MieuxVoter
/
gitea-fork-majority-judgment
mirror of https://github.com/domi41/gitea.git
4
0
Fork 0
Code Issues 8 Releases Wiki Polls Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'bc05ddc0eb'
${ noResults }
gitea-fork-majority-judgment/modules/context/context.go

379 lines
11 KiB
Raw Normal View History Unescape

move templateFuncs to one file, add middleware context.
10 years ago
// Copyright 2014 The Gogs Authors. All rights reserved.
Prevent redirect to Host (#9678)
4 years ago
// Copyright 2020 The Gitea Authors. All rights reserved.
move templateFuncs to one file, add middleware context.
10 years ago
// Use of this source code is governed by a MIT-style
// license that can be found in the LICENSE file.
Rename module: middleware -> context
8 years ago
package context
move templateFuncs to one file, add middleware context.
10 years ago
import (
Fixes xss, clickjacking & password autocompletion
7 years ago
"html"
add csrf check
10 years ago
"html/template"
zip archive download
10 years ago
"io"
move templateFuncs to one file, add middleware context.
10 years ago
"net/http"
Refactor and simplify redirect to url (#3674)
6 years ago
"net/url"
Always return valid go-get meta, even if unauthorized (#2010) * Always return valid go-get meta, even if unauthorized * don't leak information
7 years ago
"path"
Add auto-login
10 years ago
"strings"
fork render
10 years ago
"time"
move templateFuncs to one file, add middleware context.
10 years ago
Update import paths from github.com/go-gitea to code.gitea.io (#135) - Update import paths from github.com/go-gitea to code.gitea.io - Fix import path for travis See https://docs.travis-ci.com/user/languages/go#Go-Import-Path
8 years ago
"code.gitea.io/gitea/models"
"code.gitea.io/gitea/modules/auth"
Fix recovery middleware to render gitea style page. (#13857) * Some changes to fix recovery * Move Recovery to middlewares * Remove trace code * Fix lint * add session middleware and remove dependent on macaron for sso * Fix panic 500 page rendering * Fix bugs * Fix fmt * Fix vendor * recover unnecessary change * Fix lint and addd some comments about the copied codes. * Use util.StatDir instead of com.StatDir Co-authored-by: 6543 <6543@obermui.de>
3 years ago
"code.gitea.io/gitea/modules/auth/sso"
Update import paths from github.com/go-gitea to code.gitea.io (#135) - Update import paths from github.com/go-gitea to code.gitea.io - Fix import path for travis See https://docs.travis-ci.com/user/languages/go#Go-Import-Path
8 years ago
"code.gitea.io/gitea/modules/base"
"code.gitea.io/gitea/modules/log"
"code.gitea.io/gitea/modules/setting"
Clean up various use of escape/unescape functions for URL generation (#6334) * Use PathUnescape instead of QueryUnescape when working with branch names Currently branch names with a '+' fail in certain situations because QueryUnescape replaces the + character with a blank space. Using PathUnescape should be better since it is defined as: // PathUnescape is identical to QueryUnescape except that it does not // unescape '+' to ' ' (space). Fixes #6333 * Change error to match new function name * Add new util function PathEscapeSegments This function simply runs PathEscape on each segment of a path without touching the forward slash itself. We want to use this instead of PathEscape/QueryEscape in most cases because a forward slash is a valid name for a branch etc... and we don't want that escaped in a URL. Putting this in new file url.go and also moving a couple similar functions into that file as well. * Use EscapePathSegments where appropriate Replace various uses of EscapePath/EscapeQuery with new EscapePathSegments. Also remove uncessary uses of various escape/unescape functions when the text had already been escaped or was not escaped. * Reformat comment to make drone build happy * Remove no longer used url library * Requested code changes
5 years ago
"code.gitea.io/gitea/modules/util"
Use gitea forked macaron (#7933) Signed-off-by: Tamal Saha <tamal@appscode.com>
5 years ago
"gitea.com/macaron/cache"
"gitea.com/macaron/csrf"
"gitea.com/macaron/i18n"
"gitea.com/macaron/macaron"
"gitea.com/macaron/session"
"github.com/unknwon/com"
move templateFuncs to one file, add middleware context.
10 years ago
)
Clean code
10 years ago
// Context represents context of a request.
move templateFuncs to one file, add middleware context.
10 years ago
type Context struct {
New UI merge in progress
10 years ago
*macaron.Context
Convert captcha, cache, csrf as middlewares
10 years ago
Cache cache.Cache
csrf csrf.CSRF
New UI merge in progress
10 years ago
Flash *session.Flash
Session session.Store
Always return valid go-get meta, even if unauthorized (#2010) * Always return valid go-get meta, even if unauthorized * don't leak information
7 years ago
Link string // current request URL
Various wiki bug fixes (#2996) * Update macaron * Various wiki bug fixes
6 years ago
EscapedLink string
more APIs on #12
10 years ago
User *models.User
IsSigned bool
IsBasicAuth bool
modify RepoAssignment
10 years ago
Rename module: middleware -> context
8 years ago
Repo *Repository
Add APIContext
8 years ago
Org *Organization
move templateFuncs to one file, add middleware context.
10 years ago
}
Fix recovery middleware to render gitea style page. (#13857) * Some changes to fix recovery * Move Recovery to middlewares * Remove trace code * Fix lint * add session middleware and remove dependent on macaron for sso * Fix panic 500 page rendering * Fix bugs * Fix fmt * Fix vendor * recover unnecessary change * Fix lint and addd some comments about the copied codes. * Use util.StatDir instead of com.StatDir Co-authored-by: 6543 <6543@obermui.de>
3 years ago
// GetData returns the data
func (ctx *Context) GetData() map[string]interface{} {
return ctx.Data
}
Cleaned permission checks for API -> site admin can now do anything (#6483) * cleaned permission checks for API -> site admin can now do anything Signed-off-by: Vasek Sraier <git@vakabus.cz> * PR #6483: helper methods moved to context/context.go, added missing return Signed-off-by: Vasek Sraier <git@vakabus.cz> * PR #6483: added documentation to new exported helper functions in context/context.go Signed-off-by: Vasek Sraier <git@vakabus.cz>
5 years ago
// IsUserSiteAdmin returns true if current user is a site admin
func (ctx *Context) IsUserSiteAdmin() bool {
return ctx.IsSigned && ctx.User.IsAdmin
}
// IsUserRepoOwner returns true if current user owns current repo
func (ctx *Context) IsUserRepoOwner() bool {
return ctx.Repo.IsOwner()
}
// IsUserRepoAdmin returns true if current user is admin in current repo
func (ctx *Context) IsUserRepoAdmin() bool {
return ctx.Repo.IsAdmin()
}
// IsUserRepoWriter returns true if current user has write privilege in current repo
func (ctx *Context) IsUserRepoWriter(unitTypes []models.UnitType) bool {
for _, unitType := range unitTypes {
if ctx.Repo.CanWrite(unitType) {
return true
}
}
return false
}
// IsUserRepoReaderSpecific returns true if current user can read current repo's specific part
func (ctx *Context) IsUserRepoReaderSpecific(unitType models.UnitType) bool {
return ctx.Repo.CanRead(unitType)
}
// IsUserRepoReaderAny returns true if current user can read any part of current repo
func (ctx *Context) IsUserRepoReaderAny() bool {
return ctx.Repo.HasAccess()
}
Redirect on changed user and org name (#11649) * Add redirect for user * Add redirect for orgs * Add user redirect test * Appease linter * Add comment to DeleteUserRedirect function * Fix locale changes * Fix GetUserByParams * Fix orgAssignment * Remove debug logging * Add redirect prompt * Dont Export DeleteUserRedirect & only use it within a session * Unexport newUserRedirect * cleanup * Fix & Dedub API code * Format Template * Add Migration & rm dublicat * Refactor: unexport newRepoRedirect() & rm dedub del exec * if this fails we'll need to re-rename the user directory Co-authored-by: 6543 <6543@obermui.de> Co-authored-by: zeripath <art27@cantab.net> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
3 years ago
// RedirectToUser redirect to a differently-named user
func RedirectToUser(ctx *Context, userName string, redirectUserID int64) {
user, err := models.GetUserByID(redirectUserID)
if err != nil {
ctx.ServerError("GetUserByID", err)
return
}
redirectPath := strings.Replace(
ctx.Req.URL.Path,
userName,
user.Name,
1,
)
if ctx.Req.URL.RawQuery != "" {
redirectPath += "?" + ctx.Req.URL.RawQuery
}
ctx.Redirect(path.Join(setting.AppSubURL, redirectPath))
}
Golint fixed for modules/context
8 years ago
// HasAPIError returns true if error occurs in form validation.
func (ctx *Context) HasAPIError() bool {
Clean api code
10 years ago
hasErr, ok := ctx.Data["HasError"]
if !ok {
return false
}
return hasErr.(bool)
}
Golint fixed for modules/context
8 years ago
// GetErrMsg returns error message
Clean api code
10 years ago
func (ctx *Context) GetErrMsg() string {
return ctx.Data["ErrorMsg"].(string)
}
Clean code
10 years ago
// HasError returns true if error occurs in form validation.
func (ctx *Context) HasError() bool {
hasErr, ok := ctx.Data["HasError"]
if !ok {
return false
}
Clean oauth code
10 years ago
ctx.Flash.ErrorMsg = ctx.Data["ErrorMsg"].(string)
ctx.Data["Flash"] = ctx.Flash
Clean code
10 years ago
return hasErr.(bool)
}
UI: install - new version
9 years ago
// HasValue returns true if value of given name exists.
func (ctx *Context) HasValue(name string) bool {
_, ok := ctx.Data[name]
return ok
}
Refactor and simplify redirect to url (#3674)
6 years ago
// RedirectToFirst redirects to first not empty URL
func (ctx *Context) RedirectToFirst(location ...string) {
for _, loc := range location {
if len(loc) == 0 {
continue
}
u, err := url.Parse(loc)
Prevent redirect to Host (#9678)
4 years ago
if err != nil || ((u.Scheme != "" || u.Host != "") && !strings.HasPrefix(strings.ToLower(loc), strings.ToLower(setting.AppURL))) {
Refactor and simplify redirect to url (#3674)
6 years ago
continue
}
ctx.Redirect(loc)
return
}
ctx.Redirect(setting.AppSubURL + "/")
}
Finish new repo settings page
10 years ago
// HTML calls Context.HTML and converts template name to string.
New UI merge in progress
10 years ago
func (ctx *Context) HTML(status int, name base.TplName) {
#2014 allow switch branches between two orgs in compose PR
8 years ago
log.Debug("Template: %s", name)
Finish new repo settings page
10 years ago
ctx.Context.HTML(status, string(name))
Work on admin
10 years ago
}
Clean code
10 years ago
// RenderWithErr used for page has form validation but need to prompt error to users.
New UI merge in progress
10 years ago
func (ctx *Context) RenderWithErr(msg string, tpl base.TplName, form interface{}) {
Add: rename repository
10 years ago
if form != nil {
auth.AssignForm(form, ctx.Data)
}
Add flash
10 years ago
ctx.Flash.ErrorMsg = msg
ctx.Data["Flash"] = ctx.Flash
Work on admin
10 years ago
ctx.HTML(200, tpl)
Clean code
10 years ago
}
Handle refactor (#3339) * Replace all ctx.Handle with ctx.ServerError or ctx.NotFound * Change Handle(403) to NotFound, avoid using macaron's NotFound
6 years ago
// NotFound displays a 404 (Not Found) page and prints the given error, if any.
func (ctx *Context) NotFound(title string, err error) {
wrap the ServerError and NotFound and log from the caller (#6550)
5 years ago
ctx.notFoundInternal(title, err)
}
func (ctx *Context) notFoundInternal(title string, err error) {
Add router log config option
10 years ago
if err != nil {
wrap the ServerError and NotFound and log from the caller (#6550)
5 years ago
log.ErrorWithSkip(2, "%s: %v", title, err)
New UI merge in progress
10 years ago
if macaron.Env != macaron.PROD {
Add router log config option
10 years ago
ctx.Data["ErrorMsg"] = err
}
Add some log
10 years ago
}
Minor UI tweaks (#5980) * Remove all CommitStatus when a repo is deleted Signed-off-by: jolheiser <john.olheiser@gmail.com> * Minor UI tweaks (#5782) Added 'No License' option Added link and octicon change for external issue trackers Reset password now notifies right away if the code is invalid Signed-off-by: jolheiser <john.olheiser@gmail.com> * More UI tweaks More info in PR * Generate stylesheet for arc-green * Make gofmt work * Change PR integration since the button is changed * Rebase * Generate stylesheet * UI updates Made the PR button a "basic" button Vertically centered the issue checkboxes Labels will update only once after modal is closed * Commit to reference related issues Resolves #5782 Resolves #5861 Addresses original question in #5993 * Change the comment wording since PR button is no longer little and green. * Revert changes that made Windows work * Regenerate stylesheet * Regenerate stylesheets * make generate-stylesheets * Update integration again, changed button style Signed-off-by: jolheiser <john.olheiser@gmail.com> * Added ID to PR button Changed integration to use the ID to avoid breaking in the future * Added missing semi-colons * Added back distinction between issue actions and filters (overlooked it before) Moved action button over next to other action dropdowns * Remove extra tab formatting in list.tmpl * Remove more formatting from GoLand * Replace hardcoded "No License" with i18n license helper.
5 years ago
ctx.Data["IsRepo"] = ctx.Repo.Repository != nil
Handle refactor (#3339) * Replace all ctx.Handle with ctx.ServerError or ctx.NotFound * Change Handle(403) to NotFound, avoid using macaron's NotFound
6 years ago
ctx.Data["Title"] = "Page Not Found"
ctx.HTML(http.StatusNotFound, base.TplName("status/404"))
}
// ServerError displays a 500 (Internal Server Error) page and prints the given
// error, if any.
func (ctx *Context) ServerError(title string, err error) {
wrap the ServerError and NotFound and log from the caller (#6550)
5 years ago
ctx.serverErrorInternal(title, err)
}
func (ctx *Context) serverErrorInternal(title string, err error) {
Handle refactor (#3339) * Replace all ctx.Handle with ctx.ServerError or ctx.NotFound * Change Handle(403) to NotFound, avoid using macaron's NotFound
6 years ago
if err != nil {
wrap the ServerError and NotFound and log from the caller (#6550)
5 years ago
log.ErrorWithSkip(2, "%s: %v", title, err)
Handle refactor (#3339) * Replace all ctx.Handle with ctx.ServerError or ctx.NotFound * Change Handle(403) to NotFound, avoid using macaron's NotFound
6 years ago
if macaron.Env != macaron.PROD {
ctx.Data["ErrorMsg"] = err
}
Add router log config option
10 years ago
}
Handle refactor (#3339) * Replace all ctx.Handle with ctx.ServerError or ctx.NotFound * Change Handle(403) to NotFound, avoid using macaron's NotFound
6 years ago
ctx.Data["Title"] = "Internal Server Error"
Provide better panic handling (#5902) This PR gitea'ises the macaron.Recovery() handler meaning that in the event of panic we get proper gitea 500 pages and the stacktrace is logged with the gitea logger. Signed-off-by: Andrew Thornton <art27@cantab.net>
5 years ago
ctx.HTML(http.StatusInternalServerError, base.TplName("status/500"))
move templateFuncs to one file, add middleware context.
10 years ago
}
router/repo: code refactoring
8 years ago
// NotFoundOrServerError use error check function to determine if the error
// is about not found. It responses with 404 status code for not found error,
// or error context description for logging purpose of 500 server error.
func (ctx *Context) NotFoundOrServerError(title string, errck func(error) bool, err error) {
#1601 support delete issue comment
8 years ago
if errck(err) {
wrap the ServerError and NotFound and log from the caller (#6550)
5 years ago
ctx.notFoundInternal(title, err)
#1601 support delete issue comment
8 years ago
return
}
wrap the ServerError and NotFound and log from the caller (#6550)
5 years ago
ctx.serverErrorInternal(title, err)
#1601 support delete issue comment
8 years ago
}
Golint fixed for modules/context
8 years ago
// HandleText handles HTTP status code
Set Content-Type to text/plain for http status 401 This is because git command line shows the failure reason only if Content-Type is text/plain.
9 years ago
func (ctx *Context) HandleText(status int, title string) {
UI: install - new version
9 years ago
if (status/100 == 4) || (status/100 == 5) {
Better logging (#6038) (#6095) * Panic don't fatal on create new logger Fixes #5854 Signed-off-by: Andrew Thornton <art27@cantab.net> * partial broken * Update the logging infrastrcture Signed-off-by: Andrew Thornton <art27@cantab.net> * Reset the skip levels for Fatal and Error Signed-off-by: Andrew Thornton <art27@cantab.net> * broken ncsa * More log.Error fixes Signed-off-by: Andrew Thornton <art27@cantab.net> * Remove nal * set log-levels to lowercase * Make console_test test all levels * switch to lowercased levels * OK now working * Fix vetting issues * Fix lint * Fix tests * change default logging to match current gitea * Improve log testing Signed-off-by: Andrew Thornton <art27@cantab.net> * reset error skip levels to 0 * Update documentation and access logger configuration * Redirect the router log back to gitea if redirect macaron log but also allow setting the log level - i.e. TRACE * Fix broken level caching * Refactor the router log * Add Router logger * Add colorizing options * Adjust router colors * Only create logger if they will be used * update app.ini.sample * rename Attribute ColorAttribute * Change from white to green for function * Set fatal/error levels * Restore initial trace logger * Fix Trace arguments in modules/auth/auth.go * Properly handle XORMLogger * Improve admin/config page * fix fmt * Add auto-compression of old logs * Update error log levels * Remove the unnecessary skip argument from Error, Fatal and Critical * Add stacktrace support * Fix tests * Remove x/sync from vendors? * Add stderr option to console logger * Use filepath.ToSlash to protect against Windows in tests * Remove prefixed underscores from names in colors.go * Remove not implemented database logger This was removed from Gogs on 4 Mar 2016 but left in the configuration since then. * Ensure that log paths are relative to ROOT_PATH * use path.Join * rename jsonConfig to logConfig * Rename "config" to "jsonConfig" to make it clearer * Requested changes * Requested changes: XormLogger * Try to color the windows terminal If successful default to colorizing the console logs * fixup * Colorize initially too * update vendor * Colorize logs on default and remove if this is not a colorizing logger * Fix documentation * fix test * Use go-isatty to detect if on windows we are on msys or cygwin * Fix spelling mistake * Add missing vendors * More changes * Rationalise the ANSI writer protection * Adjust colors on advice from @0x5c * Make Flags a comma separated list * Move to use the windows constant for ENABLE_VIRTUAL_TERMINAL_PROCESSING * Ensure matching is done on the non-colored message - to simpify EXPRESSION
5 years ago
log.Error("%s", title)
Set Content-Type to text/plain for http status 401 This is because git command line shows the failure reason only if Content-Type is text/plain.
9 years ago
}
fix import path, fix #1782
9 years ago
ctx.PlainText(status, []byte(title))
Set Content-Type to text/plain for http status 401 This is because git command line shows the failure reason only if Content-Type is text/plain.
9 years ago
}
Golint fixed for modules/context
8 years ago
// ServeContent serves content to http request
zip archive download
10 years ago
func (ctx *Context) ServeContent(name string, r io.ReadSeeker, params ...interface{}) {
modtime := time.Now()
for _, p := range params {
switch v := p.(type) {
case time.Time:
modtime = v
}
}
New UI merge in progress
10 years ago
ctx.Resp.Header().Set("Content-Description", "File Transfer")
ctx.Resp.Header().Set("Content-Type", "application/octet-stream")
ctx.Resp.Header().Set("Content-Disposition", "attachment; filename="+name)
ctx.Resp.Header().Set("Content-Transfer-Encoding", "binary")
ctx.Resp.Header().Set("Expires", "0")
ctx.Resp.Header().Set("Cache-Control", "must-revalidate")
ctx.Resp.Header().Set("Pragma", "public")
Add Access-Control-Expose-Headers (#12446) Fix #12424 Signed-off-by: Andrew Thornton <art27@cantab.net> Co-authored-by: silverwind <me@silverwind.io>
4 years ago
ctx.Resp.Header().Set("Access-Control-Expose-Headers", "Content-Disposition")
Fix API broken
10 years ago
http.ServeContent(ctx.Resp, ctx.Req.Request, name, modtime, r)
Work on form resubmit
10 years ago
}
New UI merge in progress
10 years ago
// Contexter initializes a classic context for a request.
func Contexter() macaron.Handler {
Convert captcha, cache, csrf as middlewares
10 years ago
return func(c *macaron.Context, l i18n.Locale, cache cache.Cache, sess session.Store, f *session.Flash, x csrf.CSRF) {
move templateFuncs to one file, add middleware context.
10 years ago
ctx := &Context{
New UI merge in progress
10 years ago
Context: c,
Convert captcha, cache, csrf as middlewares
10 years ago
Cache: cache,
csrf: x,
New UI merge in progress
10 years ago
Flash: f,
Session: sess,
Various wiki bug fixes (#2996) * Update macaron * Various wiki bug fixes
6 years ago
Link: setting.AppSubURL + strings.TrimSuffix(c.Req.URL.EscapedPath(), "/"),
Rename module: middleware -> context
8 years ago
Repo: &Repository{
PullRequest: &PullRequest{},
Fix pull request availability check
8 years ago
},
Add APIContext
8 years ago
Org: &Organization{},
move templateFuncs to one file, add middleware context.
10 years ago
}
Add lang specific font stacks for CJK (#6007) * Add lang specific font stacks * Force font changes Signed-off-by: Andrew Thornton <art27@cantab.net> * Fix icons Signed-off-by: Andrew Thornton <art27@cantab.net> * Fix octicons and icons Signed-off-by: Andrew Thornton <art27@cantab.net> * Just override the semantic ui fonts only Signed-off-by: Andrew Thornton <art27@cantab.net> * Missed the headers... override them too * Missed some more semantic ui stuff * Fix PT Sans Signed-off-by: Andrew Thornton <art27@cantab.net> * More changes Signed-off-by: Andrew Thornton <art27@cantab.net> * Squashed commit of the following: commit 7d1679e9079541359869c9e677ba7412bfcc59f3 Author: Mike L <cl.jeremy@qq.com> Date: Wed Mar 13 13:53:49 2019 +0100 Remove missed YaHei leftover from _home.less commit 0079121ea91860a323ed4e5cc1a9c0d490d9cefd Author: Mike L <cl.jeremy@qq.com> Date: Wed Mar 13 12:03:54 2019 +0100 Fix overdone fixes (inherit, :lang) commit 62c919915928ec1db4731d547e95885f91a0618d Author: Mike L <cl.jeremy@qq.com> Date: Wed Mar 13 02:29:10 2019 +0100 Fix elements w/ explicit lang (language chooser) commit b3117587aa2eb8570d60bed583a11ee5565418be Author: Mike L <cl.jeremy@qq.com> Date: Tue Mar 12 20:17:26 2019 +0100 Fix textarea also (to match body) commit 81cedf2c3012c4dd05a7680782b4a98e1b947f67 Author: Mike L <cl.jeremy@qq.com> Date: Tue Mar 12 19:41:39 2019 +0100 Revert css temporarily to fix conflict commit 80ff82797f3203cbeaf866f22e961334e137df89 Author: Mike L <cl.jeremy@qq.com> Date: Tue Mar 12 19:15:30 2019 +0100 Tweak CJK, fix Yu Gothic, more monospace inherits commit 581dceb9a869646c2c486dabb925c88c2680d70c Author: Mike L <cl.jeremy@qq.com> Date: Mon Mar 11 13:09:26 2019 +0100 Add Lato for latin extd. & cyrillic, improve CJK * update stylesheet
5 years ago
ctx.Data["Language"] = ctx.Locale.Language()
Always return valid go-get meta, even if unauthorized (#2010) * Always return valid go-get meta, even if unauthorized * don't leak information
7 years ago
c.Data["Link"] = ctx.Link
Include query in sign in redirect (#11579) * Include query in sign in redirect Include query string in ctx.Data["SignInLink"] so people are redirected to the right page after singing in. Fixes case of: Visit: https://try.gitea.io/mrsdizzie/testcase/issues?q=&type=all&sort=&state=open&labels=7071&milestone=0&assignee=0 Sign in, then redirected to: https://try.gitea.io/mrsdizzie/testcase/issues Create a new "SignInLink" instead of updating the existing "Link" because too many places in the code assume "Link" won't have a query * Apply suggestions from code review Co-authored-by: techknowlogick <techknowlogick@gitea.io>
4 years ago
ctx.Data["CurrentURL"] = setting.AppSubURL + c.Req.URL.RequestURI()
New UI merge in progress
10 years ago
ctx.Data["PageStartTime"] = time.Now()
Always return valid go-get meta, even if unauthorized (#2010) * Always return valid go-get meta, even if unauthorized * don't leak information
7 years ago
// Quick responses appropriate go-get meta with status 200
// regardless of if user have access to the repository,
// or the repository does not exist at all.
// This is particular a workaround for "go get" command which does not respect
// .netrc file.
if ctx.Query("go-get") == "1" {
ownerName := c.Params(":username")
repoName := c.Params(":reponame")
Fix Go 1.13 private repository go get issue (#8112) * Fix Go 1.13 invalid import path creation Signed-off-by: Rutger Broekhoff <rutger@viasalix.nl> * Apply suggested changes from #8100 Signed-off-by: Rutger Broekhoff <rutger@viasalix.nl>
5 years ago
trimmedRepoName := strings.TrimSuffix(repoName, ".git")
if ownerName == "" || trimmedRepoName == "" {
_, _ = c.Write([]byte(`<!doctype html>
<html>
<body>
invalid import path
</body>
</html>
`))
c.WriteHeader(400)
return
}
Always return valid go-get meta, even if unauthorized (#2010) * Always return valid go-get meta, even if unauthorized * don't leak information
7 years ago
branchName := "master"
Remove GetRepositoryByRef and add GetRepositoryByOwnerAndName (#3043) * remove GetRepositoryByRef and add GetRepositoryByOwnerAndName * fix tests * fix tests bug * some improvements
6 years ago
repo, err := models.GetRepositoryByOwnerAndName(ownerName, repoName)
if err == nil && len(repo.DefaultBranch) > 0 {
branchName = repo.DefaultBranch
Always return valid go-get meta, even if unauthorized (#2010) * Always return valid go-get meta, even if unauthorized * don't leak information
7 years ago
}
Clean up various use of escape/unescape functions for URL generation (#6334) * Use PathUnescape instead of QueryUnescape when working with branch names Currently branch names with a '+' fail in certain situations because QueryUnescape replaces the + character with a blank space. Using PathUnescape should be better since it is defined as: // PathUnescape is identical to QueryUnescape except that it does not // unescape '+' to ' ' (space). Fixes #6333 * Change error to match new function name * Add new util function PathEscapeSegments This function simply runs PathEscape on each segment of a path without touching the forward slash itself. We want to use this instead of PathEscape/QueryEscape in most cases because a forward slash is a valid name for a branch etc... and we don't want that escaped in a URL. Putting this in new file url.go and also moving a couple similar functions into that file as well. * Use EscapePathSegments where appropriate Replace various uses of EscapePath/EscapeQuery with new EscapePathSegments. Also remove uncessary uses of various escape/unescape functions when the text had already been escaped or was not escaped. * Reformat comment to make drone build happy * Remove no longer used url library * Requested code changes
5 years ago
prefix := setting.AppURL + path.Join(url.PathEscape(ownerName), url.PathEscape(repoName), "src", "branch", util.PathEscapeSegments(branchName))
Handle insecure and ports in go get (#7041) * Handle insecure and ports in go get * Fix IsExternalURL for non-standard ports
5 years ago
appURL, _ := url.Parse(setting.AppURL)
insecure := ""
if appURL.Scheme == string(setting.HTTP) {
insecure = "--insecure "
}
Fix go-get content type (#3426)
6 years ago
c.Header().Set("Content-Type", "text/html")
c.WriteHeader(http.StatusOK)
Add golangci (#6418)
5 years ago
_, _ = c.Write([]byte(com.Expand(`<!doctype html>
Always return valid go-get meta, even if unauthorized (#2010) * Always return valid go-get meta, even if unauthorized * don't leak information
7 years ago
<html>
<head>
<meta name="go-import" content="{GoGetImport} git {CloneLink}">
<meta name="go-source" content="{GoGetImport} _ {GoDocDirectory} {GoDocFile}">
</head>
<body>
Handle insecure and ports in go get (#7041) * Handle insecure and ports in go get * Fix IsExternalURL for non-standard ports
5 years ago
go get {Insecure}{GoGetImport}
Always return valid go-get meta, even if unauthorized (#2010) * Always return valid go-get meta, even if unauthorized * don't leak information
7 years ago
</body>
</html>
`, map[string]string{
Fix Go 1.13 private repository go get issue (#8112) * Fix Go 1.13 invalid import path creation Signed-off-by: Rutger Broekhoff <rutger@viasalix.nl> * Apply suggested changes from #8100 Signed-off-by: Rutger Broekhoff <rutger@viasalix.nl>
5 years ago
"GoGetImport": ComposeGoGetImport(ownerName, trimmedRepoName),
Always return valid go-get meta, even if unauthorized (#2010) * Always return valid go-get meta, even if unauthorized * don't leak information
7 years ago
"CloneLink": models.ComposeHTTPSCloneURL(ownerName, repoName),
"GoDocDirectory": prefix + "{/dir}",
"GoDocFile": prefix + "{/dir}/{file}#L{line}",
Handle insecure and ports in go get (#7041) * Handle insecure and ports in go get * Fix IsExternalURL for non-standard ports
5 years ago
"Insecure": insecure,
Always return valid go-get meta, even if unauthorized (#2010) * Always return valid go-get meta, even if unauthorized * don't leak information
7 years ago
})))
return
}
update session
10 years ago
Fix typos in models/ and modules/ (#1248)
7 years ago
// Get user from session if logged in.
Fix windows build error (#14263) * fix build * take flash error message back and fix more windows lint error * performance optimization * own step to check lint for windows Co-authored-by: 6543 <6543@obermui.de>
3 years ago
ctx.User, ctx.IsBasicAuth = sso.SignedInUser(ctx.Req.Request, c.Resp, ctx, ctx.Session)
work on #609
10 years ago
New UI merge in progress
10 years ago
if ctx.User != nil {
ctx.IsSigned = true
ctx.Data["IsSigned"] = ctx.IsSigned
ctx.Data["SignedUser"] = ctx.User
Refactor User.Id to User.ID
8 years ago
ctx.Data["SignedUserID"] = ctx.User.ID
Fix #605, fix #255, fix #101
10 years ago
ctx.Data["SignedUserName"] = ctx.User.Name
Work on admin
10 years ago
ctx.Data["IsAdmin"] = ctx.User.IsAdmin
Fix #605, fix #255, fix #101
10 years ago
} else {
Add reactions to issues/PR and comments (#2856)
6 years ago
ctx.Data["SignedUserID"] = int64(0)
Fix #605, fix #255, fix #101
10 years ago
ctx.Data["SignedUserName"] = ""
fix context
10 years ago
}
move templateFuncs to one file, add middleware context.
10 years ago
Add file upload for attachments
10 years ago
// If request sends files, parse them here otherwise the Query() can't be parsed and the CsrfToken will be invalid.
New UI merge in progress
10 years ago
if ctx.Req.Method == "POST" && strings.Contains(ctx.Req.Header.Get("Content-Type"), "multipart/form-data") {
Add a storage layer for attachments (#11387) * Add a storage layer for attachments * Fix some bug * fix test * Fix copyright head and lint * Fix bug * Add setting for minio and flags for migrate-storage * Add documents * fix lint * Add test for minio store type on attachments * fix test * fix test * Apply suggestions from code review Co-authored-by: guillep2k <18600385+guillep2k@users.noreply.github.com> * Add warning when storage migrated successfully * Fix drone * fix test * rebase * Fix test * display the error on console * Move minio test to amd64 since minio docker don't support arm64 * refactor the codes * add trace * Fix test * remove log on xorm * Fi download bug * Add a storage layer for attachments * Add setting for minio and flags for migrate-storage * fix lint * Add test for minio store type on attachments * Apply suggestions from code review Co-authored-by: guillep2k <18600385+guillep2k@users.noreply.github.com> * Fix drone * fix test * Fix test * display the error on console * Move minio test to amd64 since minio docker don't support arm64 * refactor the codes * add trace * Fix test * Add URL function to serve attachments directly from S3/Minio * Add ability to enable/disable redirection in attachment configuration * Fix typo * Add a storage layer for attachments * Add setting for minio and flags for migrate-storage * fix lint * Add test for minio store type on attachments * Apply suggestions from code review Co-authored-by: guillep2k <18600385+guillep2k@users.noreply.github.com> * Fix drone * fix test * Fix test * display the error on console * Move minio test to amd64 since minio docker don't support arm64 * don't change unrelated files * Fix lint * Fix build * update go.mod and go.sum * Use github.com/minio/minio-go/v6 * Remove unused function * Upgrade minio to v7 and some other improvements * fix lint * Fix go mod Co-authored-by: guillep2k <18600385+guillep2k@users.noreply.github.com> Co-authored-by: Tyler <tystuyfzand@gmail.com>
4 years ago
if err := ctx.Req.ParseMultipartForm(setting.Attachment.MaxSize << 20); err != nil && !strings.Contains(err.Error(), "EOF") { // 32MB max size
Handle refactor (#3339) * Replace all ctx.Handle with ctx.ServerError or ctx.NotFound * Change Handle(403) to NotFound, avoid using macaron's NotFound
6 years ago
ctx.ServerError("ParseMultipartForm", err)
Add file upload for attachments
10 years ago
return
}
}
Fixes xss, clickjacking & password autocompletion
7 years ago
ctx.Resp.Header().Set(`X-Frame-Options`, `SAMEORIGIN`)
ctx.Data["CsrfToken"] = html.EscapeString(x.GetToken())
ctx.Data["CsrfTokenHtml"] = template.HTML(`<input type="hidden" name="_csrf" value="` + ctx.Data["CsrfToken"].(string) + `">`)
#1692 APIs: Users Followers - User profile un/follow - List user's followers/following
8 years ago
log.Debug("Session ID: %s", sess.ID())
log.Debug("CSRF Token: %v", ctx.Data["CsrfToken"])
fork render
10 years ago
Hide home button when landing page is not set to home (#4651)
6 years ago
ctx.Data["IsLandingPageHome"] = setting.LandingPageURL == setting.LandingPageHome
ctx.Data["IsLandingPageExplore"] = setting.LandingPageURL == setting.LandingPageExplore
ctx.Data["IsLandingPageOrganizations"] = setting.LandingPageURL == setting.LandingPageOrganizations
code fix for #908, and work for #884
9 years ago
ctx.Data["ShowRegistrationButton"] = setting.Service.ShowRegistrationButton
Add /milestones endpoint (#8733) Create a /milestones endpoint which basically serves as a dashboard view for milestones, very similar to the /issues or /pulls page. Closes #8232
4 years ago
ctx.Data["ShowMilestonesDashboardPage"] = setting.Service.ShowMilestonesDashboardPage
#1080: Remove footer ads/branding from default template
9 years ago
ctx.Data["ShowFooterBranding"] = setting.ShowFooterBranding
fix #1957 - disable version display This allows the admin to disable the version information about gogs and go in use in the footer.
9 years ago
ctx.Data["ShowFooterVersion"] = setting.ShowFooterVersion
Hide home button when landing page is not set to home (#4651)
6 years ago
Swagger.v1.json template (#3572) * Turn swagger.v1.json into template * Rename ENABLE_SWAGGER_ENDPOINT option to ENABLE_SWAGGER
6 years ago
ctx.Data["EnableSwagger"] = setting.API.EnableSwagger
Allow ENABLE_OPENID_SIGNUP to depend on DISABLE_REGISTRATION (#1369) * Allow ENABLE_OPENID_SIGNUP to depend on DISABLE_REGISTRATION Omit the configuration variable (the default) to be dependent. Fixes #1363 * Move OpenID settings under Service object * Show OpenID SignUp and SignIn status in admin panel / configuration
7 years ago
ctx.Data["EnableOpenIDSignIn"] = setting.Service.EnableOpenIDSignIn
Added option to disable migrations (#13114) * Added option to disable migrations This patch introduces DISABLE_MIGRATIONS parameter in [repository] section of app.ini (by default set to false). If set to true it blocks access to repository migration feature. This mod hides also local repo import option in user editor if local repo importing or migrations is disabled. * Alter Example config DISABLE_MIGRATIONS set to false in example config to match its default value. * HTTP error 403 instead of 500 on denied access to migration * Parameter DISABLE_MIGRATIONS exposed via API Fixes: 04b04cf854bcb3ed7659442bcf79822bdebe29e9 Author-Change-Id: IB#1105130
3 years ago
ctx.Data["DisableMigrations"] = setting.Repository.DisableMigrations
code fix for #908, and work for #884
9 years ago
Inline manifest.json (#14038) * Inline manifest.json Improve performance by eliminating this separate request and just inline this small JSON in HTML directly as a data uri. Also update previously static app name scripts to use AppName. I've confirmed this as working via "Add to Homescreen" feature which offered to save the shortcut under the new app name. * prerender manifest data on startup * move to settings * restore setting.AppStartTime and use it on admin page * use double quotes because template.URL escapes everything * fix lint * move variable to global context variable * delete template file Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> Co-authored-by: zeripath <art27@cantab.net>
3 years ago
ctx.Data["ManifestData"] = setting.ManifestData
move templateFuncs to one file, add middleware context.
10 years ago
c.Map(ctx)
}
}