bench-forgejo/models/migrations/v1_15/v180.go

// Copyright 2021 The Gitea Authors. All rights reserved.
// Use of this source code is governed by a MIT-style
// license that can be found in the LICENSE file.

package v1_15 //nolint

import (
	"code.gitea.io/gitea/modules/json"
	"code.gitea.io/gitea/modules/util"

	"xorm.io/builder"
	"xorm.io/xorm"
)

func DeleteMigrationCredentials(x *xorm.Engine) (err error) {
	// Task represents a task
	type Task struct {
		ID             int64
		DoerID         int64 `xorm:"index"` // operator
		OwnerID        int64 `xorm:"index"` // repo owner id, when creating, the repoID maybe zero
		RepoID         int64 `xorm:"index"`
		Type           int
		Status         int `xorm:"index"`
		StartTime      int64
		EndTime        int64
		PayloadContent string `xorm:"TEXT"`
		Errors         string `xorm:"TEXT"` // if task failed, saved the error reason
		Created        int64  `xorm:"created"`
	}

	const TaskTypeMigrateRepo = 0
	const TaskStatusStopped = 2

	const batchSize = 100

	// only match migration tasks, that are not pending or running
	cond := builder.Eq{
		"type": TaskTypeMigrateRepo,
	}.And(builder.Gte{
		"status": TaskStatusStopped,
	})

	sess := x.NewSession()
	defer sess.Close()

	for start := 0; ; start += batchSize {
		tasks := make([]*Task, 0, batchSize)
		if err = sess.Limit(batchSize, start).Where(cond, 0).Find(&tasks); err != nil {
			return
		}
		if len(tasks) == 0 {
			break
		}
		if err = sess.Begin(); err != nil {
			return
		}
		for _, t := range tasks {
			if t.PayloadContent, err = removeCredentials(t.PayloadContent); err != nil {
				return
			}
			if _, err = sess.ID(t.ID).Cols("payload_content").Update(t); err != nil {
				return
			}
		}
		if err = sess.Commit(); err != nil {
			return
		}
	}
	return err
}

func removeCredentials(payload string) (string, error) {
	// MigrateOptions defines the way a repository gets migrated
	// this is for internal usage by migrations module and func who interact with it
	type MigrateOptions struct {
		// required: true
		CloneAddr             string `json:"clone_addr" binding:"Required"`
		CloneAddrEncrypted    string `json:"clone_addr_encrypted,omitempty"`
		AuthUsername          string `json:"auth_username"`
		AuthPassword          string `json:"-"`
		AuthPasswordEncrypted string `json:"auth_password_encrypted,omitempty"`
		AuthToken             string `json:"-"`
		AuthTokenEncrypted    string `json:"auth_token_encrypted,omitempty"`
		// required: true
		UID int `json:"uid" binding:"Required"`
		// required: true
		RepoName        string `json:"repo_name" binding:"Required"`
		Mirror          bool   `json:"mirror"`
		LFS             bool   `json:"lfs"`
		LFSEndpoint     string `json:"lfs_endpoint"`
		Private         bool   `json:"private"`
		Description     string `json:"description"`
		OriginalURL     string
		GitServiceType  int
		Wiki            bool
		Issues          bool
		Milestones      bool
		Labels          bool
		Releases        bool
		Comments        bool
		PullRequests    bool
		ReleaseAssets   bool
		MigrateToRepoID int64
		MirrorInterval  string `json:"mirror_interval"`
	}

	var opts MigrateOptions
	err := json.Unmarshal([]byte(payload), &opts)
	if err != nil {
		return "", err
	}

	opts.AuthPassword = ""
	opts.AuthToken = ""
	opts.CloneAddr = util.SanitizeCredentialURLs(opts.CloneAddr)

	confBytes, err := json.Marshal(opts)
	if err != nil {
		return "", err
	}
	return string(confBytes), nil
}
Encrypt migration credentials at rest (#15895) * encrypt migration credentials in task persistence Not sure this is the best approach, we could encrypt the entire `PayloadContent` instead. Also instead of clearing individual fields in payload content, we could just delete the task once it has (successfully) finished..? * remove credentials of past migrations * only run DB migration for completed tasks * fix binding * add omitempty * never serialize unencrypted credentials * fix import order Co-authored-by: techknowlogick <techknowlogick@gitea.io> Co-authored-by: zeripath <art27@cantab.net> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> 2021-05-31 13:55:47 +05:30			`// Copyright 2021 The Gitea Authors. All rights reserved.`
			`// Use of this source code is governed by a MIT-style`
			`// license that can be found in the LICENSE file.`

Split migrations folder (#21549) There are too many files in `models/migrations` folder so that I split them into sub folders. 2022-11-02 14:24:36 +05:30			`package v1_15 //nolint`
Encrypt migration credentials at rest (#15895) * encrypt migration credentials in task persistence Not sure this is the best approach, we could encrypt the entire `PayloadContent` instead. Also instead of clearing individual fields in payload content, we could just delete the task once it has (successfully) finished..? * remove credentials of past migrations * only run DB migration for completed tasks * fix binding * add omitempty * never serialize unencrypted credentials * fix import order Co-authored-by: techknowlogick <techknowlogick@gitea.io> Co-authored-by: zeripath <art27@cantab.net> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> 2021-05-31 13:55:47 +05:30
			`import (`
Add an abstract json layout to make it's easier to change json library (#16528) * Add an abstract json layout to make it's easier to change json library * Fix import * Fix import sequence * Fix blank lines * Fix blank lines 2021-07-24 21:33:58 +05:30			`"code.gitea.io/gitea/modules/json"`
Encrypt migration credentials at rest (#15895) * encrypt migration credentials in task persistence Not sure this is the best approach, we could encrypt the entire `PayloadContent` instead. Also instead of clearing individual fields in payload content, we could just delete the task once it has (successfully) finished..? * remove credentials of past migrations * only run DB migration for completed tasks * fix binding * add omitempty * never serialize unencrypted credentials * fix import order Co-authored-by: techknowlogick <techknowlogick@gitea.io> Co-authored-by: zeripath <art27@cantab.net> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> 2021-05-31 13:55:47 +05:30			`"code.gitea.io/gitea/modules/util"`

			`"xorm.io/builder"`
			`"xorm.io/xorm"`
			`)`

Split migrations folder (#21549) There are too many files in `models/migrations` folder so that I split them into sub folders. 2022-11-02 14:24:36 +05:30			`func DeleteMigrationCredentials(x *xorm.Engine) (err error) {`
v180 migration should be standalone (#16151) Unfortunately the v180 migration picked up a few non-standalone dependencies. This PR forcibly copies the important parts back into the migration. Fix #16150 Signed-off-by: Andrew Thornton <art27@cantab.net> Co-authored-by: techknowlogick <techknowlogick@gitea.io> 2021-06-15 00:37:49 +05:30			`// Task represents a task`
			`type Task struct {`
			`ID int64`
			DoerID int64 `xorm:"index"` // operator
			OwnerID int64 `xorm:"index"` // repo owner id, when creating, the repoID maybe zero
			RepoID int64 `xorm:"index"`
			`Type int`
			Status int `xorm:"index"`
			`StartTime int64`
			`EndTime int64`
			PayloadContent string `xorm:"TEXT"`
			Errors string `xorm:"TEXT"` // if task failed, saved the error reason
			Created int64 `xorm:"created"`
			`}`

			`const TaskTypeMigrateRepo = 0`
			`const TaskStatusStopped = 2`

Encrypt migration credentials at rest (#15895) * encrypt migration credentials in task persistence Not sure this is the best approach, we could encrypt the entire `PayloadContent` instead. Also instead of clearing individual fields in payload content, we could just delete the task once it has (successfully) finished..? * remove credentials of past migrations * only run DB migration for completed tasks * fix binding * add omitempty * never serialize unencrypted credentials * fix import order Co-authored-by: techknowlogick <techknowlogick@gitea.io> Co-authored-by: zeripath <art27@cantab.net> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> 2021-05-31 13:55:47 +05:30			`const batchSize = 100`

			`// only match migration tasks, that are not pending or running`
			`cond := builder.Eq{`
v180 migration should be standalone (#16151) Unfortunately the v180 migration picked up a few non-standalone dependencies. This PR forcibly copies the important parts back into the migration. Fix #16150 Signed-off-by: Andrew Thornton <art27@cantab.net> Co-authored-by: techknowlogick <techknowlogick@gitea.io> 2021-06-15 00:37:49 +05:30			`"type": TaskTypeMigrateRepo,`
Encrypt migration credentials at rest (#15895) * encrypt migration credentials in task persistence Not sure this is the best approach, we could encrypt the entire `PayloadContent` instead. Also instead of clearing individual fields in payload content, we could just delete the task once it has (successfully) finished..? * remove credentials of past migrations * only run DB migration for completed tasks * fix binding * add omitempty * never serialize unencrypted credentials * fix import order Co-authored-by: techknowlogick <techknowlogick@gitea.io> Co-authored-by: zeripath <art27@cantab.net> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> 2021-05-31 13:55:47 +05:30			`}.And(builder.Gte{`
v180 migration should be standalone (#16151) Unfortunately the v180 migration picked up a few non-standalone dependencies. This PR forcibly copies the important parts back into the migration. Fix #16150 Signed-off-by: Andrew Thornton <art27@cantab.net> Co-authored-by: techknowlogick <techknowlogick@gitea.io> 2021-06-15 00:37:49 +05:30			`"status": TaskStatusStopped,`
Encrypt migration credentials at rest (#15895) * encrypt migration credentials in task persistence Not sure this is the best approach, we could encrypt the entire `PayloadContent` instead. Also instead of clearing individual fields in payload content, we could just delete the task once it has (successfully) finished..? * remove credentials of past migrations * only run DB migration for completed tasks * fix binding * add omitempty * never serialize unencrypted credentials * fix import order Co-authored-by: techknowlogick <techknowlogick@gitea.io> Co-authored-by: zeripath <art27@cantab.net> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> 2021-05-31 13:55:47 +05:30			`})`

			`sess := x.NewSession()`
			`defer sess.Close()`

			`for start := 0; ; start += batchSize {`
v180 migration should be standalone (#16151) Unfortunately the v180 migration picked up a few non-standalone dependencies. This PR forcibly copies the important parts back into the migration. Fix #16150 Signed-off-by: Andrew Thornton <art27@cantab.net> Co-authored-by: techknowlogick <techknowlogick@gitea.io> 2021-06-15 00:37:49 +05:30			`tasks := make([]*Task, 0, batchSize)`
Encrypt migration credentials at rest (#15895) * encrypt migration credentials in task persistence Not sure this is the best approach, we could encrypt the entire `PayloadContent` instead. Also instead of clearing individual fields in payload content, we could just delete the task once it has (successfully) finished..? * remove credentials of past migrations * only run DB migration for completed tasks * fix binding * add omitempty * never serialize unencrypted credentials * fix import order Co-authored-by: techknowlogick <techknowlogick@gitea.io> Co-authored-by: zeripath <art27@cantab.net> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> 2021-05-31 13:55:47 +05:30			`if err = sess.Limit(batchSize, start).Where(cond, 0).Find(&tasks); err != nil {`
			`return`
			`}`
			`if len(tasks) == 0 {`
			`break`
			`}`
			`if err = sess.Begin(); err != nil {`
			`return`
			`}`
			`for _, t := range tasks {`
			`if t.PayloadContent, err = removeCredentials(t.PayloadContent); err != nil {`
			`return`
			`}`
			`if _, err = sess.ID(t.ID).Cols("payload_content").Update(t); err != nil {`
			`return`
			`}`
			`}`
			`if err = sess.Commit(); err != nil {`
			`return`
			`}`
			`}`
Add more linters to improve code readability (#19989) Add nakedret, unconvert, wastedassign, stylecheck and nolintlint linters to improve code readability - nakedret - https://github.com/alexkohler/nakedret - nakedret is a Go static analysis tool to find naked returns in functions greater than a specified function length. - unconvert - https://github.com/mdempsky/unconvert - Remove unnecessary type conversions - wastedassign - https://github.com/sanposhiho/wastedassign - wastedassign finds wasted assignment statements. - notlintlint - Reports ill-formed or insufficient nolint directives - stylecheck - https://staticcheck.io/docs/checks/#ST - keep style consistent - excluded: [ST1003 - Poorly chosen identifier](https://staticcheck.io/docs/checks/#ST1003) and [ST1005 - Incorrectly formatted error string](https://staticcheck.io/docs/checks/#ST1005) 2022-06-20 15:32:49 +05:30			`return err`
Encrypt migration credentials at rest (#15895) * encrypt migration credentials in task persistence Not sure this is the best approach, we could encrypt the entire `PayloadContent` instead. Also instead of clearing individual fields in payload content, we could just delete the task once it has (successfully) finished..? * remove credentials of past migrations * only run DB migration for completed tasks * fix binding * add omitempty * never serialize unencrypted credentials * fix import order Co-authored-by: techknowlogick <techknowlogick@gitea.io> Co-authored-by: zeripath <art27@cantab.net> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> 2021-05-31 13:55:47 +05:30			`}`

			`func removeCredentials(payload string) (string, error) {`
v180 migration should be standalone (#16151) Unfortunately the v180 migration picked up a few non-standalone dependencies. This PR forcibly copies the important parts back into the migration. Fix #16150 Signed-off-by: Andrew Thornton <art27@cantab.net> Co-authored-by: techknowlogick <techknowlogick@gitea.io> 2021-06-15 00:37:49 +05:30			`// MigrateOptions defines the way a repository gets migrated`
			`// this is for internal usage by migrations module and func who interact with it`
			`type MigrateOptions struct {`
			`// required: true`
			CloneAddr string `json:"clone_addr" binding:"Required"`
			CloneAddrEncrypted string `json:"clone_addr_encrypted,omitempty"`
			AuthUsername string `json:"auth_username"`
			AuthPassword string `json:"-"`
			AuthPasswordEncrypted string `json:"auth_password_encrypted,omitempty"`
			AuthToken string `json:"-"`
			AuthTokenEncrypted string `json:"auth_token_encrypted,omitempty"`
			`// required: true`
			UID int `json:"uid" binding:"Required"`
			`// required: true`
			RepoName string `json:"repo_name" binding:"Required"`
			Mirror bool `json:"mirror"`
			LFS bool `json:"lfs"`
			LFSEndpoint string `json:"lfs_endpoint"`
			Private bool `json:"private"`
			Description string `json:"description"`
			`OriginalURL string`
			`GitServiceType int`
			`Wiki bool`
			`Issues bool`
			`Milestones bool`
			`Labels bool`
			`Releases bool`
			`Comments bool`
			`PullRequests bool`
			`ReleaseAssets bool`
			`MigrateToRepoID int64`
			MirrorInterval string `json:"mirror_interval"`
			`}`

			`var opts MigrateOptions`
Encrypt migration credentials at rest (#15895) * encrypt migration credentials in task persistence Not sure this is the best approach, we could encrypt the entire `PayloadContent` instead. Also instead of clearing individual fields in payload content, we could just delete the task once it has (successfully) finished..? * remove credentials of past migrations * only run DB migration for completed tasks * fix binding * add omitempty * never serialize unencrypted credentials * fix import order Co-authored-by: techknowlogick <techknowlogick@gitea.io> Co-authored-by: zeripath <art27@cantab.net> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> 2021-05-31 13:55:47 +05:30			`err := json.Unmarshal([]byte(payload), &opts)`
			`if err != nil {`
			`return "", err`
			`}`

			`opts.AuthPassword = ""`
			`opts.AuthToken = ""`
Use a more general (and faster) method to sanitize URLs with credentials (#19239) Use a more general method to sanitize URLs with credentials: Simple and intuitive / Faster / Remove all credentials in all URLs 2022-03-31 07:55:40 +05:30			`opts.CloneAddr = util.SanitizeCredentialURLs(opts.CloneAddr)`
Encrypt migration credentials at rest (#15895) * encrypt migration credentials in task persistence Not sure this is the best approach, we could encrypt the entire `PayloadContent` instead. Also instead of clearing individual fields in payload content, we could just delete the task once it has (successfully) finished..? * remove credentials of past migrations * only run DB migration for completed tasks * fix binding * add omitempty * never serialize unencrypted credentials * fix import order Co-authored-by: techknowlogick <techknowlogick@gitea.io> Co-authored-by: zeripath <art27@cantab.net> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> 2021-05-31 13:55:47 +05:30
			`confBytes, err := json.Marshal(opts)`
			`if err != nil {`
			`return "", err`
			`}`
			`return string(confBytes), nil`
			`}`