mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 211 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
14463 Commits
17 Branches
Tree: 15c035775a
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '15c035775a'
${ noResults }
gitea/routers/web/repo/setting_protected_branch.go

setting_protected_branch.go 12KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353 
  1. // Copyright 2017 The Gitea Authors. All rights reserved.

  2. // SPDX-License-Identifier: MIT

  3. 

  4. package repo

  5. 

  6. import (

  7. 	"fmt"

  8. 	"net/http"

  9. 	"strings"

  10. 	"time"

  11. 

  12. 	git_model "code.gitea.io/gitea/models/git"

  13. 	"code.gitea.io/gitea/models/organization"

  14. 	"code.gitea.io/gitea/models/perm"

  15. 	access_model "code.gitea.io/gitea/models/perm/access"

  16. 	repo_model "code.gitea.io/gitea/models/repo"

  17. 	"code.gitea.io/gitea/modules/base"

  18. 	"code.gitea.io/gitea/modules/context"

  19. 	"code.gitea.io/gitea/modules/git"

  20. 	"code.gitea.io/gitea/modules/log"

  21. 	"code.gitea.io/gitea/modules/setting"

  22. 	"code.gitea.io/gitea/modules/web"

  23. 	"code.gitea.io/gitea/services/forms"

  24. 	pull_service "code.gitea.io/gitea/services/pull"

  25. 	"code.gitea.io/gitea/services/repository"

  26. )

  27. 

  28. const (

  29. 	tplProtectedBranch base.TplName = "repo/settings/protected_branch"

  30. )

  31. 

  32. // ProtectedBranchRules render the page to protect the repository

  33. func ProtectedBranchRules(ctx *context.Context) {

  34. 	ctx.Data["Title"] = ctx.Tr("repo.settings.branches")

  35. 	ctx.Data["PageIsSettingsBranches"] = true

  36. 

  37. 	rules, err := git_model.FindRepoProtectedBranchRules(ctx, ctx.Repo.Repository.ID)

  38. 	if err != nil {

  39. 		ctx.ServerError("GetProtectedBranches", err)

  40. 		return

  41. 	}

  42. 	ctx.Data["ProtectedBranches"] = rules

  43. 

  44. 	ctx.HTML(http.StatusOK, tplBranches)

  45. }

  46. 

  47. // SetDefaultBranchPost set default branch

  48. func SetDefaultBranchPost(ctx *context.Context) {

  49. 	ctx.Data["Title"] = ctx.Tr("repo.settings.branches.update_default_branch")

  50. 	ctx.Data["PageIsSettingsBranches"] = true

  51. 

  52. 	repo := ctx.Repo.Repository

  53. 

  54. 	switch ctx.FormString("action") {

  55. 	case "default_branch":

  56. 		if ctx.HasError() {

  57. 			ctx.HTML(http.StatusOK, tplBranches)

  58. 			return

  59. 		}

  60. 

  61. 		branch := ctx.FormString("branch")

  62. 		if !ctx.Repo.GitRepo.IsBranchExist(branch) {

  63. 			ctx.Status(http.StatusNotFound)

  64. 			return

  65. 		} else if repo.DefaultBranch != branch {

  66. 			repo.DefaultBranch = branch

  67. 			if err := ctx.Repo.GitRepo.SetDefaultBranch(branch); err != nil {

  68. 				if !git.IsErrUnsupportedVersion(err) {

  69. 					ctx.ServerError("SetDefaultBranch", err)

  70. 					return

  71. 				}

  72. 			}

  73. 			if err := repo_model.UpdateDefaultBranch(repo); err != nil {

  74. 				ctx.ServerError("SetDefaultBranch", err)

  75. 				return

  76. 			}

  77. 		}

  78. 

  79. 		log.Trace("Repository basic settings updated: %s/%s", ctx.Repo.Owner.Name, repo.Name)

  80. 

  81. 		ctx.Flash.Success(ctx.Tr("repo.settings.update_settings_success"))

  82. 		ctx.Redirect(setting.AppSubURL + ctx.Req.URL.EscapedPath())

  83. 	default:

  84. 		ctx.NotFound("", nil)

  85. 	}

  86. }

  87. 

  88. // SettingsProtectedBranch renders the protected branch setting page

  89. func SettingsProtectedBranch(c *context.Context) {

  90. 	ruleName := c.FormString("rule_name")

  91. 	var rule *git_model.ProtectedBranch

  92. 	if ruleName != "" {

  93. 		var err error

  94. 		rule, err = git_model.GetProtectedBranchRuleByName(c, c.Repo.Repository.ID, ruleName)

  95. 		if err != nil {

  96. 			c.ServerError("GetProtectBranchOfRepoByName", err)

  97. 			return

  98. 		}

  99. 	}

  100. 

  101. 	if rule == nil {

  102. 		// No options found, create defaults.

  103. 		rule = &git_model.ProtectedBranch{}

  104. 	}

  105. 

  106. 	c.Data["PageIsSettingsBranches"] = true

  107. 	c.Data["Title"] = c.Tr("repo.settings.protected_branch") + " - " + rule.RuleName

  108. 

  109. 	users, err := access_model.GetRepoReaders(c.Repo.Repository)

  110. 	if err != nil {

  111. 		c.ServerError("Repo.Repository.GetReaders", err)

  112. 		return

  113. 	}

  114. 	c.Data["Users"] = users

  115. 	c.Data["whitelist_users"] = strings.Join(base.Int64sToStrings(rule.WhitelistUserIDs), ",")

  116. 	c.Data["merge_whitelist_users"] = strings.Join(base.Int64sToStrings(rule.MergeWhitelistUserIDs), ",")

  117. 	c.Data["approvals_whitelist_users"] = strings.Join(base.Int64sToStrings(rule.ApprovalsWhitelistUserIDs), ",")

  118. 	contexts, _ := git_model.FindRepoRecentCommitStatusContexts(c, c.Repo.Repository.ID, 7*24*time.Hour) // Find last week status check contexts

  119. 	for _, ctx := range rule.StatusCheckContexts {

  120. 		var found bool

  121. 		for i := range contexts {

  122. 			if contexts[i] == ctx {

  123. 				found = true

  124. 				break

  125. 			}

  126. 		}

  127. 		if !found {

  128. 			contexts = append(contexts, ctx)

  129. 		}

  130. 	}

  131. 

  132. 	c.Data["branch_status_check_contexts"] = contexts

  133. 	c.Data["is_context_required"] = func(context string) bool {

  134. 		for _, c := range rule.StatusCheckContexts {

  135. 			if c == context {

  136. 				return true

  137. 			}

  138. 		}

  139. 		return false

  140. 	}

  141. 

  142. 	if c.Repo.Owner.IsOrganization() {

  143. 		teams, err := organization.OrgFromUser(c.Repo.Owner).TeamsWithAccessToRepo(c.Repo.Repository.ID, perm.AccessModeRead)

  144. 		if err != nil {

  145. 			c.ServerError("Repo.Owner.TeamsWithAccessToRepo", err)

  146. 			return

  147. 		}

  148. 		c.Data["Teams"] = teams

  149. 		c.Data["whitelist_teams"] = strings.Join(base.Int64sToStrings(rule.WhitelistTeamIDs), ",")

  150. 		c.Data["merge_whitelist_teams"] = strings.Join(base.Int64sToStrings(rule.MergeWhitelistTeamIDs), ",")

  151. 		c.Data["approvals_whitelist_teams"] = strings.Join(base.Int64sToStrings(rule.ApprovalsWhitelistTeamIDs), ",")

  152. 	}

  153. 

  154. 	c.Data["Rule"] = rule

  155. 	c.HTML(http.StatusOK, tplProtectedBranch)

  156. }

  157. 

  158. // SettingsProtectedBranchPost updates the protected branch settings

  159. func SettingsProtectedBranchPost(ctx *context.Context) {

  160. 	f := web.GetForm(ctx).(*forms.ProtectBranchForm)

  161. 	var protectBranch *git_model.ProtectedBranch

  162. 	if f.RuleName == "" {

  163. 		ctx.Flash.Error(ctx.Tr("repo.settings.protected_branch_required_rule_name"))

  164. 		ctx.Redirect(fmt.Sprintf("%s/settings/branches/edit", ctx.Repo.RepoLink))

  165. 		return

  166. 	}

  167. 

  168. 	var err error

  169. 	protectBranch, err = git_model.GetProtectedBranchRuleByName(ctx, ctx.Repo.Repository.ID, f.RuleName)

  170. 	if err != nil {

  171. 		ctx.ServerError("GetProtectBranchOfRepoByName", err)

  172. 		return

  173. 	}

  174. 	if protectBranch == nil {

  175. 		// No options found, create defaults.

  176. 		protectBranch = &git_model.ProtectedBranch{

  177. 			RepoID:   ctx.Repo.Repository.ID,

  178. 			RuleName: f.RuleName,

  179. 		}

  180. 	}

  181. 

  182. 	var whitelistUsers, whitelistTeams, mergeWhitelistUsers, mergeWhitelistTeams, approvalsWhitelistUsers, approvalsWhitelistTeams []int64

  183. 	protectBranch.RuleName = f.RuleName

  184. 	if f.RequiredApprovals < 0 {

  185. 		ctx.Flash.Error(ctx.Tr("repo.settings.protected_branch_required_approvals_min"))

  186. 		ctx.Redirect(fmt.Sprintf("%s/settings/branches/edit?rule_name=%s", ctx.Repo.RepoLink, f.RuleName))

  187. 		return

  188. 	}

  189. 

  190. 	switch f.EnablePush {

  191. 	case "all":

  192. 		protectBranch.CanPush = true

  193. 		protectBranch.EnableWhitelist = false

  194. 		protectBranch.WhitelistDeployKeys = false

  195. 	case "whitelist":

  196. 		protectBranch.CanPush = true

  197. 		protectBranch.EnableWhitelist = true

  198. 		protectBranch.WhitelistDeployKeys = f.WhitelistDeployKeys

  199. 		if strings.TrimSpace(f.WhitelistUsers) != "" {

  200. 			whitelistUsers, _ = base.StringsToInt64s(strings.Split(f.WhitelistUsers, ","))

  201. 		}

  202. 		if strings.TrimSpace(f.WhitelistTeams) != "" {

  203. 			whitelistTeams, _ = base.StringsToInt64s(strings.Split(f.WhitelistTeams, ","))

  204. 		}

  205. 	default:

  206. 		protectBranch.CanPush = false

  207. 		protectBranch.EnableWhitelist = false

  208. 		protectBranch.WhitelistDeployKeys = false

  209. 	}

  210. 

  211. 	protectBranch.EnableMergeWhitelist = f.EnableMergeWhitelist

  212. 	if f.EnableMergeWhitelist {

  213. 		if strings.TrimSpace(f.MergeWhitelistUsers) != "" {

  214. 			mergeWhitelistUsers, _ = base.StringsToInt64s(strings.Split(f.MergeWhitelistUsers, ","))

  215. 		}

  216. 		if strings.TrimSpace(f.MergeWhitelistTeams) != "" {

  217. 			mergeWhitelistTeams, _ = base.StringsToInt64s(strings.Split(f.MergeWhitelistTeams, ","))

  218. 		}

  219. 	}

  220. 

  221. 	protectBranch.EnableStatusCheck = f.EnableStatusCheck

  222. 	if f.EnableStatusCheck {

  223. 		protectBranch.StatusCheckContexts = f.StatusCheckContexts

  224. 	} else {

  225. 		protectBranch.StatusCheckContexts = nil

  226. 	}

  227. 

  228. 	protectBranch.RequiredApprovals = f.RequiredApprovals

  229. 	protectBranch.EnableApprovalsWhitelist = f.EnableApprovalsWhitelist

  230. 	if f.EnableApprovalsWhitelist {

  231. 		if strings.TrimSpace(f.ApprovalsWhitelistUsers) != "" {

  232. 			approvalsWhitelistUsers, _ = base.StringsToInt64s(strings.Split(f.ApprovalsWhitelistUsers, ","))

  233. 		}

  234. 		if strings.TrimSpace(f.ApprovalsWhitelistTeams) != "" {

  235. 			approvalsWhitelistTeams, _ = base.StringsToInt64s(strings.Split(f.ApprovalsWhitelistTeams, ","))

  236. 		}

  237. 	}

  238. 	protectBranch.BlockOnRejectedReviews = f.BlockOnRejectedReviews

  239. 	protectBranch.BlockOnOfficialReviewRequests = f.BlockOnOfficialReviewRequests

  240. 	protectBranch.DismissStaleApprovals = f.DismissStaleApprovals

  241. 	protectBranch.RequireSignedCommits = f.RequireSignedCommits

  242. 	protectBranch.ProtectedFilePatterns = f.ProtectedFilePatterns

  243. 	protectBranch.UnprotectedFilePatterns = f.UnprotectedFilePatterns

  244. 	protectBranch.BlockOnOutdatedBranch = f.BlockOnOutdatedBranch

  245. 

  246. 	err = git_model.UpdateProtectBranch(ctx, ctx.Repo.Repository, protectBranch, git_model.WhitelistOptions{

  247. 		UserIDs:          whitelistUsers,

  248. 		TeamIDs:          whitelistTeams,

  249. 		MergeUserIDs:     mergeWhitelistUsers,

  250. 		MergeTeamIDs:     mergeWhitelistTeams,

  251. 		ApprovalsUserIDs: approvalsWhitelistUsers,

  252. 		ApprovalsTeamIDs: approvalsWhitelistTeams,

  253. 	})

  254. 	if err != nil {

  255. 		ctx.ServerError("UpdateProtectBranch", err)

  256. 		return

  257. 	}

  258. 

  259. 	// FIXME: since we only need to recheck files protected rules, we could improve this

  260. 	matchedBranches, err := git_model.FindAllMatchedBranches(ctx, ctx.Repo.GitRepo, protectBranch.RuleName)

  261. 	if err != nil {

  262. 		ctx.ServerError("FindAllMatchedBranches", err)

  263. 		return

  264. 	}

  265. 	for _, branchName := range matchedBranches {

  266. 		if err = pull_service.CheckPRsForBaseBranch(ctx.Repo.Repository, branchName); err != nil {

  267. 			ctx.ServerError("CheckPRsForBaseBranch", err)

  268. 			return

  269. 		}

  270. 	}

  271. 

  272. 	ctx.Flash.Success(ctx.Tr("repo.settings.update_protect_branch_success", protectBranch.RuleName))

  273. 	ctx.Redirect(fmt.Sprintf("%s/settings/branches?rule_name=%s", ctx.Repo.RepoLink, protectBranch.RuleName))

  274. }

  275. 

  276. // DeleteProtectedBranchRulePost delete protected branch rule by id

  277. func DeleteProtectedBranchRulePost(ctx *context.Context) {

  278. 	ruleID := ctx.ParamsInt64("id")

  279. 	if ruleID <= 0 {

  280. 		ctx.Flash.Error(ctx.Tr("repo.settings.remove_protected_branch_failed", fmt.Sprintf("%d", ruleID)))

  281. 		ctx.JSON(http.StatusOK, map[string]interface{}{

  282. 			"redirect": fmt.Sprintf("%s/settings/branches", ctx.Repo.RepoLink),

  283. 		})

  284. 		return

  285. 	}

  286. 

  287. 	rule, err := git_model.GetProtectedBranchRuleByID(ctx, ctx.Repo.Repository.ID, ruleID)

  288. 	if err != nil {

  289. 		ctx.Flash.Error(ctx.Tr("repo.settings.remove_protected_branch_failed", fmt.Sprintf("%d", ruleID)))

  290. 		ctx.JSON(http.StatusOK, map[string]interface{}{

  291. 			"redirect": fmt.Sprintf("%s/settings/branches", ctx.Repo.RepoLink),

  292. 		})

  293. 		return

  294. 	}

  295. 

  296. 	if rule == nil {

  297. 		ctx.Flash.Error(ctx.Tr("repo.settings.remove_protected_branch_failed", fmt.Sprintf("%d", ruleID)))

  298. 		ctx.JSON(http.StatusOK, map[string]interface{}{

  299. 			"redirect": fmt.Sprintf("%s/settings/branches", ctx.Repo.RepoLink),

  300. 		})

  301. 		return

  302. 	}

  303. 

  304. 	if err := git_model.DeleteProtectedBranch(ctx, ctx.Repo.Repository.ID, ruleID); err != nil {

  305. 		ctx.Flash.Error(ctx.Tr("repo.settings.remove_protected_branch_failed", rule.RuleName))

  306. 		ctx.JSON(http.StatusOK, map[string]interface{}{

  307. 			"redirect": fmt.Sprintf("%s/settings/branches", ctx.Repo.RepoLink),

  308. 		})

  309. 		return

  310. 	}

  311. 

  312. 	ctx.Flash.Success(ctx.Tr("repo.settings.remove_protected_branch_success", rule.RuleName))

  313. 	ctx.JSON(http.StatusOK, map[string]interface{}{

  314. 		"redirect": fmt.Sprintf("%s/settings/branches", ctx.Repo.RepoLink),

  315. 	})

  316. }

  317. 

  318. // RenameBranchPost responses for rename a branch

  319. func RenameBranchPost(ctx *context.Context) {

  320. 	form := web.GetForm(ctx).(*forms.RenameBranchForm)

  321. 

  322. 	if !ctx.Repo.CanCreateBranch() {

  323. 		ctx.NotFound("RenameBranch", nil)

  324. 		return

  325. 	}

  326. 

  327. 	if ctx.HasError() {

  328. 		ctx.Flash.Error(ctx.GetErrMsg())

  329. 		ctx.Redirect(fmt.Sprintf("%s/settings/branches", ctx.Repo.RepoLink))

  330. 		return

  331. 	}

  332. 

  333. 	msg, err := repository.RenameBranch(ctx.Repo.Repository, ctx.Doer, ctx.Repo.GitRepo, form.From, form.To)

  334. 	if err != nil {

  335. 		ctx.ServerError("RenameBranch", err)

  336. 		return

  337. 	}

  338. 

  339. 	if msg == "target_exist" {

  340. 		ctx.Flash.Error(ctx.Tr("repo.settings.rename_branch_failed_exist", form.To))

  341. 		ctx.Redirect(fmt.Sprintf("%s/settings/branches", ctx.Repo.RepoLink))

  342. 		return

  343. 	}

  344. 

  345. 	if msg == "from_not_exist" {

  346. 		ctx.Flash.Error(ctx.Tr("repo.settings.rename_branch_failed_not_exist", form.From))

  347. 		ctx.Redirect(fmt.Sprintf("%s/settings/branches", ctx.Repo.RepoLink))

  348. 		return

  349. 	}

  350. 

  351. 	ctx.Flash.Success(ctx.Tr("repo.settings.rename_branch_success", form.From, form.To))

  352. 	ctx.Redirect(fmt.Sprintf("%s/settings/branches", ctx.Repo.RepoLink))

  353. }