forgejo-federation/routers/private/internal.go

// Copyright 2017 The Gitea Authors. All rights reserved.
// Use of this source code is governed by a MIT-style
// license that can be found in the LICENSE file.

// Package private includes all internal routes. The package name internal is ideal but Golang is not allowed, so we use private as package name instead.
package private

import (
	"strings"

	"code.gitea.io/gitea/models"
	"code.gitea.io/gitea/modules/setting"

	macaron "gopkg.in/macaron.v1"
)

// CheckInternalToken check internal token is set
func CheckInternalToken(ctx *macaron.Context) {
	tokens := ctx.Req.Header.Get("Authorization")
	fields := strings.Fields(tokens)
	if len(fields) != 2 || fields[0] != "Bearer" || fields[1] != setting.InternalToken {
		ctx.Error(403)
	}
}

//GetRepositoryByOwnerAndName chainload to models.GetRepositoryByOwnerAndName
func GetRepositoryByOwnerAndName(ctx *macaron.Context) {
	//TODO use repo.Get(ctx *context.APIContext) ?
	ownerName := ctx.Params(":owner")
	repoName := ctx.Params(":repo")
	repo, err := models.GetRepositoryByOwnerAndName(ownerName, repoName)
	if err != nil {
		ctx.JSON(500, map[string]interface{}{
			"err": err.Error(),
		})
		return
	}
	ctx.JSON(200, repo)
}

//AccessLevel chainload to models.AccessLevel
func AccessLevel(ctx *macaron.Context) {
	repoID := ctx.ParamsInt64(":repoid")
	userID := ctx.ParamsInt64(":userid")
	repo, err := models.GetRepositoryByID(repoID)
	if err != nil {
		ctx.JSON(500, map[string]interface{}{
			"err": err.Error(),
		})
		return
	}
	al, err := models.AccessLevel(userID, repo)
	if err != nil {
		ctx.JSON(500, map[string]interface{}{
			"err": err.Error(),
		})
		return
	}
	ctx.JSON(200, al)
}

//CheckUnitUser chainload to models.CheckUnitUser
func CheckUnitUser(ctx *macaron.Context) {
	repoID := ctx.ParamsInt64(":repoid")
	userID := ctx.ParamsInt64(":userid")
	repo, err := models.GetRepositoryByID(repoID)
	if err != nil {
		ctx.JSON(500, map[string]interface{}{
			"err": err.Error(),
		})
		return
	}
	if repo.CheckUnitUser(userID, ctx.QueryBool("isAdmin"), models.UnitType(ctx.QueryInt("unitType"))) {
		ctx.PlainText(200, []byte("success"))
		return
	}
	ctx.PlainText(404, []byte("no access"))
}

// RegisterRoutes registers all internal APIs routes to web application.
// These APIs will be invoked by internal commands for example `gitea serv` and etc.
func RegisterRoutes(m *macaron.Macaron) {
	m.Group("/", func() {
		m.Get("/ssh/:id", GetPublicKeyByID)
		m.Get("/ssh/:id/user", GetUserByKeyID)
		m.Post("/ssh/:id/update", UpdatePublicKey)
		m.Post("/repositories/:repoid/keys/:keyid/update", UpdateDeployKey)
		m.Get("/repositories/:repoid/user/:userid/accesslevel", AccessLevel)
		m.Get("/repositories/:repoid/user/:userid/checkunituser", CheckUnitUser)
		m.Get("/repositories/:repoid/has-keys/:keyid", HasDeployKey)
		m.Post("/push/update", PushUpdate)
		m.Get("/protectedbranch/:pbid/:userid", CanUserPush)
		m.Get("/repo/:owner/:repo", GetRepositoryByOwnerAndName)
		m.Get("/branch/:id/*", GetProtectedBranchBy)
		m.Get("/repository/:rid", GetRepository)
		m.Get("/active-pull-request", GetActivePullRequest)
	}, CheckInternalToken)
}
Add internal routes for ssh hook comands (#1471) * add internal routes for ssh hook comands * fix lint * add comment on why package named private not internal but the route name is internal * add comment above package private why package named private not internal but the route name is internal * remove exp time on internal access * move routes from /internal to /api/internal * add comment and defer on UpdatePublicKeyUpdated 2017-04-19 09:15:01 +05:30			`// Copyright 2017 The Gitea Authors. All rights reserved.`
			`// Use of this source code is governed by a MIT-style`
			`// license that can be found in the LICENSE file.`

			`// Package private includes all internal routes. The package name internal is ideal but Golang is not allowed, so we use private as package name instead.`
			`package private`

			`import (`
			`"strings"`

			`"code.gitea.io/gitea/models"`
			`"code.gitea.io/gitea/modules/setting"`
Drop db operations from hook commands (#1514) * move all database operations from hook command to web command and instead of internal routes * bug fixed * adjust the import path sequences * remove unused return value on hookSetup 2017-05-04 11:12:02 +05:30
Add internal routes for ssh hook comands (#1471) * add internal routes for ssh hook comands * fix lint * add comment on why package named private not internal but the route name is internal * add comment above package private why package named private not internal but the route name is internal * remove exp time on internal access * move routes from /internal to /api/internal * add comment and defer on UpdatePublicKeyUpdated 2017-04-19 09:15:01 +05:30			`macaron "gopkg.in/macaron.v1"`
			`)`

			`// CheckInternalToken check internal token is set`
			`func CheckInternalToken(ctx *macaron.Context) {`
			`tokens := ctx.Req.Header.Get("Authorization")`
			`fields := strings.Fields(tokens)`
			`if len(fields) != 2 \|\| fields[0] != "Bearer" \|\| fields[1] != setting.InternalToken {`
			`ctx.Error(403)`
			`}`
			`}`

Make gitea serv use api/internal (#4886) * Start to move to internal/private * Add GetPublicKeyByID * Add HasDeployKey * Add private.UpdateDeployKeyUpdated * Add private.GetUserByKeyID * Add private.AccessLevel * Add private.CheckUnitUser * Fix mistakes I made * Some cleaning + moving code to separate files * Fix error handling * Remove useless error handling for setup * lint: fix comment on exported func * fix copyright header * Fix order of args 2018-10-30 11:50:13 +05:30			`//GetRepositoryByOwnerAndName chainload to models.GetRepositoryByOwnerAndName`
			`func GetRepositoryByOwnerAndName(ctx *macaron.Context) {`
			`//TODO use repo.Get(ctx *context.APIContext) ?`
			`ownerName := ctx.Params(":owner")`
			`repoName := ctx.Params(":repo")`
			`repo, err := models.GetRepositoryByOwnerAndName(ownerName, repoName)`
			`if err != nil {`
Add internal routes for ssh hook comands (#1471) * add internal routes for ssh hook comands * fix lint * add comment on why package named private not internal but the route name is internal * add comment above package private why package named private not internal but the route name is internal * remove exp time on internal access * move routes from /internal to /api/internal * add comment and defer on UpdatePublicKeyUpdated 2017-04-19 09:15:01 +05:30			`ctx.JSON(500, map[string]interface{}{`
			`"err": err.Error(),`
			`})`
			`return`
			`}`
Make gitea serv use api/internal (#4886) * Start to move to internal/private * Add GetPublicKeyByID * Add HasDeployKey * Add private.UpdateDeployKeyUpdated * Add private.GetUserByKeyID * Add private.AccessLevel * Add private.CheckUnitUser * Fix mistakes I made * Some cleaning + moving code to separate files * Fix error handling * Remove useless error handling for setup * lint: fix comment on exported func * fix copyright header * Fix order of args 2018-10-30 11:50:13 +05:30			`ctx.JSON(200, repo)`
			`}`

			`//AccessLevel chainload to models.AccessLevel`
			`func AccessLevel(ctx *macaron.Context) {`
			`repoID := ctx.ParamsInt64(":repoid")`
			`userID := ctx.ParamsInt64(":userid")`
			`repo, err := models.GetRepositoryByID(repoID)`
			`if err != nil {`
			`ctx.JSON(500, map[string]interface{}{`
			`"err": err.Error(),`
			`})`
			`return`
			`}`
			`al, err := models.AccessLevel(userID, repo)`
			`if err != nil {`
			`ctx.JSON(500, map[string]interface{}{`
			`"err": err.Error(),`
			`})`
			`return`
			`}`
			`ctx.JSON(200, al)`
			`}`
Add internal routes for ssh hook comands (#1471) * add internal routes for ssh hook comands * fix lint * add comment on why package named private not internal but the route name is internal * add comment above package private why package named private not internal but the route name is internal * remove exp time on internal access * move routes from /internal to /api/internal * add comment and defer on UpdatePublicKeyUpdated 2017-04-19 09:15:01 +05:30
Make gitea serv use api/internal (#4886) * Start to move to internal/private * Add GetPublicKeyByID * Add HasDeployKey * Add private.UpdateDeployKeyUpdated * Add private.GetUserByKeyID * Add private.AccessLevel * Add private.CheckUnitUser * Fix mistakes I made * Some cleaning + moving code to separate files * Fix error handling * Remove useless error handling for setup * lint: fix comment on exported func * fix copyright header * Fix order of args 2018-10-30 11:50:13 +05:30			`//CheckUnitUser chainload to models.CheckUnitUser`
			`func CheckUnitUser(ctx *macaron.Context) {`
			`repoID := ctx.ParamsInt64(":repoid")`
			`userID := ctx.ParamsInt64(":userid")`
			`repo, err := models.GetRepositoryByID(repoID)`
			`if err != nil {`
			`ctx.JSON(500, map[string]interface{}{`
			`"err": err.Error(),`
			`})`
			`return`
			`}`
			`if repo.CheckUnitUser(userID, ctx.QueryBool("isAdmin"), models.UnitType(ctx.QueryInt("unitType"))) {`
			`ctx.PlainText(200, []byte("success"))`
			`return`
			`}`
			`ctx.PlainText(404, []byte("no access"))`
Add internal routes for ssh hook comands (#1471) * add internal routes for ssh hook comands * fix lint * add comment on why package named private not internal but the route name is internal * add comment above package private why package named private not internal but the route name is internal * remove exp time on internal access * move routes from /internal to /api/internal * add comment and defer on UpdatePublicKeyUpdated 2017-04-19 09:15:01 +05:30			`}`

			`// RegisterRoutes registers all internal APIs routes to web application.`
			// These APIs will be invoked by internal commands for example `gitea serv` and etc.
			`func RegisterRoutes(m *macaron.Macaron) {`
			`m.Group("/", func() {`
Make gitea serv use api/internal (#4886) * Start to move to internal/private * Add GetPublicKeyByID * Add HasDeployKey * Add private.UpdateDeployKeyUpdated * Add private.GetUserByKeyID * Add private.AccessLevel * Add private.CheckUnitUser * Fix mistakes I made * Some cleaning + moving code to separate files * Fix error handling * Remove useless error handling for setup * lint: fix comment on exported func * fix copyright header * Fix order of args 2018-10-30 11:50:13 +05:30			`m.Get("/ssh/:id", GetPublicKeyByID)`
			`m.Get("/ssh/:id/user", GetUserByKeyID)`
Add internal routes for ssh hook comands (#1471) * add internal routes for ssh hook comands * fix lint * add comment on why package named private not internal but the route name is internal * add comment above package private why package named private not internal but the route name is internal * remove exp time on internal access * move routes from /internal to /api/internal * add comment and defer on UpdatePublicKeyUpdated 2017-04-19 09:15:01 +05:30			`m.Post("/ssh/:id/update", UpdatePublicKey)`
Make gitea serv use api/internal (#4886) * Start to move to internal/private * Add GetPublicKeyByID * Add HasDeployKey * Add private.UpdateDeployKeyUpdated * Add private.GetUserByKeyID * Add private.AccessLevel * Add private.CheckUnitUser * Fix mistakes I made * Some cleaning + moving code to separate files * Fix error handling * Remove useless error handling for setup * lint: fix comment on exported func * fix copyright header * Fix order of args 2018-10-30 11:50:13 +05:30			`m.Post("/repositories/:repoid/keys/:keyid/update", UpdateDeployKey)`
			`m.Get("/repositories/:repoid/user/:userid/accesslevel", AccessLevel)`
			`m.Get("/repositories/:repoid/user/:userid/checkunituser", CheckUnitUser)`
			`m.Get("/repositories/:repoid/has-keys/:keyid", HasDeployKey)`
Drop db operations from hook commands (#1514) * move all database operations from hook command to web command and instead of internal routes * bug fixed * adjust the import path sequences * remove unused return value on hookSetup 2017-05-04 11:12:02 +05:30			`m.Post("/push/update", PushUpdate)`
improve protected branch to add whitelist support (#2451) * improve protected branch to add whitelist support * fix lint * fix style check * fix tests * fix description on UI and import * fix test * bug fixed * fix tests and languages * move isSliceInt64Eq to util pkg; improve function names & typo 2017-09-14 13:46:22 +05:30			`m.Get("/protectedbranch/:pbid/:userid", CanUserPush)`
Make gitea serv use api/internal (#4886) * Start to move to internal/private * Add GetPublicKeyByID * Add HasDeployKey * Add private.UpdateDeployKeyUpdated * Add private.GetUserByKeyID * Add private.AccessLevel * Add private.CheckUnitUser * Fix mistakes I made * Some cleaning + moving code to separate files * Fix error handling * Remove useless error handling for setup * lint: fix comment on exported func * fix copyright header * Fix order of args 2018-10-30 11:50:13 +05:30			`m.Get("/repo/:owner/:repo", GetRepositoryByOwnerAndName)`
fix bug when push a branch name with / & fix an integration test bug (#1689) 2017-05-08 08:25:27 +05:30			`m.Get("/branch/:id/*", GetProtectedBranchBy)`
Give user a link to create PR after push (#4716) * Give user a link to create PR after push * Forks now create PR in the base repository + make sure PR creation is allowed * fix code style 2018-10-20 12:29:06 +05:30			`m.Get("/repository/:rid", GetRepository)`
			`m.Get("/active-pull-request", GetActivePullRequest)`
Add internal routes for ssh hook comands (#1471) * add internal routes for ssh hook comands * fix lint * add comment on why package named private not internal but the route name is internal * add comment above package private why package named private not internal but the route name is internal * remove exp time on internal access * move routes from /internal to /api/internal * add comment and defer on UpdatePublicKeyUpdated 2017-04-19 09:15:01 +05:30			`}, CheckInternalToken)`
			`}`