mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 210 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
17860 Commits
17 Branches
Tree: 3feba9f1f4
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '3feba9f1f4'
${ noResults }
gitea/routers/private/hook_pre_receive.go

hook_pre_receive.go 18KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520 
  1. // Copyright 2019 The Gitea Authors. All rights reserved.

  2. // SPDX-License-Identifier: MIT

  3. 

  4. package private

  5. 

  6. import (

  7. 	"fmt"

  8. 	"net/http"

  9. 	"os"

  10. 

  11. 	"code.gitea.io/gitea/models"

  12. 	asymkey_model "code.gitea.io/gitea/models/asymkey"

  13. 	git_model "code.gitea.io/gitea/models/git"

  14. 	issues_model "code.gitea.io/gitea/models/issues"

  15. 	perm_model "code.gitea.io/gitea/models/perm"

  16. 	access_model "code.gitea.io/gitea/models/perm/access"

  17. 	"code.gitea.io/gitea/models/unit"

  18. 	user_model "code.gitea.io/gitea/models/user"

  19. 	"code.gitea.io/gitea/modules/git"

  20. 	"code.gitea.io/gitea/modules/log"

  21. 	"code.gitea.io/gitea/modules/private"

  22. 	"code.gitea.io/gitea/modules/web"

  23. 	gitea_context "code.gitea.io/gitea/services/context"

  24. 	pull_service "code.gitea.io/gitea/services/pull"

  25. )

  26. 

  27. type preReceiveContext struct {

  28. 	*gitea_context.PrivateContext

  29. 

  30. 	// loadedPusher indicates that where the following information are loaded

  31. 	loadedPusher        bool

  32. 	user                *user_model.User // it's the org user if a DeployKey is used

  33. 	userPerm            access_model.Permission

  34. 	deployKeyAccessMode perm_model.AccessMode

  35. 

  36. 	canCreatePullRequest        bool

  37. 	checkedCanCreatePullRequest bool

  38. 

  39. 	canWriteCode        bool

  40. 	checkedCanWriteCode bool

  41. 

  42. 	protectedTags    []*git_model.ProtectedTag

  43. 	gotProtectedTags bool

  44. 

  45. 	env []string

  46. 

  47. 	opts *private.HookOptions

  48. 

  49. 	branchName string

  50. }

  51. 

  52. // CanWriteCode returns true if pusher can write code

  53. func (ctx *preReceiveContext) CanWriteCode() bool {

  54. 	if !ctx.checkedCanWriteCode {

  55. 		if !ctx.loadPusherAndPermission() {

  56. 			return false

  57. 		}

  58. 		ctx.canWriteCode = issues_model.CanMaintainerWriteToBranch(ctx, ctx.userPerm, ctx.branchName, ctx.user) || ctx.deployKeyAccessMode >= perm_model.AccessModeWrite

  59. 		ctx.checkedCanWriteCode = true

  60. 	}

  61. 	return ctx.canWriteCode

  62. }

  63. 

  64. // AssertCanWriteCode returns true if pusher can write code

  65. func (ctx *preReceiveContext) AssertCanWriteCode() bool {

  66. 	if !ctx.CanWriteCode() {

  67. 		if ctx.Written() {

  68. 			return false

  69. 		}

  70. 		ctx.JSON(http.StatusForbidden, private.Response{

  71. 			UserMsg: "User permission denied for writing.",

  72. 		})

  73. 		return false

  74. 	}

  75. 	return true

  76. }

  77. 

  78. // CanCreatePullRequest returns true if pusher can create pull requests

  79. func (ctx *preReceiveContext) CanCreatePullRequest() bool {

  80. 	if !ctx.checkedCanCreatePullRequest {

  81. 		if !ctx.loadPusherAndPermission() {

  82. 			return false

  83. 		}

  84. 		ctx.canCreatePullRequest = ctx.userPerm.CanRead(unit.TypePullRequests)

  85. 		ctx.checkedCanCreatePullRequest = true

  86. 	}

  87. 	return ctx.canCreatePullRequest

  88. }

  89. 

  90. // AssertCreatePullRequest returns true if can create pull requests

  91. func (ctx *preReceiveContext) AssertCreatePullRequest() bool {

  92. 	if !ctx.CanCreatePullRequest() {

  93. 		if ctx.Written() {

  94. 			return false

  95. 		}

  96. 		ctx.JSON(http.StatusForbidden, private.Response{

  97. 			UserMsg: "User permission denied for creating pull-request.",

  98. 		})

  99. 		return false

  100. 	}

  101. 	return true

  102. }

  103. 

  104. // HookPreReceive checks whether a individual commit is acceptable

  105. func HookPreReceive(ctx *gitea_context.PrivateContext) {

  106. 	opts := web.GetForm(ctx).(*private.HookOptions)

  107. 

  108. 	ourCtx := &preReceiveContext{

  109. 		PrivateContext: ctx,

  110. 		env:            generateGitEnv(opts), // Generate git environment for checking commits

  111. 		opts:           opts,

  112. 	}

  113. 

  114. 	// Iterate across the provided old commit IDs

  115. 	for i := range opts.OldCommitIDs {

  116. 		oldCommitID := opts.OldCommitIDs[i]

  117. 		newCommitID := opts.NewCommitIDs[i]

  118. 		refFullName := opts.RefFullNames[i]

  119. 

  120. 		switch {

  121. 		case refFullName.IsBranch():

  122. 			preReceiveBranch(ourCtx, oldCommitID, newCommitID, refFullName)

  123. 		case refFullName.IsTag():

  124. 			preReceiveTag(ourCtx, oldCommitID, newCommitID, refFullName)

  125. 		case git.DefaultFeatures.SupportProcReceive && refFullName.IsFor():

  126. 			preReceiveFor(ourCtx, oldCommitID, newCommitID, refFullName)

  127. 		default:

  128. 			ourCtx.AssertCanWriteCode()

  129. 		}

  130. 		if ctx.Written() {

  131. 			return

  132. 		}

  133. 	}

  134. 

  135. 	ctx.PlainText(http.StatusOK, "ok")

  136. }

  137. 

  138. func preReceiveBranch(ctx *preReceiveContext, oldCommitID, newCommitID string, refFullName git.RefName) {

  139. 	branchName := refFullName.BranchName()

  140. 	ctx.branchName = branchName

  141. 

  142. 	if !ctx.AssertCanWriteCode() {

  143. 		return

  144. 	}

  145. 

  146. 	repo := ctx.Repo.Repository

  147. 	gitRepo := ctx.Repo.GitRepo

  148. 	objectFormat := ctx.Repo.GetObjectFormat()

  149. 

  150. 	if branchName == repo.DefaultBranch && newCommitID == objectFormat.EmptyObjectID().String() {

  151. 		log.Warn("Forbidden: Branch: %s is the default branch in %-v and cannot be deleted", branchName, repo)

  152. 		ctx.JSON(http.StatusForbidden, private.Response{

  153. 			UserMsg: fmt.Sprintf("branch %s is the default branch and cannot be deleted", branchName),

  154. 		})

  155. 		return

  156. 	}

  157. 

  158. 	protectBranch, err := git_model.GetFirstMatchProtectedBranchRule(ctx, repo.ID, branchName)

  159. 	if err != nil {

  160. 		log.Error("Unable to get protected branch: %s in %-v Error: %v", branchName, repo, err)

  161. 		ctx.JSON(http.StatusInternalServerError, private.Response{

  162. 			Err: err.Error(),

  163. 		})

  164. 		return

  165. 	}

  166. 

  167. 	// Allow pushes to non-protected branches

  168. 	if protectBranch == nil {

  169. 		return

  170. 	}

  171. 	protectBranch.Repo = repo

  172. 

  173. 	// This ref is a protected branch.

  174. 	//

  175. 	// First of all we need to enforce absolutely:

  176. 	//

  177. 	// 1. Detect and prevent deletion of the branch

  178. 	if newCommitID == objectFormat.EmptyObjectID().String() {

  179. 		log.Warn("Forbidden: Branch: %s in %-v is protected from deletion", branchName, repo)

  180. 		ctx.JSON(http.StatusForbidden, private.Response{

  181. 			UserMsg: fmt.Sprintf("branch %s is protected from deletion", branchName),

  182. 		})

  183. 		return

  184. 	}

  185. 

  186. 	// 2. Disallow force pushes to protected branches

  187. 	if oldCommitID != objectFormat.EmptyObjectID().String() {

  188. 		output, _, err := git.NewCommand(ctx, "rev-list", "--max-count=1").AddDynamicArguments(oldCommitID, "^"+newCommitID).RunStdString(&git.RunOpts{Dir: repo.RepoPath(), Env: ctx.env})

  189. 		if err != nil {

  190. 			log.Error("Unable to detect force push between: %s and %s in %-v Error: %v", oldCommitID, newCommitID, repo, err)

  191. 			ctx.JSON(http.StatusInternalServerError, private.Response{

  192. 				Err: fmt.Sprintf("Fail to detect force push: %v", err),

  193. 			})

  194. 			return

  195. 		} else if len(output) > 0 {

  196. 			log.Warn("Forbidden: Branch: %s in %-v is protected from force push", branchName, repo)

  197. 			ctx.JSON(http.StatusForbidden, private.Response{

  198. 				UserMsg: fmt.Sprintf("branch %s is protected from force push", branchName),

  199. 			})

  200. 			return

  201. 

  202. 		}

  203. 	}

  204. 

  205. 	// 3. Enforce require signed commits

  206. 	if protectBranch.RequireSignedCommits {

  207. 		err := verifyCommits(oldCommitID, newCommitID, gitRepo, ctx.env)

  208. 		if err != nil {

  209. 			if !isErrUnverifiedCommit(err) {

  210. 				log.Error("Unable to check commits from %s to %s in %-v: %v", oldCommitID, newCommitID, repo, err)

  211. 				ctx.JSON(http.StatusInternalServerError, private.Response{

  212. 					Err: fmt.Sprintf("Unable to check commits from %s to %s: %v", oldCommitID, newCommitID, err),

  213. 				})

  214. 				return

  215. 			}

  216. 			unverifiedCommit := err.(*errUnverifiedCommit).sha

  217. 			log.Warn("Forbidden: Branch: %s in %-v is protected from unverified commit %s", branchName, repo, unverifiedCommit)

  218. 			ctx.JSON(http.StatusForbidden, private.Response{

  219. 				UserMsg: fmt.Sprintf("branch %s is protected from unverified commit %s", branchName, unverifiedCommit),

  220. 			})

  221. 			return

  222. 		}

  223. 	}

  224. 

  225. 	// Now there are several tests which can be overridden:

  226. 	//

  227. 	// 4. Check protected file patterns - this is overridable from the UI

  228. 	changedProtectedfiles := false

  229. 	protectedFilePath := ""

  230. 

  231. 	globs := protectBranch.GetProtectedFilePatterns()

  232. 	if len(globs) > 0 {

  233. 		_, err := pull_service.CheckFileProtection(gitRepo, oldCommitID, newCommitID, globs, 1, ctx.env)

  234. 		if err != nil {

  235. 			if !models.IsErrFilePathProtected(err) {

  236. 				log.Error("Unable to check file protection for commits from %s to %s in %-v: %v", oldCommitID, newCommitID, repo, err)

  237. 				ctx.JSON(http.StatusInternalServerError, private.Response{

  238. 					Err: fmt.Sprintf("Unable to check file protection for commits from %s to %s: %v", oldCommitID, newCommitID, err),

  239. 				})

  240. 				return

  241. 			}

  242. 

  243. 			changedProtectedfiles = true

  244. 			protectedFilePath = err.(models.ErrFilePathProtected).Path

  245. 		}

  246. 	}

  247. 

  248. 	// 5. Check if the doer is allowed to push

  249. 	var canPush bool

  250. 	if ctx.opts.DeployKeyID != 0 {

  251. 		canPush = !changedProtectedfiles && protectBranch.CanPush && (!protectBranch.EnableWhitelist || protectBranch.WhitelistDeployKeys)

  252. 	} else {

  253. 		user, err := user_model.GetUserByID(ctx, ctx.opts.UserID)

  254. 		if err != nil {

  255. 			log.Error("Unable to GetUserByID for commits from %s to %s in %-v: %v", oldCommitID, newCommitID, repo, err)

  256. 			ctx.JSON(http.StatusInternalServerError, private.Response{

  257. 				Err: fmt.Sprintf("Unable to GetUserByID for commits from %s to %s: %v", oldCommitID, newCommitID, err),

  258. 			})

  259. 			return

  260. 		}

  261. 		canPush = !changedProtectedfiles && protectBranch.CanUserPush(ctx, user)

  262. 	}

  263. 

  264. 	// 6. If we're not allowed to push directly

  265. 	if !canPush {

  266. 		// Is this is a merge from the UI/API?

  267. 		if ctx.opts.PullRequestID == 0 {

  268. 			// 6a. If we're not merging from the UI/API then there are two ways we got here:

  269. 			//

  270. 			// We are changing a protected file and we're not allowed to do that

  271. 			if changedProtectedfiles {

  272. 				log.Warn("Forbidden: Branch: %s in %-v is protected from changing file %s", branchName, repo, protectedFilePath)

  273. 				ctx.JSON(http.StatusForbidden, private.Response{

  274. 					UserMsg: fmt.Sprintf("branch %s is protected from changing file %s", branchName, protectedFilePath),

  275. 				})

  276. 				return

  277. 			}

  278. 

  279. 			// Allow commits that only touch unprotected files

  280. 			globs := protectBranch.GetUnprotectedFilePatterns()

  281. 			if len(globs) > 0 {

  282. 				unprotectedFilesOnly, err := pull_service.CheckUnprotectedFiles(gitRepo, oldCommitID, newCommitID, globs, ctx.env)

  283. 				if err != nil {

  284. 					log.Error("Unable to check file protection for commits from %s to %s in %-v: %v", oldCommitID, newCommitID, repo, err)

  285. 					ctx.JSON(http.StatusInternalServerError, private.Response{

  286. 						Err: fmt.Sprintf("Unable to check file protection for commits from %s to %s: %v", oldCommitID, newCommitID, err),

  287. 					})

  288. 					return

  289. 				}

  290. 				if unprotectedFilesOnly {

  291. 					// Commit only touches unprotected files, this is allowed

  292. 					return

  293. 				}

  294. 			}

  295. 

  296. 			// Or we're simply not able to push to this protected branch

  297. 			log.Warn("Forbidden: User %d is not allowed to push to protected branch: %s in %-v", ctx.opts.UserID, branchName, repo)

  298. 			ctx.JSON(http.StatusForbidden, private.Response{

  299. 				UserMsg: fmt.Sprintf("Not allowed to push to protected branch %s", branchName),

  300. 			})

  301. 			return

  302. 		}

  303. 		// 6b. Merge (from UI or API)

  304. 

  305. 		// Get the PR, user and permissions for the user in the repository

  306. 		pr, err := issues_model.GetPullRequestByID(ctx, ctx.opts.PullRequestID)

  307. 		if err != nil {

  308. 			log.Error("Unable to get PullRequest %d Error: %v", ctx.opts.PullRequestID, err)

  309. 			ctx.JSON(http.StatusInternalServerError, private.Response{

  310. 				Err: fmt.Sprintf("Unable to get PullRequest %d Error: %v", ctx.opts.PullRequestID, err),

  311. 			})

  312. 			return

  313. 		}

  314. 

  315. 		// although we should have called `loadPusherAndPermission` before, here we call it explicitly again because we need to access ctx.user below

  316. 		if !ctx.loadPusherAndPermission() {

  317. 			// if error occurs, loadPusherAndPermission had written the error response

  318. 			return

  319. 		}

  320. 

  321. 		// Now check if the user is allowed to merge PRs for this repository

  322. 		// Note: we can use ctx.perm and ctx.user directly as they will have been loaded above

  323. 		allowedMerge, err := pull_service.IsUserAllowedToMerge(ctx, pr, ctx.userPerm, ctx.user)

  324. 		if err != nil {

  325. 			log.Error("Error calculating if allowed to merge: %v", err)

  326. 			ctx.JSON(http.StatusInternalServerError, private.Response{

  327. 				Err: fmt.Sprintf("Error calculating if allowed to merge: %v", err),

  328. 			})

  329. 			return

  330. 		}

  331. 

  332. 		if !allowedMerge {

  333. 			log.Warn("Forbidden: User %d is not allowed to push to protected branch: %s in %-v and is not allowed to merge pr #%d", ctx.opts.UserID, branchName, repo, pr.Index)

  334. 			ctx.JSON(http.StatusForbidden, private.Response{

  335. 				UserMsg: fmt.Sprintf("Not allowed to push to protected branch %s", branchName),

  336. 			})

  337. 			return

  338. 		}

  339. 

  340. 		// If we're an admin for the repository we can ignore status checks, reviews and override protected files

  341. 		if ctx.userPerm.IsAdmin() {

  342. 			return

  343. 		}

  344. 

  345. 		// Now if we're not an admin - we can't overwrite protected files so fail now

  346. 		if changedProtectedfiles {

  347. 			log.Warn("Forbidden: Branch: %s in %-v is protected from changing file %s", branchName, repo, protectedFilePath)

  348. 			ctx.JSON(http.StatusForbidden, private.Response{

  349. 				UserMsg: fmt.Sprintf("branch %s is protected from changing file %s", branchName, protectedFilePath),

  350. 			})

  351. 			return

  352. 		}

  353. 

  354. 		// Check all status checks and reviews are ok

  355. 		if err := pull_service.CheckPullBranchProtections(ctx, pr, true); err != nil {

  356. 			if models.IsErrDisallowedToMerge(err) {

  357. 				log.Warn("Forbidden: User %d is not allowed push to protected branch %s in %-v and pr #%d is not ready to be merged: %s", ctx.opts.UserID, branchName, repo, pr.Index, err.Error())

  358. 				ctx.JSON(http.StatusForbidden, private.Response{

  359. 					UserMsg: fmt.Sprintf("Not allowed to push to protected branch %s and pr #%d is not ready to be merged: %s", branchName, ctx.opts.PullRequestID, err.Error()),

  360. 				})

  361. 				return

  362. 			}

  363. 			log.Error("Unable to check if mergable: protected branch %s in %-v and pr #%d. Error: %v", ctx.opts.UserID, branchName, repo, pr.Index, err)

  364. 			ctx.JSON(http.StatusInternalServerError, private.Response{

  365. 				Err: fmt.Sprintf("Unable to get status of pull request %d. Error: %v", ctx.opts.PullRequestID, err),

  366. 			})

  367. 			return

  368. 		}

  369. 	}

  370. }

  371. 

  372. func preReceiveTag(ctx *preReceiveContext, oldCommitID, newCommitID string, refFullName git.RefName) {

  373. 	if !ctx.AssertCanWriteCode() {

  374. 		return

  375. 	}

  376. 

  377. 	tagName := refFullName.TagName()

  378. 

  379. 	if !ctx.gotProtectedTags {

  380. 		var err error

  381. 		ctx.protectedTags, err = git_model.GetProtectedTags(ctx, ctx.Repo.Repository.ID)

  382. 		if err != nil {

  383. 			log.Error("Unable to get protected tags for %-v Error: %v", ctx.Repo.Repository, err)

  384. 			ctx.JSON(http.StatusInternalServerError, private.Response{

  385. 				Err: err.Error(),

  386. 			})

  387. 			return

  388. 		}

  389. 		ctx.gotProtectedTags = true

  390. 	}

  391. 

  392. 	isAllowed, err := git_model.IsUserAllowedToControlTag(ctx, ctx.protectedTags, tagName, ctx.opts.UserID)

  393. 	if err != nil {

  394. 		ctx.JSON(http.StatusInternalServerError, private.Response{

  395. 			Err: err.Error(),

  396. 		})

  397. 		return

  398. 	}

  399. 	if !isAllowed {

  400. 		log.Warn("Forbidden: Tag %s in %-v is protected", tagName, ctx.Repo.Repository)

  401. 		ctx.JSON(http.StatusForbidden, private.Response{

  402. 			UserMsg: fmt.Sprintf("Tag %s is protected", tagName),

  403. 		})

  404. 		return

  405. 	}

  406. }

  407. 

  408. func preReceiveFor(ctx *preReceiveContext, oldCommitID, newCommitID string, refFullName git.RefName) {

  409. 	if !ctx.AssertCreatePullRequest() {

  410. 		return

  411. 	}

  412. 

  413. 	if ctx.Repo.Repository.IsEmpty {

  414. 		ctx.JSON(http.StatusForbidden, private.Response{

  415. 			UserMsg: "Can't create pull request for an empty repository.",

  416. 		})

  417. 		return

  418. 	}

  419. 

  420. 	if ctx.opts.IsWiki {

  421. 		ctx.JSON(http.StatusForbidden, private.Response{

  422. 			UserMsg: "Pull requests are not supported on the wiki.",

  423. 		})

  424. 		return

  425. 	}

  426. 

  427. 	baseBranchName := refFullName.ForBranchName()

  428. 

  429. 	baseBranchExist := false

  430. 	if ctx.Repo.GitRepo.IsBranchExist(baseBranchName) {

  431. 		baseBranchExist = true

  432. 	}

  433. 

  434. 	if !baseBranchExist {

  435. 		for p, v := range baseBranchName {

  436. 			if v == '/' && ctx.Repo.GitRepo.IsBranchExist(baseBranchName[:p]) && p != len(baseBranchName)-1 {

  437. 				baseBranchExist = true

  438. 				break

  439. 			}

  440. 		}

  441. 	}

  442. 

  443. 	if !baseBranchExist {

  444. 		ctx.JSON(http.StatusForbidden, private.Response{

  445. 			UserMsg: fmt.Sprintf("Unexpected ref: %s", refFullName),

  446. 		})

  447. 		return

  448. 	}

  449. }

  450. 

  451. func generateGitEnv(opts *private.HookOptions) (env []string) {

  452. 	env = os.Environ()

  453. 	if opts.GitAlternativeObjectDirectories != "" {

  454. 		env = append(env,

  455. 			private.GitAlternativeObjectDirectories+"="+opts.GitAlternativeObjectDirectories)

  456. 	}

  457. 	if opts.GitObjectDirectory != "" {

  458. 		env = append(env,

  459. 			private.GitObjectDirectory+"="+opts.GitObjectDirectory)

  460. 	}

  461. 	if opts.GitQuarantinePath != "" {

  462. 		env = append(env,

  463. 			private.GitQuarantinePath+"="+opts.GitQuarantinePath)

  464. 	}

  465. 	return env

  466. }

  467. 

  468. // loadPusherAndPermission returns false if an error occurs, and it writes the error response

  469. func (ctx *preReceiveContext) loadPusherAndPermission() bool {

  470. 	if ctx.loadedPusher {

  471. 		return true

  472. 	}

  473. 

  474. 	if ctx.opts.UserID == user_model.ActionsUserID {

  475. 		ctx.user = user_model.NewActionsUser()

  476. 		ctx.userPerm.AccessMode = perm_model.AccessMode(ctx.opts.ActionPerm)

  477. 		if err := ctx.Repo.Repository.LoadUnits(ctx); err != nil {

  478. 			log.Error("Unable to get User id %d Error: %v", ctx.opts.UserID, err)

  479. 			ctx.JSON(http.StatusInternalServerError, private.Response{

  480. 				Err: fmt.Sprintf("Unable to get User id %d Error: %v", ctx.opts.UserID, err),

  481. 			})

  482. 			return false

  483. 		}

  484. 		ctx.userPerm.SetUnitsWithDefaultAccessMode(ctx.Repo.Repository.Units, ctx.userPerm.AccessMode)

  485. 	} else {

  486. 		user, err := user_model.GetUserByID(ctx, ctx.opts.UserID)

  487. 		if err != nil {

  488. 			log.Error("Unable to get User id %d Error: %v", ctx.opts.UserID, err)

  489. 			ctx.JSON(http.StatusInternalServerError, private.Response{

  490. 				Err: fmt.Sprintf("Unable to get User id %d Error: %v", ctx.opts.UserID, err),

  491. 			})

  492. 			return false

  493. 		}

  494. 		ctx.user = user

  495. 		userPerm, err := access_model.GetUserRepoPermission(ctx, ctx.Repo.Repository, user)

  496. 		if err != nil {

  497. 			log.Error("Unable to get Repo permission of repo %s/%s of User %s: %v", ctx.Repo.Repository.OwnerName, ctx.Repo.Repository.Name, user.Name, err)

  498. 			ctx.JSON(http.StatusInternalServerError, private.Response{

  499. 				Err: fmt.Sprintf("Unable to get Repo permission of repo %s/%s of User %s: %v", ctx.Repo.Repository.OwnerName, ctx.Repo.Repository.Name, user.Name, err),

  500. 			})

  501. 			return false

  502. 		}

  503. 		ctx.userPerm = userPerm

  504. 	}

  505. 

  506. 	if ctx.opts.DeployKeyID != 0 {

  507. 		deployKey, err := asymkey_model.GetDeployKeyByID(ctx, ctx.opts.DeployKeyID)

  508. 		if err != nil {

  509. 			log.Error("Unable to get DeployKey id %d Error: %v", ctx.opts.DeployKeyID, err)

  510. 			ctx.JSON(http.StatusInternalServerError, private.Response{

  511. 				Err: fmt.Sprintf("Unable to get DeployKey id %d Error: %v", ctx.opts.DeployKeyID, err),

  512. 			})

  513. 			return false

  514. 		}

  515. 		ctx.deployKeyAccessMode = deployKey.Mode

  516. 	}

  517. 

  518. 	ctx.loadedPusher = true

  519. 	return true

  520. }