mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 211 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
13580 Commits
17 Branches
Tree: a3d55ac523
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'a3d55ac523'
${ noResults }
gitea/routers/api/packages/npm/npm.go

npm.go 7.5KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295 
  1. // Copyright 2021 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package npm

  6. 

  7. import (

  8. 	"bytes"

  9. 	"errors"

  10. 	"fmt"

  11. 	"io"

  12. 	"net/http"

  13. 	"strings"

  14. 

  15. 	"code.gitea.io/gitea/models/db"

  16. 	packages_model "code.gitea.io/gitea/models/packages"

  17. 	"code.gitea.io/gitea/modules/context"

  18. 	packages_module "code.gitea.io/gitea/modules/packages"

  19. 	npm_module "code.gitea.io/gitea/modules/packages/npm"

  20. 	"code.gitea.io/gitea/modules/setting"

  21. 	"code.gitea.io/gitea/modules/util"

  22. 	"code.gitea.io/gitea/routers/api/packages/helper"

  23. 	packages_service "code.gitea.io/gitea/services/packages"

  24. 

  25. 	"github.com/hashicorp/go-version"

  26. )

  27. 

  28. // errInvalidTagName indicates an invalid tag name

  29. var errInvalidTagName = errors.New("The tag name is invalid")

  30. 

  31. func apiError(ctx *context.Context, status int, obj interface{}) {

  32. 	helper.LogAndProcessError(ctx, status, obj, func(message string) {

  33. 		ctx.JSON(status, map[string]string{

  34. 			"error": message,

  35. 		})

  36. 	})

  37. }

  38. 

  39. // packageNameFromParams gets the package name from the url parameters

  40. // Variations: /name/, /@scope/name/, /@scope%2Fname/

  41. func packageNameFromParams(ctx *context.Context) string {

  42. 	scope := ctx.Params("scope")

  43. 	id := ctx.Params("id")

  44. 	if scope != "" {

  45. 		return fmt.Sprintf("@%s/%s", scope, id)

  46. 	}

  47. 	return id

  48. }

  49. 

  50. // PackageMetadata returns the metadata for a single package

  51. func PackageMetadata(ctx *context.Context) {

  52. 	packageName := packageNameFromParams(ctx)

  53. 

  54. 	pvs, err := packages_model.GetVersionsByPackageName(ctx, ctx.Package.Owner.ID, packages_model.TypeNpm, packageName)

  55. 	if err != nil {

  56. 		apiError(ctx, http.StatusInternalServerError, err)

  57. 		return

  58. 	}

  59. 	if len(pvs) == 0 {

  60. 		apiError(ctx, http.StatusNotFound, err)

  61. 		return

  62. 	}

  63. 

  64. 	pds, err := packages_model.GetPackageDescriptors(ctx, pvs)

  65. 	if err != nil {

  66. 		apiError(ctx, http.StatusInternalServerError, err)

  67. 		return

  68. 	}

  69. 

  70. 	resp := createPackageMetadataResponse(

  71. 		setting.AppURL+"api/packages/"+ctx.Package.Owner.Name+"/npm",

  72. 		pds,

  73. 	)

  74. 

  75. 	ctx.JSON(http.StatusOK, resp)

  76. }

  77. 

  78. // DownloadPackageFile serves the content of a package

  79. func DownloadPackageFile(ctx *context.Context) {

  80. 	packageName := packageNameFromParams(ctx)

  81. 	packageVersion := ctx.Params("version")

  82. 	filename := ctx.Params("filename")

  83. 

  84. 	s, pf, err := packages_service.GetFileStreamByPackageNameAndVersion(

  85. 		ctx,

  86. 		&packages_service.PackageInfo{

  87. 			Owner:       ctx.Package.Owner,

  88. 			PackageType: packages_model.TypeNpm,

  89. 			Name:        packageName,

  90. 			Version:     packageVersion,

  91. 		},

  92. 		&packages_service.PackageFileInfo{

  93. 			Filename: filename,

  94. 		},

  95. 	)

  96. 	if err != nil {

  97. 		if err == packages_model.ErrPackageNotExist || err == packages_model.ErrPackageFileNotExist {

  98. 			apiError(ctx, http.StatusNotFound, err)

  99. 			return

  100. 		}

  101. 		apiError(ctx, http.StatusInternalServerError, err)

  102. 		return

  103. 	}

  104. 	defer s.Close()

  105. 

  106. 	ctx.ServeStream(s, pf.Name)

  107. }

  108. 

  109. // UploadPackage creates a new package

  110. func UploadPackage(ctx *context.Context) {

  111. 	npmPackage, err := npm_module.ParsePackage(ctx.Req.Body)

  112. 	if err != nil {

  113. 		apiError(ctx, http.StatusBadRequest, err)

  114. 		return

  115. 	}

  116. 

  117. 	buf, err := packages_module.CreateHashedBufferFromReader(bytes.NewReader(npmPackage.Data), 32*1024*1024)

  118. 	if err != nil {

  119. 		apiError(ctx, http.StatusInternalServerError, err)

  120. 		return

  121. 	}

  122. 	defer buf.Close()

  123. 

  124. 	pv, _, err := packages_service.CreatePackageAndAddFile(

  125. 		&packages_service.PackageCreationInfo{

  126. 			PackageInfo: packages_service.PackageInfo{

  127. 				Owner:       ctx.Package.Owner,

  128. 				PackageType: packages_model.TypeNpm,

  129. 				Name:        npmPackage.Name,

  130. 				Version:     npmPackage.Version,

  131. 			},

  132. 			SemverCompatible: true,

  133. 			Creator:          ctx.Doer,

  134. 			Metadata:         npmPackage.Metadata,

  135. 		},

  136. 		&packages_service.PackageFileCreationInfo{

  137. 			PackageFileInfo: packages_service.PackageFileInfo{

  138. 				Filename: npmPackage.Filename,

  139. 			},

  140. 			Data:   buf,

  141. 			IsLead: true,

  142. 		},

  143. 	)

  144. 	if err != nil {

  145. 		if err == packages_model.ErrDuplicatePackageVersion {

  146. 			apiError(ctx, http.StatusBadRequest, err)

  147. 			return

  148. 		}

  149. 		apiError(ctx, http.StatusInternalServerError, err)

  150. 		return

  151. 	}

  152. 

  153. 	for _, tag := range npmPackage.DistTags {

  154. 		if err := setPackageTag(tag, pv, false); err != nil {

  155. 			if err == errInvalidTagName {

  156. 				apiError(ctx, http.StatusBadRequest, err)

  157. 				return

  158. 			}

  159. 			apiError(ctx, http.StatusInternalServerError, err)

  160. 			return

  161. 		}

  162. 	}

  163. 

  164. 	ctx.Status(http.StatusCreated)

  165. }

  166. 

  167. // ListPackageTags returns all tags for a package

  168. func ListPackageTags(ctx *context.Context) {

  169. 	packageName := packageNameFromParams(ctx)

  170. 

  171. 	pvs, err := packages_model.GetVersionsByPackageName(ctx, ctx.Package.Owner.ID, packages_model.TypeNpm, packageName)

  172. 	if err != nil {

  173. 		apiError(ctx, http.StatusInternalServerError, err)

  174. 		return

  175. 	}

  176. 

  177. 	tags := make(map[string]string)

  178. 	for _, pv := range pvs {

  179. 		pvps, err := packages_model.GetPropertiesByName(ctx, packages_model.PropertyTypeVersion, pv.ID, npm_module.TagProperty)

  180. 		if err != nil {

  181. 			apiError(ctx, http.StatusInternalServerError, err)

  182. 			return

  183. 		}

  184. 		for _, pvp := range pvps {

  185. 			tags[pvp.Value] = pv.Version

  186. 		}

  187. 	}

  188. 

  189. 	ctx.JSON(http.StatusOK, tags)

  190. }

  191. 

  192. // AddPackageTag adds a tag to the package

  193. func AddPackageTag(ctx *context.Context) {

  194. 	packageName := packageNameFromParams(ctx)

  195. 

  196. 	body, err := io.ReadAll(ctx.Req.Body)

  197. 	if err != nil {

  198. 		apiError(ctx, http.StatusInternalServerError, err)

  199. 		return

  200. 	}

  201. 	version := strings.Trim(string(body), "\"") // is as "version" in the body

  202. 

  203. 	pv, err := packages_model.GetVersionByNameAndVersion(ctx, ctx.Package.Owner.ID, packages_model.TypeNpm, packageName, version)

  204. 	if err != nil {

  205. 		if err == packages_model.ErrPackageNotExist {

  206. 			apiError(ctx, http.StatusNotFound, err)

  207. 			return

  208. 		}

  209. 		apiError(ctx, http.StatusInternalServerError, err)

  210. 		return

  211. 	}

  212. 

  213. 	if err := setPackageTag(ctx.Params("tag"), pv, false); err != nil {

  214. 		if err == errInvalidTagName {

  215. 			apiError(ctx, http.StatusBadRequest, err)

  216. 			return

  217. 		}

  218. 		apiError(ctx, http.StatusInternalServerError, err)

  219. 		return

  220. 	}

  221. }

  222. 

  223. // DeletePackageTag deletes a package tag

  224. func DeletePackageTag(ctx *context.Context) {

  225. 	packageName := packageNameFromParams(ctx)

  226. 

  227. 	pvs, err := packages_model.GetVersionsByPackageName(ctx, ctx.Package.Owner.ID, packages_model.TypeNpm, packageName)

  228. 	if err != nil {

  229. 		apiError(ctx, http.StatusInternalServerError, err)

  230. 		return

  231. 	}

  232. 

  233. 	if len(pvs) != 0 {

  234. 		if err := setPackageTag(ctx.Params("tag"), pvs[0], true); err != nil {

  235. 			if err == errInvalidTagName {

  236. 				apiError(ctx, http.StatusBadRequest, err)

  237. 				return

  238. 			}

  239. 			apiError(ctx, http.StatusInternalServerError, err)

  240. 			return

  241. 		}

  242. 	}

  243. }

  244. 

  245. func setPackageTag(tag string, pv *packages_model.PackageVersion, deleteOnly bool) error {

  246. 	if tag == "" {

  247. 		return errInvalidTagName

  248. 	}

  249. 	_, err := version.NewVersion(tag)

  250. 	if err == nil {

  251. 		return errInvalidTagName

  252. 	}

  253. 

  254. 	ctx, committer, err := db.TxContext()

  255. 	if err != nil {

  256. 		return err

  257. 	}

  258. 	defer committer.Close()

  259. 

  260. 	pvs, _, err := packages_model.SearchVersions(ctx, &packages_model.PackageSearchOptions{

  261. 		PackageID: pv.PackageID,

  262. 		Properties: map[string]string{

  263. 			npm_module.TagProperty: tag,

  264. 		},

  265. 		IsInternal: util.OptionalBoolFalse,

  266. 	})

  267. 	if err != nil {

  268. 		return err

  269. 	}

  270. 

  271. 	if len(pvs) == 1 {

  272. 		pvps, err := packages_model.GetPropertiesByName(ctx, packages_model.PropertyTypeVersion, pvs[0].ID, npm_module.TagProperty)

  273. 		if err != nil {

  274. 			return err

  275. 		}

  276. 

  277. 		for _, pvp := range pvps {

  278. 			if pvp.Value == tag {

  279. 				if err := packages_model.DeletePropertyByID(ctx, pvp.ID); err != nil {

  280. 					return err

  281. 				}

  282. 				break

  283. 			}

  284. 		}

  285. 	}

  286. 

  287. 	if !deleteOnly {

  288. 		_, err = packages_model.InsertProperty(ctx, packages_model.PropertyTypeVersion, pv.ID, npm_module.TagProperty, tag)

  289. 		if err != nil {

  290. 			return err

  291. 		}

  292. 	}

  293. 

  294. 	return committer.Commit()

  295. }