commit ca454e925b8131f54e9d5250ef3ecaee9f40c108 · julien.rbrt.fr/tangled-core

+45 -8
knotserver/git.go
···

       2
       2
        
       

     

       3
       3
        
       import (

     

       4
       4
        
       	"compress/gzip"

     

       5
       5
       +
       	"fmt"

     

       5
       6
        
       	"io"

     

       6
       7
        
       	"net/http"

     

       7
       8
        
       	"path/filepath"

     
···

       14
       15
        
       func (d *Handle) InfoRefs(w http.ResponseWriter, r *http.Request) {

     

       15
       16
        
       	did := chi.URLParam(r, "did")

     

       16
       17
        
       	name := chi.URLParam(r, "name")

     

       17
       17
       -
       	repo, _ := securejoin.SecureJoin(d.c.Repo.ScanPath, filepath.Join(did, name))

     

       18
       18
       +
       	repoName, err := securejoin.SecureJoin(did, name)

     

       19
       19
       +
       	if err != nil {

     

       20
       20
       +
       		gitError(w, "repository not found", http.StatusNotFound)

     

       21
       21
       +
       		d.l.Error("git: failed to secure join repo path", "handler", "InfoRefs", "error", err)

     

       22
       22
       +
       		return

     

       23
       23
       +
       	}

     

       18
       24
        
       

     

       19
       19
       -
       	w.Header().Set("content-type", "application/x-git-upload-pack-advertisement")

     

       20
       20
       -
       	w.WriteHeader(http.StatusOK)

     

       25
       25
       +
       	repoPath, err := securejoin.SecureJoin(d.c.Repo.ScanPath, repoName)

     

       26
       26
       +
       	if err != nil {

     

       27
       27
       +
       		gitError(w, "repository not found", http.StatusNotFound)

     

       28
       28
       +
       		d.l.Error("git: failed to secure join repo path", "handler", "InfoRefs", "error", err)

     

       29
       29
       +
       		return

     

       30
       30
       +
       	}

     

       21
       31
        
       

     

       22
       32
        
       	cmd := service.ServiceCommand{

     

       23
       23
       -
       		Dir:    repo,

     

       33
       33
       +
       		Dir:    repoPath,

     

       24
       34
        
       		Stdout: w,

     

       25
       35
        
       	}

     

       26
       36
        
       

     

       27
       27
       -
       	if err := cmd.InfoRefs(); err != nil {

     

       28
       28
       -
       		writeError(w, err.Error(), 500)

     

       29
       29
       -
       		d.l.Error("git: failed to execute git-upload-pack (info/refs)", "handler", "InfoRefs", "error", err)

     

       30
       30
       -
       		return

     

       37
       37
       +
       	serviceName := r.URL.Query().Get("service")

     

       38
       38
       +
       	switch serviceName {

     

       39
       39
       +
       	case "git-upload-pack":

     

       40
       40
       +
       		w.Header().Set("content-type", "application/x-git-upload-pack-advertisement")

     

       41
       41
       +
       		w.WriteHeader(http.StatusOK)

     

       42
       42
       +
       

     

       43
       43
       +
       		if err := cmd.InfoRefs(); err != nil {

     

       44
       44
       +
       			gitError(w, err.Error(), http.StatusInternalServerError)

     

       45
       45
       +
       			d.l.Error("git: process failed", "handler", "InfoRefs", "service", serviceName, "error", err)

     

       46
       46
       +
       			return

     

       47
       47
       +
       		}

     

       48
       48
       +
       	case "git-receive-pack":

     

       49
       49
       +
       		d.RejectPush(w, r, name)

     

       50
       50
       +
       	default:

     

       51
       51
       +
       		gitError(w, fmt.Sprintf("service unsupported: '%s'", serviceName), http.StatusForbidden)

     

       31
       52
        
       	}

     

       32
       53
        
       }

     

       33
       54
        
       

     
···

       71
       92
        
       		return

     

       72
       93
        
       	}

     

       73
       94
        
       }

     

       95
       95
       +
       

     

       96
       96
       +
       func (d *Handle) RejectPush(w http.ResponseWriter, r *http.Request, unqualifiedRepoName string) {

     

       97
       97
       +
       	// A text/plain response will cause git to print each line of the body

     

       98
       98
       +
       	// prefixed with "remote: ".

     

       99
       99
       +
       	w.Header().Set("content-type", "text/plain; charset=UTF-8")

     

       100
       100
       +
       	w.WriteHeader(http.StatusForbidden)

     

       101
       101
       +
       

     

       102
       102
       +
       	fmt.Fprintf(w, "Welcome to Tangled.sh!\n\nPushes are currently only supported over SSH.")

     

       103
       103
       +
       	fmt.Fprintf(w, "\n\n")

     

       104
       104
       +
       }

     

       105
       105
       +
       

     

       106
       106
       +
       func gitError(w http.ResponseWriter, msg string, status int) {

     

       107
       107
       +
       	w.Header().Set("content-type", "text/plain; charset=UTF-8")

     

       108
       108
       +
       	w.WriteHeader(status)

     

       109
       109
       +
       	fmt.Fprintf(w, "%s\n", msg)

     

       110
       110
       +
       }