diff options
author | KN4CK3R <admin@oldschoolhack.me> | 2022-08-09 16:36:49 +0200 |
---|---|---|
committer | GitHub <noreply@github.com> | 2022-08-09 17:36:49 +0300 |
commit | 7009eb9a24a800b7fb884b54f81885815ea4d286 (patch) | |
tree | 430bba7d00e8b92719646537413db06004fae0c7 /routers/api | |
parent | 920481340b3d3c384c16296be52ca187ee8b0e0b (diff) | |
download | gitea-7009eb9a24a800b7fb884b54f81885815ea4d286.tar.gz gitea-7009eb9a24a800b7fb884b54f81885815ea4d286.zip |
Add support for NuGet API keys (#20721)
* Add support for NuGet API key.
* lint
* Apply suggestions from code review
Co-authored-by: delvh <dev.lh@web.de>
Co-authored-by: delvh <dev.lh@web.de>
Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
Co-authored-by: Lauris BH <lauris@nix.lv>
Diffstat (limited to 'routers/api')
-rw-r--r-- | routers/api/packages/api.go | 1 | ||||
-rw-r--r-- | routers/api/packages/nuget/auth.go | 45 |
2 files changed, 46 insertions, 0 deletions
diff --git a/routers/api/packages/api.go b/routers/api/packages/api.go index 39ba41cdfb..cbf041a7e1 100644 --- a/routers/api/packages/api.go +++ b/routers/api/packages/api.go @@ -46,6 +46,7 @@ func Routes() *web.Route { authMethods := []auth.Method{ &auth.OAuth2{}, &auth.Basic{}, + &nuget.Auth{}, &conan.Auth{}, } if setting.Service.EnableReverseProxyAuth { diff --git a/routers/api/packages/nuget/auth.go b/routers/api/packages/nuget/auth.go new file mode 100644 index 0000000000..26a5b90189 --- /dev/null +++ b/routers/api/packages/nuget/auth.go @@ -0,0 +1,45 @@ +// Copyright 2022 The Gitea Authors. All rights reserved. +// Use of this source code is governed by a MIT-style +// license that can be found in the LICENSE file. + +package nuget + +import ( + "net/http" + + "code.gitea.io/gitea/models" + user_model "code.gitea.io/gitea/models/user" + "code.gitea.io/gitea/modules/log" + "code.gitea.io/gitea/modules/timeutil" + "code.gitea.io/gitea/services/auth" +) + +type Auth struct{} + +func (a *Auth) Name() string { + return "nuget" +} + +// https://docs.microsoft.com/en-us/nuget/api/package-publish-resource#request-parameters +func (a *Auth) Verify(req *http.Request, w http.ResponseWriter, store auth.DataStore, sess auth.SessionStore) *user_model.User { + token, err := models.GetAccessTokenBySHA(req.Header.Get("X-NuGet-ApiKey")) + if err != nil { + if !(models.IsErrAccessTokenNotExist(err) || models.IsErrAccessTokenEmpty(err)) { + log.Error("GetAccessTokenBySHA: %v", err) + } + return nil + } + + u, err := user_model.GetUserByID(token.UID) + if err != nil { + log.Error("GetUserByID: %v", err) + return nil + } + + token.UpdatedUnix = timeutil.TimeStampNow() + if err := models.UpdateAccessToken(token); err != nil { + log.Error("UpdateAccessToken: %v", err) + } + + return u +} |