gitlab-org--gitlab-foss/app/controllers/import/github_controller.rb

class Import::GithubController < Import::BaseController
  before_action :verify_github_import_enabled
  before_action :github_auth, only: [:status, :jobs, :create]

  rescue_from Octokit::Unauthorized, with: :github_unauthorized

  helper_method :logged_in_with_github?

  def new
    if logged_in_with_github?
      go_to_github_for_permissions
    elsif session[:github_access_token]
      redirect_to status_import_github_url
    end
  end

  def callback
    session[:github_access_token] = client.get_token(params[:code])
    redirect_to status_import_github_url
  end

  def personal_access_token
    session[:github_access_token] = params[:personal_access_token]
    redirect_to status_import_github_url
  end

  def status
    @repos = client.repos
    @already_added_projects = current_user.created_projects.where(import_type: "github")
    already_added_projects_names = @already_added_projects.pluck(:import_source)

    @repos.reject!{ |repo| already_added_projects_names.include? repo.full_name }
  end

  def jobs
    jobs = current_user.created_projects.where(import_type: "github").to_json(only: [:id, :import_status])
    render json: jobs
  end

  def create
    @repo_id = params[:repo_id].to_i
    repo = client.repo(@repo_id)
    @project_name = params[:new_name].presence || repo.name
    namespace_path = params[:target_namespace].presence || current_user.namespace_path
    @target_namespace = find_or_create_namespace(namespace_path, current_user.namespace_path)

    if current_user.can?(:create_projects, @target_namespace)
      @project = Gitlab::GithubImport::ProjectCreator.new(repo, @project_name, @target_namespace, current_user, access_params).execute
    else
      render 'unauthorized'
    end
  end

  private

  def client
    @client ||= Gitlab::GithubImport::Client.new(session[:github_access_token])
  end

  def verify_github_import_enabled
    render_404 unless github_import_enabled?
  end

  def github_auth
    if session[:github_access_token].blank?
      go_to_github_for_permissions
    end
  end

  def go_to_github_for_permissions
    redirect_to client.authorize_url(callback_import_github_url)
  end

  def github_unauthorized
    session[:github_access_token] = nil
    redirect_to new_import_github_url,
      alert: 'Access denied to your GitHub account.'
  end

  def logged_in_with_github?
    current_user.identities.exists?(provider: 'github')
  end

  def access_params
    { github_access_token: session[:github_access_token] }
  end
end
gitlab.com importer: refactorig 2015-02-05 13:31:36 -05:00			`class Import::GithubController < Import::BaseController`
Fixed the Rails/ActionFilter cop Signed-off-by: Jeroen van Baarsen <jeroenvanbaarsen@gmail.com> 2015-04-16 08:03:37 -04:00			`before_action :verify_github_import_enabled`
Make GH one-off auth the default again for importing GH projects Advertise the PAT as an alternative unless GH import is not configured. Signed-off-by: Rémy Coutable <remy@rymai.me> 2016-06-27 07:42:22 -04:00			`before_action :github_auth, only: [:status, :jobs, :create]`
Github Importer 2014-12-31 08:07:48 -05:00
			`rescue_from Octokit::Unauthorized, with: :github_unauthorized`
Improve github import page UI 2015-01-13 14:44:17 -05:00
Import from Github using Personal Access Tokens. This stands as an alternative to using OAuth to access a user's Github repositories. This is setup in such a way that it can be used without OAuth configuration. From a UI perspective, the how to import modal has been replaced by a full page, which includes a form for posting a personal access token back to the Import::GithubController. If the user has logged in via GitHub, skip the Personal Access Token and go directly to Github for an access token via OAuth. 2016-05-02 11:22:38 -04:00			`helper_method :logged_in_with_github?`

			`def new`
			`if logged_in_with_github?`
			`go_to_github_for_permissions`
			`elsif session[:github_access_token]`
			`redirect_to status_import_github_url`
			`end`
			`end`

Github Importer 2014-12-31 08:07:48 -05:00			`def callback`
Remove user OAuth tokens stored in database for Bitbucket, GitHub, and GitLab and request them each session. Pass these tokens to the project import data. This prevents the need to encrypt these tokens and clear them in case they expire or get revoked. For example, if you deleted and re-created OAuth2 keys for Bitbucket, you would get an Error 500 with no way to recover: ``` Started GET "/import/bitbucket/status" for x.x.x.x at 2015-08-07 05:24:10 +0000 Processing by Import::BitbucketController#status as HTML Completed 500 Internal Server Error in 607ms (ActiveRecord: 2.3ms) NameError (uninitialized constant Import::BitbucketController::Unauthorized): app/controllers/import/bitbucket_controller.rb:77:in `rescue in go_to_bitbucket_for_permissions' app/controllers/import/bitbucket_controller.rb:74:in `go_to_bitbucket_for_permissions' app/controllers/import/bitbucket_controller.rb:86:in `bitbucket_unauthorized' ``` Closes #1871 2015-08-07 03:06:20 -04:00			`session[:github_access_token] = client.get_token(params[:code])`
GitLab.com integration: refactoring 2015-02-02 20:01:07 -05:00			`redirect_to status_import_github_url`
Github Importer 2014-12-31 08:07:48 -05:00			`end`

Import from Github using Personal Access Tokens. This stands as an alternative to using OAuth to access a user's Github repositories. This is setup in such a way that it can be used without OAuth configuration. From a UI perspective, the how to import modal has been replaced by a full page, which includes a form for posting a personal access token back to the Import::GithubController. If the user has logged in via GitHub, skip the Personal Access Token and go directly to Github for an access token via OAuth. 2016-05-02 11:22:38 -04:00			`def personal_access_token`
			`session[:github_access_token] = params[:personal_access_token]`
			`redirect_to status_import_github_url`
			`end`

Github Importer 2014-12-31 08:07:48 -05:00			`def status`
GitHub importer refactoring 2015-02-05 19:57:27 -05:00			`@repos = client.repos`
Github Importer 2014-12-31 08:07:48 -05:00			`@already_added_projects = current_user.created_projects.where(import_type: "github")`
			`already_added_projects_names = @already_added_projects.pluck(:import_source)`

Gitlab.com integration: code folding 2015-02-02 21:25:33 -05:00			`@repos.reject!{ \|repo\| already_added_projects_names.include? repo.full_name }`
Github Importer 2014-12-31 08:07:48 -05:00			`end`

Github Importer: AJAX update status 2015-01-20 14:52:55 -05:00			`def jobs`
Convert hashes to ruby 1.9 style 2015-02-02 22:30:09 -05:00			`jobs = current_user.created_projects.where(import_type: "github").to_json(only: [:id, :import_status])`
Github Importer: AJAX update status 2015-01-20 14:52:55 -05:00			`render json: jobs`
			`end`

Github Importer 2014-12-31 08:07:48 -05:00			`def create`
			`@repo_id = params[:repo_id].to_i`
GitHub importer refactoring 2015-02-05 19:57:27 -05:00			`repo = client.repo(@repo_id)`
modify github import JS and controller so we can now specify a namespace and/or name for a project. - Fixed and added specs. - Added different namespace options depending on user privilages - Updated docs. 2016-08-08 09:05:58 -04:00			`@project_name = params[:new_name].presence \|\| repo.name`
			`namespace_path = params[:target_namespace].presence \|\| current_user.namespace_path`
			`@target_namespace = find_or_create_namespace(namespace_path, current_user.namespace_path)`
Github Importer 2014-12-31 08:07:48 -05:00
Refactoring Import::BaseController#find_or_create_namespace 2016-08-30 13:34:37 -04:00			`if current_user.can?(:create_projects, @target_namespace)`
modify github import JS and controller so we can now specify a namespace and/or name for a project. - Fixed and added specs. - Added different namespace options depending on user privilages - Updated docs. 2016-08-08 09:05:58 -04:00			`@project = Gitlab::GithubImport::ProjectCreator.new(repo, @project_name, @target_namespace, current_user, access_params).execute`
Refactoring Import::BaseController#find_or_create_namespace 2016-08-30 13:34:37 -04:00			`else`
			`render 'unauthorized'`
			`end`
Github Importer 2014-12-31 08:07:48 -05:00			`end`

			`private`

			`def client`
Remove user OAuth tokens stored in database for Bitbucket, GitHub, and GitLab and request them each session. Pass these tokens to the project import data. This prevents the need to encrypt these tokens and clear them in case they expire or get revoked. For example, if you deleted and re-created OAuth2 keys for Bitbucket, you would get an Error 500 with no way to recover: ``` Started GET "/import/bitbucket/status" for x.x.x.x at 2015-08-07 05:24:10 +0000 Processing by Import::BitbucketController#status as HTML Completed 500 Internal Server Error in 607ms (ActiveRecord: 2.3ms) NameError (uninitialized constant Import::BitbucketController::Unauthorized): app/controllers/import/bitbucket_controller.rb:77:in `rescue in go_to_bitbucket_for_permissions' app/controllers/import/bitbucket_controller.rb:74:in `go_to_bitbucket_for_permissions' app/controllers/import/bitbucket_controller.rb:86:in `bitbucket_unauthorized' ``` Closes #1871 2015-08-07 03:06:20 -04:00			`@client \|\|= Gitlab::GithubImport::Client.new(session[:github_access_token])`
Github Importer 2014-12-31 08:07:48 -05:00			`end`

Load public key in initializer. 2015-02-17 16:52:32 -05:00			`def verify_github_import_enabled`
Only render 404 page from /public 2015-10-09 13:07:29 -04:00			`render_404 unless github_import_enabled?`
Load public key in initializer. 2015-02-17 16:52:32 -05:00			`end`

Github Importer 2014-12-31 08:07:48 -05:00			`def github_auth`
Remove user OAuth tokens stored in database for Bitbucket, GitHub, and GitLab and request them each session. Pass these tokens to the project import data. This prevents the need to encrypt these tokens and clear them in case they expire or get revoked. For example, if you deleted and re-created OAuth2 keys for Bitbucket, you would get an Error 500 with no way to recover: ``` Started GET "/import/bitbucket/status" for x.x.x.x at 2015-08-07 05:24:10 +0000 Processing by Import::BitbucketController#status as HTML Completed 500 Internal Server Error in 607ms (ActiveRecord: 2.3ms) NameError (uninitialized constant Import::BitbucketController::Unauthorized): app/controllers/import/bitbucket_controller.rb:77:in `rescue in go_to_bitbucket_for_permissions' app/controllers/import/bitbucket_controller.rb:74:in `go_to_bitbucket_for_permissions' app/controllers/import/bitbucket_controller.rb:86:in `bitbucket_unauthorized' ``` Closes #1871 2015-08-07 03:06:20 -04:00			`if session[:github_access_token].blank?`
Fix various typos signe-in -> signed-in go_to_gihub_for_permissions -> go_to_github_for_permissions descendand -> descendant behavour -> behaviour recepient_email -> recipient_email generate_fingerpint -> generate_fingerprint dependes -> depends Cant't -> Can't wisit -> visit notifcation -> notification sufficent_scope -> sufficient_scope? levet -> level 2015-01-18 10:29:37 -05:00			`go_to_github_for_permissions`
Github Importer 2014-12-31 08:07:48 -05:00			`end`
			`end`

Fix various typos signe-in -> signed-in go_to_gihub_for_permissions -> go_to_github_for_permissions descendand -> descendant behavour -> behaviour recepient_email -> recipient_email generate_fingerpint -> generate_fingerprint dependes -> depends Cant't -> Can't wisit -> visit notifcation -> notification sufficent_scope -> sufficient_scope? levet -> level 2015-01-18 10:29:37 -05:00			`def go_to_github_for_permissions`
GitHub importer refactoring 2015-02-05 19:57:27 -05:00			`redirect_to client.authorize_url(callback_import_github_url)`
Github Importer 2014-12-31 08:07:48 -05:00			`end`

			`def github_unauthorized`
Import from Github using Personal Access Tokens. This stands as an alternative to using OAuth to access a user's Github repositories. This is setup in such a way that it can be used without OAuth configuration. From a UI perspective, the how to import modal has been replaced by a full page, which includes a form for posting a personal access token back to the Import::GithubController. If the user has logged in via GitHub, skip the Personal Access Token and go directly to Github for an access token via OAuth. 2016-05-02 11:22:38 -04:00			`session[:github_access_token] = nil`
			`redirect_to new_import_github_url,`
			`alert: 'Access denied to your GitHub account.'`
Github Importer 2014-12-31 08:07:48 -05:00			`end`
Remove user OAuth tokens stored in database for Bitbucket, GitHub, and GitLab and request them each session. Pass these tokens to the project import data. This prevents the need to encrypt these tokens and clear them in case they expire or get revoked. For example, if you deleted and re-created OAuth2 keys for Bitbucket, you would get an Error 500 with no way to recover: ``` Started GET "/import/bitbucket/status" for x.x.x.x at 2015-08-07 05:24:10 +0000 Processing by Import::BitbucketController#status as HTML Completed 500 Internal Server Error in 607ms (ActiveRecord: 2.3ms) NameError (uninitialized constant Import::BitbucketController::Unauthorized): app/controllers/import/bitbucket_controller.rb:77:in `rescue in go_to_bitbucket_for_permissions' app/controllers/import/bitbucket_controller.rb:74:in `go_to_bitbucket_for_permissions' app/controllers/import/bitbucket_controller.rb:86:in `bitbucket_unauthorized' ``` Closes #1871 2015-08-07 03:06:20 -04:00
Import from Github using Personal Access Tokens. This stands as an alternative to using OAuth to access a user's Github repositories. This is setup in such a way that it can be used without OAuth configuration. From a UI perspective, the how to import modal has been replaced by a full page, which includes a form for posting a personal access token back to the Import::GithubController. If the user has logged in via GitHub, skip the Personal Access Token and go directly to Github for an access token via OAuth. 2016-05-02 11:22:38 -04:00			`def logged_in_with_github?`
			`current_user.identities.exists?(provider: 'github')`
			`end`
Remove user OAuth tokens stored in database for Bitbucket, GitHub, and GitLab and request them each session. Pass these tokens to the project import data. This prevents the need to encrypt these tokens and clear them in case they expire or get revoked. For example, if you deleted and re-created OAuth2 keys for Bitbucket, you would get an Error 500 with no way to recover: ``` Started GET "/import/bitbucket/status" for x.x.x.x at 2015-08-07 05:24:10 +0000 Processing by Import::BitbucketController#status as HTML Completed 500 Internal Server Error in 607ms (ActiveRecord: 2.3ms) NameError (uninitialized constant Import::BitbucketController::Unauthorized): app/controllers/import/bitbucket_controller.rb:77:in `rescue in go_to_bitbucket_for_permissions' app/controllers/import/bitbucket_controller.rb:74:in `go_to_bitbucket_for_permissions' app/controllers/import/bitbucket_controller.rb:86:in `bitbucket_unauthorized' ``` Closes #1871 2015-08-07 03:06:20 -04:00
			`def access_params`
			`{ github_access_token: session[:github_access_token] }`
			`end`
Github Importer 2014-12-31 08:07:48 -05:00			`end`