debian-mirror-gitlab/app/controllers/import/bitbucket_controller.rb

# frozen_string_literal: true

class Import::BitbucketController < Import::BaseController
  extend ::Gitlab::Utils::Override

  include ActionView::Helpers::SanitizeHelper

  before_action :verify_bitbucket_import_enabled
  before_action :bitbucket_auth, except: :callback

  rescue_from OAuth2::Error, with: :bitbucket_unauthorized
  rescue_from Bitbucket::Error::Unauthorized, with: :bitbucket_unauthorized

  def callback
    auth_state = session[:bitbucket_auth_state]
    session[:bitbucket_auth_state] = nil

    if auth_state.blank? || !ActiveSupport::SecurityUtils.secure_compare(auth_state, params[:state])
      go_to_bitbucket_for_permissions
    else
      response = oauth_client.auth_code.get_token(params[:code], redirect_uri: users_import_bitbucket_callback_url(namespace_id: params[:namespace_id]))

      session[:bitbucket_token]         = response.token
      session[:bitbucket_expires_at]    = response.expires_at
      session[:bitbucket_expires_in]    = response.expires_in
      session[:bitbucket_refresh_token] = response.refresh_token

      redirect_to status_import_bitbucket_url(namespace_id: params[:namespace_id])
    end
  end

  # We need to re-expose controller's internal method 'status' as action.
  # rubocop:disable Lint/UselessMethodDefinition
  def status
    super
  end
  # rubocop:enable Lint/UselessMethodDefinition

  def create
    bitbucket_client = Bitbucket::Client.new(credentials)

    repo_id = params[:repo_id].to_s
    name = repo_id.gsub('___', '/')
    repo = bitbucket_client.repo(name)
    project_name = params[:new_name].presence || repo.name

    repo_owner = repo.owner
    repo_owner = current_user.username if repo_owner == bitbucket_client.user.username
    namespace_path = params[:new_namespace].presence || repo_owner
    target_namespace = find_or_create_namespace(namespace_path, current_user)

    if current_user.can?(:create_projects, target_namespace)
      # The token in a session can be expired, we need to get most recent one because
      # Bitbucket::Connection class refreshes it.
      session[:bitbucket_token] = bitbucket_client.connection.token

      project = Gitlab::BitbucketImport::ProjectCreator.new(repo, project_name, target_namespace, current_user, credentials).execute

      if project.persisted?
        render json: ProjectSerializer.new.represent(project, serializer: :import)
      else
        render json: { errors: project_save_error(project) }, status: :unprocessable_entity
      end
    else
      render json: { errors: _('This namespace has already been taken! Please choose another one.') }, status: :unprocessable_entity
    end
  end

  protected

  override :importable_repos
  def importable_repos
    bitbucket_repos.filter { |repo| repo.valid? }
  end

  override :incompatible_repos
  def incompatible_repos
    bitbucket_repos.reject { |repo| repo.valid? }
  end

  def provider_url
    nil
  end

  override :provider_name
  def provider_name
    :bitbucket
  end

  private

  def oauth_client
    @oauth_client ||= OAuth2::Client.new(provider.app_id, provider.app_secret, options)
  end

  def provider
    Gitlab::Auth::OAuth::Provider.config_for('bitbucket')
  end

  def client
    @client ||= Bitbucket::Client.new(credentials)
  end

  def bitbucket_repos
    @bitbucket_repos ||= client.repos(filter: sanitized_filter_param).to_a
  end

  def options
    OmniAuth::Strategies::Bitbucket.default_options[:client_options].deep_symbolize_keys
  end

  def verify_bitbucket_import_enabled
    render_404 unless bitbucket_import_enabled?
  end

  def bitbucket_auth
    go_to_bitbucket_for_permissions if session[:bitbucket_token].blank?
  end

  def go_to_bitbucket_for_permissions
    state = SecureRandom.base64(64)
    session[:bitbucket_auth_state] = state
    redirect_to oauth_client.auth_code.authorize_url(redirect_uri: users_import_bitbucket_callback_url(namespace_id: params[:namespace_id]), state: state)
  end

  def bitbucket_unauthorized(exception)
    log_exception(exception)

    go_to_bitbucket_for_permissions
  end

  def credentials
    {
      token: session[:bitbucket_token],
      expires_at: session[:bitbucket_expires_at],
      expires_in: session[:bitbucket_expires_in],
      refresh_token: session[:bitbucket_refresh_token]
    }
  end
end
New upstream version 11.4.9+dfsg 2018-12-05 23:21:45 +05:30			`# frozen_string_literal: true`

Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`class Import::BitbucketController < Import::BaseController`
New upstream version 13.1.0 2020-06-23 00:09:42 +05:30			`extend ::Gitlab::Utils::Override`

New upstream version 12.4.6 2019-12-21 20:55:43 +05:30			`include ActionView::Helpers::SanitizeHelper`

Imported Upstream version 7.14.3 2015-09-11 14:41:01 +05:30			`before_action :verify_bitbucket_import_enabled`
			`before_action :bitbucket_auth, except: :callback`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`rescue_from OAuth2::Error, with: :bitbucket_unauthorized`
			`rescue_from Bitbucket::Error::Unauthorized, with: :bitbucket_unauthorized`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30
			`def callback`
New upstream version 14.10.4+ds1 2022-06-21 17:19:12 +05:30			`auth_state = session[:bitbucket_auth_state]`
			`session[:bitbucket_auth_state] = nil`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30
New upstream version 14.10.4+ds1 2022-06-21 17:19:12 +05:30			`if auth_state.blank? \|\| !ActiveSupport::SecurityUtils.secure_compare(auth_state, params[:state])`
			`go_to_bitbucket_for_permissions`
			`else`
New upstream version 15.2.2+ds1 2022-08-13 15:12:31 +05:30			`response = oauth_client.auth_code.get_token(params[:code], redirect_uri: users_import_bitbucket_callback_url(namespace_id: params[:namespace_id]))`
New upstream version 14.10.4+ds1 2022-06-21 17:19:12 +05:30
			`session[:bitbucket_token] = response.token`
			`session[:bitbucket_expires_at] = response.expires_at`
			`session[:bitbucket_expires_in] = response.expires_in`
			`session[:bitbucket_refresh_token] = response.refresh_token`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30
New upstream version 15.2.2+ds1 2022-08-13 15:12:31 +05:30			`redirect_to status_import_bitbucket_url(namespace_id: params[:namespace_id])`
New upstream version 14.10.4+ds1 2022-06-21 17:19:12 +05:30			`end`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`end`

New upstream version 15.0.4+ds1 2022-07-16 23:28:13 +05:30			`# We need to re-expose controller's internal method 'status' as action.`
			`# rubocop:disable Lint/UselessMethodDefinition`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`def status`
New upstream version 13.2.1 2020-07-28 23:09:34 +05:30			`super`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`end`
New upstream version 15.0.4+ds1 2022-07-16 23:28:13 +05:30			`# rubocop:enable Lint/UselessMethodDefinition`
New upstream version 13.1.0 2020-06-23 00:09:42 +05:30
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`def create`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`bitbucket_client = Bitbucket::Client.new(credentials)`

New upstream version 10.6.0+dfsg 2018-03-27 19:54:05 +05:30			`repo_id = params[:repo_id].to_s`
			`name = repo_id.gsub('___', '/')`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`repo = bitbucket_client.repo(name)`
New upstream version 10.6.0+dfsg 2018-03-27 19:54:05 +05:30			`project_name = params[:new_name].presence \|\| repo.name`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`repo_owner = repo.owner`
			`repo_owner = current_user.username if repo_owner == bitbucket_client.user.username`
			`namespace_path = params[:new_namespace].presence \|\| repo_owner`
New upstream version 10.6.0+dfsg 2018-03-27 19:54:05 +05:30			`target_namespace = find_or_create_namespace(namespace_path, current_user)`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30
New upstream version 10.6.0+dfsg 2018-03-27 19:54:05 +05:30			`if current_user.can?(:create_projects, target_namespace)`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`# The token in a session can be expired, we need to get most recent one because`
			`# Bitbucket::Connection class refreshes it.`
			`session[:bitbucket_token] = bitbucket_client.connection.token`
New upstream version 10.6.0+dfsg 2018-03-27 19:54:05 +05:30
			`project = Gitlab::BitbucketImport::ProjectCreator.new(repo, project_name, target_namespace, current_user, credentials).execute`

			`if project.persisted?`
New upstream version 13.1.0 2020-06-23 00:09:42 +05:30			`render json: ProjectSerializer.new.represent(project, serializer: :import)`
New upstream version 10.6.0+dfsg 2018-03-27 19:54:05 +05:30			`else`
New upstream version 11.1.8+dfsg 2018-11-08 19:23:39 +05:30			`render json: { errors: project_save_error(project) }, status: :unprocessable_entity`
New upstream version 10.6.0+dfsg 2018-03-27 19:54:05 +05:30			`end`
New upstream version 8.12.1+dfsg1 2016-09-29 09:46:39 +05:30			`else`
New upstream version 11.10.8+dfsg 2019-07-07 11:18:12 +05:30			`render json: { errors: _('This namespace has already been taken! Please choose another one.') }, status: :unprocessable_entity`
New upstream version 8.12.1+dfsg1 2016-09-29 09:46:39 +05:30			`end`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`end`

New upstream version 13.1.0 2020-06-23 00:09:42 +05:30			`protected`

			`override :importable_repos`
			`def importable_repos`
New upstream version 14.3.4+ds1 2021-11-11 11:23:49 +05:30			`bitbucket_repos.filter { \|repo\| repo.valid? }`
New upstream version 13.1.0 2020-06-23 00:09:42 +05:30			`end`

			`override :incompatible_repos`
			`def incompatible_repos`
			`bitbucket_repos.reject { \|repo\| repo.valid? }`
			`end`

New upstream version 15.2.2+ds1 2022-08-13 15:12:31 +05:30			`def provider_url`
			`nil`
			`end`

New upstream version 13.1.0 2020-06-23 00:09:42 +05:30			`override :provider_name`
			`def provider_name`
			`:bitbucket`
			`end`

Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`private`

New upstream version 13.1.0 2020-06-23 00:09:42 +05:30			`def oauth_client`
			`@oauth_client \|\|= OAuth2::Client.new(provider.app_id, provider.app_secret, options)`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`

			`def provider`
New upstream version 10.6.0+dfsg 2018-03-27 19:54:05 +05:30			`Gitlab::Auth::OAuth::Provider.config_for('bitbucket')`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`

New upstream version 13.1.0 2020-06-23 00:09:42 +05:30			`def client`
			`@client \|\|= Bitbucket::Client.new(credentials)`
			`end`

			`def bitbucket_repos`
			`@bitbucket_repos \|\|= client.repos(filter: sanitized_filter_param).to_a`
			`end`

New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`def options`
			`OmniAuth::Strategies::Bitbucket.default_options[:client_options].deep_symbolize_keys`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`end`

			`def verify_bitbucket_import_enabled`
Imported Upstream version 8.1.0 2015-10-24 18:46:33 +05:30			`render_404 unless bitbucket_import_enabled?`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`end`

			`def bitbucket_auth`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`go_to_bitbucket_for_permissions if session[:bitbucket_token].blank?`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`end`

			`def go_to_bitbucket_for_permissions`
New upstream version 14.10.4+ds1 2022-06-21 17:19:12 +05:30			`state = SecureRandom.base64(64)`
			`session[:bitbucket_auth_state] = state`
New upstream version 15.2.2+ds1 2022-08-13 15:12:31 +05:30			`redirect_to oauth_client.auth_code.authorize_url(redirect_uri: users_import_bitbucket_callback_url(namespace_id: params[:namespace_id]), state: state)`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`end`

New upstream version 14.5.2+ds1 2021-12-11 22:18:48 +05:30			`def bitbucket_unauthorized(exception)`
			`log_exception(exception)`

Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`go_to_bitbucket_for_permissions`
			`end`
Imported Upstream version 8.0.2 2015-09-25 12:07:36 +05:30
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`def credentials`
Imported Upstream version 8.0.2 2015-09-25 12:07:36 +05:30			`{`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`token: session[:bitbucket_token],`
			`expires_at: session[:bitbucket_expires_at],`
			`expires_in: session[:bitbucket_expires_in],`
			`refresh_token: session[:bitbucket_refresh_token]`
Imported Upstream version 8.0.2 2015-09-25 12:07:36 +05:30			`}`
			`end`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`end`