debian-mirror-gitlab/lib/gitlab/url_sanitizer.rb

# frozen_string_literal: true

module Gitlab
  class UrlSanitizer
    ALLOWED_SCHEMES = %w[http https ssh git].freeze
    ALLOWED_WEB_SCHEMES = %w[http https].freeze

    def self.sanitize(content)
      regexp = URI::DEFAULT_PARSER.make_regexp(ALLOWED_SCHEMES)

      content.gsub(regexp) { |url| new(url).masked_url }
    rescue Addressable::URI::InvalidURIError
      content.gsub(regexp, '')
    end

    def self.valid?(url, allowed_schemes: ALLOWED_SCHEMES)
      return false unless url.present?
      return false unless url.is_a?(String)

      uri = Addressable::URI.parse(url.strip)

      allowed_schemes.include?(uri.scheme)
    rescue Addressable::URI::InvalidURIError
      false
    end

    def self.valid_web?(url)
      valid?(url, allowed_schemes: ALLOWED_WEB_SCHEMES)
    end

    def initialize(url, credentials: nil)
      %i[user password].each do |symbol|
        credentials[symbol] = credentials[symbol].presence if credentials&.key?(symbol)
      end

      @credentials = credentials
      @url = parse_url(url)
    end

    def sanitized_url
      @sanitized_url ||= safe_url.to_s
    end

    def masked_url
      url = @url.dup
      url.password = "*****" if url.password.present?
      url.user = "*****" if url.user.present?
      url.to_s
    end

    def credentials
      @credentials ||= { user: @url.user.presence, password: @url.password.presence }
    end

    def user
      credentials[:user]
    end

    def full_url
      @full_url ||= generate_full_url.to_s
    end

    private

    def parse_url(url)
      url             = url.to_s.strip
      match           = url.match(%r{\A(?:git|ssh|http(?:s?))\://(?:(.+)(?:@))?(.+)})
      raw_credentials = match[1] if match

      if raw_credentials.present?
        url.sub!("#{raw_credentials}@", '')

        user, _, password = raw_credentials.partition(':')
        @credentials ||= { user: user.presence, password: password.presence }
      end

      url = Addressable::URI.parse(url)
      url.password = password if password.present?
      url.user = user if user.present?
      url
    end

    def generate_full_url
      return @url unless valid_credentials?

      @url.dup.tap do |generated|
        generated.password = encode_percent(credentials[:password]) if credentials[:password].present?
        generated.user = encode_percent(credentials[:user]) if credentials[:user].present?
      end
    end

    def safe_url
      safe_url = @url.dup
      safe_url.password = nil
      safe_url.user = nil
      safe_url
    end

    def valid_credentials?
      credentials && credentials.is_a?(Hash) && credentials.any?
    end

    def encode_percent(string)
      # CGI.escape converts spaces to +, but this doesn't work for git clone
      CGI.escape(string).gsub('+', '%20')
    end
  end
end
New upstream version 11.5.3+dfsg 2018-12-13 13:39:08 +05:30			`# frozen_string_literal: true`

Imported Upstream version 8.8.2+dfsg 2016-06-02 11:05:42 +05:30			`module Gitlab`
			`class UrlSanitizer`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`ALLOWED_SCHEMES = %w[http https ssh git].freeze`
New upstream version 13.0.3 2020-05-30 21:06:31 +05:30			`ALLOWED_WEB_SCHEMES = %w[http https].freeze`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30
Imported Upstream version 8.8.2+dfsg 2016-06-02 11:05:42 +05:30			`def self.sanitize(content)`
New upstream version 11.4.9+dfsg 2018-12-05 23:21:45 +05:30			`regexp = URI::DEFAULT_PARSER.make_regexp(ALLOWED_SCHEMES)`
Imported Upstream version 8.8.2+dfsg 2016-06-02 11:05:42 +05:30
			`content.gsub(regexp) { \|url\| new(url).masked_url }`
Imported Upstream version 8.10.5+dfsg 2016-08-24 12:49:21 +05:30			`rescue Addressable::URI::InvalidURIError`
			`content.gsub(regexp, '')`
			`end`

New upstream version 13.0.3 2020-05-30 21:06:31 +05:30			`def self.valid?(url, allowed_schemes: ALLOWED_SCHEMES)`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`return false unless url.present?`
New upstream version 11.7.5 2019-02-15 15:39:39 +05:30			`return false unless url.is_a?(String)`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`uri = Addressable::URI.parse(url.strip)`
Imported Upstream version 8.10.5+dfsg 2016-08-24 12:49:21 +05:30
New upstream version 13.0.3 2020-05-30 21:06:31 +05:30			`allowed_schemes.include?(uri.scheme)`
Imported Upstream version 8.10.5+dfsg 2016-08-24 12:49:21 +05:30			`rescue Addressable::URI::InvalidURIError`
			`false`
Imported Upstream version 8.8.2+dfsg 2016-06-02 11:05:42 +05:30			`end`

New upstream version 13.0.3 2020-05-30 21:06:31 +05:30			`def self.valid_web?(url)`
			`valid?(url, allowed_schemes: ALLOWED_WEB_SCHEMES)`
			`end`

Imported Upstream version 8.8.2+dfsg 2016-06-02 11:05:42 +05:30			`def initialize(url, credentials: nil)`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`%i[user password].each do \|symbol\|`
			`credentials[symbol] = credentials[symbol].presence if credentials&.key?(symbol)`
			`end`

Imported Upstream version 8.8.2+dfsg 2016-06-02 11:05:42 +05:30			`@credentials = credentials`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`@url = parse_url(url)`
Imported Upstream version 8.8.2+dfsg 2016-06-02 11:05:42 +05:30			`end`

			`def sanitized_url`
			`@sanitized_url \|\|= safe_url.to_s`
			`end`

			`def masked_url`
			`url = @url.dup`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`url.password = "*****" if url.password.present?`
			`url.user = "*****" if url.user.present?`
Imported Upstream version 8.8.2+dfsg 2016-06-02 11:05:42 +05:30			`url.to_s`
			`end`

			`def credentials`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`@credentials \|\|= { user: @url.user.presence, password: @url.password.presence }`
Imported Upstream version 8.8.2+dfsg 2016-06-02 11:05:42 +05:30			`end`

New upstream version 11.11.7+dfsg 2019-07-31 22:56:46 +05:30			`def user`
			`credentials[:user]`
			`end`

Imported Upstream version 8.8.2+dfsg 2016-06-02 11:05:42 +05:30			`def full_url`
			`@full_url \|\|= generate_full_url.to_s`
			`end`

			`private`

New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`def parse_url(url)`
			`url = url.to_s.strip`
			`match = url.match(%r{\A(?:git\|ssh\|http(?:s?))\://(?:(.+)(?:@))?(.+)})`
			`raw_credentials = match[1] if match`

			`if raw_credentials.present?`
			`url.sub!("#{raw_credentials}@", '')`

New upstream version 11.2.8+dfsg 2018-11-18 11:00:15 +05:30			`user, _, password = raw_credentials.partition(':')`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`@credentials \|\|= { user: user.presence, password: password.presence }`
			`end`

			`url = Addressable::URI.parse(url)`
			`url.password = password if password.present?`
			`url.user = user if user.present?`
			`url`
			`end`

Imported Upstream version 8.8.2+dfsg 2016-06-02 11:05:42 +05:30			`def generate_full_url`
			`return @url unless valid_credentials?`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30
New upstream version 11.2.8+dfsg 2018-11-18 11:00:15 +05:30			`@url.dup.tap do \|generated\|`
			`generated.password = encode_percent(credentials[:password]) if credentials[:password].present?`
			`generated.user = encode_percent(credentials[:user]) if credentials[:user].present?`
			`end`
Imported Upstream version 8.8.2+dfsg 2016-06-02 11:05:42 +05:30			`end`

			`def safe_url`
			`safe_url = @url.dup`
			`safe_url.password = nil`
			`safe_url.user = nil`
			`safe_url`
			`end`

			`def valid_credentials?`
			`credentials && credentials.is_a?(Hash) && credentials.any?`
			`end`
New upstream version 11.2.8+dfsg 2018-11-18 11:00:15 +05:30
			`def encode_percent(string)`
			`# CGI.escape converts spaces to +, but this doesn't work for git clone`
			`CGI.escape(string).gsub('+', '%20')`
			`end`
Imported Upstream version 8.8.2+dfsg 2016-06-02 11:05:42 +05:30			`end`
			`end`