2018-12-13 13:39:08 +05:30
|
|
|
# frozen_string_literal: true
|
|
|
|
|
|
2018-03-26 14:24:53 +05:30
|
|
|
# This class is used as a proxy for all outbounding http connection
|
|
|
|
|
# coming from callbacks, services and hooks. The direct use of the HTTParty
|
|
|
|
|
# is discouraged because it can lead to several security problems, like SSRF
|
|
|
|
|
# calling internal IP or services.
|
|
|
|
|
module Gitlab
|
|
|
|
|
class HTTP
|
2018-05-09 12:01:36 +05:30
|
|
|
BlockedUrlError = Class.new(StandardError)
|
2018-12-13 13:39:08 +05:30
|
|
|
RedirectionTooDeep = Class.new(StandardError)
|
2018-05-09 12:01:36 +05:30
|
|
|
|
2019-09-04 21:01:54 +05:30
|
|
|
HTTP_ERRORS = [
|
2019-09-30 21:07:59 +05:30
|
|
|
SocketError, OpenSSL::SSL::SSLError, OpenSSL::OpenSSLError,
|
|
|
|
|
Errno::ECONNRESET, Errno::ECONNREFUSED, Errno::EHOSTUNREACH,
|
|
|
|
|
Net::OpenTimeout, Net::ReadTimeout, Gitlab::HTTP::BlockedUrlError,
|
2019-09-04 21:01:54 +05:30
|
|
|
Gitlab::HTTP::RedirectionTooDeep
|
|
|
|
|
].freeze
|
|
|
|
|
|
2018-03-26 14:24:53 +05:30
|
|
|
include HTTParty # rubocop:disable Gitlab/HTTParty
|
|
|
|
|
|
2019-06-05 12:25:43 +05:30
|
|
|
connection_adapter HTTPConnectionAdapter
|
2018-12-13 13:39:08 +05:30
|
|
|
|
|
|
|
|
def self.perform_request(http_method, path, options, &block)
|
|
|
|
|
super
|
|
|
|
|
rescue HTTParty::RedirectionTooDeep
|
|
|
|
|
raise RedirectionTooDeep
|
|
|
|
|
end
|
2018-03-26 14:24:53 +05:30
|
|
|
end
|
|
|
|
|
end
|
