gitlab-org--gitlab-foss/spec/controllers/projects/git_http_controller_spec.rb

# frozen_string_literal: true

require 'spec_helper'

describe Projects::GitHttpController do
  include GitHttpHelpers

  let_it_be(:project) { create(:project, :public, :repository) }
  let(:project_params) do
    {
      namespace_id: project.namespace.to_param,
      project_id: project.path + '.git'
    }
  end
  let(:params) { project_params }

  describe 'HEAD #info_refs' do
    it 'returns 403' do
      head :info_refs, params: { namespace_id: project.namespace.to_param, project_id: project.path + '.git' }

      expect(response.status).to eq(403)
    end
  end

  describe 'GET #info_refs' do
    let(:params) { project_params.merge(service: 'git-upload-pack') }

    it 'returns 401 for unauthenticated requests to public repositories when http protocol is disabled' do
      stub_application_setting(enabled_git_access_protocol: 'ssh')

      get :info_refs, params: params

      expect(response.status).to eq(401)
    end

    context 'with authorized user' do
      let(:user) { project.owner }

      before do
        request.headers.merge! auth_env(user.username, user.password, nil)
      end

      it 'returns 200' do
        get :info_refs, params: params

        expect(response.status).to eq(200)
      end

      it 'updates the user activity' do
        expect_next_instance_of(Users::ActivityService) do |activity_service|
          expect(activity_service).to receive(:execute)
        end

        get :info_refs, params: params
      end
    end

    context 'with exceptions' do
      before do
        allow(controller).to receive(:verify_workhorse_api!).and_return(true)
      end

      it 'returns 503 with GRPC Unavailable' do
        allow(controller).to receive(:access_check).and_raise(GRPC::Unavailable)

        get :info_refs, params: params

        expect(response.status).to eq(503)
      end

      it 'returns 503 with timeout error' do
        allow(controller).to receive(:access_check).and_raise(Gitlab::GitAccess::TimeoutError)

        get :info_refs, params: params

        expect(response.status).to eq(503)
        expect(response.body).to eq 'Gitlab::GitAccess::TimeoutError'
      end
    end
  end

  describe 'POST #git_upload_pack' do
    before do
      allow(controller).to receive(:authenticate_user).and_return(true)
      allow(controller).to receive(:verify_workhorse_api!).and_return(true)
      allow(controller).to receive(:access_check).and_return(nil)
    end

    after do
      post :git_upload_pack, params: params
    end

    it 'updates project statistics' do
      expect(ProjectDailyStatisticsWorker).to receive(:perform_async)
    end
  end
end
Reject HEAD requests to info/refs endpoint In production, we see high error rates due to clients attempting to use the dumb Git HTTP protocol with HEAD /foo/bar.git/info/refs endpoint. This isn't supported and causes Error 500s because Workhorse doesn't send along its secret because it's not proxying this request. Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/54579 2019-03-19 13:02:17 -04:00			`# frozen_string_literal: true`

			`require 'spec_helper'`

			`describe Projects::GitHttpController do`
Add latest changes from gitlab-org/gitlab@master 2020-01-06 04:07:42 -05:00			`include GitHttpHelpers`

Add latest changes from gitlab-org/gitlab@master 2019-12-27 10:08:16 -05:00			`let_it_be(:project) { create(:project, :public, :repository) }`
			`let(:project_params) do`
			`{`
			`namespace_id: project.namespace.to_param,`
			`project_id: project.path + '.git'`
			`}`
			`end`
			`let(:params) { project_params }`

Reject HEAD requests to info/refs endpoint In production, we see high error rates due to clients attempting to use the dumb Git HTTP protocol with HEAD /foo/bar.git/info/refs endpoint. This isn't supported and causes Error 500s because Workhorse doesn't send along its secret because it's not proxying this request. Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/54579 2019-03-19 13:02:17 -04:00			`describe 'HEAD #info_refs' do`
			`it 'returns 403' do`
			`head :info_refs, params: { namespace_id: project.namespace.to_param, project_id: project.path + '.git' }`

			`expect(response.status).to eq(403)`
			`end`
			`end`
Allow CI to clone public projects when HTTP protocol is disabled GitLab has a mechanism that allows CI to clone repositories via HTTP even when the HTTP protocol is disabled. This works as expected when a project is private or internal. However, when a project is public CI gets an error message that HTTP is not allowed. This happens because Git only sends auth in a subsequent request after a 401 is returned first. For public projects, GitLab grabs onto that unauthenticated request and sends it through since it recognizes that Guests are ordinarily allowed to access the repository. Later on this leads to a 403 since HTTP protocol is disabled. Fix this by only continuing with unauthenticated requests when HTTP is allowed. 2019-08-08 15:56:36 -04:00
			`describe 'GET #info_refs' do`
Add latest changes from gitlab-org/gitlab@master 2019-12-27 10:08:16 -05:00			`let(:params) { project_params.merge(service: 'git-upload-pack') }`

Allow CI to clone public projects when HTTP protocol is disabled GitLab has a mechanism that allows CI to clone repositories via HTTP even when the HTTP protocol is disabled. This works as expected when a project is private or internal. However, when a project is public CI gets an error message that HTTP is not allowed. This happens because Git only sends auth in a subsequent request after a 401 is returned first. For public projects, GitLab grabs onto that unauthenticated request and sends it through since it recognizes that Guests are ordinarily allowed to access the repository. Later on this leads to a 403 since HTTP protocol is disabled. Fix this by only continuing with unauthenticated requests when HTTP is allowed. 2019-08-08 15:56:36 -04:00			`it 'returns 401 for unauthenticated requests to public repositories when http protocol is disabled' do`
			`stub_application_setting(enabled_git_access_protocol: 'ssh')`

Add latest changes from gitlab-org/gitlab@master 2019-12-27 10:08:16 -05:00			`get :info_refs, params: params`
Allow CI to clone public projects when HTTP protocol is disabled GitLab has a mechanism that allows CI to clone repositories via HTTP even when the HTTP protocol is disabled. This works as expected when a project is private or internal. However, when a project is public CI gets an error message that HTTP is not allowed. This happens because Git only sends auth in a subsequent request after a 401 is returned first. For public projects, GitLab grabs onto that unauthenticated request and sends it through since it recognizes that Guests are ordinarily allowed to access the repository. Later on this leads to a 403 since HTTP protocol is disabled. Fix this by only continuing with unauthenticated requests when HTTP is allowed. 2019-08-08 15:56:36 -04:00
			`expect(response.status).to eq(401)`
			`end`
Add latest changes from gitlab-org/gitlab@master 2019-10-08 08:06:01 -04:00
Add latest changes from gitlab-org/gitlab@master 2020-01-06 04:07:42 -05:00			`context 'with authorized user' do`
			`let(:user) { project.owner }`

			`before do`
			`request.headers.merge! auth_env(user.username, user.password, nil)`
			`end`

			`it 'returns 200' do`
			`get :info_refs, params: params`

			`expect(response.status).to eq(200)`
			`end`

			`it 'updates the user activity' do`
			`expect_next_instance_of(Users::ActivityService) do \|activity_service\|`
			`expect(activity_service).to receive(:execute)`
			`end`

			`get :info_refs, params: params`
			`end`
			`end`

Add latest changes from gitlab-org/gitlab@master 2019-10-08 08:06:01 -04:00			`context 'with exceptions' do`
			`before do`
			`allow(controller).to receive(:verify_workhorse_api!).and_return(true)`
			`end`

			`it 'returns 503 with GRPC Unavailable' do`
			`allow(controller).to receive(:access_check).and_raise(GRPC::Unavailable)`

Add latest changes from gitlab-org/gitlab@master 2019-12-27 10:08:16 -05:00			`get :info_refs, params: params`
Add latest changes from gitlab-org/gitlab@master 2019-10-08 08:06:01 -04:00
			`expect(response.status).to eq(503)`
			`end`

			`it 'returns 503 with timeout error' do`
			`allow(controller).to receive(:access_check).and_raise(Gitlab::GitAccess::TimeoutError)`

Add latest changes from gitlab-org/gitlab@master 2019-12-27 10:08:16 -05:00			`get :info_refs, params: params`
Add latest changes from gitlab-org/gitlab@master 2019-10-08 08:06:01 -04:00
			`expect(response.status).to eq(503)`
			`expect(response.body).to eq 'Gitlab::GitAccess::TimeoutError'`
			`end`
			`end`
Allow CI to clone public projects when HTTP protocol is disabled GitLab has a mechanism that allows CI to clone repositories via HTTP even when the HTTP protocol is disabled. This works as expected when a project is private or internal. However, when a project is public CI gets an error message that HTTP is not allowed. This happens because Git only sends auth in a subsequent request after a 401 is returned first. For public projects, GitLab grabs onto that unauthenticated request and sends it through since it recognizes that Guests are ordinarily allowed to access the repository. Later on this leads to a 403 since HTTP protocol is disabled. Fix this by only continuing with unauthenticated requests when HTTP is allowed. 2019-08-08 15:56:36 -04:00			`end`
Add latest changes from gitlab-org/gitlab@master 2019-12-27 10:08:16 -05:00
			`describe 'POST #git_upload_pack' do`
			`before do`
			`allow(controller).to receive(:authenticate_user).and_return(true)`
			`allow(controller).to receive(:verify_workhorse_api!).and_return(true)`
			`allow(controller).to receive(:access_check).and_return(nil)`
			`end`

			`after do`
			`post :git_upload_pack, params: params`
			`end`

			`it 'updates project statistics' do`
			`expect(ProjectDailyStatisticsWorker).to receive(:perform_async)`
			`end`
			`end`
Reject HEAD requests to info/refs endpoint In production, we see high error rates due to clients attempting to use the dumb Git HTTP protocol with HEAD /foo/bar.git/info/refs endpoint. This isn't supported and causes Error 500s because Workhorse doesn't send along its secret because it's not proxying this request. Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/54579 2019-03-19 13:02:17 -04:00			`end`