gitlab-org--gitlab-foss/lib/api/internal.rb

module API
  # Internal access API
  class Internal < Grape::API
    before { authenticate_by_gitlab_shell_token! }

    namespace 'internal' do
      # Check if git command is allowed to project
      #
      # Params:
      #   key_id - ssh key id for Git over SSH
      #   user_id - user id for Git over HTTP
      #   project - project path with namespace
      #   action - git action (git-upload-pack or git-receive-pack)
      #   ref - branch name
      #   forced_push - forced_push
      #
      post "/allowed" do
        status 200

        actor = 
          if params[:key_id]
            Key.find_by(id: params[:key_id])
          elsif params[:user_id]
            User.find_by(id: params[:user_id])
          end

        project_path = params[:project]
        
        # Check for *.wiki repositories.
        # Strip out the .wiki from the pathname before finding the
        # project. This applies the correct project permissions to
        # the wiki repository as well.
        wiki = project_path.end_with?('.wiki')
        project_path.chomp!('.wiki') if wiki

        project = Project.find_with_namespace(project_path)

        access =
          if wiki
            Gitlab::GitAccessWiki.new(actor, project)
          else
            Gitlab::GitAccess.new(actor, project)
          end

        access.check(params[:action], params[:changes])
      end

      #
      # Discover user by ssh key
      #
      get "/discover" do
        key = Key.find(params[:key_id])
        present key.user, with: Entities::UserSafe
      end

      get "/check" do
        {
          api_version: API.version,
          gitlab_version: Gitlab::VERSION,
          gitlab_rev: Gitlab::REVISION,
        }
      end

      get "/broadcast_message" do
        if message = BroadcastMessage.current
          present message, with: Entities::BroadcastMessage
        else
          {}
        end
      end
    end
  end
end
Refactor API classes. So api classes like Gitlab::Issues become API::Issues 2013-05-14 08:33:31 -04:00			`module API`
Fixed: post-receive, project remove, tests 2013-02-05 05:47:50 -05:00			`# Internal access API`
Internal API 2013-02-04 10:53:43 -05:00			`class Internal < Grape::API`
Avoid using {...} for multi-line blocks 2015-02-03 00:22:57 -05:00			`before { authenticate_by_gitlab_shell_token! }`
add gitlab-shell identification 2014-10-15 11:26:15 -04:00
Fixed: post-receive, project remove, tests 2013-02-05 05:47:50 -05:00			`namespace 'internal' do`
Use GitAccess in internal api Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-03-19 15:02:12 -04:00			`# Check if git command is allowed to project`
Fixed: post-receive, project remove, tests 2013-02-05 05:47:50 -05:00			`#`
specs for api/internal 2013-02-26 15:53:59 -05:00			`# Params:`
Use GitAccess in internal api Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-03-19 15:02:12 -04:00			`# key_id - ssh key id for Git over SSH`
			`# user_id - user id for Git over HTTP`
specs for api/internal 2013-02-26 15:53:59 -05:00			`# project - project path with namespace`
			`# action - git action (git-upload-pack or git-receive-pack)`
			`# ref - branch name`
first setup to protect protected branched to force updates 2014-01-28 16:36:50 -05:00			`# forced_push - forced_push`
specs for api/internal 2013-02-26 15:53:59 -05:00			`#`
/api/allowed use POST now Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-09-03 02:06:16 -04:00			`post "/allowed" do`
Make sure /api/allowed return 200 status code Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-09-03 06:33:44 -04:00			`status 200`
Don't leak information about private project existence via Git-over-SSH/HTTP. 2015-02-23 17:14:57 -05:00
Refactor GitAccess to use instance variables. 2015-03-24 09:10:55 -04:00			`actor =`
			`if params[:key_id]`
			`Key.find_by(id: params[:key_id])`
			`elsif params[:user_id]`
			`User.find_by(id: params[:user_id])`
			`end`
Don't leak information about private project existence via Git-over-SSH/HTTP. 2015-02-23 17:14:57 -05:00
Developers can push to wiki repo. Protected branches does not affect wiki repo any more Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-10-07 09:05:24 -04:00			`project_path = params[:project]`
Refactor GitAccess to use instance variables. 2015-03-24 09:10:55 -04:00
Replace current Wiki system with Gollum Wikis. This commit replaces the old database backed Wiki system with the excellent Gollum git based Wiki system. The UI has been updated to allow for utilizing the extra features that Gollum provides. Specifically: * Edit page now allows you to choose the content format. * Edit page allows you to provide a commit message for the change. * History page now shows Format, Commit Message, and Commit Hash. * A new Git Access page has been added with the Wiki Repo URL. * The default page has been changed to Home from Index to match the Gollum standard. The old Wiki model has been left in tact to provide for the development of a migration script that will move all content stored in the old Wiki system into new Gollum Wikis. 2013-03-03 22:43:52 -05:00			`# Check for *.wiki repositories.`
			`# Strip out the .wiki from the pathname before finding the`
			`# project. This applies the correct project permissions to`
			`# the wiki repository as well.`
Refactor GitAccess to use instance variables. 2015-03-24 09:10:55 -04:00			`wiki = project_path.end_with?('.wiki')`
			`project_path.chomp!('.wiki') if wiki`
Developers can push to wiki repo. Protected branches does not affect wiki repo any more Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-10-07 09:05:24 -04:00
Replace current Wiki system with Gollum Wikis. This commit replaces the old database backed Wiki system with the excellent Gollum git based Wiki system. The UI has been updated to allow for utilizing the extra features that Gollum provides. Specifically: * Edit page now allows you to choose the content format. * Edit page allows you to provide a commit message for the change. * History page now shows Format, Commit Message, and Commit Hash. * A new Git Access page has been added with the Wiki Repo URL. * The default page has been changed to Home from Index to match the Gollum standard. The old Wiki model has been left in tact to provide for the development of a migration script that will move all content stored in the old Wiki system into new Gollum Wikis. 2013-03-03 22:43:52 -05:00			`project = Project.find_with_namespace(project_path)`
Fix internal API for missing project or key Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-12-01 09:55:33 -05:00
Improve Git access error messages. 2015-05-10 17:07:35 -04:00			`access =`
			`if wiki`
			`Gitlab::GitAccessWiki.new(actor, project)`
			`else`
			`Gitlab::GitAccess.new(actor, project)`
			`end`
deploy keys support for gitlab-shell api 2013-02-07 02:56:13 -05:00
Improve Git access error messages. 2015-05-10 17:07:35 -04:00			`access.check(params[:action], params[:changes])`
Fixed: post-receive, project remove, tests 2013-02-05 05:47:50 -05:00			`end`

			`#`
			`# Discover user by ssh key`
			`#`
			`get "/discover" do`
			`key = Key.find(params[:key_id])`
Reduce amount of user info provided with internal api 2013-03-11 08:35:00 -04:00			`present key.user, with: Entities::UserSafe`
Fixed: post-receive, project remove, tests 2013-02-05 05:47:50 -05:00			`end`
api check call 2013-02-05 08:55:49 -05:00
			`get "/check" do`
			`{`
Refactor API classes. So api classes like Gitlab::Issues become API::Issues 2013-05-14 08:33:31 -04:00			`api_version: API.version,`
uppercase Gitlab version and revision constants. check api return gitlab version now 2013-02-16 07:42:22 -05:00			`gitlab_version: Gitlab::VERSION,`
			`gitlab_rev: Gitlab::REVISION,`
api check call 2013-02-05 08:55:49 -05:00			`}`
			`end`
Add internal broadcast message API. 2015-02-07 10:41:30 -05:00
			`get "/broadcast_message" do`
			`if message = BroadcastMessage.current`
			`present message, with: Entities::BroadcastMessage`
Improve broadcast message API 2015-02-18 17:58:20 -05:00			`else`
			`{}`
Add internal broadcast message API. 2015-02-07 10:41:30 -05:00			`end`
			`end`
Internal API 2013-02-04 10:53:43 -05:00			`end`
			`end`
			`end`