mirrors
/
gitea
镜像来自 https://github.com/go-gitea/gitea.git
關注 1
收藏 0
複製 0
程式碼 問題 0 版本發佈 211 Wiki 活動
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3808 提交
17 分支
目錄樹: 9bd9ad4205
分支列表 標籤
${ item.name }
建立分支 ${ searchTerm }
從 '9bd9ad4205'
${ noResults }
gitea/routers/api/v1/api.go

api.go 6.0KB
原始文件 Blame 歷史記錄

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228 
  1. // Copyright 2015 The Gogs Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package v1

  6. 

  7. import (

  8. 	"strings"

  9. 

  10. 	"github.com/go-macaron/binding"

  11. 	"gopkg.in/macaron.v1"

  12. 

  13. 	api "github.com/gogits/go-gogs-client"

  14. 

  15. 	"github.com/gogits/gogs/models"

  16. 	"github.com/gogits/gogs/modules/auth"

  17. 	"github.com/gogits/gogs/modules/context"

  18. 	"github.com/gogits/gogs/routers/api/v1/admin"

  19. 	"github.com/gogits/gogs/routers/api/v1/misc"

  20. 	"github.com/gogits/gogs/routers/api/v1/org"

  21. 	"github.com/gogits/gogs/routers/api/v1/repo"

  22. 	"github.com/gogits/gogs/routers/api/v1/user"

  23. )

  24. 

  25. func RepoAssignment() macaron.Handler {

  26. 	return func(ctx *context.APIContext) {

  27. 		userName := ctx.Params(":username")

  28. 		repoName := ctx.Params(":reponame")

  29. 

  30. 		var (

  31. 			owner *models.User

  32. 			err   error

  33. 		)

  34. 

  35. 		// Check if the user is the same as the repository owner.

  36. 		if ctx.IsSigned && ctx.User.LowerName == strings.ToLower(userName) {

  37. 			owner = ctx.User

  38. 		} else {

  39. 			owner, err = models.GetUserByName(userName)

  40. 			if err != nil {

  41. 				if models.IsErrUserNotExist(err) {

  42. 					ctx.Status(404)

  43. 				} else {

  44. 					ctx.Error(500, "GetUserByName", err)

  45. 				}

  46. 				return

  47. 			}

  48. 		}

  49. 		ctx.Repo.Owner = owner

  50. 

  51. 		// Get repository.

  52. 		repo, err := models.GetRepositoryByName(owner.Id, repoName)

  53. 		if err != nil {

  54. 			if models.IsErrRepoNotExist(err) {

  55. 				ctx.Status(404)

  56. 			} else {

  57. 				ctx.Error(500, "GetRepositoryByName", err)

  58. 			}

  59. 			return

  60. 		} else if err = repo.GetOwner(); err != nil {

  61. 			ctx.Error(500, "GetOwner", err)

  62. 			return

  63. 		}

  64. 

  65. 		if ctx.IsSigned && ctx.User.IsAdmin {

  66. 			ctx.Repo.AccessMode = models.ACCESS_MODE_OWNER

  67. 		} else {

  68. 			mode, err := models.AccessLevel(ctx.User, repo)

  69. 			if err != nil {

  70. 				ctx.Error(500, "AccessLevel", err)

  71. 				return

  72. 			}

  73. 			ctx.Repo.AccessMode = mode

  74. 		}

  75. 

  76. 		if !ctx.Repo.HasAccess() {

  77. 			ctx.Status(404)

  78. 			return

  79. 		}

  80. 

  81. 		ctx.Repo.Repository = repo

  82. 	}

  83. }

  84. 

  85. // Contexter middleware already checks token for user sign in process.

  86. func ReqToken() macaron.Handler {

  87. 	return func(ctx *context.Context) {

  88. 		if !ctx.IsSigned {

  89. 			ctx.Error(401)

  90. 			return

  91. 		}

  92. 	}

  93. }

  94. 

  95. func ReqBasicAuth() macaron.Handler {

  96. 	return func(ctx *context.Context) {

  97. 		if !ctx.IsBasicAuth {

  98. 			ctx.Error(401)

  99. 			return

  100. 		}

  101. 	}

  102. }

  103. 

  104. func ReqAdmin() macaron.Handler {

  105. 	return func(ctx *context.Context) {

  106. 		if !ctx.User.IsAdmin {

  107. 			ctx.Error(403)

  108. 			return

  109. 		}

  110. 	}

  111. }

  112. 

  113. // RegisterRoutes registers all v1 APIs routes to web application.

  114. // FIXME: custom form error response

  115. func RegisterRoutes(m *macaron.Macaron) {

  116. 	bind := binding.Bind

  117. 

  118. 	m.Group("/v1", func() {

  119. 		// Miscellaneous

  120. 		m.Post("/markdown", bind(api.MarkdownOption{}), misc.Markdown)

  121. 		m.Post("/markdown/raw", misc.MarkdownRaw)

  122. 

  123. 		// Users

  124. 		m.Group("/users", func() {

  125. 			m.Get("/search", user.Search)

  126. 

  127. 			m.Group("/:username", func() {

  128. 				m.Get("", user.GetInfo)

  129. 

  130. 				m.Group("/tokens", func() {

  131. 					m.Combo("").Get(user.ListAccessTokens).

  132. 						Post(bind(api.CreateAccessTokenOption{}), user.CreateAccessToken)

  133. 				}, ReqBasicAuth())

  134. 			})

  135. 		})

  136. 

  137. 		m.Group("/users", func() {

  138. 			m.Group("/:username", func() {

  139. 				m.Get("/keys", user.ListPublicKeys)

  140. 

  141. 				m.Get("/followers", user.ListFollowers)

  142. 				m.Group("/following", func() {

  143. 					m.Get("", user.ListFollowing)

  144. 					m.Get("/:target", user.CheckFollowing)

  145. 				})

  146. 			})

  147. 		}, ReqToken())

  148. 

  149. 		m.Group("/user", func() {

  150. 			m.Combo("/emails").Get(user.ListEmails).

  151. 				Post(bind(api.CreateEmailOption{}), user.AddEmail).

  152. 				Delete(bind(api.CreateEmailOption{}), user.DeleteEmail)

  153. 

  154. 			m.Get("/followers", user.ListMyFollowers)

  155. 			m.Group("/following", func() {

  156. 				m.Get("", user.ListMyFollowing)

  157. 				m.Combo("/:username").Get(user.CheckMyFollowing).Put(user.Follow).Delete(user.Unfollow)

  158. 			})

  159. 

  160. 			m.Group("/keys", func() {

  161. 				m.Combo("").Get(user.ListMyPublicKeys).

  162. 					Post(bind(api.CreateKeyOption{}), user.CreatePublicKey)

  163. 				m.Combo("/:id").Get(user.GetPublicKey).

  164. 					Delete(user.DeletePublicKey)

  165. 			})

  166. 		}, ReqToken())

  167. 

  168. 		// Repositories

  169. 		m.Combo("/user/repos", ReqToken()).Get(repo.ListMyRepos).

  170. 			Post(bind(api.CreateRepoOption{}), repo.Create)

  171. 		m.Post("/org/:org/repos", ReqToken(), bind(api.CreateRepoOption{}), repo.CreateOrgRepo)

  172. 

  173. 		m.Group("/repos", func() {

  174. 			m.Get("/search", repo.Search)

  175. 		})

  176. 

  177. 		m.Group("/repos", func() {

  178. 			m.Post("/migrate", bind(auth.MigrateRepoForm{}), repo.Migrate)

  179. 			m.Combo("/:username/:reponame").Get(repo.Get).

  180. 				Delete(repo.Delete)

  181. 

  182. 			m.Group("/:username/:reponame", func() {

  183. 				m.Combo("/hooks").Get(repo.ListHooks).

  184. 					Post(bind(api.CreateHookOption{}), repo.CreateHook)

  185. 				m.Patch("/hooks/:id:int", bind(api.EditHookOption{}), repo.EditHook)

  186. 				m.Get("/raw/*", context.RepoRef(), repo.GetRawFile)

  187. 				m.Get("/archive/*", repo.GetArchive)

  188. 				m.Group("/branches", func() {

  189. 					m.Get("", repo.ListBranches)

  190. 					m.Get("/:branchname", repo.GetBranch)

  191. 				})

  192. 				m.Group("/keys", func() {

  193. 					m.Combo("").Get(repo.ListDeployKeys).

  194. 						Post(bind(api.CreateKeyOption{}), repo.CreateDeployKey)

  195. 					m.Combo("/:id").Get(repo.GetDeployKey).

  196. 						Delete(repo.DeleteDeploykey)

  197. 				})

  198. 				m.Group("/issues", func() {

  199. 					m.Combo("").Get(repo.ListIssues).Post(bind(api.CreateIssueOption{}), repo.CreateIssue)

  200. 					m.Combo("/:index").Get(repo.GetIssue).Patch(bind(api.EditIssueOption{}), repo.EditIssue)

  201. 				})

  202. 			}, RepoAssignment())

  203. 		}, ReqToken())

  204. 

  205. 		// Organizations

  206. 		m.Get("/user/orgs", ReqToken(), org.ListMyOrgs)

  207. 		m.Get("/users/:username/orgs", org.ListUserOrgs)

  208. 		m.Combo("/orgs/:orgname").Get(org.Get).Patch(bind(api.EditOrgOption{}), org.Edit)

  209. 

  210. 		m.Any("/*", func(ctx *context.Context) {

  211. 			ctx.Error(404)

  212. 		})

  213. 

  214. 		m.Group("/admin", func() {

  215. 			m.Group("/users", func() {

  216. 				m.Post("", bind(api.CreateUserOption{}), admin.CreateUser)

  217. 

  218. 				m.Group("/:username", func() {

  219. 					m.Combo("").Patch(bind(api.EditUserOption{}), admin.EditUser).

  220. 						Delete(admin.DeleteUser)

  221. 					m.Post("/keys", bind(api.CreateKeyOption{}), admin.CreatePublicKey)

  222. 					m.Post("/orgs", bind(api.CreateOrgOption{}), admin.CreateOrg)

  223. 					m.Post("/repos", bind(api.CreateRepoOption{}), admin.CreateRepo)

  224. 				})

  225. 			})

  226. 		}, ReqAdmin())

  227. 	}, context.APIContexter())

  228. }