mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 211 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
12459 Commits
17 Branches
Tree: 3ca5dc7e32
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '3ca5dc7e32'
${ noResults }
gitea/routers/web/user/setting/keys.go

keys.go 8.9KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271 
  1. // Copyright 2014 The Gogs Authors. All rights reserved.

  2. // Copyright 2018 The Gitea Authors. All rights reserved.

  3. // Use of this source code is governed by a MIT-style

  4. // license that can be found in the LICENSE file.

  5. 

  6. package setting

  7. 

  8. import (

  9. 	"net/http"

  10. 

  11. 	asymkey_model "code.gitea.io/gitea/models/asymkey"

  12. 	"code.gitea.io/gitea/models/db"

  13. 	"code.gitea.io/gitea/modules/base"

  14. 	"code.gitea.io/gitea/modules/context"

  15. 	"code.gitea.io/gitea/modules/setting"

  16. 	"code.gitea.io/gitea/modules/web"

  17. 	asymkey_service "code.gitea.io/gitea/services/asymkey"

  18. 	"code.gitea.io/gitea/services/forms"

  19. )

  20. 

  21. const (

  22. 	tplSettingsKeys base.TplName = "user/settings/keys"

  23. )

  24. 

  25. // Keys render user's SSH/GPG public keys page

  26. func Keys(ctx *context.Context) {

  27. 	ctx.Data["Title"] = ctx.Tr("settings")

  28. 	ctx.Data["PageIsSettingsKeys"] = true

  29. 	ctx.Data["DisableSSH"] = setting.SSH.Disabled

  30. 	ctx.Data["BuiltinSSH"] = setting.SSH.StartBuiltinServer

  31. 	ctx.Data["AllowPrincipals"] = setting.SSH.AuthorizedPrincipalsEnabled

  32. 

  33. 	loadKeysData(ctx)

  34. 

  35. 	ctx.HTML(http.StatusOK, tplSettingsKeys)

  36. }

  37. 

  38. // KeysPost response for change user's SSH/GPG keys

  39. func KeysPost(ctx *context.Context) {

  40. 	form := web.GetForm(ctx).(*forms.AddKeyForm)

  41. 	ctx.Data["Title"] = ctx.Tr("settings")

  42. 	ctx.Data["PageIsSettingsKeys"] = true

  43. 	ctx.Data["DisableSSH"] = setting.SSH.Disabled

  44. 	ctx.Data["BuiltinSSH"] = setting.SSH.StartBuiltinServer

  45. 	ctx.Data["AllowPrincipals"] = setting.SSH.AuthorizedPrincipalsEnabled

  46. 

  47. 	if ctx.HasError() {

  48. 		loadKeysData(ctx)

  49. 

  50. 		ctx.HTML(http.StatusOK, tplSettingsKeys)

  51. 		return

  52. 	}

  53. 	switch form.Type {

  54. 	case "principal":

  55. 		content, err := asymkey_model.CheckPrincipalKeyString(ctx.User, form.Content)

  56. 		if err != nil {

  57. 			if db.IsErrSSHDisabled(err) {

  58. 				ctx.Flash.Info(ctx.Tr("settings.ssh_disabled"))

  59. 			} else {

  60. 				ctx.Flash.Error(ctx.Tr("form.invalid_ssh_principal", err.Error()))

  61. 			}

  62. 			ctx.Redirect(setting.AppSubURL + "/user/settings/keys")

  63. 			return

  64. 		}

  65. 		if _, err = asymkey_model.AddPrincipalKey(ctx.User.ID, content, 0); err != nil {

  66. 			ctx.Data["HasPrincipalError"] = true

  67. 			switch {

  68. 			case asymkey_model.IsErrKeyAlreadyExist(err), asymkey_model.IsErrKeyNameAlreadyUsed(err):

  69. 				loadKeysData(ctx)

  70. 

  71. 				ctx.Data["Err_Content"] = true

  72. 				ctx.RenderWithErr(ctx.Tr("settings.ssh_principal_been_used"), tplSettingsKeys, &form)

  73. 			default:

  74. 				ctx.ServerError("AddPrincipalKey", err)

  75. 			}

  76. 			return

  77. 		}

  78. 		ctx.Flash.Success(ctx.Tr("settings.add_principal_success", form.Content))

  79. 		ctx.Redirect(setting.AppSubURL + "/user/settings/keys")

  80. 	case "gpg":

  81. 		token := asymkey_model.VerificationToken(ctx.User, 1)

  82. 		lastToken := asymkey_model.VerificationToken(ctx.User, 0)

  83. 

  84. 		keys, err := asymkey_model.AddGPGKey(ctx.User.ID, form.Content, token, form.Signature)

  85. 		if err != nil && asymkey_model.IsErrGPGInvalidTokenSignature(err) {

  86. 			keys, err = asymkey_model.AddGPGKey(ctx.User.ID, form.Content, lastToken, form.Signature)

  87. 		}

  88. 		if err != nil {

  89. 			ctx.Data["HasGPGError"] = true

  90. 			switch {

  91. 			case asymkey_model.IsErrGPGKeyParsing(err):

  92. 				ctx.Flash.Error(ctx.Tr("form.invalid_gpg_key", err.Error()))

  93. 				ctx.Redirect(setting.AppSubURL + "/user/settings/keys")

  94. 			case asymkey_model.IsErrGPGKeyIDAlreadyUsed(err):

  95. 				loadKeysData(ctx)

  96. 

  97. 				ctx.Data["Err_Content"] = true

  98. 				ctx.RenderWithErr(ctx.Tr("settings.gpg_key_id_used"), tplSettingsKeys, &form)

  99. 			case asymkey_model.IsErrGPGInvalidTokenSignature(err):

  100. 				loadKeysData(ctx)

  101. 				ctx.Data["Err_Content"] = true

  102. 				ctx.Data["Err_Signature"] = true

  103. 				ctx.Data["KeyID"] = err.(asymkey_model.ErrGPGInvalidTokenSignature).ID

  104. 				ctx.RenderWithErr(ctx.Tr("settings.gpg_invalid_token_signature"), tplSettingsKeys, &form)

  105. 			case asymkey_model.IsErrGPGNoEmailFound(err):

  106. 				loadKeysData(ctx)

  107. 

  108. 				ctx.Data["Err_Content"] = true

  109. 				ctx.Data["Err_Signature"] = true

  110. 				ctx.Data["KeyID"] = err.(asymkey_model.ErrGPGNoEmailFound).ID

  111. 				ctx.RenderWithErr(ctx.Tr("settings.gpg_no_key_email_found"), tplSettingsKeys, &form)

  112. 			default:

  113. 				ctx.ServerError("AddPublicKey", err)

  114. 			}

  115. 			return

  116. 		}

  117. 		keyIDs := ""

  118. 		for _, key := range keys {

  119. 			keyIDs += key.KeyID

  120. 			keyIDs += ", "

  121. 		}

  122. 		if len(keyIDs) > 0 {

  123. 			keyIDs = keyIDs[:len(keyIDs)-2]

  124. 		}

  125. 		ctx.Flash.Success(ctx.Tr("settings.add_gpg_key_success", keyIDs))

  126. 		ctx.Redirect(setting.AppSubURL + "/user/settings/keys")

  127. 	case "verify_gpg":

  128. 		token := asymkey_model.VerificationToken(ctx.User, 1)

  129. 		lastToken := asymkey_model.VerificationToken(ctx.User, 0)

  130. 

  131. 		keyID, err := asymkey_model.VerifyGPGKey(ctx.User.ID, form.KeyID, token, form.Signature)

  132. 		if err != nil && asymkey_model.IsErrGPGInvalidTokenSignature(err) {

  133. 			keyID, err = asymkey_model.VerifyGPGKey(ctx.User.ID, form.KeyID, lastToken, form.Signature)

  134. 		}

  135. 		if err != nil {

  136. 			ctx.Data["HasGPGVerifyError"] = true

  137. 			switch {

  138. 			case asymkey_model.IsErrGPGInvalidTokenSignature(err):

  139. 				loadKeysData(ctx)

  140. 				ctx.Data["VerifyingID"] = form.KeyID

  141. 				ctx.Data["Err_Signature"] = true

  142. 				ctx.Data["KeyID"] = err.(asymkey_model.ErrGPGInvalidTokenSignature).ID

  143. 				ctx.RenderWithErr(ctx.Tr("settings.gpg_invalid_token_signature"), tplSettingsKeys, &form)

  144. 			default:

  145. 				ctx.ServerError("VerifyGPG", err)

  146. 			}

  147. 		}

  148. 		ctx.Flash.Success(ctx.Tr("settings.verify_gpg_key_success", keyID))

  149. 		ctx.Redirect(setting.AppSubURL + "/user/settings/keys")

  150. 	case "ssh":

  151. 		content, err := asymkey_model.CheckPublicKeyString(form.Content)

  152. 		if err != nil {

  153. 			if db.IsErrSSHDisabled(err) {

  154. 				ctx.Flash.Info(ctx.Tr("settings.ssh_disabled"))

  155. 			} else if asymkey_model.IsErrKeyUnableVerify(err) {

  156. 				ctx.Flash.Info(ctx.Tr("form.unable_verify_ssh_key"))

  157. 			} else {

  158. 				ctx.Flash.Error(ctx.Tr("form.invalid_ssh_key", err.Error()))

  159. 			}

  160. 			ctx.Redirect(setting.AppSubURL + "/user/settings/keys")

  161. 			return

  162. 		}

  163. 

  164. 		if _, err = asymkey_model.AddPublicKey(ctx.User.ID, form.Title, content, 0); err != nil {

  165. 			ctx.Data["HasSSHError"] = true

  166. 			switch {

  167. 			case asymkey_model.IsErrKeyAlreadyExist(err):

  168. 				loadKeysData(ctx)

  169. 

  170. 				ctx.Data["Err_Content"] = true

  171. 				ctx.RenderWithErr(ctx.Tr("settings.ssh_key_been_used"), tplSettingsKeys, &form)

  172. 			case asymkey_model.IsErrKeyNameAlreadyUsed(err):

  173. 				loadKeysData(ctx)

  174. 

  175. 				ctx.Data["Err_Title"] = true

  176. 				ctx.RenderWithErr(ctx.Tr("settings.ssh_key_name_used"), tplSettingsKeys, &form)

  177. 			case asymkey_model.IsErrKeyUnableVerify(err):

  178. 				ctx.Flash.Info(ctx.Tr("form.unable_verify_ssh_key"))

  179. 				ctx.Redirect(setting.AppSubURL + "/user/settings/keys")

  180. 			default:

  181. 				ctx.ServerError("AddPublicKey", err)

  182. 			}

  183. 			return

  184. 		}

  185. 		ctx.Flash.Success(ctx.Tr("settings.add_key_success", form.Title))

  186. 		ctx.Redirect(setting.AppSubURL + "/user/settings/keys")

  187. 

  188. 	default:

  189. 		ctx.Flash.Warning("Function not implemented")

  190. 		ctx.Redirect(setting.AppSubURL + "/user/settings/keys")

  191. 	}

  192. 

  193. }

  194. 

  195. // DeleteKey response for delete user's SSH/GPG key

  196. func DeleteKey(ctx *context.Context) {

  197. 

  198. 	switch ctx.FormString("type") {

  199. 	case "gpg":

  200. 		if err := asymkey_model.DeleteGPGKey(ctx.User, ctx.FormInt64("id")); err != nil {

  201. 			ctx.Flash.Error("DeleteGPGKey: " + err.Error())

  202. 		} else {

  203. 			ctx.Flash.Success(ctx.Tr("settings.gpg_key_deletion_success"))

  204. 		}

  205. 	case "ssh":

  206. 		keyID := ctx.FormInt64("id")

  207. 		external, err := asymkey_model.PublicKeyIsExternallyManaged(keyID)

  208. 		if err != nil {

  209. 			ctx.ServerError("sshKeysExternalManaged", err)

  210. 			return

  211. 		}

  212. 		if external {

  213. 			ctx.Flash.Error(ctx.Tr("settings.ssh_externally_managed"))

  214. 			ctx.Redirect(setting.AppSubURL + "/user/settings/keys")

  215. 			return

  216. 		}

  217. 		if err := asymkey_service.DeletePublicKey(ctx.User, keyID); err != nil {

  218. 			ctx.Flash.Error("DeletePublicKey: " + err.Error())

  219. 		} else {

  220. 			ctx.Flash.Success(ctx.Tr("settings.ssh_key_deletion_success"))

  221. 		}

  222. 	case "principal":

  223. 		if err := asymkey_service.DeletePublicKey(ctx.User, ctx.FormInt64("id")); err != nil {

  224. 			ctx.Flash.Error("DeletePublicKey: " + err.Error())

  225. 		} else {

  226. 			ctx.Flash.Success(ctx.Tr("settings.ssh_principal_deletion_success"))

  227. 		}

  228. 	default:

  229. 		ctx.Flash.Warning("Function not implemented")

  230. 		ctx.Redirect(setting.AppSubURL + "/user/settings/keys")

  231. 	}

  232. 	ctx.JSON(http.StatusOK, map[string]interface{}{

  233. 		"redirect": setting.AppSubURL + "/user/settings/keys",

  234. 	})

  235. }

  236. 

  237. func loadKeysData(ctx *context.Context) {

  238. 	keys, err := asymkey_model.ListPublicKeys(ctx.User.ID, db.ListOptions{})

  239. 	if err != nil {

  240. 		ctx.ServerError("ListPublicKeys", err)

  241. 		return

  242. 	}

  243. 	ctx.Data["Keys"] = keys

  244. 

  245. 	externalKeys, err := asymkey_model.PublicKeysAreExternallyManaged(keys)

  246. 	if err != nil {

  247. 		ctx.ServerError("ListPublicKeys", err)

  248. 		return

  249. 	}

  250. 	ctx.Data["ExternalKeys"] = externalKeys

  251. 

  252. 	gpgkeys, err := asymkey_model.ListGPGKeys(db.DefaultContext, ctx.User.ID, db.ListOptions{})

  253. 	if err != nil {

  254. 		ctx.ServerError("ListGPGKeys", err)

  255. 		return

  256. 	}

  257. 	ctx.Data["GPGKeys"] = gpgkeys

  258. 	tokenToSign := asymkey_model.VerificationToken(ctx.User, 1)

  259. 

  260. 	// generate a new aes cipher using the csrfToken

  261. 	ctx.Data["TokenToSign"] = tokenToSign

  262. 

  263. 	principals, err := asymkey_model.ListPrincipalKeys(ctx.User.ID, db.ListOptions{})

  264. 	if err != nil {

  265. 		ctx.ServerError("ListPrincipalKeys", err)

  266. 		return

  267. 	}

  268. 	ctx.Data["Principals"] = principals

  269. 

  270. 	ctx.Data["VerifyingID"] = ctx.FormString("verify_gpg")

  271. }