closed-social
/
gitea
3
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7234 Commits
2 Branches
178 MiB
Tree: dbab98c8e0
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'dbab98c8e0'
${ noResults }
gitea/routers/private/internal.go

94 lines
2.8 KiB
Raw Normal View History

Add internal routes for ssh hook comands (#1471) * add internal routes for ssh hook comands * fix lint * add comment on why package named private not internal but the route name is internal * add comment above package private why package named private not internal but the route name is internal * remove exp time on internal access * move routes from /internal to /api/internal * add comment and defer on UpdatePublicKeyUpdated
7 years ago
Drop db operations from hook commands (#1514) * move all database operations from hook command to web command and instead of internal routes * bug fixed * adjust the import path sequences * remove unused return value on hookSetup
7 years ago
Add internal routes for ssh hook comands (#1471) * add internal routes for ssh hook comands * fix lint * add comment on why package named private not internal but the route name is internal * add comment above package private why package named private not internal but the route name is internal * remove exp time on internal access * move routes from /internal to /api/internal * add comment and defer on UpdatePublicKeyUpdated
7 years ago
Make gitea serv use api/internal (#4886) * Start to move to internal/private * Add GetPublicKeyByID * Add HasDeployKey * Add private.UpdateDeployKeyUpdated * Add private.GetUserByKeyID * Add private.AccessLevel * Add private.CheckUnitUser * Fix mistakes I made * Some cleaning + moving code to separate files * Fix error handling * Remove useless error handling for setup * lint: fix comment on exported func * fix copyright header * Fix order of args
6 years ago
Add internal routes for ssh hook comands (#1471) * add internal routes for ssh hook comands * fix lint * add comment on why package named private not internal but the route name is internal * add comment above package private why package named private not internal but the route name is internal * remove exp time on internal access * move routes from /internal to /api/internal * add comment and defer on UpdatePublicKeyUpdated
7 years ago
Make gitea serv use api/internal (#4886) * Start to move to internal/private * Add GetPublicKeyByID * Add HasDeployKey * Add private.UpdateDeployKeyUpdated * Add private.GetUserByKeyID * Add private.AccessLevel * Add private.CheckUnitUser * Fix mistakes I made * Some cleaning + moving code to separate files * Fix error handling * Remove useless error handling for setup * lint: fix comment on exported func * fix copyright header * Fix order of args
6 years ago
Restrict permission check on repositories and fix some problems (#5314) * fix units permission problems * fix some bugs and merge LoadUnits to repoAssignment * refactor permission struct and add some copyright heads * remove unused codes * fix routes units check * improve permission check * add unit tests for permission * fix typo * fix tests * fix some routes * fix api permission check * improve permission check * fix some permission check * fix tests * fix tests * improve some permission check * fix some permission check * refactor AccessLevel * fix bug * fix tests * fix tests * fix tests * fix AccessLevel * rename CanAccess * fix tests * fix comment * fix bug * add missing unit for test repos * fix bug * rename some functions * fix routes check
6 years ago
Make gitea serv use api/internal (#4886) * Start to move to internal/private * Add GetPublicKeyByID * Add HasDeployKey * Add private.UpdateDeployKeyUpdated * Add private.GetUserByKeyID * Add private.AccessLevel * Add private.CheckUnitUser * Fix mistakes I made * Some cleaning + moving code to separate files * Fix error handling * Remove useless error handling for setup * lint: fix comment on exported func * fix copyright header * Fix order of args
6 years ago
Restrict permission check on repositories and fix some problems (#5314) * fix units permission problems * fix some bugs and merge LoadUnits to repoAssignment * refactor permission struct and add some copyright heads * remove unused codes * fix routes units check * improve permission check * add unit tests for permission * fix typo * fix tests * fix some routes * fix api permission check * improve permission check * fix some permission check * fix tests * fix tests * improve some permission check * fix some permission check * refactor AccessLevel * fix bug * fix tests * fix tests * fix tests * fix AccessLevel * rename CanAccess * fix tests * fix comment * fix bug * add missing unit for test repos * fix bug * rename some functions * fix routes check
6 years ago
Make gitea serv use api/internal (#4886) * Start to move to internal/private * Add GetPublicKeyByID * Add HasDeployKey * Add private.UpdateDeployKeyUpdated * Add private.GetUserByKeyID * Add private.AccessLevel * Add private.CheckUnitUser * Fix mistakes I made * Some cleaning + moving code to separate files * Fix error handling * Remove useless error handling for setup * lint: fix comment on exported func * fix copyright header * Fix order of args
6 years ago
Add internal routes for ssh hook comands (#1471) * add internal routes for ssh hook comands * fix lint * add comment on why package named private not internal but the route name is internal * add comment above package private why package named private not internal but the route name is internal * remove exp time on internal access * move routes from /internal to /api/internal * add comment and defer on UpdatePublicKeyUpdated
7 years ago
Restrict permission check on repositories and fix some problems (#5314) * fix units permission problems * fix some bugs and merge LoadUnits to repoAssignment * refactor permission struct and add some copyright heads * remove unused codes * fix routes units check * improve permission check * add unit tests for permission * fix typo * fix tests * fix some routes * fix api permission check * improve permission check * fix some permission check * fix tests * fix tests * improve some permission check * fix some permission check * refactor AccessLevel * fix bug * fix tests * fix tests * fix tests * fix AccessLevel * rename CanAccess * fix tests * fix comment * fix bug * add missing unit for test repos * fix bug * rename some functions * fix routes check
6 years ago
Make gitea serv use api/internal (#4886) * Start to move to internal/private * Add GetPublicKeyByID * Add HasDeployKey * Add private.UpdateDeployKeyUpdated * Add private.GetUserByKeyID * Add private.AccessLevel * Add private.CheckUnitUser * Fix mistakes I made * Some cleaning + moving code to separate files * Fix error handling * Remove useless error handling for setup * lint: fix comment on exported func * fix copyright header * Fix order of args
6 years ago
Restrict permission check on repositories and fix some problems (#5314) * fix units permission problems * fix some bugs and merge LoadUnits to repoAssignment * refactor permission struct and add some copyright heads * remove unused codes * fix routes units check * improve permission check * add unit tests for permission * fix typo * fix tests * fix some routes * fix api permission check * improve permission check * fix some permission check * fix tests * fix tests * improve some permission check * fix some permission check * refactor AccessLevel * fix bug * fix tests * fix tests * fix tests * fix AccessLevel * rename CanAccess * fix tests * fix comment * fix bug * add missing unit for test repos * fix bug * rename some functions * fix routes check
6 years ago
Add internal routes for ssh hook comands (#1471) * add internal routes for ssh hook comands * fix lint * add comment on why package named private not internal but the route name is internal * add comment above package private why package named private not internal but the route name is internal * remove exp time on internal access * move routes from /internal to /api/internal * add comment and defer on UpdatePublicKeyUpdated
7 years ago
Make gitea serv use api/internal (#4886) * Start to move to internal/private * Add GetPublicKeyByID * Add HasDeployKey * Add private.UpdateDeployKeyUpdated * Add private.GetUserByKeyID * Add private.AccessLevel * Add private.CheckUnitUser * Fix mistakes I made * Some cleaning + moving code to separate files * Fix error handling * Remove useless error handling for setup * lint: fix comment on exported func * fix copyright header * Fix order of args
6 years ago
Add internal routes for ssh hook comands (#1471) * add internal routes for ssh hook comands * fix lint * add comment on why package named private not internal but the route name is internal * add comment above package private why package named private not internal but the route name is internal * remove exp time on internal access * move routes from /internal to /api/internal * add comment and defer on UpdatePublicKeyUpdated
7 years ago
Make gitea serv use api/internal (#4886) * Start to move to internal/private * Add GetPublicKeyByID * Add HasDeployKey * Add private.UpdateDeployKeyUpdated * Add private.GetUserByKeyID * Add private.AccessLevel * Add private.CheckUnitUser * Fix mistakes I made * Some cleaning + moving code to separate files * Fix error handling * Remove useless error handling for setup * lint: fix comment on exported func * fix copyright header * Fix order of args
6 years ago
Fix ssh deploy and user key constraints (#1357) (#5939) 1. A key can either be an ssh user key or a deploy key. It cannot be both. 2. If a key is a user key - it can only be associated with one user. 3. If a key is a deploy key - it can be used in multiple repositories and the permissions it has on those repositories can be different. 4. If a repository is deleted, its deploy keys must be deleted too. We currently don't enforce any of this and multiple repositories access with different permissions doesn't work at all. This PR enforces the following constraints: - [x] You should not be able to add the same user key as another user - [x] You should not be able to add a ssh user key which is being used as a deploy key - [x] You should not be able to add a ssh deploy key which is being used as a user key - [x] If you add an ssh deploy key to another repository you should be able to use it in different modes without losing the ability to use it in the other mode. - [x] If you delete a repository you must delete all its deploy keys. Fix #1357
5 years ago
fix clone wiki failed via ssh (#5503)
6 years ago
Drop db operations from hook commands (#1514) * move all database operations from hook command to web command and instead of internal routes * bug fixed * adjust the import path sequences * remove unused return value on hookSetup
7 years ago
improve protected branch to add whitelist support (#2451) * improve protected branch to add whitelist support * fix lint * fix style check * fix tests * fix description on UI and import * fix test * bug fixed * fix tests and languages * move isSliceInt64Eq to util pkg; improve function names & typo
7 years ago
Make gitea serv use api/internal (#4886) * Start to move to internal/private * Add GetPublicKeyByID * Add HasDeployKey * Add private.UpdateDeployKeyUpdated * Add private.GetUserByKeyID * Add private.AccessLevel * Add private.CheckUnitUser * Fix mistakes I made * Some cleaning + moving code to separate files * Fix error handling * Remove useless error handling for setup * lint: fix comment on exported func * fix copyright header * Fix order of args
6 years ago
fix bug when push a branch name with / & fix an integration test bug (#1689)
7 years ago
Give user a link to create PR after push (#4716) * Give user a link to create PR after push * Forks now create PR in the base repository + make sure PR creation is allowed * fix code style
6 years ago
Add internal routes for ssh hook comands (#1471) * add internal routes for ssh hook comands * fix lint * add comment on why package named private not internal but the route name is internal * add comment above package private why package named private not internal but the route name is internal * remove exp time on internal access * move routes from /internal to /api/internal * add comment and defer on UpdatePublicKeyUpdated
7 years ago
 
  1. // Copyright 2017 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. // Package private includes all internal routes. The package name internal is ideal but Golang is not allowed, so we use private as package name instead.

  6. package private
  7. 

  8. import (
  9. 	"strings"
  10. 

  11. 	"code.gitea.io/gitea/models"
  12. 	"code.gitea.io/gitea/modules/setting"
  13. 

  14. 	macaron "gopkg.in/macaron.v1"
  15. )
  16. 

  17. // CheckInternalToken check internal token is set

  18. func CheckInternalToken(ctx *macaron.Context) {
  19. 	tokens := ctx.Req.Header.Get("Authorization")
  20. 	fields := strings.Fields(tokens)
  21. 	if len(fields) != 2 || fields[0] != "Bearer" || fields[1] != setting.InternalToken {
  22. 		ctx.Error(403)
  23. 	}
  24. }
  25. 

  26. //GetRepositoryByOwnerAndName chainload to models.GetRepositoryByOwnerAndName

  27. func GetRepositoryByOwnerAndName(ctx *macaron.Context) {
  28. 	//TODO use repo.Get(ctx *context.APIContext) ?

  29. 	ownerName := ctx.Params(":owner")
  30. 	repoName := ctx.Params(":repo")
  31. 	repo, err := models.GetRepositoryByOwnerAndName(ownerName, repoName)
  32. 	if err != nil {
  33. 		ctx.JSON(500, map[string]interface{}{
  34. 			"err": err.Error(),
  35. 		})
  36. 		return
  37. 	}
  38. 	ctx.JSON(200, repo)
  39. }
  40. 

  41. //CheckUnitUser chainload to models.CheckUnitUser

  42. func CheckUnitUser(ctx *macaron.Context) {
  43. 	repoID := ctx.ParamsInt64(":repoid")
  44. 	userID := ctx.ParamsInt64(":userid")
  45. 	repo, err := models.GetRepositoryByID(repoID)
  46. 	if err != nil {
  47. 		ctx.JSON(500, map[string]interface{}{
  48. 			"err": err.Error(),
  49. 		})
  50. 		return
  51. 	}
  52. 

  53. 	var user *models.User
  54. 	if userID > 0 {
  55. 		user, err = models.GetUserByID(userID)
  56. 		if err != nil {
  57. 			ctx.JSON(500, map[string]interface{}{
  58. 				"err": err.Error(),
  59. 			})
  60. 			return
  61. 		}
  62. 	}
  63. 

  64. 	perm, err := models.GetUserRepoPermission(repo, user)
  65. 	if err != nil {
  66. 		ctx.JSON(500, map[string]interface{}{
  67. 			"err": err.Error(),
  68. 		})
  69. 		return
  70. 	}
  71. 

  72. 	ctx.JSON(200, perm.UnitAccessMode(models.UnitType(ctx.QueryInt("unitType"))))
  73. }
  74. 

  75. // RegisterRoutes registers all internal APIs routes to web application.

  76. // These APIs will be invoked by internal commands for example `gitea serv` and etc.

  77. func RegisterRoutes(m *macaron.Macaron) {
  78. 	m.Group("/", func() {
  79. 		m.Get("/ssh/:id", GetPublicKeyByID)
  80. 		m.Get("/ssh/:id/user", GetUserByKeyID)
  81. 		m.Post("/ssh/:id/update", UpdatePublicKey)
  82. 		m.Post("/repositories/:repoid/keys/:keyid/update", UpdateDeployKey)
  83. 		m.Get("/repositories/:repoid/user/:userid/checkunituser", CheckUnitUser)
  84. 		m.Get("/repositories/:repoid/has-keys/:keyid", HasDeployKey)
  85. 		m.Get("/repositories/:repoid/keys/:keyid", GetDeployKey)
  86. 		m.Get("/repositories/:repoid/wiki/init", InitWiki)
  87. 		m.Post("/push/update", PushUpdate)
  88. 		m.Get("/protectedbranch/:pbid/:userid", CanUserPush)
  89. 		m.Get("/repo/:owner/:repo", GetRepositoryByOwnerAndName)
  90. 		m.Get("/branch/:id/*", GetProtectedBranchBy)
  91. 		m.Get("/repository/:rid", GetRepository)
  92. 		m.Get("/active-pull-request", GetActivePullRequest)
  93. 	}, CheckInternalToken)
  94. }