mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 210 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7605 Commits
17 Branches
Tree: f9ec2f89f2
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f9ec2f89f2'
${ noResults }
gitea/modules/lfs/locks.go

locks.go 7.7KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293 
  1. // Copyright 2017 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package lfs

  6. 

  7. import (

  8. 	"encoding/json"

  9. 	"strconv"

  10. 	"strings"

  11. 

  12. 	"code.gitea.io/gitea/models"

  13. 	"code.gitea.io/gitea/modules/context"

  14. 	"code.gitea.io/gitea/modules/log"

  15. 	"code.gitea.io/gitea/modules/setting"

  16. 	api "code.gitea.io/gitea/modules/structs"

  17. )

  18. 

  19. //checkIsValidRequest check if it a valid request in case of bad request it write the response to ctx.

  20. func checkIsValidRequest(ctx *context.Context) bool {

  21. 	if !setting.LFS.StartServer {

  22. 		writeStatus(ctx, 404)

  23. 		return false

  24. 	}

  25. 	if !MetaMatcher(ctx.Req) {

  26. 		writeStatus(ctx, 400)

  27. 		return false

  28. 	}

  29. 	if !ctx.IsSigned {

  30. 		user, _, _, err := parseToken(ctx.Req.Header.Get("Authorization"))

  31. 		if err != nil {

  32. 			ctx.Resp.Header().Set("WWW-Authenticate", "Basic realm=gitea-lfs")

  33. 			writeStatus(ctx, 401)

  34. 			return false

  35. 		}

  36. 		ctx.User = user

  37. 	}

  38. 	return true

  39. }

  40. 

  41. func handleLockListOut(ctx *context.Context, repo *models.Repository, lock *models.LFSLock, err error) {

  42. 	if err != nil {

  43. 		if models.IsErrLFSLockNotExist(err) {

  44. 			ctx.JSON(200, api.LFSLockList{

  45. 				Locks: []*api.LFSLock{},

  46. 			})

  47. 			return

  48. 		}

  49. 		ctx.JSON(500, api.LFSLockError{

  50. 			Message: "unable to list locks : " + err.Error(),

  51. 		})

  52. 		return

  53. 	}

  54. 	if repo.ID != lock.RepoID {

  55. 		ctx.JSON(200, api.LFSLockList{

  56. 			Locks: []*api.LFSLock{},

  57. 		})

  58. 		return

  59. 	}

  60. 	ctx.JSON(200, api.LFSLockList{

  61. 		Locks: []*api.LFSLock{lock.APIFormat()},

  62. 	})

  63. }

  64. 

  65. // GetListLockHandler list locks

  66. func GetListLockHandler(ctx *context.Context) {

  67. 	if !checkIsValidRequest(ctx) {

  68. 		return

  69. 	}

  70. 	ctx.Resp.Header().Set("Content-Type", metaMediaType)

  71. 

  72. 	rv := unpack(ctx)

  73. 

  74. 	repository, err := models.GetRepositoryByOwnerAndName(rv.User, rv.Repo)

  75. 	if err != nil {

  76. 		log.Debug("Could not find repository: %s/%s - %s", rv.User, rv.Repo, err)

  77. 		writeStatus(ctx, 404)

  78. 		return

  79. 	}

  80. 	repository.MustOwner()

  81. 

  82. 	authenticated := authenticate(ctx, repository, rv.Authorization, false)

  83. 	if !authenticated {

  84. 		ctx.Resp.Header().Set("WWW-Authenticate", "Basic realm=gitea-lfs")

  85. 		ctx.JSON(401, api.LFSLockError{

  86. 			Message: "You must have pull access to list locks",

  87. 		})

  88. 		return

  89. 	}

  90. 	//TODO handle query cursor and limit

  91. 	id := ctx.Query("id")

  92. 	if id != "" { //Case where we request a specific id

  93. 		v, err := strconv.ParseInt(id, 10, 64)

  94. 		if err != nil {

  95. 			ctx.JSON(400, api.LFSLockError{

  96. 				Message: "bad request : " + err.Error(),

  97. 			})

  98. 			return

  99. 		}

  100. 		lock, err := models.GetLFSLockByID(int64(v))

  101. 		handleLockListOut(ctx, repository, lock, err)

  102. 		return

  103. 	}

  104. 

  105. 	path := ctx.Query("path")

  106. 	if path != "" { //Case where we request a specific id

  107. 		lock, err := models.GetLFSLock(repository, path)

  108. 		handleLockListOut(ctx, repository, lock, err)

  109. 		return

  110. 	}

  111. 

  112. 	//If no query params path or id

  113. 	lockList, err := models.GetLFSLockByRepoID(repository.ID)

  114. 	if err != nil {

  115. 		ctx.JSON(500, api.LFSLockError{

  116. 			Message: "unable to list locks : " + err.Error(),

  117. 		})

  118. 		return

  119. 	}

  120. 	lockListAPI := make([]*api.LFSLock, len(lockList))

  121. 	for i, l := range lockList {

  122. 		lockListAPI[i] = l.APIFormat()

  123. 	}

  124. 	ctx.JSON(200, api.LFSLockList{

  125. 		Locks: lockListAPI,

  126. 	})

  127. }

  128. 

  129. // PostLockHandler create lock

  130. func PostLockHandler(ctx *context.Context) {

  131. 	if !checkIsValidRequest(ctx) {

  132. 		return

  133. 	}

  134. 	ctx.Resp.Header().Set("Content-Type", metaMediaType)

  135. 

  136. 	userName := ctx.Params("username")

  137. 	repoName := strings.TrimSuffix(ctx.Params("reponame"), ".git")

  138. 	authorization := ctx.Req.Header.Get("Authorization")

  139. 

  140. 	repository, err := models.GetRepositoryByOwnerAndName(userName, repoName)

  141. 	if err != nil {

  142. 		log.Debug("Could not find repository: %s/%s - %s", userName, repoName, err)

  143. 		writeStatus(ctx, 404)

  144. 		return

  145. 	}

  146. 	repository.MustOwner()

  147. 

  148. 	authenticated := authenticate(ctx, repository, authorization, true)

  149. 	if !authenticated {

  150. 		ctx.Resp.Header().Set("WWW-Authenticate", "Basic realm=gitea-lfs")

  151. 		ctx.JSON(401, api.LFSLockError{

  152. 			Message: "You must have push access to create locks",

  153. 		})

  154. 		return

  155. 	}

  156. 

  157. 	var req api.LFSLockRequest

  158. 	dec := json.NewDecoder(ctx.Req.Body().ReadCloser())

  159. 	if err := dec.Decode(&req); err != nil {

  160. 		writeStatus(ctx, 400)

  161. 		return

  162. 	}

  163. 

  164. 	lock, err := models.CreateLFSLock(&models.LFSLock{

  165. 		Repo:  repository,

  166. 		Path:  req.Path,

  167. 		Owner: ctx.User,

  168. 	})

  169. 	if err != nil {

  170. 		if models.IsErrLFSLockAlreadyExist(err) {

  171. 			ctx.JSON(409, api.LFSLockError{

  172. 				Lock:    lock.APIFormat(),

  173. 				Message: "already created lock",

  174. 			})

  175. 			return

  176. 		}

  177. 		if models.IsErrLFSUnauthorizedAction(err) {

  178. 			ctx.Resp.Header().Set("WWW-Authenticate", "Basic realm=gitea-lfs")

  179. 			ctx.JSON(401, api.LFSLockError{

  180. 				Message: "You must have push access to create locks : " + err.Error(),

  181. 			})

  182. 			return

  183. 		}

  184. 		ctx.JSON(500, api.LFSLockError{

  185. 			Message: "internal server error : " + err.Error(),

  186. 		})

  187. 		return

  188. 	}

  189. 	ctx.JSON(201, api.LFSLockResponse{Lock: lock.APIFormat()})

  190. }

  191. 

  192. // VerifyLockHandler list locks for verification

  193. func VerifyLockHandler(ctx *context.Context) {

  194. 	if !checkIsValidRequest(ctx) {

  195. 		return

  196. 	}

  197. 	ctx.Resp.Header().Set("Content-Type", metaMediaType)

  198. 

  199. 	userName := ctx.Params("username")

  200. 	repoName := strings.TrimSuffix(ctx.Params("reponame"), ".git")

  201. 	authorization := ctx.Req.Header.Get("Authorization")

  202. 

  203. 	repository, err := models.GetRepositoryByOwnerAndName(userName, repoName)

  204. 	if err != nil {

  205. 		log.Debug("Could not find repository: %s/%s - %s", userName, repoName, err)

  206. 		writeStatus(ctx, 404)

  207. 		return

  208. 	}

  209. 	repository.MustOwner()

  210. 

  211. 	authenticated := authenticate(ctx, repository, authorization, true)

  212. 	if !authenticated {

  213. 		ctx.Resp.Header().Set("WWW-Authenticate", "Basic realm=gitea-lfs")

  214. 		ctx.JSON(401, api.LFSLockError{

  215. 			Message: "You must have push access to verify locks",

  216. 		})

  217. 		return

  218. 	}

  219. 

  220. 	//TODO handle body json cursor and limit

  221. 	lockList, err := models.GetLFSLockByRepoID(repository.ID)

  222. 	if err != nil {

  223. 		ctx.JSON(500, api.LFSLockError{

  224. 			Message: "unable to list locks : " + err.Error(),

  225. 		})

  226. 		return

  227. 	}

  228. 	lockOursListAPI := make([]*api.LFSLock, 0, len(lockList))

  229. 	lockTheirsListAPI := make([]*api.LFSLock, 0, len(lockList))

  230. 	for _, l := range lockList {

  231. 		if l.Owner.ID == ctx.User.ID {

  232. 			lockOursListAPI = append(lockOursListAPI, l.APIFormat())

  233. 		} else {

  234. 			lockTheirsListAPI = append(lockTheirsListAPI, l.APIFormat())

  235. 		}

  236. 	}

  237. 	ctx.JSON(200, api.LFSLockListVerify{

  238. 		Ours:   lockOursListAPI,

  239. 		Theirs: lockTheirsListAPI,

  240. 	})

  241. }

  242. 

  243. // UnLockHandler delete locks

  244. func UnLockHandler(ctx *context.Context) {

  245. 	if !checkIsValidRequest(ctx) {

  246. 		return

  247. 	}

  248. 	ctx.Resp.Header().Set("Content-Type", metaMediaType)

  249. 

  250. 	userName := ctx.Params("username")

  251. 	repoName := strings.TrimSuffix(ctx.Params("reponame"), ".git")

  252. 	authorization := ctx.Req.Header.Get("Authorization")

  253. 

  254. 	repository, err := models.GetRepositoryByOwnerAndName(userName, repoName)

  255. 	if err != nil {

  256. 		log.Debug("Could not find repository: %s/%s - %s", userName, repoName, err)

  257. 		writeStatus(ctx, 404)

  258. 		return

  259. 	}

  260. 	repository.MustOwner()

  261. 

  262. 	authenticated := authenticate(ctx, repository, authorization, true)

  263. 	if !authenticated {

  264. 		ctx.Resp.Header().Set("WWW-Authenticate", "Basic realm=gitea-lfs")

  265. 		ctx.JSON(401, api.LFSLockError{

  266. 			Message: "You must have push access to delete locks",

  267. 		})

  268. 		return

  269. 	}

  270. 

  271. 	var req api.LFSLockDeleteRequest

  272. 	dec := json.NewDecoder(ctx.Req.Body().ReadCloser())

  273. 	if err := dec.Decode(&req); err != nil {

  274. 		writeStatus(ctx, 400)

  275. 		return

  276. 	}

  277. 

  278. 	lock, err := models.DeleteLFSLockByID(ctx.ParamsInt64("lid"), ctx.User, req.Force)

  279. 	if err != nil {

  280. 		if models.IsErrLFSUnauthorizedAction(err) {

  281. 			ctx.Resp.Header().Set("WWW-Authenticate", "Basic realm=gitea-lfs")

  282. 			ctx.JSON(401, api.LFSLockError{

  283. 				Message: "You must have push access to delete locks : " + err.Error(),

  284. 			})

  285. 			return

  286. 		}

  287. 		ctx.JSON(500, api.LFSLockError{

  288. 			Message: "unable to delete lock : " + err.Error(),

  289. 		})

  290. 		return

  291. 	}

  292. 	ctx.JSON(200, api.LFSLockResponse{Lock: lock.APIFormat()})

  293. }