forgejo-federation/modules/middleware/context.go

256 lines
6.9 KiB
Go
Raw Normal View History

// Copyright 2014 The Gogs Authors. All rights reserved.
// Use of this source code is governed by a MIT-style
// license that can be found in the LICENSE file.
package middleware
import (
2014-03-15 18:47:16 +05:30
"fmt"
2014-03-22 23:14:02 +05:30
"html/template"
2014-04-15 21:57:29 +05:30
"io"
"net/http"
2014-03-23 02:10:09 +05:30
"strings"
2014-03-19 19:27:55 +05:30
"time"
2015-10-16 06:58:12 +05:30
"github.com/go-macaron/cache"
"github.com/go-macaron/csrf"
"github.com/go-macaron/i18n"
"github.com/go-macaron/session"
"gopkg.in/macaron.v1"
2014-03-21 18:36:47 +05:30
2015-12-16 03:55:45 +05:30
"github.com/gogits/git-module"
"github.com/gogits/gogs/models"
"github.com/gogits/gogs/modules/auth"
2014-03-21 19:01:47 +05:30
"github.com/gogits/gogs/modules/base"
"github.com/gogits/gogs/modules/log"
2014-05-26 05:41:25 +05:30
"github.com/gogits/gogs/modules/setting"
)
2015-08-26 22:00:06 +05:30
type RepoContext struct {
AccessMode models.AccessMode
IsWatching bool
IsViewBranch bool
IsViewTag bool
IsViewCommit bool
2015-08-26 22:00:06 +05:30
Repository *models.Repository
Owner *models.User
Commit *git.Commit
Tag *git.Tag
GitRepo *git.Repository
BranchName string
TagName string
TreeName string
2015-08-31 12:54:28 +05:30
CommitID string
2015-08-26 22:00:06 +05:30
RepoLink string
CloneLink models.CloneLink
CommitsCount int64
2015-08-26 22:00:06 +05:30
Mirror *models.Mirror
}
2014-03-15 18:47:16 +05:30
// Context represents context of a request.
type Context struct {
2014-07-26 09:54:27 +05:30
*macaron.Context
Cache cache.Cache
csrf csrf.CSRF
2014-07-26 09:54:27 +05:30
Flash *session.Flash
Session session.Store
2014-11-18 21:37:16 +05:30
User *models.User
IsSigned bool
IsBasicAuth bool
2014-03-15 21:33:23 +05:30
2015-11-27 12:20:38 +05:30
Repo *RepoContext
2014-08-14 11:42:21 +05:30
Org struct {
IsOwner bool
IsMember bool
2016-01-31 18:58:42 +05:30
IsTeamMember bool // Is member of team.
IsTeamAdmin bool // In owner team or team that has admin permission level.
2014-08-14 11:42:21 +05:30
Organization *models.User
OrgLink string
Team *models.Team
2014-08-14 11:42:21 +05:30
}
}
// IsOwner returns true if current user is the owner of repository.
2015-11-27 12:20:38 +05:30
func (r *RepoContext) IsOwner() bool {
return r.AccessMode >= models.ACCESS_MODE_OWNER
}
// IsAdmin returns true if current user has admin or higher access of repository.
2015-11-27 12:20:38 +05:30
func (r *RepoContext) IsAdmin() bool {
return r.AccessMode >= models.ACCESS_MODE_ADMIN
}
// IsWriter returns true if current user has write or higher access of repository.
func (r *RepoContext) IsWriter() bool {
2015-11-27 12:20:38 +05:30
return r.AccessMode >= models.ACCESS_MODE_WRITE
}
// HasAccess returns true if the current user has at least read access for this repository
2015-11-27 12:20:38 +05:30
func (r *RepoContext) HasAccess() bool {
return r.AccessMode >= models.ACCESS_MODE_READ
}
2014-05-05 22:38:01 +05:30
// HasError returns true if error occurs in form validation.
func (ctx *Context) HasApiError() bool {
hasErr, ok := ctx.Data["HasError"]
if !ok {
return false
}
return hasErr.(bool)
}
func (ctx *Context) GetErrMsg() string {
return ctx.Data["ErrorMsg"].(string)
}
2014-03-15 20:22:14 +05:30
// HasError returns true if error occurs in form validation.
func (ctx *Context) HasError() bool {
hasErr, ok := ctx.Data["HasError"]
if !ok {
return false
}
2014-04-14 03:42:07 +05:30
ctx.Flash.ErrorMsg = ctx.Data["ErrorMsg"].(string)
ctx.Data["Flash"] = ctx.Flash
2014-03-15 20:22:14 +05:30
return hasErr.(bool)
}
2015-07-08 17:17:56 +05:30
// HasValue returns true if value of given name exists.
func (ctx *Context) HasValue(name string) bool {
_, ok := ctx.Data[name]
return ok
}
2014-08-02 23:17:33 +05:30
// HTML calls Context.HTML and converts template name to string.
2014-07-26 09:54:27 +05:30
func (ctx *Context) HTML(status int, name base.TplName) {
log.Debug("Template: %s", name)
2014-08-02 23:17:33 +05:30
ctx.Context.HTML(status, string(name))
2014-03-20 17:20:26 +05:30
}
2014-03-15 20:22:14 +05:30
// RenderWithErr used for page has form validation but need to prompt error to users.
2014-07-26 09:54:27 +05:30
func (ctx *Context) RenderWithErr(msg string, tpl base.TplName, form interface{}) {
2014-04-04 01:20:55 +05:30
if form != nil {
auth.AssignForm(form, ctx.Data)
}
2014-04-11 02:06:50 +05:30
ctx.Flash.ErrorMsg = msg
ctx.Data["Flash"] = ctx.Flash
2014-03-20 17:20:26 +05:30
ctx.HTML(200, tpl)
2014-03-15 20:22:14 +05:30
}
2014-03-15 18:47:16 +05:30
// Handle handles and logs error by given status.
func (ctx *Context) Handle(status int, title string, err error) {
2014-05-02 04:23:41 +05:30
if err != nil {
2014-07-26 09:54:27 +05:30
log.Error(4, "%s: %v", title, err)
if macaron.Env != macaron.PROD {
2014-05-02 04:23:41 +05:30
ctx.Data["ErrorMsg"] = err
}
2014-03-19 14:18:45 +05:30
}
2014-05-02 04:23:41 +05:30
switch status {
case 404:
ctx.Data["Title"] = "Page Not Found"
case 500:
ctx.Data["Title"] = "Internal Server Error"
}
ctx.HTML(status, base.TplName(fmt.Sprintf("status/%d", status)))
}
func (ctx *Context) HandleText(status int, title string) {
2015-07-08 17:17:56 +05:30
if (status/100 == 4) || (status/100 == 5) {
log.Error(4, "%s", title)
}
2015-10-16 06:58:12 +05:30
ctx.PlainText(status, []byte(title))
}
2015-10-09 06:06:07 +05:30
// APIError logs error with title if status is 500.
func (ctx *Context) APIError(status int, title string, obj interface{}) {
var message string
if err, ok := obj.(error); ok {
message = err.Error()
} else {
message = obj.(string)
}
2015-10-09 06:06:07 +05:30
if status == 500 {
log.Error(4, "%s: %s", title, message)
}
ctx.JSON(status, map[string]string{
"message": message,
2015-10-09 06:06:07 +05:30
"url": base.DOC_URL,
})
}
2014-04-15 21:57:29 +05:30
func (ctx *Context) ServeContent(name string, r io.ReadSeeker, params ...interface{}) {
modtime := time.Now()
for _, p := range params {
switch v := p.(type) {
case time.Time:
modtime = v
}
}
2014-07-26 09:54:27 +05:30
ctx.Resp.Header().Set("Content-Description", "File Transfer")
ctx.Resp.Header().Set("Content-Type", "application/octet-stream")
ctx.Resp.Header().Set("Content-Disposition", "attachment; filename="+name)
ctx.Resp.Header().Set("Content-Transfer-Encoding", "binary")
ctx.Resp.Header().Set("Expires", "0")
ctx.Resp.Header().Set("Cache-Control", "must-revalidate")
ctx.Resp.Header().Set("Pragma", "public")
2014-10-19 08:56:55 +05:30
http.ServeContent(ctx.Resp, ctx.Req.Request, name, modtime, r)
2014-04-11 00:07:43 +05:30
}
2014-07-26 09:54:27 +05:30
// Contexter initializes a classic context for a request.
func Contexter() macaron.Handler {
return func(c *macaron.Context, l i18n.Locale, cache cache.Cache, sess session.Store, f *session.Flash, x csrf.CSRF) {
ctx := &Context{
2014-07-26 09:54:27 +05:30
Context: c,
Cache: cache,
csrf: x,
2014-07-26 09:54:27 +05:30
Flash: f,
Session: sess,
2015-12-05 03:50:23 +05:30
Repo: &RepoContext{},
}
2014-07-26 09:54:27 +05:30
// Compute current URL for real-time change language.
2015-11-14 03:13:43 +05:30
ctx.Data["Link"] = setting.AppSubUrl + strings.TrimSuffix(ctx.Req.URL.Path, "/")
2014-04-11 00:07:43 +05:30
2014-07-26 09:54:27 +05:30
ctx.Data["PageStartTime"] = time.Now()
2014-03-22 18:19:53 +05:30
// Get user from session if logined.
ctx.User, ctx.IsBasicAuth = auth.SignedInUser(ctx.Context, ctx.Session)
2014-11-08 01:16:13 +05:30
2014-07-26 09:54:27 +05:30
if ctx.User != nil {
ctx.IsSigned = true
ctx.Data["IsSigned"] = ctx.IsSigned
ctx.Data["SignedUser"] = ctx.User
2015-08-19 20:44:57 +05:30
ctx.Data["SignedUserID"] = ctx.User.Id
2014-11-07 08:36:41 +05:30
ctx.Data["SignedUserName"] = ctx.User.Name
2014-03-20 17:32:14 +05:30
ctx.Data["IsAdmin"] = ctx.User.IsAdmin
2014-11-07 08:36:41 +05:30
} else {
2015-08-19 20:44:57 +05:30
ctx.Data["SignedUserID"] = 0
2014-11-07 08:36:41 +05:30
ctx.Data["SignedUserName"] = ""
2014-03-15 18:20:17 +05:30
}
2014-07-24 18:49:59 +05:30
// If request sends files, parse them here otherwise the Query() can't be parsed and the CsrfToken will be invalid.
2014-07-26 09:54:27 +05:30
if ctx.Req.Method == "POST" && strings.Contains(ctx.Req.Header.Get("Content-Type"), "multipart/form-data") {
if err := ctx.Req.ParseMultipartForm(setting.AttachmentMaxSize << 20); err != nil && !strings.Contains(err.Error(), "EOF") { // 32MB max size
ctx.Handle(500, "ParseMultipartForm", err)
2014-07-24 18:49:59 +05:30
return
}
}
ctx.Data["CsrfToken"] = x.GetToken()
ctx.Data["CsrfTokenHtml"] = template.HTML(`<input type="hidden" name="_csrf" value="` + x.GetToken() + `">`)
log.Debug("Session ID: %s", sess.ID())
log.Debug("CSRF Token: %v", ctx.Data["CsrfToken"])
2014-03-19 19:27:55 +05:30
2015-02-07 07:46:23 +05:30
ctx.Data["ShowRegistrationButton"] = setting.Service.ShowRegistrationButton
ctx.Data["ShowFooterBranding"] = setting.ShowFooterBranding
ctx.Data["ShowFooterVersion"] = setting.ShowFooterVersion
2015-02-07 07:46:23 +05:30
c.Map(ctx)
}
}