea.io/gitea/services/repository"
  18. )
  19. 

  20. // Transfer transfers the ownership of a repository

  21. func Transfer(ctx *context.APIContext, opts api.TransferRepoOption) {
  22. 	// swagger:operation POST /repos/{owner}/{repo}/transfer repository repoTransfer

  23. 	// ---

  24. 	// summary: Transfer a repo ownership

  25. 	// produces:

  26. 	// - application/json

  27. 	// parameters:

  28. 	// - name: owner

  29. 	//   in: path

  30. 	//   description: owner of the repo to transfer

  31. 	//   type: string

  32. 	//   required: true

  33. 	// - name: repo

  34. 	//   in: path

  35. 	//   description: name of the repo to transfer

  36. 	//   type: string

  37. 	//   required: true

  38. 	// - name: body

  39. 	//   in: body

  40. 	//   description: "Transfer Options"

  41. 	//   required: true

  42. 	//   schema:

  43. 	//     "$ref": "#/definitions/TransferRepoOption"

  44. 	// responses:

  45. 	//   "202":

  46. 	//     "$ref": "#/responses/Repository"

  47. 	//   "403":

  48. 	//     "$ref": "#/responses/forbidden"

  49. 	//   "404":

  50. 	//     "$ref": "#/responses/notFound"

  51. 	//   "422":

  52. 	//     "$ref": "#/responses/validationError"

  53. 

  54. 	newOwner, err := models.GetUserByName(opts.NewOwner)
  55. 	if err != nil {
  56. 		if models.IsErrUserNotExist(err) {
  57. 			ctx.Error(http.StatusNotFound, "", "The new owner does not exist or cannot be found")
  58. 			return
  59. 		}
  60. 		ctx.InternalServerError(err)
  61. 		return
  62. 	}
  63. 

  64. 	if newOwner.Type == models.UserTypeOrganization {
  65. 		if !ctx.User.IsAdmin && newOwner.Visibility == structs.VisibleTypePrivate && !newOwner.HasMemberWithUserID(ctx.User.ID) {
  66. 			// The user shouldn't know about this organization

  67. 			ctx.Error(http.StatusNotFound, "", "The new owner does not exist or cannot be found")
  68. 			return
  69. 		}
  70. 	}
  71. 

  72. 	var teams []*models.Team
  73. 	if opts.TeamIDs != nil {
  74. 		if !newOwner.IsOrganization() {
  75. 			ctx.Error(http.StatusUnprocessableEntity, "repoTransfer", "Teams can only be added to organization-owned repositories")
  76. 			return
  77. 		}
  78. 

  79. 		org := convert.ToOrganization(newOwner)
  80. 		for _, tID := range *opts.TeamIDs {
  81. 			team, err := models.GetTeamByID(tID)
  82. 			if err != nil {
  83. 				ctx.Error(http.StatusUnprocessableEntity, "team", fmt.Errorf("team %d not found", tID))
  84. 				return
  85. 			}
  86. 

  87. 			if team.OrgID != org.ID {
  88. 				ctx.Error(http.StatusForbidden, "team", fmt.Errorf("team %d belongs not to org %d", tID, org.ID))
  89. 				return
  90. 			}
  91. 

  92. 			teams = append(teams, team)
  93. 		}
  94. 	}
  95. 

  96. 	if err = repo_service.TransferOwnership(ctx.User, newOwner, ctx.Repo.Repository, teams); err != nil {
  97. 		ctx.InternalServerError(err)
  98. 		return
  99. 	}
  100. 

  101. 	newRepo, err := models.GetRepositoryByName(newOwner.ID, ctx.Repo.Repository.Name)
  102. 	if err != nil {
  103. 		ctx.InternalServerError(err)
  104. 		return
  105. 	}
  106. 

  107. 	log.Trace("Repository transferred: %s -> %s", ctx.Repo.Repository.FullName(), newOwner.Name)
  108. 	ctx.JSON(http.StatusAccepted, newRepo.APIFormat(models.AccessModeAdmin))
  109. }