123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209 |
- // Copyright 2017 The Gitea Authors. All rights reserved.
- // SPDX-License-Identifier: MIT
-
- package validation
-
- import (
- "fmt"
- "regexp"
- "strings"
-
- "code.gitea.io/gitea/modules/auth"
- "code.gitea.io/gitea/modules/git"
-
- "gitea.com/go-chi/binding"
- "github.com/gobwas/glob"
- )
-
- const (
- // ErrGitRefName is git reference name error
- ErrGitRefName = "GitRefNameError"
- // ErrGlobPattern is returned when glob pattern is invalid
- ErrGlobPattern = "GlobPattern"
- // ErrRegexPattern is returned when a regex pattern is invalid
- ErrRegexPattern = "RegexPattern"
- // ErrUsername is username error
- ErrUsername = "UsernameError"
- // ErrInvalidGroupTeamMap is returned when a group team mapping is invalid
- ErrInvalidGroupTeamMap = "InvalidGroupTeamMap"
- )
-
- // AddBindingRules adds additional binding rules
- func AddBindingRules() {
- addGitRefNameBindingRule()
- addValidURLBindingRule()
- addValidSiteURLBindingRule()
- addGlobPatternRule()
- addRegexPatternRule()
- addGlobOrRegexPatternRule()
- addUsernamePatternRule()
- addValidGroupTeamMapRule()
- }
-
- func addGitRefNameBindingRule() {
- // Git refname validation rule
- binding.AddRule(&binding.Rule{
- IsMatch: func(rule string) bool {
- return strings.HasPrefix(rule, "GitRefName")
- },
- IsValid: func(errs binding.Errors, name string, val any) (bool, binding.Errors) {
- str := fmt.Sprintf("%v", val)
-
- if !git.IsValidRefPattern(str) {
- errs.Add([]string{name}, ErrGitRefName, "GitRefName")
- return false, errs
- }
- return true, errs
- },
- })
- }
-
- func addValidURLBindingRule() {
- // URL validation rule
- binding.AddRule(&binding.Rule{
- IsMatch: func(rule string) bool {
- return strings.HasPrefix(rule, "ValidUrl")
- },
- IsValid: func(errs binding.Errors, name string, val any) (bool, binding.Errors) {
- str := fmt.Sprintf("%v", val)
- if len(str) != 0 && !IsValidURL(str) {
- errs.Add([]string{name}, binding.ERR_URL, "Url")
- return false, errs
- }
-
- return true, errs
- },
- })
- }
-
- func addValidSiteURLBindingRule() {
- // URL validation rule
- binding.AddRule(&binding.Rule{
- IsMatch: func(rule string) bool {
- return strings.HasPrefix(rule, "ValidSiteUrl")
- },
- IsValid: func(errs binding.Errors, name string, val any) (bool, binding.Errors) {
- str := fmt.Sprintf("%v", val)
- if len(str) != 0 && !IsValidSiteURL(str) {
- errs.Add([]string{name}, binding.ERR_URL, "Url")
- return false, errs
- }
-
- return true, errs
- },
- })
- }
-
- func addGlobPatternRule() {
- binding.AddRule(&binding.Rule{
- IsMatch: func(rule string) bool {
- return rule == "GlobPattern"
- },
- IsValid: globPatternValidator,
- })
- }
-
- func globPatternValidator(errs binding.Errors, name string, val any) (bool, binding.Errors) {
- str := fmt.Sprintf("%v", val)
-
- if len(str) != 0 {
- if _, err := glob.Compile(str); err != nil {
- errs.Add([]string{name}, ErrGlobPattern, err.Error())
- return false, errs
- }
- }
-
- return true, errs
- }
-
- func addRegexPatternRule() {
- binding.AddRule(&binding.Rule{
- IsMatch: func(rule string) bool {
- return rule == "RegexPattern"
- },
- IsValid: regexPatternValidator,
- })
- }
-
- func regexPatternValidator(errs binding.Errors, name string, val any) (bool, binding.Errors) {
- str := fmt.Sprintf("%v", val)
-
- if _, err := regexp.Compile(str); err != nil {
- errs.Add([]string{name}, ErrRegexPattern, err.Error())
- return false, errs
- }
-
- return true, errs
- }
-
- func addGlobOrRegexPatternRule() {
- binding.AddRule(&binding.Rule{
- IsMatch: func(rule string) bool {
- return rule == "GlobOrRegexPattern"
- },
- IsValid: func(errs binding.Errors, name string, val any) (bool, binding.Errors) {
- str := strings.TrimSpace(fmt.Sprintf("%v", val))
-
- if len(str) >= 2 && strings.HasPrefix(str, "/") && strings.HasSuffix(str, "/") {
- return regexPatternValidator(errs, name, str[1:len(str)-1])
- }
- return globPatternValidator(errs, name, val)
- },
- })
- }
-
- func addUsernamePatternRule() {
- binding.AddRule(&binding.Rule{
- IsMatch: func(rule string) bool {
- return rule == "Username"
- },
- IsValid: func(errs binding.Errors, name string, val any) (bool, binding.Errors) {
- str := fmt.Sprintf("%v", val)
- if !IsValidUsername(str) {
- errs.Add([]string{name}, ErrUsername, "invalid username")
- return false, errs
- }
- return true, errs
- },
- })
- }
-
- func addValidGroupTeamMapRule() {
- binding.AddRule(&binding.Rule{
- IsMatch: func(rule string) bool {
- return strings.HasPrefix(rule, "ValidGroupTeamMap")
- },
- IsValid: func(errs binding.Errors, name string, val any) (bool, binding.Errors) {
- _, err := auth.UnmarshalGroupTeamMapping(fmt.Sprintf("%v", val))
- if err != nil {
- errs.Add([]string{name}, ErrInvalidGroupTeamMap, err.Error())
- return false, errs
- }
-
- return true, errs
- },
- })
- }
-
- func portOnly(hostport string) string {
- colon := strings.IndexByte(hostport, ':')
- if colon == -1 {
- return ""
- }
- if i := strings.Index(hostport, "]:"); i != -1 {
- return hostport[i+len("]:"):]
- }
- if strings.Contains(hostport, "]") {
- return ""
- }
- return hostport[colon+len(":"):]
- }
-
- func validPort(p string) bool {
- for _, r := range []byte(p) {
- if r < '0' || r > '9' {
- return false
- }
- }
- return true
- }
|