closed-social
/
gitea
3
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1673 Commits
2 Branches
178 MiB
Tree: 7b03b1df0e
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '7b03b1df0e'
${ noResults }
gitea/modules/middleware/auth.go

69 lines
1.7 KiB
Raw Normal View History

move templateFuncs to one file, add middleware context.
10 years ago
Batch updates
10 years ago
Improve delete SSH key
10 years ago
Batch updates
10 years ago
New UI merge in progress
10 years ago
Convert captcha, cache, csrf as middlewares
10 years ago
Finish verify email
10 years ago
Fixed #209
10 years ago
move templateFuncs to one file, add middleware context.
10 years ago
add csrf check
10 years ago
move templateFuncs to one file, add middleware context.
10 years ago
New UI merge in progress
10 years ago
move templateFuncs to one file, add middleware context.
10 years ago
Clean api code
10 years ago
Fixed #209
10 years ago
Add suburl support
10 years ago
Fix install bugs
10 years ago
Clean api code
10 years ago
Fix dashboard auto-log bug
10 years ago
Add suburl support
10 years ago
Work on admin
10 years ago
Convert captcha, cache, csrf as middlewares
10 years ago
add csrf check
10 years ago
Improve delete SSH key
10 years ago
Set cookiepath to AppSubUrl
10 years ago
Add suburl support
10 years ago
add csrf check
10 years ago
Fixed #209
10 years ago
Finish new reset password, etc.
10 years ago
Fix #425
10 years ago
add csrf check
10 years ago
Fix SSH key bug in windows
10 years ago
move templateFuncs to one file, add middleware context.
10 years ago
 
  1. // Copyright 2014 The Gogs Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package middleware
  6. 

  7. import (
  8. 	"net/url"
  9. 	"strings"
  10. 

  11. 	"github.com/Unknwon/macaron"
  12. 	"github.com/macaron-contrib/csrf"
  13. 

  14. 	"github.com/gogits/gogs/modules/setting"
  15. )
  16. 

  17. type ToggleOptions struct {
  18. 	SignInRequire  bool
  19. 	SignOutRequire bool
  20. 	AdminRequire   bool
  21. 	DisableCsrf    bool
  22. }
  23. 

  24. func Toggle(options *ToggleOptions) macaron.Handler {
  25. 	return func(ctx *Context) {
  26. 		// Cannot view any page before installation.

  27. 		if !setting.InstallLock {
  28. 			ctx.Redirect(setting.AppSubUrl + "/install")
  29. 			return
  30. 		}
  31. 

  32. 		// Redirect to dashboard if user tries to visit any non-login page.

  33. 		if options.SignOutRequire && ctx.IsSigned && ctx.Req.RequestURI != "/" {
  34. 			ctx.Redirect(setting.AppSubUrl + "/")
  35. 			return
  36. 		}
  37. 

  38. 		if !options.SignOutRequire && !options.DisableCsrf && ctx.Req.Method == "POST" {
  39. 			csrf.Validate(ctx.Context, ctx.csrf)
  40. 			if ctx.Written() {
  41. 				return
  42. 			}
  43. 		}
  44. 

  45. 		if options.SignInRequire {
  46. 			if !ctx.IsSigned {
  47. 				// Ignore watch repository operation.

  48. 				if strings.HasSuffix(ctx.Req.RequestURI, "watch") {
  49. 					return
  50. 				}
  51. 				ctx.SetCookie("redirect_to", "/"+url.QueryEscape(setting.AppSubUrl+ctx.Req.RequestURI), 0, setting.AppSubUrl)
  52. 				ctx.Redirect(setting.AppSubUrl + "/user/login")
  53. 				return
  54. 			} else if !ctx.User.IsActive && setting.Service.RegisterEmailConfirm {
  55. 				ctx.Data["Title"] = ctx.Tr("auth.active_your_account")
  56. 				ctx.HTML(200, "user/auth/activate")
  57. 				return
  58. 			}
  59. 		}
  60. 

  61. 		if options.AdminRequire {
  62. 			if !ctx.User.IsAdmin {
  63. 				ctx.Error(403)
  64. 				return
  65. 			}
  66. 			ctx.Data["PageIsAdmin"] = true
  67. 		}
  68. 	}
  69. }