forgejo-federation/routers/private/internal.go

// Copyright 2017 The Gitea Authors. All rights reserved.
// Use of this source code is governed by a MIT-style
// license that can be found in the LICENSE file.

// Package private includes all internal routes. The package name internal is ideal but Golang is not allowed, so we use private as package name instead.
package private

import (
	"strings"

	"code.gitea.io/gitea/models"
	"code.gitea.io/gitea/modules/setting"

	macaron "gopkg.in/macaron.v1"
)

// CheckInternalToken check internal token is set
func CheckInternalToken(ctx *macaron.Context) {
	tokens := ctx.Req.Header.Get("Authorization")
	fields := strings.Fields(tokens)
	if len(fields) != 2 || fields[0] != "Bearer" || fields[1] != setting.InternalToken {
		ctx.Error(403)
	}
}

// UpdatePublicKey update publick key updates
func UpdatePublicKey(ctx *macaron.Context) {
	keyID := ctx.ParamsInt64(":id")
	if err := models.UpdatePublicKeyUpdated(keyID); err != nil {
		ctx.JSON(500, map[string]interface{}{
			"err": err.Error(),
		})
		return
	}

	ctx.PlainText(200, []byte("success"))
}

// RegisterRoutes registers all internal APIs routes to web application.
// These APIs will be invoked by internal commands for example `gitea serv` and etc.
func RegisterRoutes(m *macaron.Macaron) {
	m.Group("/", func() {
		m.Post("/ssh/:id/update", UpdatePublicKey)
		m.Post("/push/update", PushUpdate)
		m.Get("/protectedbranch/:pbid/:userid", CanUserPush)
		m.Get("/branch/:id/*", GetProtectedBranchBy)
	}, CheckInternalToken)
}
Add internal routes for ssh hook comands (#1471) * add internal routes for ssh hook comands * fix lint * add comment on why package named private not internal but the route name is internal * add comment above package private why package named private not internal but the route name is internal * remove exp time on internal access * move routes from /internal to /api/internal * add comment and defer on UpdatePublicKeyUpdated 2017-04-19 09:15:01 +05:30			`// Copyright 2017 The Gitea Authors. All rights reserved.`
			`// Use of this source code is governed by a MIT-style`
			`// license that can be found in the LICENSE file.`

			`// Package private includes all internal routes. The package name internal is ideal but Golang is not allowed, so we use private as package name instead.`
			`package private`

			`import (`
			`"strings"`

			`"code.gitea.io/gitea/models"`
			`"code.gitea.io/gitea/modules/setting"`
Drop db operations from hook commands (#1514) * move all database operations from hook command to web command and instead of internal routes * bug fixed * adjust the import path sequences * remove unused return value on hookSetup 2017-05-04 11:12:02 +05:30
Add internal routes for ssh hook comands (#1471) * add internal routes for ssh hook comands * fix lint * add comment on why package named private not internal but the route name is internal * add comment above package private why package named private not internal but the route name is internal * remove exp time on internal access * move routes from /internal to /api/internal * add comment and defer on UpdatePublicKeyUpdated 2017-04-19 09:15:01 +05:30			`macaron "gopkg.in/macaron.v1"`
			`)`

			`// CheckInternalToken check internal token is set`
			`func CheckInternalToken(ctx *macaron.Context) {`
			`tokens := ctx.Req.Header.Get("Authorization")`
			`fields := strings.Fields(tokens)`
			`if len(fields) != 2 \|\| fields[0] != "Bearer" \|\| fields[1] != setting.InternalToken {`
			`ctx.Error(403)`
			`}`
			`}`

			`// UpdatePublicKey update publick key updates`
			`func UpdatePublicKey(ctx *macaron.Context) {`
			`keyID := ctx.ParamsInt64(":id")`
			`if err := models.UpdatePublicKeyUpdated(keyID); err != nil {`
			`ctx.JSON(500, map[string]interface{}{`
			`"err": err.Error(),`
			`})`
			`return`
			`}`

			`ctx.PlainText(200, []byte("success"))`
			`}`

			`// RegisterRoutes registers all internal APIs routes to web application.`
			// These APIs will be invoked by internal commands for example `gitea serv` and etc.
			`func RegisterRoutes(m *macaron.Macaron) {`
			`m.Group("/", func() {`
			`m.Post("/ssh/:id/update", UpdatePublicKey)`
Drop db operations from hook commands (#1514) * move all database operations from hook command to web command and instead of internal routes * bug fixed * adjust the import path sequences * remove unused return value on hookSetup 2017-05-04 11:12:02 +05:30			`m.Post("/push/update", PushUpdate)`
improve protected branch to add whitelist support (#2451) * improve protected branch to add whitelist support * fix lint * fix style check * fix tests * fix description on UI and import * fix test * bug fixed * fix tests and languages * move isSliceInt64Eq to util pkg; improve function names & typo 2017-09-14 13:46:22 +05:30			`m.Get("/protectedbranch/:pbid/:userid", CanUserPush)`
fix bug when push a branch name with / & fix an integration test bug (#1689) 2017-05-08 08:25:27 +05:30			`m.Get("/branch/:id/*", GetProtectedBranchBy)`
Add internal routes for ssh hook comands (#1471) * add internal routes for ssh hook comands * fix lint * add comment on why package named private not internal but the route name is internal * add comment above package private why package named private not internal but the route name is internal * remove exp time on internal access * move routes from /internal to /api/internal * add comment and defer on UpdatePublicKeyUpdated 2017-04-19 09:15:01 +05:30			`}, CheckInternalToken)`
			`}`