mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 211 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
14191 Commits
17 Branches
Tree: e81ccc406b
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'e81ccc406b'
${ noResults }
gitea/tests/integration/api_repo_get_contents_test.go

api_repo_get_contents_test.go 6.6KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162 
  1. // Copyright 2019 The Gitea Authors. All rights reserved.

  2. // SPDX-License-Identifier: MIT

  3. 

  4. package integration

  5. 

  6. import (

  7. 	"net/http"

  8. 	"net/url"

  9. 	"testing"

  10. 

  11. 	repo_model "code.gitea.io/gitea/models/repo"

  12. 	"code.gitea.io/gitea/models/unittest"

  13. 	user_model "code.gitea.io/gitea/models/user"

  14. 	"code.gitea.io/gitea/modules/git"

  15. 	"code.gitea.io/gitea/modules/setting"

  16. 	api "code.gitea.io/gitea/modules/structs"

  17. 	repo_service "code.gitea.io/gitea/services/repository"

  18. 

  19. 	"github.com/stretchr/testify/assert"

  20. )

  21. 

  22. func getExpectedContentsResponseForContents(ref, refType, lastCommitSHA string) *api.ContentsResponse {

  23. 	treePath := "README.md"

  24. 	sha := "4b4851ad51df6a7d9f25c979345979eaeb5b349f"

  25. 	encoding := "base64"

  26. 	content := "IyByZXBvMQoKRGVzY3JpcHRpb24gZm9yIHJlcG8x"

  27. 	selfURL := setting.AppURL + "api/v1/repos/user2/repo1/contents/" + treePath + "?ref=" + ref

  28. 	htmlURL := setting.AppURL + "user2/repo1/src/" + refType + "/" + ref + "/" + treePath

  29. 	gitURL := setting.AppURL + "api/v1/repos/user2/repo1/git/blobs/" + sha

  30. 	downloadURL := setting.AppURL + "user2/repo1/raw/" + refType + "/" + ref + "/" + treePath

  31. 	return &api.ContentsResponse{

  32. 		Name:          treePath,

  33. 		Path:          treePath,

  34. 		SHA:           sha,

  35. 		LastCommitSHA: lastCommitSHA,

  36. 		Type:          "file",

  37. 		Size:          30,

  38. 		Encoding:      &encoding,

  39. 		Content:       &content,

  40. 		URL:           &selfURL,

  41. 		HTMLURL:       &htmlURL,

  42. 		GitURL:        &gitURL,

  43. 		DownloadURL:   &downloadURL,

  44. 		Links: &api.FileLinksResponse{

  45. 			Self:    &selfURL,

  46. 			GitURL:  &gitURL,

  47. 			HTMLURL: &htmlURL,

  48. 		},

  49. 	}

  50. }

  51. 

  52. func TestAPIGetContents(t *testing.T) {

  53. 	onGiteaRun(t, testAPIGetContents)

  54. }

  55. 

  56. func testAPIGetContents(t *testing.T, u *url.URL) {

  57. 	/*** SETUP ***/

  58. 	user2 := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2})         // owner of the repo1 & repo16

  59. 	user3 := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 3})         // owner of the repo3, is an org

  60. 	user4 := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 4})         // owner of neither repos

  61. 	repo1 := unittest.AssertExistsAndLoadBean(t, &repo_model.Repository{ID: 1})   // public repo

  62. 	repo3 := unittest.AssertExistsAndLoadBean(t, &repo_model.Repository{ID: 3})   // public repo

  63. 	repo16 := unittest.AssertExistsAndLoadBean(t, &repo_model.Repository{ID: 16}) // private repo

  64. 	treePath := "README.md"

  65. 

  66. 	// Get user2's token

  67. 	session := loginUser(t, user2.Name)

  68. 	token2 := getTokenForLoggedInUser(t, session)

  69. 	// Get user4's token

  70. 	session = loginUser(t, user4.Name)

  71. 	token4 := getTokenForLoggedInUser(t, session)

  72. 	session = emptyTestSession(t)

  73. 

  74. 	// Make a new branch in repo1

  75. 	newBranch := "test_branch"

  76. 	err := repo_service.CreateNewBranch(git.DefaultContext, user2, repo1, repo1.DefaultBranch, newBranch)

  77. 	assert.NoError(t, err)

  78. 	// Get the commit ID of the default branch

  79. 	gitRepo, err := git.OpenRepository(git.DefaultContext, repo1.RepoPath())

  80. 	assert.NoError(t, err)

  81. 	defer gitRepo.Close()

  82. 

  83. 	commitID, err := gitRepo.GetBranchCommitID(repo1.DefaultBranch)

  84. 	assert.NoError(t, err)

  85. 	// Make a new tag in repo1

  86. 	newTag := "test_tag"

  87. 	err = gitRepo.CreateTag(newTag, commitID)

  88. 	assert.NoError(t, err)

  89. 	/*** END SETUP ***/

  90. 

  91. 	// ref is default ref

  92. 	ref := repo1.DefaultBranch

  93. 	refType := "branch"

  94. 	req := NewRequestf(t, "GET", "/api/v1/repos/%s/%s/contents/%s?ref=%s", user2.Name, repo1.Name, treePath, ref)

  95. 	resp := session.MakeRequest(t, req, http.StatusOK)

  96. 	var contentsResponse api.ContentsResponse

  97. 	DecodeJSON(t, resp, &contentsResponse)

  98. 	assert.NotNil(t, contentsResponse)

  99. 	lastCommit, _ := gitRepo.GetCommitByPath("README.md")

  100. 	expectedContentsResponse := getExpectedContentsResponseForContents(ref, refType, lastCommit.ID.String())

  101. 	assert.EqualValues(t, *expectedContentsResponse, contentsResponse)

  102. 

  103. 	// No ref

  104. 	refType = "branch"

  105. 	req = NewRequestf(t, "GET", "/api/v1/repos/%s/%s/contents/%s", user2.Name, repo1.Name, treePath)

  106. 	resp = session.MakeRequest(t, req, http.StatusOK)

  107. 	DecodeJSON(t, resp, &contentsResponse)

  108. 	assert.NotNil(t, contentsResponse)

  109. 	expectedContentsResponse = getExpectedContentsResponseForContents(repo1.DefaultBranch, refType, lastCommit.ID.String())

  110. 	assert.EqualValues(t, *expectedContentsResponse, contentsResponse)

  111. 

  112. 	// ref is the branch we created above  in setup

  113. 	ref = newBranch

  114. 	refType = "branch"

  115. 	req = NewRequestf(t, "GET", "/api/v1/repos/%s/%s/contents/%s?ref=%s", user2.Name, repo1.Name, treePath, ref)

  116. 	resp = session.MakeRequest(t, req, http.StatusOK)

  117. 	DecodeJSON(t, resp, &contentsResponse)

  118. 	assert.NotNil(t, contentsResponse)

  119. 	branchCommit, _ := gitRepo.GetBranchCommit(ref)

  120. 	lastCommit, _ = branchCommit.GetCommitByPath("README.md")

  121. 	expectedContentsResponse = getExpectedContentsResponseForContents(ref, refType, lastCommit.ID.String())

  122. 	assert.EqualValues(t, *expectedContentsResponse, contentsResponse)

  123. 

  124. 	// ref is the new tag we created above in setup

  125. 	ref = newTag

  126. 	refType = "tag"

  127. 	req = NewRequestf(t, "GET", "/api/v1/repos/%s/%s/contents/%s?ref=%s", user2.Name, repo1.Name, treePath, ref)

  128. 	resp = session.MakeRequest(t, req, http.StatusOK)

  129. 	DecodeJSON(t, resp, &contentsResponse)

  130. 	assert.NotNil(t, contentsResponse)

  131. 	tagCommit, _ := gitRepo.GetTagCommit(ref)

  132. 	lastCommit, _ = tagCommit.GetCommitByPath("README.md")

  133. 	expectedContentsResponse = getExpectedContentsResponseForContents(ref, refType, lastCommit.ID.String())

  134. 	assert.EqualValues(t, *expectedContentsResponse, contentsResponse)

  135. 

  136. 	// ref is a commit

  137. 	ref = commitID

  138. 	refType = "commit"

  139. 	req = NewRequestf(t, "GET", "/api/v1/repos/%s/%s/contents/%s?ref=%s", user2.Name, repo1.Name, treePath, ref)

  140. 	resp = session.MakeRequest(t, req, http.StatusOK)

  141. 	DecodeJSON(t, resp, &contentsResponse)

  142. 	assert.NotNil(t, contentsResponse)

  143. 	expectedContentsResponse = getExpectedContentsResponseForContents(ref, refType, commitID)

  144. 	assert.EqualValues(t, *expectedContentsResponse, contentsResponse)

  145. 

  146. 	// Test file contents a file with a bad ref

  147. 	ref = "badref"

  148. 	req = NewRequestf(t, "GET", "/api/v1/repos/%s/%s/contents/%s?ref=%s", user2.Name, repo1.Name, treePath, ref)

  149. 	session.MakeRequest(t, req, http.StatusNotFound)

  150. 

  151. 	// Test accessing private ref with user token that does not have access - should fail

  152. 	req = NewRequestf(t, "GET", "/api/v1/repos/%s/%s/contents/%s?token=%s", user2.Name, repo16.Name, treePath, token4)

  153. 	session.MakeRequest(t, req, http.StatusNotFound)

  154. 

  155. 	// Test access private ref of owner of token

  156. 	req = NewRequestf(t, "GET", "/api/v1/repos/%s/%s/contents/readme.md?token=%s", user2.Name, repo16.Name, token2)

  157. 	session.MakeRequest(t, req, http.StatusOK)

  158. 

  159. 	// Test access of org user3 private repo file by owner user2

  160. 	req = NewRequestf(t, "GET", "/api/v1/repos/%s/%s/contents/%s?token=%s", user3.Name, repo3.Name, treePath, token2)

  161. 	session.MakeRequest(t, req, http.StatusOK)

  162. }