mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 210 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8876 Commits
17 Branches
Tree: c6edb25fe2
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'c6edb25fe2'
${ noResults }
gitea/integrations/api_repo_get_contents_test.go

api_repo_get_contents_test.go 6.5KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164 
  1. // Copyright 2019 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package integrations

  6. 

  7. import (

  8. 	"net/http"

  9. 	"net/url"

  10. 	"testing"

  11. 

  12. 	"code.gitea.io/gitea/models"

  13. 	"code.gitea.io/gitea/modules/context"

  14. 	"code.gitea.io/gitea/modules/git"

  15. 	repo_module "code.gitea.io/gitea/modules/repository"

  16. 	"code.gitea.io/gitea/modules/setting"

  17. 	api "code.gitea.io/gitea/modules/structs"

  18. 

  19. 	"github.com/stretchr/testify/assert"

  20. )

  21. 

  22. func getExpectedContentsResponseForContents(ref, refType string) *api.ContentsResponse {

  23. 	treePath := "README.md"

  24. 	sha := "4b4851ad51df6a7d9f25c979345979eaeb5b349f"

  25. 	encoding := "base64"

  26. 	content := "IyByZXBvMQoKRGVzY3JpcHRpb24gZm9yIHJlcG8x"

  27. 	selfURL := setting.AppURL + "api/v1/repos/user2/repo1/contents/" + treePath + "?ref=" + ref

  28. 	htmlURL := setting.AppURL + "user2/repo1/src/" + refType + "/" + ref + "/" + treePath

  29. 	gitURL := setting.AppURL + "api/v1/repos/user2/repo1/git/blobs/" + sha

  30. 	downloadURL := setting.AppURL + "user2/repo1/raw/" + refType + "/" + ref + "/" + treePath

  31. 	return &api.ContentsResponse{

  32. 		Name:        treePath,

  33. 		Path:        treePath,

  34. 		SHA:         sha,

  35. 		Type:        "file",

  36. 		Size:        30,

  37. 		Encoding:    &encoding,

  38. 		Content:     &content,

  39. 		URL:         &selfURL,

  40. 		HTMLURL:     &htmlURL,

  41. 		GitURL:      &gitURL,

  42. 		DownloadURL: &downloadURL,

  43. 		Links: &api.FileLinksResponse{

  44. 			Self:    &selfURL,

  45. 			GitURL:  &gitURL,

  46. 			HTMLURL: &htmlURL,

  47. 		},

  48. 	}

  49. }

  50. 

  51. func TestAPIGetContents(t *testing.T) {

  52. 	onGiteaRun(t, testAPIGetContents)

  53. }

  54. 

  55. func testAPIGetContents(t *testing.T, u *url.URL) {

  56. 	/*** SETUP ***/

  57. 	user2 := models.AssertExistsAndLoadBean(t, &models.User{ID: 2}).(*models.User)               // owner of the repo1 & repo16

  58. 	user3 := models.AssertExistsAndLoadBean(t, &models.User{ID: 3}).(*models.User)               // owner of the repo3, is an org

  59. 	user4 := models.AssertExistsAndLoadBean(t, &models.User{ID: 4}).(*models.User)               // owner of neither repos

  60. 	repo1 := models.AssertExistsAndLoadBean(t, &models.Repository{ID: 1}).(*models.Repository)   // public repo

  61. 	repo3 := models.AssertExistsAndLoadBean(t, &models.Repository{ID: 3}).(*models.Repository)   // public repo

  62. 	repo16 := models.AssertExistsAndLoadBean(t, &models.Repository{ID: 16}).(*models.Repository) // private repo

  63. 	treePath := "README.md"

  64. 

  65. 	// Get user2's token

  66. 	session := loginUser(t, user2.Name)

  67. 	token2 := getTokenForLoggedInUser(t, session)

  68. 	session = emptyTestSession(t)

  69. 	// Get user4's token

  70. 	session = loginUser(t, user4.Name)

  71. 	token4 := getTokenForLoggedInUser(t, session)

  72. 	session = emptyTestSession(t)

  73. 

  74. 	// Make a new branch in repo1

  75. 	newBranch := "test_branch"

  76. 	err := repo_module.CreateNewBranch(user2, repo1, repo1.DefaultBranch, newBranch)

  77. 	assert.NoError(t, err)

  78. 	// Get the commit ID of the default branch

  79. 	gitRepo, err := git.OpenRepository(repo1.RepoPath())

  80. 	assert.NoError(t, err)

  81. 	defer gitRepo.Close()

  82. 

  83. 	commitID, err := gitRepo.GetBranchCommitID(repo1.DefaultBranch)

  84. 	assert.NoError(t, err)

  85. 	// Make a new tag in repo1

  86. 	newTag := "test_tag"

  87. 	err = gitRepo.CreateTag(newTag, commitID)

  88. 	assert.NoError(t, err)

  89. 	/*** END SETUP ***/

  90. 

  91. 	// ref is default ref

  92. 	ref := repo1.DefaultBranch

  93. 	refType := "branch"

  94. 	req := NewRequestf(t, "GET", "/api/v1/repos/%s/%s/contents/%s?ref=%s", user2.Name, repo1.Name, treePath, ref)

  95. 	resp := session.MakeRequest(t, req, http.StatusOK)

  96. 	var contentsResponse api.ContentsResponse

  97. 	DecodeJSON(t, resp, &contentsResponse)

  98. 	assert.NotNil(t, contentsResponse)

  99. 	expectedContentsResponse := getExpectedContentsResponseForContents(ref, refType)

  100. 	assert.EqualValues(t, *expectedContentsResponse, contentsResponse)

  101. 

  102. 	// No ref

  103. 	refType = "branch"

  104. 	req = NewRequestf(t, "GET", "/api/v1/repos/%s/%s/contents/%s", user2.Name, repo1.Name, treePath)

  105. 	resp = session.MakeRequest(t, req, http.StatusOK)

  106. 	DecodeJSON(t, resp, &contentsResponse)

  107. 	assert.NotNil(t, contentsResponse)

  108. 	expectedContentsResponse = getExpectedContentsResponseForContents(repo1.DefaultBranch, refType)

  109. 	assert.EqualValues(t, *expectedContentsResponse, contentsResponse)

  110. 

  111. 	// ref is the branch we created above  in setup

  112. 	ref = newBranch

  113. 	refType = "branch"

  114. 	req = NewRequestf(t, "GET", "/api/v1/repos/%s/%s/contents/%s?ref=%s", user2.Name, repo1.Name, treePath, ref)

  115. 	resp = session.MakeRequest(t, req, http.StatusOK)

  116. 	DecodeJSON(t, resp, &contentsResponse)

  117. 	assert.NotNil(t, contentsResponse)

  118. 	expectedContentsResponse = getExpectedContentsResponseForContents(ref, refType)

  119. 	assert.EqualValues(t, *expectedContentsResponse, contentsResponse)

  120. 

  121. 	// ref is the new tag we created above in setup

  122. 	ref = newTag

  123. 	refType = "tag"

  124. 	req = NewRequestf(t, "GET", "/api/v1/repos/%s/%s/contents/%s?ref=%s", user2.Name, repo1.Name, treePath, ref)

  125. 	resp = session.MakeRequest(t, req, http.StatusOK)

  126. 	DecodeJSON(t, resp, &contentsResponse)

  127. 	assert.NotNil(t, contentsResponse)

  128. 	expectedContentsResponse = getExpectedContentsResponseForContents(ref, refType)

  129. 	assert.EqualValues(t, *expectedContentsResponse, contentsResponse)

  130. 

  131. 	// ref is a commit

  132. 	ref = commitID

  133. 	refType = "commit"

  134. 	req = NewRequestf(t, "GET", "/api/v1/repos/%s/%s/contents/%s?ref=%s", user2.Name, repo1.Name, treePath, ref)

  135. 	resp = session.MakeRequest(t, req, http.StatusOK)

  136. 	DecodeJSON(t, resp, &contentsResponse)

  137. 	assert.NotNil(t, contentsResponse)

  138. 	expectedContentsResponse = getExpectedContentsResponseForContents(ref, refType)

  139. 	assert.EqualValues(t, *expectedContentsResponse, contentsResponse)

  140. 

  141. 	// Test file contents a file with a bad ref

  142. 	ref = "badref"

  143. 	req = NewRequestf(t, "GET", "/api/v1/repos/%s/%s/contents/%s?ref=%s", user2.Name, repo1.Name, treePath, ref)

  144. 	resp = session.MakeRequest(t, req, http.StatusInternalServerError)

  145. 	expectedAPIError := context.APIError{

  146. 		Message: "object does not exist [id: " + ref + ", rel_path: ]",

  147. 		URL:     setting.API.SwaggerURL,

  148. 	}

  149. 	var apiError context.APIError

  150. 	DecodeJSON(t, resp, &apiError)

  151. 	assert.Equal(t, expectedAPIError, apiError)

  152. 

  153. 	// Test accessing private ref with user token that does not have access - should fail

  154. 	req = NewRequestf(t, "GET", "/api/v1/repos/%s/%s/contents/%s?token=%s", user2.Name, repo16.Name, treePath, token4)

  155. 	session.MakeRequest(t, req, http.StatusNotFound)

  156. 

  157. 	// Test access private ref of owner of token

  158. 	req = NewRequestf(t, "GET", "/api/v1/repos/%s/%s/contents/readme.md?token=%s", user2.Name, repo16.Name, token2)

  159. 	session.MakeRequest(t, req, http.StatusOK)

  160. 

  161. 	// Test access of org user3 private repo file by owner user2

  162. 	req = NewRequestf(t, "GET", "/api/v1/repos/%s/%s/contents/%s?token=%s", user3.Name, repo3.Name, treePath, token2)

  163. 	session.MakeRequest(t, req, http.StatusOK)

  164. }