forgejo-federation/modules/middleware/repo.go

465 lines
12 KiB
Go
Raw Normal View History

2014-03-15 21:33:23 +05:30
// Copyright 2014 The Gogs Authors. All rights reserved.
// Use of this source code is governed by a MIT-style
// license that can be found in the LICENSE file.
package middleware
import (
2014-03-16 11:58:24 +05:30
"errors"
2014-03-20 09:42:33 +05:30
"fmt"
2014-05-06 05:28:13 +05:30
"net/url"
2014-03-17 14:17:42 +05:30
"strings"
2014-03-16 11:58:24 +05:30
2014-07-26 09:54:27 +05:30
"github.com/Unknwon/macaron"
2014-03-15 21:33:23 +05:30
"github.com/gogits/gogs/models"
2014-11-15 03:41:30 +05:30
"github.com/gogits/gogs/modules/base"
2014-07-26 09:54:27 +05:30
"github.com/gogits/gogs/modules/git"
2014-04-11 09:31:38 +05:30
"github.com/gogits/gogs/modules/log"
2014-05-26 05:41:25 +05:30
"github.com/gogits/gogs/modules/setting"
2014-03-15 21:33:23 +05:30
)
func ApiRepoAssignment() macaron.Handler {
return func(ctx *Context) {
userName := ctx.Params(":username")
repoName := ctx.Params(":reponame")
var (
u *models.User
err error
)
// Collaborators who have write access can be seen as owners.
if ctx.IsSigned {
ctx.Repo.IsOwner, err = models.HasAccess(ctx.User.Name, userName+"/"+repoName, models.WRITABLE)
if err != nil {
2014-11-15 03:41:30 +05:30
ctx.JSON(500, &base.ApiJsonErr{"HasAccess: " + err.Error(), base.DOC_URL})
return
}
ctx.Repo.IsTrueOwner = ctx.User.LowerName == strings.ToLower(userName)
}
if !ctx.Repo.IsTrueOwner {
u, err = models.GetUserByName(userName)
if err != nil {
if err == models.ErrUserNotExist {
ctx.Error(404)
} else {
2014-11-15 03:41:30 +05:30
ctx.JSON(500, &base.ApiJsonErr{"GetUserByName: " + err.Error(), base.DOC_URL})
}
return
}
} else {
u = ctx.User
}
ctx.Repo.Owner = u
// Organization owner team members are true owners as well.
if ctx.IsSigned && ctx.Repo.Owner.IsOrganization() && ctx.Repo.Owner.IsOwnedBy(ctx.User.Id) {
ctx.Repo.IsTrueOwner = true
}
// Get repository.
repo, err := models.GetRepositoryByName(u.Id, repoName)
if err != nil {
if err == models.ErrRepoNotExist {
ctx.Error(404)
return
}
2014-11-15 03:41:30 +05:30
ctx.JSON(500, &base.ApiJsonErr{"GetRepositoryByName: " + err.Error(), base.DOC_URL})
return
} else if err = repo.GetOwner(); err != nil {
2014-11-15 03:41:30 +05:30
ctx.JSON(500, &base.ApiJsonErr{"GetOwner: " + err.Error(), base.DOC_URL})
return
}
// Check if the mirror repository owner(mirror repository doesn't have access).
if ctx.IsSigned && !ctx.Repo.IsOwner {
if repo.OwnerId == ctx.User.Id {
ctx.Repo.IsOwner = true
}
// Check if current user has admin permission to repository.
if u.IsOrganization() {
auth, err := models.GetHighestAuthorize(u.Id, ctx.User.Id, repo.Id, 0)
if err != nil {
2014-11-15 03:41:30 +05:30
ctx.JSON(500, &base.ApiJsonErr{"GetHighestAuthorize: " + err.Error(), base.DOC_URL})
return
}
if auth == models.ORG_ADMIN {
ctx.Repo.IsOwner = true
ctx.Repo.IsAdmin = true
}
}
}
// Check access.
if repo.IsPrivate && !ctx.Repo.IsOwner {
if ctx.User == nil {
ctx.Error(404)
return
}
hasAccess, err := models.HasAccess(ctx.User.Name, ctx.Repo.Owner.Name+"/"+repo.Name, models.READABLE)
if err != nil {
2014-11-15 03:41:30 +05:30
ctx.JSON(500, &base.ApiJsonErr{"HasAccess: " + err.Error(), base.DOC_URL})
return
} else if !hasAccess {
ctx.Error(404)
return
}
}
ctx.Repo.HasAccess = true
ctx.Repo.Repository = repo
}
}
2014-11-07 08:36:41 +05:30
// RepoRef handles repository reference name including those contain `/`.
func RepoRef() macaron.Handler {
return func(ctx *Context) {
var (
refName string
err error
)
2014-11-17 08:02:26 +05:30
// For API calls.
if ctx.Repo.GitRepo == nil {
repoPath := models.RepoPath(ctx.Repo.Owner.Name, ctx.Repo.Repository.Name)
gitRepo, err := git.OpenRepository(repoPath)
if err != nil {
ctx.Handle(500, "RepoRef Invalid repo "+repoPath, err)
return
}
ctx.Repo.GitRepo = gitRepo
}
2014-11-07 08:36:41 +05:30
// Get default branch.
if len(ctx.Params("*")) == 0 {
refName = ctx.Repo.Repository.DefaultBranch
if !ctx.Repo.GitRepo.IsBranchExist(refName) {
brs, err := ctx.Repo.GitRepo.GetBranches()
if err != nil {
ctx.Handle(500, "GetBranches", err)
return
}
refName = brs[0]
}
ctx.Repo.Commit, err = ctx.Repo.GitRepo.GetCommitOfBranch(refName)
if err != nil {
ctx.Handle(500, "GetCommitOfBranch", err)
return
}
ctx.Repo.CommitId = ctx.Repo.Commit.Id.String()
ctx.Repo.IsBranch = true
} else {
hasMatched := false
parts := strings.Split(ctx.Params("*"), "/")
for i, part := range parts {
refName = strings.TrimPrefix(refName+"/"+part, "/")
if ctx.Repo.GitRepo.IsBranchExist(refName) ||
ctx.Repo.GitRepo.IsTagExist(refName) {
if i < len(parts)-1 {
ctx.Repo.TreeName = strings.Join(parts[i+1:], "/")
}
hasMatched = true
break
}
}
if !hasMatched && len(parts[0]) == 40 {
refName = parts[0]
ctx.Repo.TreeName = strings.Join(parts[1:], "/")
}
if ctx.Repo.GitRepo.IsBranchExist(refName) {
ctx.Repo.IsBranch = true
ctx.Repo.Commit, err = ctx.Repo.GitRepo.GetCommitOfBranch(refName)
if err != nil {
ctx.Handle(500, "GetCommitOfBranch", err)
return
}
ctx.Repo.CommitId = ctx.Repo.Commit.Id.String()
} else if ctx.Repo.GitRepo.IsTagExist(refName) {
ctx.Repo.IsTag = true
ctx.Repo.Commit, err = ctx.Repo.GitRepo.GetCommitOfTag(refName)
if err != nil {
ctx.Handle(500, "GetCommitOfTag", err)
return
}
ctx.Repo.CommitId = ctx.Repo.Commit.Id.String()
} else if len(refName) == 40 {
ctx.Repo.IsCommit = true
ctx.Repo.CommitId = refName
ctx.Repo.Commit, err = ctx.Repo.GitRepo.GetCommit(refName)
if err != nil {
ctx.Handle(404, "GetCommit", nil)
return
}
} else {
ctx.Handle(404, "RepoRef invalid repo", fmt.Errorf("branch or tag not exist: %s", refName))
return
}
}
ctx.Repo.BranchName = refName
ctx.Data["BranchName"] = ctx.Repo.BranchName
ctx.Data["CommitId"] = ctx.Repo.CommitId
ctx.Data["IsBranch"] = ctx.Repo.IsBranch
ctx.Data["IsTag"] = ctx.Repo.IsTag
ctx.Data["IsCommit"] = ctx.Repo.IsCommit
ctx.Repo.CommitsCount, err = ctx.Repo.Commit.CommitsCount()
if err != nil {
ctx.Handle(500, "CommitsCount", err)
return
}
ctx.Data["CommitsCount"] = ctx.Repo.CommitsCount
}
}
2014-07-26 09:54:27 +05:30
func RepoAssignment(redirect bool, args ...bool) macaron.Handler {
return func(ctx *Context) {
2014-08-14 11:42:21 +05:30
var (
displayBare bool // To display bare page if it is a bare repo.
)
2014-03-30 11:00:17 +05:30
if len(args) >= 1 {
2014-11-07 08:36:41 +05:30
displayBare = args[0]
2014-03-30 11:00:17 +05:30
}
2014-03-15 21:33:23 +05:30
var (
2014-07-26 09:54:27 +05:30
u *models.User
err error
2014-03-15 21:33:23 +05:30
)
2014-07-26 09:54:27 +05:30
userName := ctx.Params(":username")
repoName := ctx.Params(":reponame")
refName := ctx.Params(":branchname")
if len(refName) == 0 {
refName = ctx.Params(":path")
}
2014-05-08 21:54:11 +05:30
// Collaborators who have write access can be seen as owners.
if ctx.IsSigned {
2014-06-25 10:14:48 +05:30
ctx.Repo.IsOwner, err = models.HasAccess(ctx.User.Name, userName+"/"+repoName, models.WRITABLE)
2014-05-08 21:54:11 +05:30
if err != nil {
2014-07-26 09:54:27 +05:30
ctx.Handle(500, "HasAccess", err)
2014-05-08 21:54:11 +05:30
return
}
ctx.Repo.IsTrueOwner = ctx.User.LowerName == strings.ToLower(userName)
2014-05-08 21:54:11 +05:30
}
2014-03-15 21:33:23 +05:30
if !ctx.Repo.IsTrueOwner {
2014-07-26 09:54:27 +05:30
u, err = models.GetUserByName(userName)
2014-03-15 21:33:23 +05:30
if err != nil {
2014-04-30 13:14:28 +05:30
if err == models.ErrUserNotExist {
2014-07-26 09:54:27 +05:30
ctx.Handle(404, "GetUserByName", err)
2014-04-30 13:14:28 +05:30
} else if redirect {
log.Error(4, "GetUserByName", err)
2014-09-20 05:41:34 +05:30
ctx.Redirect(setting.AppSubUrl + "/")
2014-08-14 11:42:21 +05:30
} else {
ctx.Handle(500, "GetUserByName", err)
2014-03-15 21:33:23 +05:30
}
return
}
} else {
2014-07-26 09:54:27 +05:30
u = ctx.User
2014-03-15 21:33:23 +05:30
}
2014-07-26 09:54:27 +05:30
if u == nil {
2014-03-15 21:33:23 +05:30
if redirect {
2014-09-20 05:41:34 +05:30
ctx.Redirect(setting.AppSubUrl + "/")
2014-03-15 21:33:23 +05:30
return
}
2014-07-26 09:54:27 +05:30
ctx.Handle(404, "RepoAssignment", errors.New("invliad user account for single repository"))
2014-03-15 21:33:23 +05:30
return
}
2014-07-26 09:54:27 +05:30
ctx.Repo.Owner = u
2014-03-15 21:33:23 +05:30
// Organization owner team members are true owners as well.
if ctx.IsSigned && ctx.Repo.Owner.IsOrganization() && ctx.Repo.Owner.IsOwnedBy(ctx.User.Id) {
ctx.Repo.IsTrueOwner = true
}
// Get repository.
2014-07-26 09:54:27 +05:30
repo, err := models.GetRepositoryByName(u.Id, repoName)
2014-03-15 21:33:23 +05:30
if err != nil {
2014-03-28 06:45:53 +05:30
if err == models.ErrRepoNotExist {
2014-07-26 09:54:27 +05:30
ctx.Handle(404, "GetRepositoryByName", err)
2014-04-12 07:17:39 +05:30
return
2014-03-28 06:45:53 +05:30
} else if redirect {
2014-09-20 05:41:34 +05:30
ctx.Redirect(setting.AppSubUrl + "/")
2014-03-15 21:33:23 +05:30
return
}
2014-07-26 09:54:27 +05:30
ctx.Handle(500, "GetRepositoryByName", err)
return
} else if err = repo.GetOwner(); err != nil {
ctx.Handle(500, "GetOwner", err)
return
}
2014-04-12 07:17:39 +05:30
2014-05-14 04:56:13 +05:30
// Check if the mirror repository owner(mirror repository doesn't have access).
if ctx.IsSigned && !ctx.Repo.IsOwner {
if repo.OwnerId == ctx.User.Id {
ctx.Repo.IsOwner = true
}
// Check if current user has admin permission to repository.
if u.IsOrganization() {
2014-09-13 07:06:26 +05:30
auth, err := models.GetHighestAuthorize(u.Id, ctx.User.Id, repo.Id, 0)
if err != nil {
ctx.Handle(500, "GetHighestAuthorize", err)
return
}
if auth == models.ORG_ADMIN {
ctx.Repo.IsOwner = true
ctx.Repo.IsAdmin = true
}
}
2014-05-14 04:56:13 +05:30
}
2014-04-12 07:17:39 +05:30
// Check access.
if repo.IsPrivate && !ctx.Repo.IsOwner {
2014-04-12 07:17:39 +05:30
if ctx.User == nil {
2014-07-26 09:54:27 +05:30
ctx.Handle(404, "HasAccess", nil)
2014-04-12 07:17:39 +05:30
return
}
2014-06-25 10:14:48 +05:30
hasAccess, err := models.HasAccess(ctx.User.Name, ctx.Repo.Owner.Name+"/"+repo.Name, models.READABLE)
2014-04-12 07:17:39 +05:30
if err != nil {
2014-07-26 09:54:27 +05:30
ctx.Handle(500, "HasAccess", err)
2014-04-12 07:17:39 +05:30
return
} else if !hasAccess {
2014-07-26 09:54:27 +05:30
ctx.Handle(404, "HasAccess", nil)
2014-04-12 07:17:39 +05:30
return
}
}
ctx.Repo.HasAccess = true
ctx.Data["HasAccess"] = true
2014-04-13 08:00:00 +05:30
if repo.IsMirror {
ctx.Repo.Mirror, err = models.GetMirror(repo.Id)
if err != nil {
2014-07-26 09:54:27 +05:30
ctx.Handle(500, "GetMirror", err)
2014-04-13 08:00:00 +05:30
return
}
ctx.Data["MirrorInterval"] = ctx.Repo.Mirror.Interval
}
2014-04-02 22:13:31 +05:30
repo.NumOpenIssues = repo.NumIssues - repo.NumClosedIssues
2014-05-12 23:36:42 +05:30
repo.NumOpenMilestones = repo.NumMilestones - repo.NumClosedMilestones
ctx.Repo.Repository = repo
2014-03-30 11:00:17 +05:30
ctx.Data["IsBareRepo"] = ctx.Repo.Repository.IsBare
gitRepo, err := git.OpenRepository(models.RepoPath(userName, repoName))
if err != nil {
2014-04-11 07:33:31 +05:30
ctx.Handle(500, "RepoAssignment Invalid repo "+models.RepoPath(userName, repoName), err)
2014-03-15 21:33:23 +05:30
return
}
ctx.Repo.GitRepo = gitRepo
2014-10-19 11:05:24 +05:30
ctx.Repo.RepoLink, err = repo.RepoLink()
if err != nil {
ctx.Handle(500, "RepoLink", err)
return
}
ctx.Data["RepoLink"] = ctx.Repo.RepoLink
2014-03-30 09:08:41 +05:30
2014-04-14 06:30:12 +05:30
tags, err := ctx.Repo.GitRepo.GetTags()
if err != nil {
2014-07-26 09:54:27 +05:30
ctx.Handle(500, "GetTags", err)
2014-04-14 06:30:12 +05:30
return
}
2014-09-23 23:17:54 +05:30
ctx.Data["Tags"] = tags
2014-04-14 06:30:12 +05:30
ctx.Repo.Repository.NumTags = len(tags)
2014-10-19 11:05:24 +05:30
// Non-fork repository will not return error in this method.
if err = repo.GetForkRepo(); err != nil {
ctx.Handle(500, "GetForkRepo", err)
return
}
2014-07-26 09:54:27 +05:30
ctx.Data["Title"] = u.Name + "/" + repo.Name
2014-03-30 09:08:41 +05:30
ctx.Data["Repository"] = repo
2014-07-26 09:54:27 +05:30
ctx.Data["Owner"] = ctx.Repo.Repository.Owner
2014-03-30 09:08:41 +05:30
ctx.Data["IsRepositoryOwner"] = ctx.Repo.IsOwner
ctx.Data["IsRepositoryTrueOwner"] = ctx.Repo.IsTrueOwner
2014-03-30 09:08:41 +05:30
2015-02-07 21:16:57 +05:30
ctx.Data["DisableSSH"] = setting.DisableSSH
ctx.Repo.CloneLink, err = repo.CloneLink()
if err != nil {
ctx.Handle(500, "CloneLink", err)
return
2014-05-11 20:48:10 +05:30
}
2014-03-30 09:08:41 +05:30
ctx.Data["CloneLink"] = ctx.Repo.CloneLink
2014-04-13 13:38:25 +05:30
if ctx.Repo.Repository.IsGoget {
2014-07-26 09:54:27 +05:30
ctx.Data["GoGetLink"] = fmt.Sprintf("%s%s/%s", setting.AppUrl, u.LowerName, repo.LowerName)
ctx.Data["GoGetImport"] = fmt.Sprintf("%s/%s/%s", setting.Domain, u.LowerName, repo.LowerName)
2014-04-13 13:38:25 +05:30
}
2014-03-30 11:00:17 +05:30
// repo is bare and display enable
2014-08-11 08:41:18 +05:30
if ctx.Repo.Repository.IsBare {
2014-04-20 07:43:22 +05:30
log.Debug("Bare repository: %s", ctx.Repo.RepoLink)
2014-11-21 04:33:42 +05:30
// NOTE: to prevent templating error
ctx.Data["BranchName"] = ""
2014-08-11 08:41:18 +05:30
if displayBare {
ctx.HTML(200, "repo/bare")
}
2014-03-30 11:00:17 +05:30
return
}
2014-03-15 21:33:23 +05:30
if ctx.IsSigned {
2014-08-10 05:55:02 +05:30
ctx.Data["IsWatchingRepo"] = models.IsWatching(ctx.User.Id, repo.Id)
2014-08-11 08:41:18 +05:30
ctx.Data["IsStaringRepo"] = models.IsStaring(ctx.User.Id, repo.Id)
2014-03-20 11:55:21 +05:30
}
2014-06-28 21:26:41 +05:30
ctx.Data["TagName"] = ctx.Repo.TagName
2014-04-13 07:05:36 +05:30
brs, err := ctx.Repo.GitRepo.GetBranches()
2014-04-11 09:31:38 +05:30
if err != nil {
2014-09-23 23:17:54 +05:30
ctx.Handle(500, "GetBranches", err)
return
2014-04-11 09:31:38 +05:30
}
ctx.Data["Branches"] = brs
2014-07-26 09:54:27 +05:30
ctx.Data["BrancheCount"] = len(brs)
// If not branch selected, try default one.
// If default branch doesn't exists, fall back to some other branch.
if ctx.Repo.BranchName == "" {
if ctx.Repo.Repository.DefaultBranch != "" && gitRepo.IsBranchExist(ctx.Repo.Repository.DefaultBranch) {
ctx.Repo.BranchName = ctx.Repo.Repository.DefaultBranch
} else if len(brs) > 0 {
ctx.Repo.BranchName = brs[0]
}
}
ctx.Data["BranchName"] = ctx.Repo.BranchName
ctx.Data["CommitId"] = ctx.Repo.CommitId
2014-03-15 21:33:23 +05:30
}
}
2014-05-06 05:28:13 +05:30
2014-07-26 09:54:27 +05:30
func RequireTrueOwner() macaron.Handler {
2014-05-06 05:28:13 +05:30
return func(ctx *Context) {
if !ctx.Repo.IsTrueOwner && !ctx.Repo.IsAdmin {
2014-05-06 05:28:13 +05:30
if !ctx.IsSigned {
2014-09-21 17:37:00 +05:30
ctx.SetCookie("redirect_to", "/"+url.QueryEscape(setting.AppSubUrl+ctx.Req.RequestURI), 0, setting.AppSubUrl)
2014-09-20 05:41:34 +05:30
ctx.Redirect(setting.AppSubUrl + "/user/login")
2014-05-06 05:28:13 +05:30
return
}
ctx.Handle(404, ctx.Req.RequestURI, nil)
return
}
}
}
2014-10-07 03:20:00 +05:30
2014-12-07 06:52:48 +05:30
// GitHookService checks if repository Git hooks service has been enabled.
2014-10-07 03:20:00 +05:30
func GitHookService() macaron.Handler {
return func(ctx *Context) {
2014-11-18 01:23:41 +05:30
if !ctx.User.AllowGitHook && !ctx.User.IsAdmin {
2014-10-07 03:20:00 +05:30
ctx.Handle(404, "GitHookService", nil)
return
}
}
}