2018-09-25 23:45:43 -04:00
|
|
|
# frozen_string_literal: true
|
|
|
|
|
2013-06-23 12:47:22 -04:00
|
|
|
class Projects::RepositoriesController < Projects::ApplicationController
|
2018-02-19 15:41:04 -05:00
|
|
|
include ExtractsPath
|
2019-07-22 10:56:40 -04:00
|
|
|
include StaticObjectExternalStorage
|
2020-02-22 07:08:58 -05:00
|
|
|
include Gitlab::RateLimitHelpers
|
2020-03-26 14:08:03 -04:00
|
|
|
include HotlinkInterceptor
|
2019-07-22 10:56:40 -04:00
|
|
|
|
|
|
|
prepend_before_action(only: [:archive]) { authenticate_sessionless_user!(:archive) }
|
2018-02-19 15:41:04 -05:00
|
|
|
|
2020-11-16 13:09:15 -05:00
|
|
|
skip_before_action :default_cache_headers, only: :archive
|
|
|
|
|
2011-12-30 15:56:13 -05:00
|
|
|
# Authorize
|
2015-04-16 08:03:37 -04:00
|
|
|
before_action :require_non_empty_project, except: :create
|
2020-02-22 07:08:58 -05:00
|
|
|
before_action :archive_rate_limit!, only: :archive
|
2020-03-26 14:08:03 -04:00
|
|
|
before_action :intercept_hotlinking!, only: :archive
|
2018-02-19 15:41:04 -05:00
|
|
|
before_action :assign_archive_vars, only: :archive
|
2019-07-10 13:34:05 -04:00
|
|
|
before_action :assign_append_sha, only: :archive
|
2015-04-16 08:03:37 -04:00
|
|
|
before_action :authorize_download_code!
|
|
|
|
before_action :authorize_admin_project!, only: :create
|
2019-07-22 10:56:40 -04:00
|
|
|
before_action :redirect_to_external_storage, only: :archive, if: :static_objects_external_storage_enabled?
|
2014-11-29 17:50:25 -05:00
|
|
|
|
2020-10-08 14:08:32 -04:00
|
|
|
feature_category :source_code_management
|
|
|
|
|
2014-11-29 17:50:25 -05:00
|
|
|
def create
|
|
|
|
@project.create_repository
|
|
|
|
|
2015-02-25 22:34:16 -05:00
|
|
|
redirect_to project_path(@project)
|
2014-11-29 17:50:25 -05:00
|
|
|
end
|
2011-12-30 15:56:13 -05:00
|
|
|
|
2012-02-07 18:00:49 -05:00
|
|
|
def archive
|
2020-02-03 16:09:00 -05:00
|
|
|
return render_404 if html_request?
|
|
|
|
|
2019-07-10 13:34:05 -04:00
|
|
|
set_cache_headers
|
|
|
|
return if archive_not_modified?
|
2018-02-19 15:41:04 -05:00
|
|
|
|
2019-07-10 13:34:05 -04:00
|
|
|
send_git_archive @repository, **repo_params
|
2021-04-26 08:09:44 -04:00
|
|
|
rescue StandardError => ex
|
2015-10-08 11:12:00 -04:00
|
|
|
logger.error("#{self.class.name}: #{ex}")
|
2018-07-02 06:43:06 -04:00
|
|
|
git_not_found!
|
2012-02-07 18:00:49 -05:00
|
|
|
end
|
2018-02-19 15:41:04 -05:00
|
|
|
|
2019-07-10 13:34:05 -04:00
|
|
|
private
|
|
|
|
|
2020-02-22 07:08:58 -05:00
|
|
|
def archive_rate_limit!
|
|
|
|
if archive_rate_limit_reached?(current_user, @project)
|
|
|
|
render plain: ::Gitlab::RateLimitHelpers::ARCHIVE_RATE_LIMIT_REACHED_MESSAGE, status: :too_many_requests
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2019-07-10 13:34:05 -04:00
|
|
|
def repo_params
|
|
|
|
@repo_params ||= { ref: @ref, path: params[:path], format: params[:format], append_sha: @append_sha }
|
|
|
|
end
|
|
|
|
|
|
|
|
def set_cache_headers
|
2021-01-07 13:10:38 -05:00
|
|
|
expires_in cache_max_age(archive_metadata['CommitId']), public: Guest.can?(:download_code, project)
|
2019-07-10 13:34:05 -04:00
|
|
|
fresh_when(etag: archive_metadata['ArchivePath'])
|
|
|
|
end
|
|
|
|
|
|
|
|
def archive_not_modified?
|
|
|
|
# Check response freshness (Last-Modified and ETag)
|
|
|
|
# against request If-Modified-Since and If-None-Match conditions.
|
|
|
|
request.fresh?(response)
|
|
|
|
end
|
|
|
|
|
|
|
|
def archive_metadata
|
|
|
|
@archive_metadata ||= @repository.archive_metadata(
|
|
|
|
@ref,
|
|
|
|
'', # Where archives are stored isn't really important for ETag purposes
|
|
|
|
repo_params[:format],
|
|
|
|
path: repo_params[:path],
|
|
|
|
append_sha: @append_sha
|
|
|
|
)
|
|
|
|
end
|
|
|
|
|
|
|
|
def cache_max_age(commit_id)
|
|
|
|
if @ref == commit_id
|
|
|
|
# This is a link to an archive by a commit SHA. That means that the archive
|
|
|
|
# is immutable. The only reason to invalidate the cache is if the commit
|
|
|
|
# was deleted or if the user lost access to the repository.
|
|
|
|
Repository::ARCHIVE_CACHE_TIME_IMMUTABLE
|
|
|
|
else
|
|
|
|
# A branch or tag points at this archive. That means that the expected archive
|
|
|
|
# content may change over time.
|
|
|
|
Repository::ARCHIVE_CACHE_TIME
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
def assign_append_sha
|
|
|
|
@append_sha = params[:append_sha]
|
|
|
|
|
|
|
|
if @ref
|
|
|
|
shortname = "#{@project.path}-#{@ref.tr('/', '-')}"
|
|
|
|
@append_sha = false if @filename == shortname
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2018-02-19 15:41:04 -05:00
|
|
|
def assign_archive_vars
|
2018-04-18 14:11:50 -04:00
|
|
|
if params[:id]
|
2020-01-29 10:08:59 -05:00
|
|
|
@ref, @filename = extract_ref_and_filename(params[:id])
|
2018-04-18 14:11:50 -04:00
|
|
|
else
|
|
|
|
@ref = params[:ref]
|
|
|
|
@filename = nil
|
|
|
|
end
|
2018-02-19 15:41:04 -05:00
|
|
|
rescue InvalidPathError
|
|
|
|
render_404
|
|
|
|
end
|
2020-01-29 10:08:59 -05:00
|
|
|
|
|
|
|
# path can be of the form:
|
|
|
|
# master
|
|
|
|
# master/first.zip
|
|
|
|
# master/first/second.tar.gz
|
|
|
|
# master/first/second/third.zip
|
|
|
|
#
|
|
|
|
# In the archive case, we know that the last value is always the filename, so we
|
|
|
|
# do a greedy match to extract the ref. This avoid having to pull all ref names
|
|
|
|
# from Redis.
|
|
|
|
def extract_ref_and_filename(id)
|
|
|
|
path = id.strip
|
|
|
|
data = path.match(/(.*)\/(.*)/)
|
|
|
|
|
|
|
|
if data
|
|
|
|
[data[1], data[2]]
|
|
|
|
else
|
|
|
|
[path, nil]
|
|
|
|
end
|
|
|
|
end
|
2011-12-30 15:56:13 -05:00
|
|
|
end
|
2019-09-13 09:26:31 -04:00
|
|
|
|
2021-05-11 17:10:21 -04:00
|
|
|
Projects::RepositoriesController.prepend_mod_with('Projects::RepositoriesController')
|