mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 210 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7889 Commits
17 Branches
Tree: 171b359877
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '171b359877'
${ noResults }
gitea/integrations/ssh_key_test.go

ssh_key_test.go 6.8KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218 
  1. // Copyright 2019 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package integrations

  6. 

  7. import (

  8. 	"fmt"

  9. 	"io/ioutil"

  10. 	"net/http"

  11. 	"net/url"

  12. 	"os"

  13. 	"path/filepath"

  14. 	"testing"

  15. 	"time"

  16. 

  17. 	"code.gitea.io/gitea/modules/git"

  18. 	api "code.gitea.io/gitea/modules/structs"

  19. 

  20. 	"github.com/stretchr/testify/assert"

  21. )

  22. 

  23. func doCheckRepositoryEmptyStatus(ctx APITestContext, isEmpty bool) func(*testing.T) {

  24. 	return doAPIGetRepository(ctx, func(t *testing.T, repository api.Repository) {

  25. 		assert.Equal(t, isEmpty, repository.Empty)

  26. 	})

  27. }

  28. 

  29. func doAddChangesToCheckout(dstPath, filename string) func(*testing.T) {

  30. 	return func(t *testing.T) {

  31. 		assert.NoError(t, ioutil.WriteFile(filepath.Join(dstPath, filename), []byte(fmt.Sprintf("# Testing Repository\n\nOriginally created in: %s at time: %v", dstPath, time.Now())), 0644))

  32. 		assert.NoError(t, git.AddChanges(dstPath, true))

  33. 		signature := git.Signature{

  34. 			Email: "test@example.com",

  35. 			Name:  "test",

  36. 			When:  time.Now(),

  37. 		}

  38. 		assert.NoError(t, git.CommitChanges(dstPath, git.CommitChangesOptions{

  39. 			Committer: &signature,

  40. 			Author:    &signature,

  41. 			Message:   "Initial Commit",

  42. 		}))

  43. 	}

  44. }

  45. 

  46. func TestPushDeployKeyOnEmptyRepo(t *testing.T) {

  47. 	onGiteaRun(t, testPushDeployKeyOnEmptyRepo)

  48. }

  49. 

  50. func testPushDeployKeyOnEmptyRepo(t *testing.T, u *url.URL) {

  51. 	// OK login

  52. 	ctx := NewAPITestContext(t, "user2", "deploy-key-empty-repo-1")

  53. 	keyname := fmt.Sprintf("%s-push", ctx.Reponame)

  54. 	u.Path = ctx.GitPath()

  55. 

  56. 	t.Run("CreateEmptyRepository", doAPICreateRepository(ctx, true))

  57. 

  58. 	t.Run("CheckIsEmpty", doCheckRepositoryEmptyStatus(ctx, true))

  59. 

  60. 	withKeyFile(t, keyname, func(keyFile string) {

  61. 		t.Run("CreatePushDeployKey", doAPICreateDeployKey(ctx, keyname, keyFile, false))

  62. 

  63. 		// Setup the testing repository

  64. 		dstPath, err := ioutil.TempDir("", "repo-tmp-deploy-key-empty-repo-1")

  65. 		assert.NoError(t, err)

  66. 		defer os.RemoveAll(dstPath)

  67. 

  68. 		t.Run("InitTestRepository", doGitInitTestRepository(dstPath))

  69. 

  70. 		//Setup remote link

  71. 		sshURL := createSSHUrl(ctx.GitPath(), u)

  72. 

  73. 		t.Run("AddRemote", doGitAddRemote(dstPath, "origin", sshURL))

  74. 

  75. 		t.Run("SSHPushTestRepository", doGitPushTestRepository(dstPath, "origin", "master"))

  76. 

  77. 		t.Run("CheckIsNotEmpty", doCheckRepositoryEmptyStatus(ctx, false))

  78. 

  79. 		t.Run("DeleteRepository", doAPIDeleteRepository(ctx))

  80. 	})

  81. }

  82. 

  83. func TestKeyOnlyOneType(t *testing.T) {

  84. 	onGiteaRun(t, testKeyOnlyOneType)

  85. }

  86. 

  87. func testKeyOnlyOneType(t *testing.T, u *url.URL) {

  88. 	// Once a key is a user key we cannot use it as a deploy key

  89. 	// If we delete it from the user we should be able to use it as a deploy key

  90. 	reponame := "ssh-key-test-repo"

  91. 	username := "user2"

  92. 	u.Path = fmt.Sprintf("%s/%s.git", username, reponame)

  93. 	keyname := fmt.Sprintf("%s-push", reponame)

  94. 

  95. 	// OK login

  96. 	ctx := NewAPITestContext(t, username, reponame)

  97. 

  98. 	otherCtx := ctx

  99. 	otherCtx.Reponame = "ssh-key-test-repo-2"

  100. 

  101. 	failCtx := ctx

  102. 	failCtx.ExpectedCode = http.StatusUnprocessableEntity

  103. 

  104. 	t.Run("CreateRepository", doAPICreateRepository(ctx, false))

  105. 	t.Run("CreateOtherRepository", doAPICreateRepository(otherCtx, false))

  106. 

  107. 	withKeyFile(t, keyname, func(keyFile string) {

  108. 		var userKeyPublicKeyID int64

  109. 		t.Run("KeyCanOnlyBeUser", func(t *testing.T) {

  110. 			dstPath, err := ioutil.TempDir("", ctx.Reponame)

  111. 			assert.NoError(t, err)

  112. 			defer os.RemoveAll(dstPath)

  113. 

  114. 			sshURL := createSSHUrl(ctx.GitPath(), u)

  115. 

  116. 			t.Run("FailToClone", doGitCloneFail(dstPath, sshURL))

  117. 

  118. 			t.Run("CreateUserKey", doAPICreateUserKey(ctx, keyname, keyFile, func(t *testing.T, publicKey api.PublicKey) {

  119. 				userKeyPublicKeyID = publicKey.ID

  120. 			}))

  121. 

  122. 			t.Run("FailToAddReadOnlyDeployKey", doAPICreateDeployKey(failCtx, keyname, keyFile, true))

  123. 

  124. 			t.Run("FailToAddDeployKey", doAPICreateDeployKey(failCtx, keyname, keyFile, false))

  125. 

  126. 			t.Run("Clone", doGitClone(dstPath, sshURL))

  127. 

  128. 			t.Run("AddChanges", doAddChangesToCheckout(dstPath, "CHANGES1.md"))

  129. 

  130. 			t.Run("Push", doGitPushTestRepository(dstPath, "origin", "master"))

  131. 

  132. 			t.Run("DeleteUserKey", doAPIDeleteUserKey(ctx, userKeyPublicKeyID))

  133. 		})

  134. 

  135. 		t.Run("KeyCanBeAnyDeployButNotUserAswell", func(t *testing.T) {

  136. 			dstPath, err := ioutil.TempDir("", ctx.Reponame)

  137. 			assert.NoError(t, err)

  138. 			defer os.RemoveAll(dstPath)

  139. 

  140. 			sshURL := createSSHUrl(ctx.GitPath(), u)

  141. 

  142. 			t.Run("FailToClone", doGitCloneFail(dstPath, sshURL))

  143. 

  144. 			// Should now be able to add...

  145. 			t.Run("AddReadOnlyDeployKey", doAPICreateDeployKey(ctx, keyname, keyFile, true))

  146. 

  147. 			t.Run("Clone", doGitClone(dstPath, sshURL))

  148. 

  149. 			t.Run("AddChanges", doAddChangesToCheckout(dstPath, "CHANGES2.md"))

  150. 

  151. 			t.Run("FailToPush", doGitPushTestRepositoryFail(dstPath, "origin", "master"))

  152. 

  153. 			otherSSHURL := createSSHUrl(otherCtx.GitPath(), u)

  154. 			dstOtherPath, err := ioutil.TempDir("", otherCtx.Reponame)

  155. 			assert.NoError(t, err)

  156. 			defer os.RemoveAll(dstOtherPath)

  157. 

  158. 			t.Run("AddWriterDeployKeyToOther", doAPICreateDeployKey(otherCtx, keyname, keyFile, false))

  159. 

  160. 			t.Run("CloneOther", doGitClone(dstOtherPath, otherSSHURL))

  161. 

  162. 			t.Run("AddChangesToOther", doAddChangesToCheckout(dstOtherPath, "CHANGES3.md"))

  163. 

  164. 			t.Run("PushToOther", doGitPushTestRepository(dstOtherPath, "origin", "master"))

  165. 

  166. 			t.Run("FailToCreateUserKey", doAPICreateUserKey(failCtx, keyname, keyFile))

  167. 		})

  168. 

  169. 		t.Run("DeleteRepositoryShouldReleaseKey", func(t *testing.T) {

  170. 			otherSSHURL := createSSHUrl(otherCtx.GitPath(), u)

  171. 			dstOtherPath, err := ioutil.TempDir("", otherCtx.Reponame)

  172. 			assert.NoError(t, err)

  173. 			defer os.RemoveAll(dstOtherPath)

  174. 

  175. 			t.Run("DeleteRepository", doAPIDeleteRepository(ctx))

  176. 

  177. 			t.Run("FailToCreateUserKeyAsStillDeploy", doAPICreateUserKey(failCtx, keyname, keyFile))

  178. 

  179. 			t.Run("MakeSureCloneOtherStillWorks", doGitClone(dstOtherPath, otherSSHURL))

  180. 

  181. 			t.Run("AddChangesToOther", doAddChangesToCheckout(dstOtherPath, "CHANGES3.md"))

  182. 

  183. 			t.Run("PushToOther", doGitPushTestRepository(dstOtherPath, "origin", "master"))

  184. 

  185. 			t.Run("DeleteOtherRepository", doAPIDeleteRepository(otherCtx))

  186. 

  187. 			t.Run("RecreateRepository", doAPICreateRepository(ctx, false))

  188. 

  189. 			t.Run("CreateUserKey", doAPICreateUserKey(ctx, keyname, keyFile, func(t *testing.T, publicKey api.PublicKey) {

  190. 				userKeyPublicKeyID = publicKey.ID

  191. 			}))

  192. 

  193. 			dstPath, err := ioutil.TempDir("", ctx.Reponame)

  194. 			assert.NoError(t, err)

  195. 			defer os.RemoveAll(dstPath)

  196. 

  197. 			sshURL := createSSHUrl(ctx.GitPath(), u)

  198. 

  199. 			t.Run("Clone", doGitClone(dstPath, sshURL))

  200. 

  201. 			t.Run("AddChanges", doAddChangesToCheckout(dstPath, "CHANGES1.md"))

  202. 

  203. 			t.Run("Push", doGitPushTestRepository(dstPath, "origin", "master"))

  204. 		})

  205. 

  206. 		t.Run("DeleteUserKeyShouldRemoveAbilityToClone", func(t *testing.T) {

  207. 			dstPath, err := ioutil.TempDir("", ctx.Reponame)

  208. 			assert.NoError(t, err)

  209. 			defer os.RemoveAll(dstPath)

  210. 

  211. 			sshURL := createSSHUrl(ctx.GitPath(), u)

  212. 

  213. 			t.Run("DeleteUserKey", doAPIDeleteUserKey(ctx, userKeyPublicKeyID))

  214. 

  215. 			t.Run("FailToClone", doGitCloneFail(dstPath, sshURL))

  216. 		})

  217. 	})

  218. }