mirrors
/
gitea
镜像来自 https://github.com/go-gitea/gitea.git
關注 1
收藏 0
複製 0
程式碼 問題 0 版本發佈 211 Wiki 活動
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
14378 提交
17 分支
目錄樹: de484e86bc
分支列表 標籤
${ item.name }
建立分支 ${ searchTerm }
從 'de484e86bc'
${ noResults }
gitea/tests/integration/api_packages_test.go

api_packages_test.go 13KB
原始文件 Blame 歷史記錄

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374 
  1. // Copyright 2021 The Gitea Authors. All rights reserved.

  2. // SPDX-License-Identifier: MIT

  3. 

  4. package integration

  5. 

  6. import (

  7. 	"bytes"

  8. 	"fmt"

  9. 	"net/http"

  10. 	"testing"

  11. 	"time"

  12. 

  13. 	auth_model "code.gitea.io/gitea/models/auth"

  14. 	"code.gitea.io/gitea/models/db"

  15. 	packages_model "code.gitea.io/gitea/models/packages"

  16. 	container_model "code.gitea.io/gitea/models/packages/container"

  17. 	"code.gitea.io/gitea/models/unittest"

  18. 	user_model "code.gitea.io/gitea/models/user"

  19. 	"code.gitea.io/gitea/modules/setting"

  20. 	api "code.gitea.io/gitea/modules/structs"

  21. 	packages_service "code.gitea.io/gitea/services/packages"

  22. 	"code.gitea.io/gitea/tests"

  23. 

  24. 	"github.com/stretchr/testify/assert"

  25. )

  26. 

  27. func TestPackageAPI(t *testing.T) {

  28. 	defer tests.PrepareTestEnv(t)()

  29. 

  30. 	user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 4})

  31. 	session := loginUser(t, user.Name)

  32. 	tokenReadPackage := getTokenForLoggedInUser(t, session, auth_model.AccessTokenScopeReadPackage)

  33. 	tokenDeletePackage := getTokenForLoggedInUser(t, session, auth_model.AccessTokenScopeDeletePackage)

  34. 

  35. 	packageName := "test-package"

  36. 	packageVersion := "1.0.3"

  37. 	filename := "file.bin"

  38. 

  39. 	url := fmt.Sprintf("/api/packages/%s/generic/%s/%s/%s", user.Name, packageName, packageVersion, filename)

  40. 	req := NewRequestWithBody(t, "PUT", url, bytes.NewReader([]byte{}))

  41. 	AddBasicAuthHeader(req, user.Name)

  42. 	MakeRequest(t, req, http.StatusCreated)

  43. 

  44. 	t.Run("ListPackages", func(t *testing.T) {

  45. 		defer tests.PrintCurrentTest(t)()

  46. 

  47. 		req := NewRequest(t, "GET", fmt.Sprintf("/api/v1/packages/%s?token=%s", user.Name, tokenReadPackage))

  48. 		resp := MakeRequest(t, req, http.StatusOK)

  49. 

  50. 		var apiPackages []*api.Package

  51. 		DecodeJSON(t, resp, &apiPackages)

  52. 

  53. 		assert.Len(t, apiPackages, 1)

  54. 		assert.Equal(t, string(packages_model.TypeGeneric), apiPackages[0].Type)

  55. 		assert.Equal(t, packageName, apiPackages[0].Name)

  56. 		assert.Equal(t, packageVersion, apiPackages[0].Version)

  57. 		assert.NotNil(t, apiPackages[0].Creator)

  58. 		assert.Equal(t, user.Name, apiPackages[0].Creator.UserName)

  59. 	})

  60. 

  61. 	t.Run("GetPackage", func(t *testing.T) {

  62. 		defer tests.PrintCurrentTest(t)()

  63. 

  64. 		req := NewRequest(t, "GET", fmt.Sprintf("/api/v1/packages/%s/dummy/%s/%s?token=%s", user.Name, packageName, packageVersion, tokenReadPackage))

  65. 		MakeRequest(t, req, http.StatusNotFound)

  66. 

  67. 		req = NewRequest(t, "GET", fmt.Sprintf("/api/v1/packages/%s/generic/%s/%s?token=%s", user.Name, packageName, packageVersion, tokenReadPackage))

  68. 		resp := MakeRequest(t, req, http.StatusOK)

  69. 

  70. 		var p *api.Package

  71. 		DecodeJSON(t, resp, &p)

  72. 

  73. 		assert.Equal(t, string(packages_model.TypeGeneric), p.Type)

  74. 		assert.Equal(t, packageName, p.Name)

  75. 		assert.Equal(t, packageVersion, p.Version)

  76. 		assert.NotNil(t, p.Creator)

  77. 		assert.Equal(t, user.Name, p.Creator.UserName)

  78. 

  79. 		t.Run("RepositoryLink", func(t *testing.T) {

  80. 			defer tests.PrintCurrentTest(t)()

  81. 

  82. 			p, err := packages_model.GetPackageByName(db.DefaultContext, user.ID, packages_model.TypeGeneric, packageName)

  83. 			assert.NoError(t, err)

  84. 

  85. 			// no repository link

  86. 			req := NewRequest(t, "GET", fmt.Sprintf("/api/v1/packages/%s/generic/%s/%s?token=%s", user.Name, packageName, packageVersion, tokenReadPackage))

  87. 			resp := MakeRequest(t, req, http.StatusOK)

  88. 

  89. 			var ap1 *api.Package

  90. 			DecodeJSON(t, resp, &ap1)

  91. 			assert.Nil(t, ap1.Repository)

  92. 

  93. 			// link to public repository

  94. 			assert.NoError(t, packages_model.SetRepositoryLink(db.DefaultContext, p.ID, 1))

  95. 

  96. 			req = NewRequest(t, "GET", fmt.Sprintf("/api/v1/packages/%s/generic/%s/%s?token=%s", user.Name, packageName, packageVersion, tokenReadPackage))

  97. 			resp = MakeRequest(t, req, http.StatusOK)

  98. 

  99. 			var ap2 *api.Package

  100. 			DecodeJSON(t, resp, &ap2)

  101. 			assert.NotNil(t, ap2.Repository)

  102. 			assert.EqualValues(t, 1, ap2.Repository.ID)

  103. 

  104. 			// link to private repository

  105. 			assert.NoError(t, packages_model.SetRepositoryLink(db.DefaultContext, p.ID, 2))

  106. 

  107. 			req = NewRequest(t, "GET", fmt.Sprintf("/api/v1/packages/%s/generic/%s/%s?token=%s", user.Name, packageName, packageVersion, tokenReadPackage))

  108. 			resp = MakeRequest(t, req, http.StatusOK)

  109. 

  110. 			var ap3 *api.Package

  111. 			DecodeJSON(t, resp, &ap3)

  112. 			assert.Nil(t, ap3.Repository)

  113. 

  114. 			assert.NoError(t, packages_model.UnlinkRepositoryFromAllPackages(db.DefaultContext, 2))

  115. 		})

  116. 	})

  117. 

  118. 	t.Run("ListPackageFiles", func(t *testing.T) {

  119. 		defer tests.PrintCurrentTest(t)()

  120. 

  121. 		req := NewRequest(t, "GET", fmt.Sprintf("/api/v1/packages/%s/dummy/%s/%s/files?token=%s", user.Name, packageName, packageVersion, tokenReadPackage))

  122. 		MakeRequest(t, req, http.StatusNotFound)

  123. 

  124. 		req = NewRequest(t, "GET", fmt.Sprintf("/api/v1/packages/%s/generic/%s/%s/files?token=%s", user.Name, packageName, packageVersion, tokenReadPackage))

  125. 		resp := MakeRequest(t, req, http.StatusOK)

  126. 

  127. 		var files []*api.PackageFile

  128. 		DecodeJSON(t, resp, &files)

  129. 

  130. 		assert.Len(t, files, 1)

  131. 		assert.Equal(t, int64(0), files[0].Size)

  132. 		assert.Equal(t, filename, files[0].Name)

  133. 		assert.Equal(t, "d41d8cd98f00b204e9800998ecf8427e", files[0].HashMD5)

  134. 		assert.Equal(t, "da39a3ee5e6b4b0d3255bfef95601890afd80709", files[0].HashSHA1)

  135. 		assert.Equal(t, "e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855", files[0].HashSHA256)

  136. 		assert.Equal(t, "cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e", files[0].HashSHA512)

  137. 	})

  138. 

  139. 	t.Run("DeletePackage", func(t *testing.T) {

  140. 		defer tests.PrintCurrentTest(t)()

  141. 

  142. 		req := NewRequest(t, "DELETE", fmt.Sprintf("/api/v1/packages/%s/dummy/%s/%s?token=%s", user.Name, packageName, packageVersion, tokenDeletePackage))

  143. 		MakeRequest(t, req, http.StatusNotFound)

  144. 

  145. 		req = NewRequest(t, "DELETE", fmt.Sprintf("/api/v1/packages/%s/generic/%s/%s?token=%s", user.Name, packageName, packageVersion, tokenDeletePackage))

  146. 		MakeRequest(t, req, http.StatusNoContent)

  147. 	})

  148. }

  149. 

  150. func TestPackageAccess(t *testing.T) {

  151. 	defer tests.PrepareTestEnv(t)()

  152. 

  153. 	admin := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 1})

  154. 	user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 5})

  155. 	inactive := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 9})

  156. 

  157. 	uploadPackage := func(doer, owner *user_model.User, expectedStatus int) {

  158. 		url := fmt.Sprintf("/api/packages/%s/generic/test-package/1.0/file.bin", owner.Name)

  159. 		req := NewRequestWithBody(t, "PUT", url, bytes.NewReader([]byte{1}))

  160. 		AddBasicAuthHeader(req, doer.Name)

  161. 		MakeRequest(t, req, expectedStatus)

  162. 	}

  163. 

  164. 	uploadPackage(user, inactive, http.StatusUnauthorized)

  165. 	uploadPackage(inactive, inactive, http.StatusUnauthorized)

  166. 	uploadPackage(inactive, user, http.StatusUnauthorized)

  167. 	uploadPackage(admin, inactive, http.StatusCreated)

  168. 	uploadPackage(admin, user, http.StatusCreated)

  169. }

  170. 

  171. func TestPackageQuota(t *testing.T) {

  172. 	defer tests.PrepareTestEnv(t)()

  173. 

  174. 	limitTotalOwnerCount, limitTotalOwnerSize, limitSizeGeneric := setting.Packages.LimitTotalOwnerCount, setting.Packages.LimitTotalOwnerSize, setting.Packages.LimitSizeGeneric

  175. 

  176. 	admin := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 1})

  177. 	user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 10})

  178. 

  179. 	uploadPackage := func(doer *user_model.User, version string, expectedStatus int) {

  180. 		url := fmt.Sprintf("/api/packages/%s/generic/test-package/%s/file.bin", user.Name, version)

  181. 		req := NewRequestWithBody(t, "PUT", url, bytes.NewReader([]byte{1}))

  182. 		AddBasicAuthHeader(req, doer.Name)

  183. 		MakeRequest(t, req, expectedStatus)

  184. 	}

  185. 

  186. 	// Exceeded quota result in StatusForbidden for normal users but admins are always allowed to upload.

  187. 

  188. 	setting.Packages.LimitTotalOwnerCount = 0

  189. 	uploadPackage(user, "1.0", http.StatusForbidden)

  190. 	uploadPackage(admin, "1.0", http.StatusCreated)

  191. 	setting.Packages.LimitTotalOwnerCount = limitTotalOwnerCount

  192. 

  193. 	setting.Packages.LimitTotalOwnerSize = 0

  194. 	uploadPackage(user, "1.1", http.StatusForbidden)

  195. 	uploadPackage(admin, "1.1", http.StatusCreated)

  196. 	setting.Packages.LimitTotalOwnerSize = limitTotalOwnerSize

  197. 

  198. 	setting.Packages.LimitSizeGeneric = 0

  199. 	uploadPackage(user, "1.2", http.StatusForbidden)

  200. 	uploadPackage(admin, "1.2", http.StatusCreated)

  201. 	setting.Packages.LimitSizeGeneric = limitSizeGeneric

  202. }

  203. 

  204. func TestPackageCleanup(t *testing.T) {

  205. 	defer tests.PrepareTestEnv(t)()

  206. 

  207. 	duration, _ := time.ParseDuration("-1h")

  208. 

  209. 	t.Run("Common", func(t *testing.T) {

  210. 		defer tests.PrintCurrentTest(t)()

  211. 

  212. 		pbs, err := packages_model.FindExpiredUnreferencedBlobs(db.DefaultContext, duration)

  213. 		assert.NoError(t, err)

  214. 		assert.NotEmpty(t, pbs)

  215. 

  216. 		_, err = packages_model.GetInternalVersionByNameAndVersion(db.DefaultContext, 2, packages_model.TypeContainer, "test", container_model.UploadVersion)

  217. 		assert.NoError(t, err)

  218. 

  219. 		err = packages_service.Cleanup(db.DefaultContext, duration)

  220. 		assert.NoError(t, err)

  221. 

  222. 		pbs, err = packages_model.FindExpiredUnreferencedBlobs(db.DefaultContext, duration)

  223. 		assert.NoError(t, err)

  224. 		assert.Empty(t, pbs)

  225. 

  226. 		_, err = packages_model.GetInternalVersionByNameAndVersion(db.DefaultContext, 2, packages_model.TypeContainer, "test", container_model.UploadVersion)

  227. 		assert.ErrorIs(t, err, packages_model.ErrPackageNotExist)

  228. 	})

  229. 

  230. 	t.Run("CleanupRules", func(t *testing.T) {

  231. 		defer tests.PrintCurrentTest(t)()

  232. 

  233. 		user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2})

  234. 

  235. 		type version struct {

  236. 			Version     string

  237. 			ShouldExist bool

  238. 			Created     int64

  239. 		}

  240. 

  241. 		cases := []struct {

  242. 			Name     string

  243. 			Versions []version

  244. 			Rule     *packages_model.PackageCleanupRule

  245. 		}{

  246. 			{

  247. 				Name: "Disabled",

  248. 				Versions: []version{

  249. 					{Version: "keep", ShouldExist: true},

  250. 				},

  251. 				Rule: &packages_model.PackageCleanupRule{

  252. 					Enabled: false,

  253. 				},

  254. 			},

  255. 			{

  256. 				Name: "KeepCount",

  257. 				Versions: []version{

  258. 					{Version: "keep", ShouldExist: true},

  259. 					{Version: "v1.0", ShouldExist: true},

  260. 					{Version: "test-3", ShouldExist: false, Created: 1},

  261. 					{Version: "test-4", ShouldExist: false, Created: 1},

  262. 				},

  263. 				Rule: &packages_model.PackageCleanupRule{

  264. 					Enabled:   true,

  265. 					KeepCount: 2,

  266. 				},

  267. 			},

  268. 			{

  269. 				Name: "KeepPattern",

  270. 				Versions: []version{

  271. 					{Version: "keep", ShouldExist: true},

  272. 					{Version: "v1.0", ShouldExist: false},

  273. 				},

  274. 				Rule: &packages_model.PackageCleanupRule{

  275. 					Enabled:     true,

  276. 					KeepPattern: "k.+p",

  277. 				},

  278. 			},

  279. 			{

  280. 				Name: "RemoveDays",

  281. 				Versions: []version{

  282. 					{Version: "keep", ShouldExist: true},

  283. 					{Version: "v1.0", ShouldExist: false, Created: 1},

  284. 				},

  285. 				Rule: &packages_model.PackageCleanupRule{

  286. 					Enabled:    true,

  287. 					RemoveDays: 60,

  288. 				},

  289. 			},

  290. 			{

  291. 				Name: "RemovePattern",

  292. 				Versions: []version{

  293. 					{Version: "test", ShouldExist: true},

  294. 					{Version: "test-3", ShouldExist: false},

  295. 					{Version: "test-4", ShouldExist: false},

  296. 				},

  297. 				Rule: &packages_model.PackageCleanupRule{

  298. 					Enabled:       true,

  299. 					RemovePattern: `t[e]+st-\d+`,

  300. 				},

  301. 			},

  302. 			{

  303. 				Name: "MatchFullName",

  304. 				Versions: []version{

  305. 					{Version: "keep", ShouldExist: true},

  306. 					{Version: "test", ShouldExist: false},

  307. 				},

  308. 				Rule: &packages_model.PackageCleanupRule{

  309. 					Enabled:       true,

  310. 					RemovePattern: `package/test|different/keep`,

  311. 					MatchFullName: true,

  312. 				},

  313. 			},

  314. 			{

  315. 				Name: "Mixed",

  316. 				Versions: []version{

  317. 					{Version: "keep", ShouldExist: true, Created: time.Now().Add(time.Duration(10000)).Unix()},

  318. 					{Version: "dummy", ShouldExist: true, Created: 1},

  319. 					{Version: "test-3", ShouldExist: true},

  320. 					{Version: "test-4", ShouldExist: false, Created: 1},

  321. 				},

  322. 				Rule: &packages_model.PackageCleanupRule{

  323. 					Enabled:       true,

  324. 					KeepCount:     1,

  325. 					KeepPattern:   `dummy`,

  326. 					RemoveDays:    7,

  327. 					RemovePattern: `t[e]+st-\d+`,

  328. 				},

  329. 			},

  330. 		}

  331. 

  332. 		for _, c := range cases {

  333. 			t.Run(c.Name, func(t *testing.T) {

  334. 				defer tests.PrintCurrentTest(t)()

  335. 

  336. 				for _, v := range c.Versions {

  337. 					url := fmt.Sprintf("/api/packages/%s/generic/package/%s/file.bin", user.Name, v.Version)

  338. 					req := NewRequestWithBody(t, "PUT", url, bytes.NewReader([]byte{1}))

  339. 					AddBasicAuthHeader(req, user.Name)

  340. 					MakeRequest(t, req, http.StatusCreated)

  341. 

  342. 					if v.Created != 0 {

  343. 						pv, err := packages_model.GetVersionByNameAndVersion(db.DefaultContext, user.ID, packages_model.TypeGeneric, "package", v.Version)

  344. 						assert.NoError(t, err)

  345. 						_, err = db.GetEngine(db.DefaultContext).Exec("UPDATE package_version SET created_unix = ? WHERE id = ?", v.Created, pv.ID)

  346. 						assert.NoError(t, err)

  347. 					}

  348. 				}

  349. 

  350. 				c.Rule.OwnerID = user.ID

  351. 				c.Rule.Type = packages_model.TypeGeneric

  352. 

  353. 				pcr, err := packages_model.InsertCleanupRule(db.DefaultContext, c.Rule)

  354. 				assert.NoError(t, err)

  355. 

  356. 				err = packages_service.Cleanup(db.DefaultContext, duration)

  357. 				assert.NoError(t, err)

  358. 

  359. 				for _, v := range c.Versions {

  360. 					pv, err := packages_model.GetVersionByNameAndVersion(db.DefaultContext, user.ID, packages_model.TypeGeneric, "package", v.Version)

  361. 					if v.ShouldExist {

  362. 						assert.NoError(t, err)

  363. 						err = packages_service.DeletePackageVersionAndReferences(db.DefaultContext, pv)

  364. 						assert.NoError(t, err)

  365. 					} else {

  366. 						assert.ErrorIs(t, err, packages_model.ErrPackageNotExist)

  367. 					}

  368. 				}

  369. 

  370. 				assert.NoError(t, packages_model.DeleteCleanupRuleByID(db.DefaultContext, pcr.ID))

  371. 			})

  372. 		}

  373. 	})

  374. }