mirror of
https://github.com/go-gitea/gitea
synced 2024-11-17 23:54:25 +00:00
ef78309b65
* Add failing test * Fix urls * Improve url in tests * improve testing * Remove debug code * Add deps * LFS corner-case : Search on lower but store with case * Temporary comment of blocking action * fix hooks * Use temporary repo for git client test * Use userPassword in place of hard-coded password
147 lines
3.5 KiB
Go
147 lines
3.5 KiB
Go
// Copyright 2017 The Gitea Authors. All rights reserved.
|
|
// Use of this source code is governed by a MIT-style
|
|
// license that can be found in the LICENSE file.
|
|
|
|
package models
|
|
|
|
import (
|
|
"fmt"
|
|
"path"
|
|
"strconv"
|
|
"strings"
|
|
"time"
|
|
|
|
api "code.gitea.io/sdk/gitea"
|
|
)
|
|
|
|
// LFSLock represents a git lfs lock of repository.
|
|
type LFSLock struct {
|
|
ID int64 `xorm:"pk autoincr"`
|
|
RepoID int64 `xorm:"INDEX NOT NULL"`
|
|
Owner *User `xorm:"-"`
|
|
OwnerID int64 `xorm:"INDEX NOT NULL"`
|
|
Path string `xorm:"TEXT"`
|
|
Created time.Time `xorm:"created"`
|
|
}
|
|
|
|
// BeforeInsert is invoked from XORM before inserting an object of this type.
|
|
func (l *LFSLock) BeforeInsert() {
|
|
l.OwnerID = l.Owner.ID
|
|
l.Path = cleanPath(l.Path)
|
|
}
|
|
|
|
// AfterLoad is invoked from XORM after setting the values of all fields of this object.
|
|
func (l *LFSLock) AfterLoad() {
|
|
l.Owner, _ = GetUserByID(l.OwnerID)
|
|
}
|
|
|
|
func cleanPath(p string) string {
|
|
return path.Clean(p)
|
|
}
|
|
|
|
// APIFormat convert a Release to lfs.LFSLock
|
|
func (l *LFSLock) APIFormat() *api.LFSLock {
|
|
return &api.LFSLock{
|
|
ID: strconv.FormatInt(l.ID, 10),
|
|
Path: l.Path,
|
|
LockedAt: l.Created,
|
|
Owner: &api.LFSLockOwner{
|
|
Name: l.Owner.DisplayName(),
|
|
},
|
|
}
|
|
}
|
|
|
|
// CreateLFSLock creates a new lock.
|
|
func CreateLFSLock(lock *LFSLock) (*LFSLock, error) {
|
|
err := CheckLFSAccessForRepo(lock.Owner, lock.RepoID, "create")
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
l, err := GetLFSLock(lock.RepoID, lock.Path)
|
|
if err == nil {
|
|
return l, ErrLFSLockAlreadyExist{lock.RepoID, lock.Path}
|
|
}
|
|
if !IsErrLFSLockNotExist(err) {
|
|
return nil, err
|
|
}
|
|
|
|
_, err = x.InsertOne(lock)
|
|
return lock, err
|
|
}
|
|
|
|
// GetLFSLock returns release by given path.
|
|
func GetLFSLock(repoID int64, path string) (*LFSLock, error) {
|
|
path = cleanPath(path)
|
|
rel := &LFSLock{RepoID: repoID}
|
|
has, err := x.Where("lower(path) = ?", strings.ToLower(path)).Get(rel)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
if !has {
|
|
return nil, ErrLFSLockNotExist{0, repoID, path}
|
|
}
|
|
return rel, nil
|
|
}
|
|
|
|
// GetLFSLockByID returns release by given id.
|
|
func GetLFSLockByID(id int64) (*LFSLock, error) {
|
|
lock := new(LFSLock)
|
|
has, err := x.ID(id).Get(lock)
|
|
if err != nil {
|
|
return nil, err
|
|
} else if !has {
|
|
return nil, ErrLFSLockNotExist{id, 0, ""}
|
|
}
|
|
return lock, nil
|
|
}
|
|
|
|
// GetLFSLockByRepoID returns a list of locks of repository.
|
|
func GetLFSLockByRepoID(repoID int64) (locks []*LFSLock, err error) {
|
|
err = x.Where("repo_id = ?", repoID).Find(&locks)
|
|
return
|
|
}
|
|
|
|
// DeleteLFSLockByID deletes a lock by given ID.
|
|
func DeleteLFSLockByID(id int64, u *User, force bool) (*LFSLock, error) {
|
|
lock, err := GetLFSLockByID(id)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
err = CheckLFSAccessForRepo(u, lock.RepoID, "delete")
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
if !force && u.ID != lock.OwnerID {
|
|
return nil, fmt.Errorf("user doesn't own lock and force flag is not set")
|
|
}
|
|
|
|
_, err = x.ID(id).Delete(new(LFSLock))
|
|
return lock, err
|
|
}
|
|
|
|
//CheckLFSAccessForRepo check needed access mode base on action
|
|
func CheckLFSAccessForRepo(u *User, repoID int64, action string) error {
|
|
if u == nil {
|
|
return ErrLFSLockUnauthorizedAction{repoID, "undefined", action}
|
|
}
|
|
mode := AccessModeRead
|
|
if action == "create" || action == "delete" || action == "verify" {
|
|
mode = AccessModeWrite
|
|
}
|
|
|
|
repo, err := GetRepositoryByID(repoID)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
has, err := HasAccess(u.ID, repo, mode)
|
|
if err != nil {
|
|
return err
|
|
} else if !has {
|
|
return ErrLFSLockUnauthorizedAction{repo.ID, u.DisplayName(), action}
|
|
}
|
|
return nil
|
|
}
|