summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorKN4CK3R <admin@oldschoolhack.me>2022-08-09 16:36:49 +0200
committerGitHub <noreply@github.com>2022-08-09 17:36:49 +0300
commit7009eb9a24a800b7fb884b54f81885815ea4d286 (patch)
tree430bba7d00e8b92719646537413db06004fae0c7
parent920481340b3d3c384c16296be52ca187ee8b0e0b (diff)
downloadgitea-7009eb9a24a800b7fb884b54f81885815ea4d286.tar.gz
gitea-7009eb9a24a800b7fb884b54f81885815ea4d286.zip
Add support for NuGet API keys (#20721)
* Add support for NuGet API key. * lint * Apply suggestions from code review Co-authored-by: delvh <dev.lh@web.de> Co-authored-by: delvh <dev.lh@web.de> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> Co-authored-by: Lauris BH <lauris@nix.lv>
-rw-r--r--docs/content/doc/packages/nuget.en-us.md2
-rw-r--r--integrations/api_packages_nuget_test.go11
-rw-r--r--routers/api/packages/api.go1
-rw-r--r--routers/api/packages/nuget/auth.go45
4 files changed, 59 insertions, 0 deletions
diff --git a/docs/content/doc/packages/nuget.en-us.md b/docs/content/doc/packages/nuget.en-us.md
index a4435fa99f..6c8aaa70af 100644
--- a/docs/content/doc/packages/nuget.en-us.md
+++ b/docs/content/doc/packages/nuget.en-us.md
@@ -47,6 +47,8 @@ For example:
dotnet nuget add source --name gitea --username testuser --password password123 https://gitea.example.com/api/packages/testuser/nuget/index.json
```
+You can add the source without credentials and use the [`--api-key`](https://docs.microsoft.com/en-us/dotnet/core/tools/dotnet-nuget-push) parameter when publishing packages. In this case you need to provide a [personal access token]({{< relref "doc/developers/api-usage.en-us.md#authentication" >}}).
+
## Publish a package
Publish a package by running the following command:
diff --git a/integrations/api_packages_nuget_test.go b/integrations/api_packages_nuget_test.go
index 346f391f82..06eb485541 100644
--- a/integrations/api_packages_nuget_test.go
+++ b/integrations/api_packages_nuget_test.go
@@ -24,9 +24,16 @@ import (
"github.com/stretchr/testify/assert"
)
+func addNuGetAPIKeyHeader(request *http.Request, token string) *http.Request {
+ request.Header.Set("X-NuGet-ApiKey", token)
+ return request
+}
+
func TestPackageNuGet(t *testing.T) {
defer prepareTestEnv(t)()
+
user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2}).(*user_model.User)
+ token := getUserToken(t, user.Name)
packageName := "test.package"
packageVersion := "1.0.3"
@@ -60,6 +67,10 @@ func TestPackageNuGet(t *testing.T) {
req := NewRequest(t, "GET", fmt.Sprintf("%s/index.json", url))
req = AddBasicAuthHeader(req, user.Name)
+ MakeRequest(t, req, http.StatusOK)
+
+ req = NewRequest(t, "GET", fmt.Sprintf("%s/index.json", url))
+ req = addNuGetAPIKeyHeader(req, token)
resp := MakeRequest(t, req, http.StatusOK)
var result nuget.ServiceIndexResponse
diff --git a/routers/api/packages/api.go b/routers/api/packages/api.go
index 39ba41cdfb..cbf041a7e1 100644
--- a/routers/api/packages/api.go
+++ b/routers/api/packages/api.go
@@ -46,6 +46,7 @@ func Routes() *web.Route {
authMethods := []auth.Method{
&auth.OAuth2{},
&auth.Basic{},
+ &nuget.Auth{},
&conan.Auth{},
}
if setting.Service.EnableReverseProxyAuth {
diff --git a/routers/api/packages/nuget/auth.go b/routers/api/packages/nuget/auth.go
new file mode 100644
index 0000000000..26a5b90189
--- /dev/null
+++ b/routers/api/packages/nuget/auth.go
@@ -0,0 +1,45 @@
+// Copyright 2022 The Gitea Authors. All rights reserved.
+// Use of this source code is governed by a MIT-style
+// license that can be found in the LICENSE file.
+
+package nuget
+
+import (
+ "net/http"
+
+ "code.gitea.io/gitea/models"
+ user_model "code.gitea.io/gitea/models/user"
+ "code.gitea.io/gitea/modules/log"
+ "code.gitea.io/gitea/modules/timeutil"
+ "code.gitea.io/gitea/services/auth"
+)
+
+type Auth struct{}
+
+func (a *Auth) Name() string {
+ return "nuget"
+}
+
+// https://docs.microsoft.com/en-us/nuget/api/package-publish-resource#request-parameters
+func (a *Auth) Verify(req *http.Request, w http.ResponseWriter, store auth.DataStore, sess auth.SessionStore) *user_model.User {
+ token, err := models.GetAccessTokenBySHA(req.Header.Get("X-NuGet-ApiKey"))
+ if err != nil {
+ if !(models.IsErrAccessTokenNotExist(err) || models.IsErrAccessTokenEmpty(err)) {
+ log.Error("GetAccessTokenBySHA: %v", err)
+ }
+ return nil
+ }
+
+ u, err := user_model.GetUserByID(token.UID)
+ if err != nil {
+ log.Error("GetUserByID: %v", err)
+ return nil
+ }
+
+ token.UpdatedUnix = timeutil.TimeStampNow()
+ if err := models.UpdateAccessToken(token); err != nil {
+ log.Error("UpdateAccessToken: %v", err)
+ }
+
+ return u
+}