closed-social
/
gitea
3
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7605 Commits
2 Branches
178 MiB
Tree: f9ec2f89f2
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f9ec2f89f2'
${ noResults }
gitea/modules/context/context.go

331 lines
9.9 KiB
Raw Normal View History

move templateFuncs to one file, add middleware context.
10 years ago
Rename module: middleware -> context
8 years ago
move templateFuncs to one file, add middleware context.
10 years ago
Fixes xss, clickjacking & password autocompletion
7 years ago
add csrf check
10 years ago
zip archive download
10 years ago
move templateFuncs to one file, add middleware context.
10 years ago
Refactor and simplify redirect to url (#3674)
6 years ago
Always return valid go-get meta, even if unauthorized (#2010) * Always return valid go-get meta, even if unauthorized * don't leak information
7 years ago
Add auto-login
10 years ago
fork render
10 years ago
move templateFuncs to one file, add middleware context.
10 years ago
Update import paths from github.com/go-gitea to code.gitea.io (#135) - Update import paths from github.com/go-gitea to code.gitea.io - Fix import path for travis See https://docs.travis-ci.com/user/languages/go#Go-Import-Path
7 years ago
Clean up various use of escape/unescape functions for URL generation (#6334) * Use PathUnescape instead of QueryUnescape when working with branch names Currently branch names with a '+' fail in certain situations because QueryUnescape replaces the + character with a blank space. Using PathUnescape should be better since it is defined as: // PathUnescape is identical to QueryUnescape except that it does not // unescape '+' to ' ' (space). Fixes #6333 * Change error to match new function name * Add new util function PathEscapeSegments This function simply runs PathEscape on each segment of a path without touching the forward slash itself. We want to use this instead of PathEscape/QueryEscape in most cases because a forward slash is a valid name for a branch etc... and we don't want that escaped in a URL. Putting this in new file url.go and also moving a couple similar functions into that file as well. * Use EscapePathSegments where appropriate Replace various uses of EscapePath/EscapeQuery with new EscapePathSegments. Also remove uncessary uses of various escape/unescape functions when the text had already been escaped or was not escaped. * Reformat comment to make drone build happy * Remove no longer used url library * Requested code changes
5 years ago
Always return valid go-get meta, even if unauthorized (#2010) * Always return valid go-get meta, even if unauthorized * don't leak information
7 years ago
Fix imports found by goimports.
7 years ago
Cleaned permission checks for API -> site admin can now do anything (#6483) * cleaned permission checks for API -> site admin can now do anything Signed-off-by: Vasek Sraier <git@vakabus.cz> * PR #6483: helper methods moved to context/context.go, added missing return Signed-off-by: Vasek Sraier <git@vakabus.cz> * PR #6483: added documentation to new exported helper functions in context/context.go Signed-off-by: Vasek Sraier <git@vakabus.cz>
5 years ago
move templateFuncs to one file, add middleware context.
10 years ago
Clean code
10 years ago
move templateFuncs to one file, add middleware context.
10 years ago
New UI merge in progress
9 years ago
Convert captcha, cache, csrf as middlewares
9 years ago
New UI merge in progress
9 years ago
Always return valid go-get meta, even if unauthorized (#2010) * Always return valid go-get meta, even if unauthorized * don't leak information
7 years ago
Various wiki bug fixes (#2996) * Update macaron * Various wiki bug fixes
6 years ago
more APIs on #12
9 years ago
modify RepoAssignment
10 years ago
Rename module: middleware -> context
8 years ago
Add APIContext
8 years ago
move templateFuncs to one file, add middleware context.
10 years ago
Cleaned permission checks for API -> site admin can now do anything (#6483) * cleaned permission checks for API -> site admin can now do anything Signed-off-by: Vasek Sraier <git@vakabus.cz> * PR #6483: helper methods moved to context/context.go, added missing return Signed-off-by: Vasek Sraier <git@vakabus.cz> * PR #6483: added documentation to new exported helper functions in context/context.go Signed-off-by: Vasek Sraier <git@vakabus.cz>
5 years ago
Golint fixed for modules/context
7 years ago
Clean api code
10 years ago
Golint fixed for modules/context
7 years ago
Clean api code
10 years ago
Clean code
10 years ago
Clean oauth code
10 years ago
Clean code
10 years ago
UI: install - new version
9 years ago
Refactor and simplify redirect to url (#3674)
6 years ago
Finish new repo settings page
9 years ago
New UI merge in progress
9 years ago
#2014 allow switch branches between two orgs in compose PR
8 years ago
Finish new repo settings page
9 years ago
Work on admin
10 years ago
Clean code
10 years ago
New UI merge in progress
9 years ago
Add: rename repository
10 years ago
Add flash
10 years ago
Work on admin
10 years ago
Clean code
10 years ago
Handle refactor (#3339) * Replace all ctx.Handle with ctx.ServerError or ctx.NotFound * Change Handle(403) to NotFound, avoid using macaron's NotFound
6 years ago
wrap the ServerError and NotFound and log from the caller (#6550)
5 years ago
Add router log config option
10 years ago
wrap the ServerError and NotFound and log from the caller (#6550)
5 years ago
New UI merge in progress
9 years ago
Add router log config option
10 years ago
Add some log
10 years ago
Minor UI tweaks (#5980) * Remove all CommitStatus when a repo is deleted Signed-off-by: jolheiser <john.olheiser@gmail.com> * Minor UI tweaks (#5782) Added 'No License' option Added link and octicon change for external issue trackers Reset password now notifies right away if the code is invalid Signed-off-by: jolheiser <john.olheiser@gmail.com> * More UI tweaks More info in PR * Generate stylesheet for arc-green * Make gofmt work * Change PR integration since the button is changed * Rebase * Generate stylesheet * UI updates Made the PR button a "basic" button Vertically centered the issue checkboxes Labels will update only once after modal is closed * Commit to reference related issues Resolves #5782 Resolves #5861 Addresses original question in #5993 * Change the comment wording since PR button is no longer little and green. * Revert changes that made Windows work * Regenerate stylesheet * Regenerate stylesheets * make generate-stylesheets * Update integration again, changed button style Signed-off-by: jolheiser <john.olheiser@gmail.com> * Added ID to PR button Changed integration to use the ID to avoid breaking in the future * Added missing semi-colons * Added back distinction between issue actions and filters (overlooked it before) Moved action button over next to other action dropdowns * Remove extra tab formatting in list.tmpl * Remove more formatting from GoLand * Replace hardcoded "No License" with i18n license helper.
5 years ago
Handle refactor (#3339) * Replace all ctx.Handle with ctx.ServerError or ctx.NotFound * Change Handle(403) to NotFound, avoid using macaron's NotFound
6 years ago
wrap the ServerError and NotFound and log from the caller (#6550)
5 years ago
Handle refactor (#3339) * Replace all ctx.Handle with ctx.ServerError or ctx.NotFound * Change Handle(403) to NotFound, avoid using macaron's NotFound
6 years ago
wrap the ServerError and NotFound and log from the caller (#6550)
5 years ago
Handle refactor (#3339) * Replace all ctx.Handle with ctx.ServerError or ctx.NotFound * Change Handle(403) to NotFound, avoid using macaron's NotFound
6 years ago
Add router log config option
10 years ago
Handle refactor (#3339) * Replace all ctx.Handle with ctx.ServerError or ctx.NotFound * Change Handle(403) to NotFound, avoid using macaron's NotFound
6 years ago
Provide better panic handling (#5902) This PR gitea'ises the macaron.Recovery() handler meaning that in the event of panic we get proper gitea 500 pages and the stacktrace is logged with the gitea logger. Signed-off-by: Andrew Thornton <art27@cantab.net>
5 years ago
move templateFuncs to one file, add middleware context.
10 years ago
router/repo: code refactoring
7 years ago
#1601 support delete issue comment
7 years ago
wrap the ServerError and NotFound and log from the caller (#6550)
5 years ago
#1601 support delete issue comment
7 years ago
wrap the ServerError and NotFound and log from the caller (#6550)
5 years ago
#1601 support delete issue comment
7 years ago
Golint fixed for modules/context
7 years ago
Set Content-Type to text/plain for http status 401 This is because git command line shows the failure reason only if Content-Type is text/plain.
9 years ago
UI: install - new version
9 years ago
Better logging (#6038) (#6095) * Panic don't fatal on create new logger Fixes #5854 Signed-off-by: Andrew Thornton <art27@cantab.net> * partial broken * Update the logging infrastrcture Signed-off-by: Andrew Thornton <art27@cantab.net> * Reset the skip levels for Fatal and Error Signed-off-by: Andrew Thornton <art27@cantab.net> * broken ncsa * More log.Error fixes Signed-off-by: Andrew Thornton <art27@cantab.net> * Remove nal * set log-levels to lowercase * Make console_test test all levels * switch to lowercased levels * OK now working * Fix vetting issues * Fix lint * Fix tests * change default logging to match current gitea * Improve log testing Signed-off-by: Andrew Thornton <art27@cantab.net> * reset error skip levels to 0 * Update documentation and access logger configuration * Redirect the router log back to gitea if redirect macaron log but also allow setting the log level - i.e. TRACE * Fix broken level caching * Refactor the router log * Add Router logger * Add colorizing options * Adjust router colors * Only create logger if they will be used * update app.ini.sample * rename Attribute ColorAttribute * Change from white to green for function * Set fatal/error levels * Restore initial trace logger * Fix Trace arguments in modules/auth/auth.go * Properly handle XORMLogger * Improve admin/config page * fix fmt * Add auto-compression of old logs * Update error log levels * Remove the unnecessary skip argument from Error, Fatal and Critical * Add stacktrace support * Fix tests * Remove x/sync from vendors? * Add stderr option to console logger * Use filepath.ToSlash to protect against Windows in tests * Remove prefixed underscores from names in colors.go * Remove not implemented database logger This was removed from Gogs on 4 Mar 2016 but left in the configuration since then. * Ensure that log paths are relative to ROOT_PATH * use path.Join * rename jsonConfig to logConfig * Rename "config" to "jsonConfig" to make it clearer * Requested changes * Requested changes: XormLogger * Try to color the windows terminal If successful default to colorizing the console logs * fixup * Colorize initially too * update vendor * Colorize logs on default and remove if this is not a colorizing logger * Fix documentation * fix test * Use go-isatty to detect if on windows we are on msys or cygwin * Fix spelling mistake * Add missing vendors * More changes * Rationalise the ANSI writer protection * Adjust colors on advice from @0x5c * Make Flags a comma separated list * Move to use the windows constant for ENABLE_VIRTUAL_TERMINAL_PROCESSING * Ensure matching is done on the non-colored message - to simpify EXPRESSION
5 years ago
Set Content-Type to text/plain for http status 401 This is because git command line shows the failure reason only if Content-Type is text/plain.
9 years ago
fix import path, fix #1782
8 years ago
Set Content-Type to text/plain for http status 401 This is because git command line shows the failure reason only if Content-Type is text/plain.
9 years ago
Golint fixed for modules/context
7 years ago
zip archive download
10 years ago
New UI merge in progress
9 years ago
Fix API broken
9 years ago
Work on form resubmit
10 years ago
New UI merge in progress
9 years ago
Convert captcha, cache, csrf as middlewares
9 years ago
move templateFuncs to one file, add middleware context.
10 years ago
New UI merge in progress
9 years ago
Convert captcha, cache, csrf as middlewares
9 years ago
New UI merge in progress
9 years ago
Various wiki bug fixes (#2996) * Update macaron * Various wiki bug fixes
6 years ago
Rename module: middleware -> context
8 years ago
Fix pull request availability check
8 years ago
Add APIContext
8 years ago
move templateFuncs to one file, add middleware context.
10 years ago
Add lang specific font stacks for CJK (#6007) * Add lang specific font stacks * Force font changes Signed-off-by: Andrew Thornton <art27@cantab.net> * Fix icons Signed-off-by: Andrew Thornton <art27@cantab.net> * Fix octicons and icons Signed-off-by: Andrew Thornton <art27@cantab.net> * Just override the semantic ui fonts only Signed-off-by: Andrew Thornton <art27@cantab.net> * Missed the headers... override them too * Missed some more semantic ui stuff * Fix PT Sans Signed-off-by: Andrew Thornton <art27@cantab.net> * More changes Signed-off-by: Andrew Thornton <art27@cantab.net> * Squashed commit of the following: commit 7d1679e9079541359869c9e677ba7412bfcc59f3 Author: Mike L <cl.jeremy@qq.com> Date: Wed Mar 13 13:53:49 2019 +0100 Remove missed YaHei leftover from _home.less commit 0079121ea91860a323ed4e5cc1a9c0d490d9cefd Author: Mike L <cl.jeremy@qq.com> Date: Wed Mar 13 12:03:54 2019 +0100 Fix overdone fixes (inherit, :lang) commit 62c919915928ec1db4731d547e95885f91a0618d Author: Mike L <cl.jeremy@qq.com> Date: Wed Mar 13 02:29:10 2019 +0100 Fix elements w/ explicit lang (language chooser) commit b3117587aa2eb8570d60bed583a11ee5565418be Author: Mike L <cl.jeremy@qq.com> Date: Tue Mar 12 20:17:26 2019 +0100 Fix textarea also (to match body) commit 81cedf2c3012c4dd05a7680782b4a98e1b947f67 Author: Mike L <cl.jeremy@qq.com> Date: Tue Mar 12 19:41:39 2019 +0100 Revert css temporarily to fix conflict commit 80ff82797f3203cbeaf866f22e961334e137df89 Author: Mike L <cl.jeremy@qq.com> Date: Tue Mar 12 19:15:30 2019 +0100 Tweak CJK, fix Yu Gothic, more monospace inherits commit 581dceb9a869646c2c486dabb925c88c2680d70c Author: Mike L <cl.jeremy@qq.com> Date: Mon Mar 11 13:09:26 2019 +0100 Add Lato for latin extd. & cyrillic, improve CJK * update stylesheet
5 years ago
Always return valid go-get meta, even if unauthorized (#2010) * Always return valid go-get meta, even if unauthorized * don't leak information
7 years ago
New UI merge in progress
9 years ago
Always return valid go-get meta, even if unauthorized (#2010) * Always return valid go-get meta, even if unauthorized * don't leak information
7 years ago
Remove GetRepositoryByRef and add GetRepositoryByOwnerAndName (#3043) * remove GetRepositoryByRef and add GetRepositoryByOwnerAndName * fix tests * fix tests bug * some improvements
6 years ago
Always return valid go-get meta, even if unauthorized (#2010) * Always return valid go-get meta, even if unauthorized * don't leak information
7 years ago
Clean up various use of escape/unescape functions for URL generation (#6334) * Use PathUnescape instead of QueryUnescape when working with branch names Currently branch names with a '+' fail in certain situations because QueryUnescape replaces the + character with a blank space. Using PathUnescape should be better since it is defined as: // PathUnescape is identical to QueryUnescape except that it does not // unescape '+' to ' ' (space). Fixes #6333 * Change error to match new function name * Add new util function PathEscapeSegments This function simply runs PathEscape on each segment of a path without touching the forward slash itself. We want to use this instead of PathEscape/QueryEscape in most cases because a forward slash is a valid name for a branch etc... and we don't want that escaped in a URL. Putting this in new file url.go and also moving a couple similar functions into that file as well. * Use EscapePathSegments where appropriate Replace various uses of EscapePath/EscapeQuery with new EscapePathSegments. Also remove uncessary uses of various escape/unescape functions when the text had already been escaped or was not escaped. * Reformat comment to make drone build happy * Remove no longer used url library * Requested code changes
5 years ago
Handle insecure and ports in go get (#7041) * Handle insecure and ports in go get * Fix IsExternalURL for non-standard ports
5 years ago
Fix go-get content type (#3426)
6 years ago
Add golangci (#6418)
5 years ago
Always return valid go-get meta, even if unauthorized (#2010) * Always return valid go-get meta, even if unauthorized * don't leak information
7 years ago
Handle insecure and ports in go get (#7041) * Handle insecure and ports in go get * Fix IsExternalURL for non-standard ports
5 years ago
Always return valid go-get meta, even if unauthorized (#2010) * Always return valid go-get meta, even if unauthorized * don't leak information
7 years ago
Fix go get response if only app URL is custom in configuration (#2634) * Fix go get response if only app URL is custom in configuration * Rewrite to update Domain setting to match AppURL
6 years ago
Always return valid go-get meta, even if unauthorized (#2010) * Always return valid go-get meta, even if unauthorized * don't leak information
7 years ago
Handle insecure and ports in go get (#7041) * Handle insecure and ports in go get * Fix IsExternalURL for non-standard ports
5 years ago
Always return valid go-get meta, even if unauthorized (#2010) * Always return valid go-get meta, even if unauthorized * don't leak information
7 years ago
update session
10 years ago
Fix typos in models/ and modules/ (#1248)
7 years ago
#842 able to use access token replace basic auth
8 years ago
work on #609
9 years ago
New UI merge in progress
9 years ago
Refactor User.Id to User.ID
7 years ago
Fix #605, fix #255, fix #101
9 years ago
Work on admin
10 years ago
Fix #605, fix #255, fix #101
9 years ago
Add reactions to issues/PR and comments (#2856)
6 years ago
Fix #605, fix #255, fix #101
9 years ago
fix context
10 years ago
move templateFuncs to one file, add middleware context.
10 years ago
Add file upload for attachments
10 years ago
New UI merge in progress
9 years ago
Handle refactor (#3339) * Replace all ctx.Handle with ctx.ServerError or ctx.NotFound * Change Handle(403) to NotFound, avoid using macaron's NotFound
6 years ago
Add file upload for attachments
10 years ago
Fixes xss, clickjacking & password autocompletion
7 years ago
#1692 APIs: Users Followers - User profile un/follow - List user's followers/following
8 years ago
fork render
10 years ago
Hide home button when landing page is not set to home (#4651)
5 years ago
code fix for #908, and work for #884
9 years ago
#1080: Remove footer ads/branding from default template
9 years ago
fix #1957 - disable version display This allows the admin to disable the version information about gogs and go in use in the footer.
8 years ago
Hide home button when landing page is not set to home (#4651)
5 years ago
Swagger.v1.json template (#3572) * Turn swagger.v1.json into template * Rename ENABLE_SWAGGER_ENDPOINT option to ENABLE_SWAGGER
5 years ago
Allow ENABLE_OPENID_SIGNUP to depend on DISABLE_REGISTRATION (#1369) * Allow ENABLE_OPENID_SIGNUP to depend on DISABLE_REGISTRATION Omit the configuration variable (the default) to be dependent. Fixes #1363 * Move OpenID settings under Service object * Show OpenID SignUp and SignIn status in admin panel / configuration
7 years ago
code fix for #908, and work for #884
9 years ago
move templateFuncs to one file, add middleware context.
10 years ago
 
  1. // Copyright 2014 The Gogs Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package context
  6. 

  7. import (
  8. 	"html"
  9. 	"html/template"
  10. 	"io"
  11. 	"net/http"
  12. 	"net/url"
  13. 	"path"
  14. 	"strings"
  15. 	"time"
  16. 

  17. 	"code.gitea.io/gitea/models"
  18. 	"code.gitea.io/gitea/modules/auth"
  19. 	"code.gitea.io/gitea/modules/base"
  20. 	"code.gitea.io/gitea/modules/log"
  21. 	"code.gitea.io/gitea/modules/setting"
  22. 	"code.gitea.io/gitea/modules/util"
  23. 	"github.com/Unknwon/com"
  24. 	"github.com/go-macaron/cache"
  25. 	"github.com/go-macaron/csrf"
  26. 	"github.com/go-macaron/i18n"
  27. 	"github.com/go-macaron/session"
  28. 	"gopkg.in/macaron.v1"
  29. )
  30. 

  31. // Context represents context of a request.

  32. type Context struct {
  33. 	*macaron.Context
  34. 	Cache   cache.Cache
  35. 	csrf    csrf.CSRF
  36. 	Flash   *session.Flash
  37. 	Session session.Store
  38. 

  39. 	Link        string // current request URL

  40. 	EscapedLink string
  41. 	User        *models.User
  42. 	IsSigned    bool
  43. 	IsBasicAuth bool
  44. 

  45. 	Repo *Repository
  46. 	Org  *Organization
  47. }
  48. 

  49. // IsUserSiteAdmin returns true if current user is a site admin

  50. func (ctx *Context) IsUserSiteAdmin() bool {
  51. 	return ctx.IsSigned && ctx.User.IsAdmin
  52. }
  53. 

  54. // IsUserRepoOwner returns true if current user owns current repo

  55. func (ctx *Context) IsUserRepoOwner() bool {
  56. 	return ctx.Repo.IsOwner()
  57. }
  58. 

  59. // IsUserRepoAdmin returns true if current user is admin in current repo

  60. func (ctx *Context) IsUserRepoAdmin() bool {
  61. 	return ctx.Repo.IsAdmin()
  62. }
  63. 

  64. // IsUserRepoWriter returns true if current user has write privilege in current repo

  65. func (ctx *Context) IsUserRepoWriter(unitTypes []models.UnitType) bool {
  66. 	for _, unitType := range unitTypes {
  67. 		if ctx.Repo.CanWrite(unitType) {
  68. 			return true
  69. 		}
  70. 	}
  71. 

  72. 	return false
  73. }
  74. 

  75. // IsUserRepoReaderSpecific returns true if current user can read current repo's specific part

  76. func (ctx *Context) IsUserRepoReaderSpecific(unitType models.UnitType) bool {
  77. 	return ctx.Repo.CanRead(unitType)
  78. }
  79. 

  80. // IsUserRepoReaderAny returns true if current user can read any part of current repo

  81. func (ctx *Context) IsUserRepoReaderAny() bool {
  82. 	return ctx.Repo.HasAccess()
  83. }
  84. 

  85. // HasAPIError returns true if error occurs in form validation.

  86. func (ctx *Context) HasAPIError() bool {
  87. 	hasErr, ok := ctx.Data["HasError"]
  88. 	if !ok {
  89. 		return false
  90. 	}
  91. 	return hasErr.(bool)
  92. }
  93. 

  94. // GetErrMsg returns error message

  95. func (ctx *Context) GetErrMsg() string {
  96. 	return ctx.Data["ErrorMsg"].(string)
  97. }
  98. 

  99. // HasError returns true if error occurs in form validation.

  100. func (ctx *Context) HasError() bool {
  101. 	hasErr, ok := ctx.Data["HasError"]
  102. 	if !ok {
  103. 		return false
  104. 	}
  105. 	ctx.Flash.ErrorMsg = ctx.Data["ErrorMsg"].(string)
  106. 	ctx.Data["Flash"] = ctx.Flash
  107. 	return hasErr.(bool)
  108. }
  109. 

  110. // HasValue returns true if value of given name exists.

  111. func (ctx *Context) HasValue(name string) bool {
  112. 	_, ok := ctx.Data[name]
  113. 	return ok
  114. }
  115. 

  116. // RedirectToFirst redirects to first not empty URL

  117. func (ctx *Context) RedirectToFirst(location ...string) {
  118. 	for _, loc := range location {
  119. 		if len(loc) == 0 {
  120. 			continue
  121. 		}
  122. 

  123. 		u, err := url.Parse(loc)
  124. 		if err != nil || (u.Scheme != "" && !strings.HasPrefix(strings.ToLower(loc), strings.ToLower(setting.AppURL))) {
  125. 			continue
  126. 		}
  127. 

  128. 		ctx.Redirect(loc)
  129. 		return
  130. 	}
  131. 

  132. 	ctx.Redirect(setting.AppSubURL + "/")
  133. }
  134. 

  135. // HTML calls Context.HTML and converts template name to string.

  136. func (ctx *Context) HTML(status int, name base.TplName) {
  137. 	log.Debug("Template: %s", name)
  138. 	ctx.Context.HTML(status, string(name))
  139. }
  140. 

  141. // RenderWithErr used for page has form validation but need to prompt error to users.

  142. func (ctx *Context) RenderWithErr(msg string, tpl base.TplName, form interface{}) {
  143. 	if form != nil {
  144. 		auth.AssignForm(form, ctx.Data)
  145. 	}
  146. 	ctx.Flash.ErrorMsg = msg
  147. 	ctx.Data["Flash"] = ctx.Flash
  148. 	ctx.HTML(200, tpl)
  149. }
  150. 

  151. // NotFound displays a 404 (Not Found) page and prints the given error, if any.

  152. func (ctx *Context) NotFound(title string, err error) {
  153. 	ctx.notFoundInternal(title, err)
  154. }
  155. 

  156. func (ctx *Context) notFoundInternal(title string, err error) {
  157. 	if err != nil {
  158. 		log.ErrorWithSkip(2, "%s: %v", title, err)
  159. 		if macaron.Env != macaron.PROD {
  160. 			ctx.Data["ErrorMsg"] = err
  161. 		}
  162. 	}
  163. 

  164. 	ctx.Data["IsRepo"] = ctx.Repo.Repository != nil
  165. 	ctx.Data["Title"] = "Page Not Found"
  166. 	ctx.HTML(http.StatusNotFound, base.TplName("status/404"))
  167. }
  168. 

  169. // ServerError displays a 500 (Internal Server Error) page and prints the given

  170. // error, if any.

  171. func (ctx *Context) ServerError(title string, err error) {
  172. 	ctx.serverErrorInternal(title, err)
  173. }
  174. 

  175. func (ctx *Context) serverErrorInternal(title string, err error) {
  176. 	if err != nil {
  177. 		log.ErrorWithSkip(2, "%s: %v", title, err)
  178. 		if macaron.Env != macaron.PROD {
  179. 			ctx.Data["ErrorMsg"] = err
  180. 		}
  181. 	}
  182. 

  183. 	ctx.Data["Title"] = "Internal Server Error"
  184. 	ctx.HTML(http.StatusInternalServerError, base.TplName("status/500"))
  185. }
  186. 

  187. // NotFoundOrServerError use error check function to determine if the error

  188. // is about not found. It responses with 404 status code for not found error,

  189. // or error context description for logging purpose of 500 server error.

  190. func (ctx *Context) NotFoundOrServerError(title string, errck func(error) bool, err error) {
  191. 	if errck(err) {
  192. 		ctx.notFoundInternal(title, err)
  193. 		return
  194. 	}
  195. 

  196. 	ctx.serverErrorInternal(title, err)
  197. }
  198. 

  199. // HandleText handles HTTP status code

  200. func (ctx *Context) HandleText(status int, title string) {
  201. 	if (status/100 == 4) || (status/100 == 5) {
  202. 		log.Error("%s", title)
  203. 	}
  204. 	ctx.PlainText(status, []byte(title))
  205. }
  206. 

  207. // ServeContent serves content to http request

  208. func (ctx *Context) ServeContent(name string, r io.ReadSeeker, params ...interface{}) {
  209. 	modtime := time.Now()
  210. 	for _, p := range params {
  211. 		switch v := p.(type) {
  212. 		case time.Time:
  213. 			modtime = v
  214. 		}
  215. 	}
  216. 	ctx.Resp.Header().Set("Content-Description", "File Transfer")
  217. 	ctx.Resp.Header().Set("Content-Type", "application/octet-stream")
  218. 	ctx.Resp.Header().Set("Content-Disposition", "attachment; filename="+name)
  219. 	ctx.Resp.Header().Set("Content-Transfer-Encoding", "binary")
  220. 	ctx.Resp.Header().Set("Expires", "0")
  221. 	ctx.Resp.Header().Set("Cache-Control", "must-revalidate")
  222. 	ctx.Resp.Header().Set("Pragma", "public")
  223. 	http.ServeContent(ctx.Resp, ctx.Req.Request, name, modtime, r)
  224. }
  225. 

  226. // Contexter initializes a classic context for a request.

  227. func Contexter() macaron.Handler {
  228. 	return func(c *macaron.Context, l i18n.Locale, cache cache.Cache, sess session.Store, f *session.Flash, x csrf.CSRF) {
  229. 		ctx := &Context{
  230. 			Context: c,
  231. 			Cache:   cache,
  232. 			csrf:    x,
  233. 			Flash:   f,
  234. 			Session: sess,
  235. 			Link:    setting.AppSubURL + strings.TrimSuffix(c.Req.URL.EscapedPath(), "/"),
  236. 			Repo: &Repository{
  237. 				PullRequest: &PullRequest{},
  238. 			},
  239. 			Org: &Organization{},
  240. 		}
  241. 		ctx.Data["Language"] = ctx.Locale.Language()
  242. 		c.Data["Link"] = ctx.Link
  243. 		ctx.Data["PageStartTime"] = time.Now()
  244. 		// Quick responses appropriate go-get meta with status 200

  245. 		// regardless of if user have access to the repository,

  246. 		// or the repository does not exist at all.

  247. 		// This is particular a workaround for "go get" command which does not respect

  248. 		// .netrc file.

  249. 		if ctx.Query("go-get") == "1" {
  250. 			ownerName := c.Params(":username")
  251. 			repoName := c.Params(":reponame")
  252. 			branchName := "master"
  253. 

  254. 			repo, err := models.GetRepositoryByOwnerAndName(ownerName, repoName)
  255. 			if err == nil && len(repo.DefaultBranch) > 0 {
  256. 				branchName = repo.DefaultBranch
  257. 			}
  258. 			prefix := setting.AppURL + path.Join(url.PathEscape(ownerName), url.PathEscape(repoName), "src", "branch", util.PathEscapeSegments(branchName))
  259. 

  260. 			appURL, _ := url.Parse(setting.AppURL)
  261. 

  262. 			insecure := ""
  263. 			if appURL.Scheme == string(setting.HTTP) {
  264. 				insecure = "--insecure "
  265. 			}
  266. 			c.Header().Set("Content-Type", "text/html")
  267. 			c.WriteHeader(http.StatusOK)
  268. 			_, _ = c.Write([]byte(com.Expand(`<!doctype html>
  269. <html>
  270. 	<head>
  271. 		<meta name="go-import" content="{GoGetImport} git {CloneLink}">
  272. 		<meta name="go-source" content="{GoGetImport} _ {GoDocDirectory} {GoDocFile}">
  273. 	</head>
  274. 	<body>
  275. 		go get {Insecure}{GoGetImport}
  276. 	</body>
  277. </html>
  278. `, map[string]string{
  279. 				"GoGetImport":    ComposeGoGetImport(ownerName, strings.TrimSuffix(repoName, ".git")),
  280. 				"CloneLink":      models.ComposeHTTPSCloneURL(ownerName, repoName),
  281. 				"GoDocDirectory": prefix + "{/dir}",
  282. 				"GoDocFile":      prefix + "{/dir}/{file}#L{line}",
  283. 				"Insecure":       insecure,
  284. 			})))
  285. 			return
  286. 		}
  287. 

  288. 		// Get user from session if logged in.

  289. 		ctx.User, ctx.IsBasicAuth = auth.SignedInUser(ctx.Context, ctx.Session)
  290. 

  291. 		if ctx.User != nil {
  292. 			ctx.IsSigned = true
  293. 			ctx.Data["IsSigned"] = ctx.IsSigned
  294. 			ctx.Data["SignedUser"] = ctx.User
  295. 			ctx.Data["SignedUserID"] = ctx.User.ID
  296. 			ctx.Data["SignedUserName"] = ctx.User.Name
  297. 			ctx.Data["IsAdmin"] = ctx.User.IsAdmin
  298. 		} else {
  299. 			ctx.Data["SignedUserID"] = int64(0)
  300. 			ctx.Data["SignedUserName"] = ""
  301. 		}
  302. 

  303. 		// If request sends files, parse them here otherwise the Query() can't be parsed and the CsrfToken will be invalid.

  304. 		if ctx.Req.Method == "POST" && strings.Contains(ctx.Req.Header.Get("Content-Type"), "multipart/form-data") {
  305. 			if err := ctx.Req.ParseMultipartForm(setting.AttachmentMaxSize << 20); err != nil && !strings.Contains(err.Error(), "EOF") { // 32MB max size

  306. 				ctx.ServerError("ParseMultipartForm", err)
  307. 				return
  308. 			}
  309. 		}
  310. 

  311. 		ctx.Resp.Header().Set(`X-Frame-Options`, `SAMEORIGIN`)
  312. 

  313. 		ctx.Data["CsrfToken"] = html.EscapeString(x.GetToken())
  314. 		ctx.Data["CsrfTokenHtml"] = template.HTML(`<input type="hidden" name="_csrf" value="` + ctx.Data["CsrfToken"].(string) + `">`)
  315. 		log.Debug("Session ID: %s", sess.ID())
  316. 		log.Debug("CSRF Token: %v", ctx.Data["CsrfToken"])
  317. 

  318. 		ctx.Data["IsLandingPageHome"] = setting.LandingPageURL == setting.LandingPageHome
  319. 		ctx.Data["IsLandingPageExplore"] = setting.LandingPageURL == setting.LandingPageExplore
  320. 		ctx.Data["IsLandingPageOrganizations"] = setting.LandingPageURL == setting.LandingPageOrganizations
  321. 

  322. 		ctx.Data["ShowRegistrationButton"] = setting.Service.ShowRegistrationButton
  323. 		ctx.Data["ShowFooterBranding"] = setting.ShowFooterBranding
  324. 		ctx.Data["ShowFooterVersion"] = setting.ShowFooterVersion
  325. 

  326. 		ctx.Data["EnableSwagger"] = setting.API.EnableSwagger
  327. 		ctx.Data["EnableOpenIDSignIn"] = setting.Service.EnableOpenIDSignIn
  328. 

  329. 		c.Map(ctx)
  330. 	}
  331. }